Achetez et vendez votre matériel multimédia d'occasion sur notre service de petites annonces informatiques gratuites

MALWARE INTERNET impossible à éliminer! [Résolu]

Forum informatique > Aide Virus, Spywares et autres logiciels malveillants > MALWARE INTERNET impossible à éliminer! [Résolu]

<<<1234567>>>

 [Page 1 sur 7 - 92 messages]
Informations Messages

Prospero

Avatar de Prospero
49 messages
Disquette
Disquette

Lien direct Le 03 Juin 2011 à 18h17

Bonjour à tous!

Bon, eh bien c'est le problème habituel du malware que rien n'arrive à éliminer...

J'ai un notebook Pavilion dv6 Hp, Windows 7 64-bits

J'ai IE9 (J'ai expérimenté beaucoup de browsers, et avec tous arrive ce genre de problème), et avec n'importe quel site, il m'arrive d'avoir désormais un pub de m... à la c... qui apparaît! Oh, il est très facile de la faire disparaître, on clique sur Fermé, sauf que c'est in-su-ppor-ta-ble, évidemment! Ca apparaît de plus en plus souvent. NB : c'est en chinois! J'habite en effet à Shanghai, au milieu du paradis des virus, la Chine...!

Alors, j'ai BitDefender comme antivirus, Total Security (Herm...) 2011, à jour. Il est incapable d'y faire quoi que ce soit, il ne repère même pas le moindre problème...
J'ai fait Spybot, ça n'a rien donné!
J'ai fait CCleaner, rien!
J'ai fait Ad-aware, rien!

Alors voilà, je m'adresse à vous, s'il y a genre petit génie-cador du délestage de malware intempestif ici qui pourrait m'aider! Le néophyte que je suis a d'emblée une question toute bête : COMMENT EST-CE POSSIBLE QUE TOUS CES PROGRAMMES NE VOIENT RIEN alors que le problème aux (mes) yeux?

J'ai une capture d'écran du problème mais je viens de m'apercevoir que je ne peux pas la coller dans ce post ni la mettre en pièce-jointe!!! Si quelqu'un a une solution??????!!

Merci d'avance à vous!
Cordialement,

Prospero
 
 

Winx

Avatar de Winx
19826 messages
No-Life
No-Life
AidoHardware
AidoHardware
AidoAntivirus
AidoAntivirus
AidoWindows
AidoWindows

Lien direct Le 04 Juin 2011 à 13h57

Salut à toi et bienvenue,Sourire Hello

Afin de nous éclairer sur la nature précise de tes soucis "infectieux", ( ou pas ? )
dans un premier temps fais cette procédure et poste le rapport généré par Random's system information tool (RSIT) par
random/random
Télécharge random's system information tool (RSIT) par random/random et sauvegarde-le sur le Bureau.

    - Double-clique sur RSIT.exe afin de lancer RSIT.
    - Clique Continue à l'écran Disclaimer.
    - Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.

    - Poste le contenu de log.txt (<<qui sera affiché)
    ainsi que info.txt (<<qui sera réduit dans la Barre des Tâches).






// ! Important !
=======================

Citation

Durant la phase de désinfection, il est absolument indispensable et primordial de ne pas rajouter de programmes à votre PC, afin de ne pas perturber la décontamination de votre machine. Faites-en un usage minimum durant cette phase.

D'autre part, ne pas utiliser d'outil(s) de décontamination de sa propre initiative, cela peut définitivement nuire à notre travail et au bon rétablissement de la machine. Sourire
C'est à la mode en ce moment, d'utiliser des outils comme Combofix sans autorisation !
C'est ABSOLUMENT proscrit ici sur ce Forum.

Il est évident qu'un PC infecté peut tout à fait devenir inutilisable malgré la tentative de désinfection, et de ce fait prendre la précaution de sauvegarder tous ses documents personnels, c'est une très bonne idée en soi....merci de prendre ça en considération LOL !

Il est évident que je considère que l'option formatage et/ou une restauration du Système ne fait pas actuellement partie de ton intention, ce qui m'évite de perdre du temps.... LOL ! merci d'avance



Ps:
======
Conseil d'ordre général Sourire
---->> Aller sur le Net avec Windows Internet Explorer, n'est pas souhaitable.
Pour vous en convaincre, un petit test de votre navigateur Flèche

Comparez-donc Windows Internet Explorer avec Mozilla-Firefox (ce dernier devrait atteindre les 92 )
Quand à Windows Internet Explorer, j'en laisse la surprise... LOL !

Toutefois, ce qui ne veut pas dire que Windows Internet Explorer, ne doit pas être à jour ! (vérifier que vous avez la dernière version ! )

Télécharger Mozilla-Firefox 3.0. X. (le X représente évidemment la dernière version ) et le mettre à l'install comme Navigateur par défaut.

Flèche lien ici

-->source ici de conseils
Eviter à tous prix de poster dans plusieurs Forum à la fois...pas de multi-postage donc !



Poster les 2 rapports demandés (log.txt et info.txt)
En cas de fichier trop gros, suffit de le diviser sur deux réponses, ou plus.....




PS:
si tu ne peux pas télécharger en direct avec la machine infectée, il est évident qu'il faut faire usage, d'une carte SD ou clé usb via un autre PC.

  Je n'ai pas la prétention de résoudre les problèmes, mais celle de vous aider à les résoudre ;-)
 

Prospero

Avatar de Prospero
49 messages
Disquette
Disquette

Lien direct Le 04 Juin 2011 à 14h43

Bonjour!

Merci à vous!

Sans problème, j'ai exécuté le problème et voici le résultat :

Log.txt :

Logfile of random's system information tool 1.08 (written by random/random)
Run by Fred at 2011-06-04 20:10:23
Microsoft Windows 7 Édition Familiale Premium Service Pack 1
System drive C: has 354 GB (60%) free of 587 GB
Total RAM: 3894 MB (36% free)

HijackThis download failed

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4248047820-2620514176-44819496-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4248047820-2620514176-44819496-1000UA.job
C:\Windows\tasks\HPCeeScheduleForFred.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20 328248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-23 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP SimplePass Identity Protection Extension - C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll [2009-12-30 1262856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\coIEPlg.dll [2009-08-29 392560]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\IPSBHO.DLL [2009-08-30 79224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20 509496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\coIEPlg.dll [2009-08-29 392560]
{381FFDE8-2394-4F90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2011\Antispam32\IEToolbar.dll [2011-03-08 160832]
{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-22 932288]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-01-31 35760]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2010-11-29 421888]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2011-03-07 421160]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-10-29 249064]
"hpqSRMon"=C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [2008-07-22 150528]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"=C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe [2010-01-27 1712184]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2010-01-22 2363392]
"msnmsgr"=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2010-11-10 4240760]
"SpybotSD TeaTimer"=C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2009-01-26 2144088]
"Google Update"=C:\Users\Fred\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-24 136176]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.exe [2010-11-11 233936]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayL oad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHoo ks]
"{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\SysWow64\EZUPBH~1.DLL [2010-05-18 52920]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableTaskMgr"=0
"DisableChangePassword"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"EnableShellExecuteHooks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewall policy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewall policy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-06-04 20:10:23 ----D---- C:\rsit
2011-06-04 20:10:23 ----D---- C:\Program Files (x86)\trend micro
2011-05-27 21:52:06 ----HDC---- C:\ProgramData\{2162CCC0-3A5F-4887-B51F-CE5F195B3620}
2011-05-27 21:51:37 ----D---- C:\ProgramData\Lavasoft
2011-05-27 21:51:37 ----D---- C:\Program Files (x86)\Lavasoft
2011-05-23 03:20:21 ----D---- C:\ProgramData\Easy Driver Pro
2011-05-23 03:17:00 ----D---- C:\Program Files (x86)\Easy Driver Pro
2011-05-22 23:06:25 ----A---- C:\Windows\ntbtlog.txt
2011-05-21 03:11:40 ----D---- C:\ProgramData\HP Product Assistant
2011-05-21 03:10:08 ----D---- C:\Program Files (x86)\Common Files\HP
2011-05-21 01:02:01 ----A---- C:\Windows\SysWOW64\dfshim.dll
2011-05-21 01:01:42 ----A---- C:\Windows\SysWOW64\mstscax.dll
2011-05-21 01:01:34 ----A---- C:\Windows\SysWOW64\mfc40u.dll
2011-05-21 01:01:34 ----A---- C:\Windows\SysWOW64\mfc40.dll
2011-05-21 01:01:34 ----A---- C:\Windows\SysWOW64\d3d10warp.dll
2011-05-21 01:01:19 ----A---- C:\Windows\SysWOW64\shell32.dll
2011-05-21 01:01:19 ----A---- C:\Windows\SysWOW64\secproc_isv.dll
2011-05-21 01:01:18 ----A---- C:\Windows\SysWOW64\secproc.dll
2011-05-21 01:01:18 ----A---- C:\Windows\SysWOW64\RMActivate_isv.exe
2011-05-21 01:01:17 ----A---- C:\Windows\SysWOW64\RMActivate.exe
2011-05-21 01:01:14 ----A---- C:\Windows\SysWOW64\mscoree.dll
2011-05-21 01:01:11 ----A---- C:\Windows\SysWOW64\mf.dll
2011-05-21 01:01:09 ----A---- C:\Windows\SysWOW64\CertEnroll.dll
2011-05-21 01:01:08 ----A---- C:\Windows\SysWOW64\mssrch.dll
2011-05-21 01:01:02 ----A---- C:\Windows\SysWOW64\wmp.dll
2011-05-21 01:01:00 ----A---- C:\Windows\SysWOW64\PresentationHostProxy.dll
2011-05-21 01:01:00 ----A---- C:\Windows\SysWOW64\PresentationHost.exe
2011-05-21 01:00:58 ----A---- C:\Windows\SysWOW64\tquery.dll
2011-05-21 01:00:56 ----A---- C:\Windows\SysWOW64\RacEngn.dll
2011-05-21 01:00:56 ----A---- C:\Windows\SysWOW64\AuthFWSnapin.dll
2011-05-21 01:00:49 ----A---- C:\Windows\SysWOW64\ExplorerFrame.dll
2011-05-21 01:00:48 ----A---- C:\Windows\SysWOW64\ole32.dll
2011-05-21 01:00:43 ----A---- C:\Windows\SysWOW64\vssapi.dll
2011-05-21 01:00:43 ----A---- C:\Windows\SysWOW64\SearchFolder.dll
2011-05-21 01:00:42 ----A---- C:\Windows\SysWOW64\d3d9.dll
2011-05-21 01:00:41 ----A---- C:\Windows\SysWOW64\taskschd.dll
2011-05-21 01:00:40 ----A---- C:\Windows\SysWOW64\crypt32.dll
2011-05-21 01:00:39 ----A---- C:\Windows\SysWOW64\mstsc.exe
2011-05-21 01:00:37 ----A---- C:\Windows\SysWOW64\wer.dll
2011-05-21 01:00:37 ----A---- C:\Windows\SysWOW64\ntdll.dll
2011-05-21 01:00:37 ----A---- C:\Windows\SysWOW64\certcli.dll
2011-05-21 01:00:36 ----A---- C:\Windows\SysWOW64\msxml6.dll
2011-05-21 01:00:36 ----A---- C:\Windows\SysWOW64\dwmcore.dll
2011-05-21 01:00:35 ----A---- C:\Windows\SysWOW64\tcpmonui.dll
2011-05-21 01:00:35 ----A---- C:\Windows\SysWOW64\odbc32.dll
2011-05-21 01:00:34 ----A---- C:\Windows\SysWOW64\quartz.dll
2011-05-21 01:00:33 ----A---- C:\Windows\SysWOW64\TSWorkspace.dll
2011-05-21 01:00:33 ----A---- C:\Windows\SysWOW64\tsmf.dll
2011-05-21 01:00:33 ----A---- C:\Windows\SysWOW64\dot3api.dll
2011-05-21 01:00:32 ----A---- C:\Windows\SysWOW64\winhttp.dll
2011-05-21 01:00:32 ----A---- C:\Windows\SysWOW64\setupapi.dll
2011-05-21 01:00:32 ----A---- C:\Windows\SysWOW64\apphelp.dll
2011-05-21 01:00:31 ----A---- C:\Windows\SysWOW64\netlogon.dll
2011-05-21 01:00:31 ----A---- C:\Windows\SysWOW64\MSVidCtl.dll
2011-05-21 01:00:31 ----A---- C:\Windows\SysWOW64\dbgeng.dll
2011-05-21 01:00:30 ----A---- C:\Windows\SysWOW64\WindowsCodecs.dll
2011-05-21 01:00:30 ----A---- C:\Windows\SysWOW64\d3d11.dll
2011-05-21 01:00:29 ----A---- C:\Windows\SysWOW64\netcfgx.dll
2011-05-21 01:00:28 ----A---- C:\Windows\SysWOW64\WMVDECOD.DLL
2011-05-21 01:00:27 ----A---- C:\Windows\SysWOW64\webio.dll
2011-05-21 01:00:26 ----A---- C:\Windows\SysWOW64\WsmSvc.dll
2011-05-21 01:00:26 ----A---- C:\Windows\SysWOW64\Query.dll
2011-05-21 01:00:25 ----A---- C:\Windows\SysWOW64\upnp.dll
2011-05-21 01:00:25 ----A---- C:\Windows\SysWOW64\schannel.dll
2011-05-21 01:00:25 ----A---- C:\Windows\SysWOW64\mmcndmgr.dll
2011-05-21 01:00:25 ----A---- C:\Windows\SysWOW64\DShowRdpFilter.dll
2011-05-21 01:00:25 ----A---- C:\Windows\SysWOW64\advapi32.dll
2011-05-21 01:00:24 ----A---- C:\Windows\SysWOW64\netfxperf.dll
2011-05-21 01:00:24 ----A---- C:\Windows\SysWOW64\msv1_0.dll
2011-05-21 01:00:24 ----A---- C:\Windows\SysWOW64\imapi2fs.dll
2011-05-21 01:00:23 ----A---- C:\Windows\SysWOW64\SessEnv.dll
2011-05-21 01:00:23 ----A---- C:\Windows\SysWOW64\PortableDeviceApi.dll
2011-05-21 01:00:23 ----A---- C:\Windows\SysWOW64\msdrm.dll
2011-05-21 01:00:23 ----A---- C:\Windows\SysWOW64\authui.dll
2011-05-21 01:00:22 ----A---- C:\Windows\SysWOW64\usp10.dll
2011-05-21 01:00:22 ----A---- C:\Windows\SysWOW64\shlwapi.dll
2011-05-21 01:00:22 ----A---- C:\Windows\SysWOW64\mcbuilder.exe
2011-05-21 01:00:21 ----A---- C:\Windows\SysWOW64\userenv.dll
2011-05-21 01:00:21 ----A---- C:\Windows\SysWOW64\kernel32.dll
2011-05-21 01:00:21 ----A---- C:\Windows\SysWOW64\certmgr.dll
2011-05-21 01:00:20 ----A---- C:\Windows\SysWOW64\xpsservices.dll
2011-05-21 01:00:20 ----A---- C:\Windows\SysWOW64\WebClnt.dll
2011-05-21 01:00:20 ----A---- C:\Windows\SysWOW64\d3d10_1core.dll
2011-05-21 01:00:20 ----A---- C:\Windows\SysWOW64\comdlg32.dll
2011-05-21 01:00:19 ----A---- C:\Windows\SysWOW64\cmd.exe
2011-05-21 01:00:17 ----A---- C:\Windows\SysWOW64\Wldap32.dll
2011-05-21 01:00:17 ----A---- C:\Windows\SysWOW64\win32spl.dll
2011-05-21 01:00:17 ----A---- C:\Windows\SysWOW64\propsys.dll
2011-05-21 01:00:17 ----A---- C:\Windows\SysWOW64\mfds.dll
2011-05-21 01:00:17 ----A---- C:\Windows\SysWOW64\framedynos.dll
2011-05-21 01:00:16 ----A---- C:\Windows\SysWOW64\user32.dll
2011-05-21 01:00:15 ----A---- C:\Windows\SysWOW64\ncsi.dll
2011-05-21 01:00:15 ----A---- C:\Windows\SysWOW64\azroles.dll
2011-05-21 01:00:14 ----A---- C:\Windows\SysWOW64\themeui.dll
2011-05-21 01:00:14 ----A---- C:\Windows\SysWOW64\taskeng.exe
2011-05-21 01:00:14 ----A---- C:\Windows\SysWOW64\spp.dll
2011-05-21 01:00:14 ----A---- C:\Windows\SysWOW64\dhcpcore.dll
2011-05-21 01:00:14 ----A---- C:\Windows\SysWOW64\credui.dll
2011-05-21 01:00:14 ----A---- C:\Windows\splwow64.exe
2011-05-21 01:00:13 ----A---- C:\Windows\SysWOW64\wintrust.dll
2011-05-21 01:00:13 ----A---- C:\Windows\SysWOW64\mswsock.dll
2011-05-21 01:00:13 ----A---- C:\Windows\SysWOW64\mfreadwrite.dll
2011-05-21 01:00:13 ----A---- C:\Windows\SysWOW64\basecsp.dll
2011-05-21 01:00:12 ----A---- C:\Windows\SysWOW64\NaturalLanguage6.dll
2011-05-21 01:00:12 ----A---- C:\Windows\SysWOW64\msxml3.dll
2011-05-21 01:00:12 ----A---- C:\Windows\SysWOW64\dxgi.dll
2011-05-21 01:00:12 ----A---- C:\Windows\SysWOW64\dbghelp.dll
2011-05-21 01:00:11 ----A---- C:\Windows\SysWOW64\WinSATAPI.dll
2011-05-21 01:00:11 ----A---- C:\Windows\SysWOW64\taskcomp.dll
2011-05-21 01:00:11 ----A---- C:\Windows\SysWOW64\evr.dll
2011-05-21 01:00:11 ----A---- C:\Windows\SysWOW64\calc.exe
2011-05-21 01:00:09 ----A---- C:\Windows\SysWOW64\UIRibbon.dll
2011-05-21 01:00:09 ----A---- C:\Windows\SysWOW64\sqlsrv32.dll
2011-05-21 01:00:09 ----A---- C:\Windows\SysWOW64\cryptsvc.dll
2011-05-21 01:00:08 ----A---- C:\Windows\SysWOW64\ws2_32.dll
2011-05-21 01:00:08 ----A---- C:\Windows\SysWOW64\sxs.dll
2011-05-21 01:00:08 ----A---- C:\Windows\SysWOW64\stobject.dll
2011-05-21 01:00:08 ----A---- C:\Windows\SysWOW64\netshell.dll
2011-05-21 01:00:07 ----A---- C:\Windows\SysWOW64\prncache.dll
2011-05-21 01:00:07 ----A---- C:\Windows\SysWOW64\gdi32.dll
2011-05-21 01:00:07 ----A---- C:\Windows\SysWOW64\comctl32.dll
2011-05-21 01:00:06 ----A---- C:\Windows\SysWOW64\wmpeffects.dll
2011-05-21 01:00:06 ----A---- C:\Windows\SysWOW64\printui.dll
2011-05-21 01:00:06 ----A---- C:\Windows\SysWOW64\msi.dll
2011-05-21 01:00:05 ----A---- C:\Windows\SysWOW64\WSDApi.dll
2011-05-21 01:00:05 ----A---- C:\Windows\SysWOW64\scansetting.dll
2011-05-21 01:00:05 ----A---- C:\Windows\SysWOW64\rpchttp.dll
2011-05-21 01:00:05 ----A---- C:\Windows\SysWOW64\net1.exe
2011-05-21 01:00:03 ----A---- C:\Windows\SysWOW64\WMVCORE.DLL
2011-05-21 01:00:03 ----A---- C:\Windows\SysWOW64\wlangpui.dll
2011-05-21 01:00:03 ----A---- C:\Windows\SysWOW64\MMDevAPI.dll
2011-05-21 01:00:03 ----A---- C:\Windows\SysWOW64\davclnt.dll
2011-05-21 01:00:02 ----A---- C:\Windows\SysWOW64\t2embed.dll
2011-05-21 01:00:02 ----A---- C:\Windows\SysWOW64\QSHVHOST.DLL
2011-05-21 01:00:02 ----A---- C:\Windows\SysWOW64\pnidui.dll
2011-05-21 01:00:02 ----A---- C:\Windows\SysWOW64\aaclient.dll
2011-05-21 01:00:01 ----A---- C:\Windows\SysWOW64\wpdshext.dll
2011-05-21 01:00:01 ----A---- C:\Windows\SysWOW64\webservices.dll
2011-05-21 01:00:01 ----A---- C:\Windows\SysWOW64\SyncCenter.dll
2011-05-21 01:00:01 ----A---- C:\Windows\SysWOW64\netdiagfx.dll
2011-05-21 01:00:01 ----A---- C:\Windows\SysWOW64\fde.dll
2011-05-21 01:00:00 ----A---- C:\Windows\SysWOW64\wuapi.dll
2011-05-21 01:00:00 ----A---- C:\Windows\SysWOW64\wscapi.dll
2011-05-21 00:59:59 ----A---- C:\Windows\SysWOW64\WinSCard.dll
2011-05-21 00:59:59 ----A---- C:\Windows\SysWOW64\pla.dll
2011-05-21 00:59:59 ----A---- C:\Windows\SysWOW64\msasn1.dll
2011-05-21 00:59:58 ----A---- C:\Windows\SysWOW64\winsta.dll
2011-05-21 00:59:58 ----A---- C:\Windows\SysWOW64\rdpcore.dll
2011-05-21 00:59:58 ----A---- C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2011-05-21 00:59:57 ----A---- C:\Windows\SysWOW64\ntshrui.dll
2011-05-21 00:59:57 ----A---- C:\Windows\SysWOW64\imapi2.dll
2011-05-21 00:59:57 ----A---- C:\Windows\SysWOW64\gameux.dll
2011-05-21 00:59:57 ----A---- C:\Windows\SysWOW64\DXPTaskRingtone.dll
2011-05-21 00:59:56 ----A---- C:\Windows\SysWOW64\WMPEncEn.dll
2011-05-21 00:59:56 ----A---- C:\Windows\SysWOW64\onex.dll
2011-05-21 00:59:55 ----A---- C:\Windows\SysWOW64\winmm.dll
2011-05-21 00:59:55 ----A---- C:\Windows\SysWOW64\shsvcs.dll
2011-05-21 00:59:55 ----A---- C:\Windows\SysWOW64\netiohlp.dll
2011-05-21 00:59:55 ----A---- C:\Windows\SysWOW64\mssvp.dll
2011-05-21 00:59:55 ----A---- C:\Windows\SysWOW64\hbaapi.dll
2011-05-21 00:59:55 ----A---- C:\Windows\SysWOW64\autofmt.exe
2011-05-21 00:59:55 ----A---- C:\Windows\SysWOW64\autochk.exe
2011-05-21 00:59:54 ----A---- C:\Windows\SysWOW64\samcli.dll
2011-05-21 00:59:54 ----A---- C:\Windows\SysWOW64\proquota.exe
2011-05-21 00:59:54 ----A---- C:\Windows\SysWOW64\msutb.dll
2011-05-21 00:59:54 ----A---- C:\Windows\SysWOW64\IPHLPAPI.DLL
2011-05-21 00:59:54 ----A---- C:\Windows\SysWOW64\AudioSes.dll
2011-05-21 00:59:53 ----A---- C:\Windows\SysWOW64\thumbcache.dll
2011-05-21 00:59:53 ----A---- C:\Windows\SysWOW64\regapi.dll
2011-05-21 00:59:53 ----A---- C:\Windows\SysWOW64\msinfo32.exe
2011-05-21 00:59:53 ----A---- C:\Windows\SysWOW64\mimefilt.dll
2011-05-21 00:59:53 ----A---- C:\Windows\SysWOW64\ipsmsnap.dll
2011-05-21 00:59:53 ----A---- C:\Windows\SysWOW64\autoconv.exe
2011-05-21 00:59:52 ----A---- C:\Windows\SysWOW64\wcncsvc.dll
2011-05-21 00:59:52 ----A---- C:\Windows\SysWOW64\tcpipcfg.dll
2011-05-21 00:59:52 ----A---- C:\Windows\SysWOW64\srchadmin.dll
2011-05-21 00:59:52 ----A---- C:\Windows\SysWOW64\schtasks.exe
2011-05-21 00:59:52 ----A---- C:\Windows\SysWOW64\powercpl.dll
2011-05-21 00:59:52 ----A---- C:\Windows\SysWOW64\msihnd.dll
2011-05-21 00:59:52 ----A---- C:\Windows\SysWOW64\framedyn.dll
2011-05-21 00:59:52 ----A---- C:\Windows\SysWOW64\eapphost.dll
2011-05-21 00:59:51 ----A---- C:\Windows\SysWOW64\mscorier.dll
2011-05-21 00:59:50 ----A---- C:\Windows\SysWOW64\QAGENT.DLL
2011-05-21 00:59:50 ----A---- C:\Windows\SysWOW64\AuxiliaryDisplayCpl.dll
2011-05-21 00:59:49 ----A---- C:\Windows\SysWOW64\wdc.dll
2011-05-21 00:59:49 ----A---- C:\Windows\SysWOW64\netid.dll
2011-05-21 00:59:49 ----A---- C:\Windows\SysWOW64\actxprxy.dll
2011-05-21 00:59:48 ----A---- C:\Windows\SysWOW64\StructuredQuery.dll
2011-05-21 00:59:48 ----A---- C:\Windows\SysWOW64\scesrv.dll
2011-05-21 00:59:47 ----A---- C:\Windows\SysWOW64\WMNetMgr.dll
2011-05-21 00:59:47 ----A---- C:\Windows\SysWOW64\wlanpref.dll
2011-05-21 00:59:47 ----A---- C:\Windows\SysWOW64\Vault.dll
2011-05-21 00:59:47 ----A---- C:\Windows\SysWOW64\untfs.dll
2011-05-21 00:59:47 ----A---- C:\Windows\SysWOW64\RpcRtRemote.dll
2011-05-21 00:59:47 ----A---- C:\Windows\SysWOW64\rastls.dll
2011-05-21 00:59:47 ----A---- C:\Windows\SysWOW64\oleaut32.dll
2011-05-21 00:59:47 ----A---- C:\Windows\SysWOW64\nci.dll
2011-05-21 00:59:46 ----A---- C:\Windows\SysWOW64\Robocopy.exe
2011-05-21 00:59:45 ----A---- C:\Windows\SysWOW64\DxpTaskSync.dll
2011-05-21 00:59:44 ----A---- C:\Windows\SysWOW64\taskmgr.exe
2011-05-21 00:59:44 ----A---- C:\Windows\SysWOW64\mtxclu.dll
2011-05-21 00:59:44 ----A---- C:\Windows\SysWOW64\Display.dll
2011-05-21 00:59:43 ----A---- C:\Windows\SysWOW64\XpsRasterService.dll
2011-05-21 00:59:43 ----A---- C:\Windows\SysWOW64\userinit.exe
2011-05-21 00:59:43 ----A---- C:\Windows\SysWOW64\puiobj.dll
2011-05-21 00:59:43 ----A---- C:\Windows\SysWOW64\mssphtb.dll
2011-05-21 00:59:42 ----A---- C:\Windows\SysWOW64\termmgr.dll
2011-05-21 00:59:42 ----A---- C:\Windows\SysWOW64\eudcedit.exe
2011-05-21 00:59:41 ----A---- C:\Windows\SysWOW64\wiadefui.dll
2011-05-21 00:59:41 ----A---- C:\Windows\SysWOW64\sppcomapi.dll
2011-05-21 00:59:41 ----A---- C:\Windows\SysWOW64\shsetup.dll
2011-05-21 00:59:41 ----A---- C:\Windows\SysWOW64\rasppp.dll
2011-05-21 00:59:41 ----A---- C:\Windows\SysWOW64\logoncli.dll
2011-05-21 00:59:41 ----A---- C:\Windows\SysWOW64\cabview.dll
2011-05-21 00:59:40 ----A---- C:\Windows\SysWOW64\themecpl.dll
2011-05-21 00:59:40 ----A---- C:\Windows\SysWOW64\SensorsCpl.dll
2011-05-21 00:59:40 ----A---- C:\Windows\SysWOW64\FirewallControlPanel.dll
2011-05-21 00:59:39 ----A---- C:\Windows\SysWOW64\FWPUCLNT.DLL
2011-05-21 00:59:39 ----A---- C:\Windows\SysWOW64\dnscmmc.dll
2011-05-21 00:59:38 ----A---- C:\Windows\SysWOW64\hgcpl.dll
2011-05-21 00:59:37 ----A---- C:\Windows\SysWOW64\tapisrv.dll
2011-05-21 00:59:37 ----A---- C:\Windows\SysWOW64\scecli.dll
2011-05-21 00:59:37 ----A---- C:\Windows\SysWOW64\mscories.dll
2011-05-21 00:59:37 ----A---- C:\Windows\SysWOW64\mscms.dll
2011-05-21 00:59:37 ----A---- C:\Windows\SysWOW64\mprddm.dll
2011-05-21 00:59:37 ----A---- C:\Windows\SysWOW64\localsec.dll
2011-05-21 00:59:37 ----A---- C:\Windows\SysWOW64\iasacct.dll
2011-05-21 00:59:37 ----A---- C:\Windows\SysWOW64\fontext.dll
2011-05-21 00:59:36 ----A---- C:\Windows\SysWOW64\wlanui.dll
2011-05-21 00:59:36 ----A---- C:\Windows\SysWOW64\VAN.dll
2011-05-21 00:59:36 ----A---- C:\Windows\SysWOW64\usercpl.dll
2011-05-21 00:59:36 ----A---- C:\Windows\SysWOW64\SndVolSSO.dll
2011-05-21 00:59:36 ----A---- C:\Windows\SysWOW64\qedit.dll
2011-05-21 00:59:36 ----A---- C:\Windows\SysWOW64\PerfCenterCPL.dll
2011-05-21 00:59:36 ----A---- C:\Windows\SysWOW64\batmeter.dll
2011-05-21 00:59:35 ----A---- C:\Windows\SysWOW64\w32tm.exe
2011-05-21 00:59:35 ----A---- C:\Windows\SysWOW64\SndVol.exe
2011-05-21 00:59:35 ----A---- C:\Windows\SysWOW64\qdvd.dll
2011-05-21 00:59:35 ----A---- C:\Windows\SysWOW64\prntvpt.dll
2011-05-21 00:59:35 ----A---- C:\Windows\SysWOW64\netcenter.dll
2011-05-21 00:59:34 ----A---- C:\Windows\SysWOW64\spwizeng.dll
2011-05-21 00:59:33 ----A---- C:\Windows\SysWOW64\zipfldr.dll
2011-05-21 00:59:33 ----A---- C:\Windows\SysWOW64\fdeploy.dll
2011-05-21 00:59:33 ----A---- C:\Windows\SysWOW64\azroleui.dll
2011-05-21 00:59:33 ----A---- C:\Windows\SysWOW64\accessibilitycpl.dll
2011-05-21 00:59:31 ----A---- C:\Windows\SysWOW64\netjoin.dll
2011-05-21 00:59:31 ----A---- C:\Windows\SysWOW64\MSAC3ENC.DLL
2011-05-21 00:59:31 ----A---- C:\Windows\SysWOW64\cryptui.dll
2011-05-21 00:59:31 ----A---- C:\Windows\SysWOW64\adsldp.dll
2011-05-21 00:59:30 ----A---- C:\Windows\SysWOW64\wusa.exe
2011-05-21 00:59:30 ----A---- C:\Windows\SysWOW64\networkmap.dll
2011-05-21 00:59:30 ----A---- C:\Windows\SysWOW64\MCEWMDRMNDBootstrap.dll
2011-05-21 00:59:30 ----A---- C:\Windows\SysWOW64\Faultrep.dll
2011-05-21 00:59:30 ----A---- C:\Windows\SysWOW64\cfgmgr32.dll
2011-05-21 00:59:29 ----A---- C:\Windows\SysWOW64\sud.dll
2011-05-21 00:59:29 ----A---- C:\Windows\SysWOW64\prnfldr.dll
2011-05-21 00:59:29 ----A---- C:\Windows\SysWOW64\photowiz.dll
2011-05-21 00:59:29 ----A---- C:\Windows\SysWOW64\OnLineIDCpl.dll
2011-05-21 00:59:29 ----A---- C:\Windows\SysWOW64\msieftp.dll
2011-05-21 00:59:29 ----A---- C:\Windows\SysWOW64\MediaMetadataHandler.dll
2011-05-21 00:59:29 ----A---- C:\Windows\SysWOW64\ActionCenter.dll
2011-05-21 00:59:28 ----A---- C:\Windows\SysWOW64\credssp.dll
2011-05-21 00:59:27 ----A---- C:\Windows\SysWOW64\sisbkup.dll
2011-05-21 00:59:27 ----A---- C:\Windows\SysWOW64\iprtrmgr.dll
2011-05-21 00:59:27 ----A---- C:\Windows\SysWOW64\iasrad.dll
2011-05-21 00:59:27 ----A---- C:\Windows\SysWOW64\ftp.exe
2011-05-21 00:59:27 ----A---- C:\Windows\SysWOW64\dot3cfg.dll
2011-05-21 00:59:27 ----A---- C:\Windows\SysWOW64\defaultlocationcpl.dll
2011-05-21 00:59:26 ----A---- C:\Windows\SysWOW64\shwebsvc.dll
2011-05-21 00:59:26 ----A---- C:\Windows\SysWOW64\ifsutil.dll
2011-05-21 00:59:26 ----A---- C:\Windows\SysWOW64\efscore.dll
2011-05-21 00:59:25 ----A---- C:\Windows\SysWOW64\syncui.dll
2011-05-21 00:59:25 ----A---- C:\Windows\SysWOW64\odbcjt32.dll
2011-05-21 00:59:25 ----A---- C:\Windows\SysWOW64\DeviceCenter.dll
2011-05-21 00:59:25 ----A---- C:\Windows\SysWOW64\autoplay.dll
2011-05-21 00:59:25 ----A---- C:\Windows\SysWOW64\ActionCenterCPL.dll
2011-05-21 00:59:24 ----A---- C:\Windows\SysWOW64\wmpmde.dll
2011-05-21 00:59:24 ----A---- C:\Windows\SysWOW64\rtutils.dll
2011-05-21 00:59:24 ----A---- C:\Windows\SysWOW64\ntlanman.dll
2011-05-21 00:59:24 ----A---- C:\Windows\SysWOW64\dskquoui.dll
2011-05-21 00:59:23 ----A---- C:\Windows\SysWOW64\systemcpl.dll
2011-05-21 00:59:23 ----A---- C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2011-05-21 00:59:23 ----A---- C:\Windows\SysWOW64\sethc.exe
2011-05-21 00:59:23 ----A---- C:\Windows\SysWOW64\riched20.dll
2011-05-21 00:59:23 ----A---- C:\Windows\SysWOW64\OobeFldr.dll
2011-05-21 00:59:23 ----A---- C:\Windows\SysWOW64\ntprint.dll
2011-05-21 00:59:23 ----A---- C:\Windows\SysWOW64\nshwfp.dll
2011-05-21 00:59:22 ----A---- C:\Windows\SysWOW64\netplwiz.dll
2011-05-21 00:59:22 ----A---- C:\Windows\SysWOW64\NAPHLPR.DLL
2011-05-21 00:59:22 ----A---- C:\Windows\SysWOW64\blackbox.dll
2011-05-21 00:59:22 ----A---- C:\Windows\SysWOW64\activeds.dll
2011-05-21 00:59:21 ----A---- C:\Windows\SysWOW64\wmpsrcwp.dll
2011-05-21 00:59:21 ----A---- C:\Windows\SysWOW64\migisol.dll
2011-05-21 00:59:21 ----A---- C:\Windows\SysWOW64\httpapi.dll
2011-05-21 00:59:21 ----A---- C:\Windows\SysWOW64\fms.dll
2011-05-21 00:59:21 ----A---- C:\Windows\SysWOW64\cdosys.dll
2011-05-21 00:59:21 ----A---- C:\Windows\SysWOW64\asycfilt.dll
2011-05-21 00:59:20 ----A---- C:\Windows\SysWOW64\wavemsp.dll
2011-05-21 00:59:20 ----A---- C:\Windows\SysWOW64\nshipsec.dll
2011-05-21 00:59:20 ----A---- C:\Windows\SysWOW64\nlaapi.dll
2011-05-21 00:59:20 ----A---- C:\Windows\SysWOW64\msftedit.dll
2011-05-21 00:59:20 ----A---- C:\Windows\SysWOW64\isoburn.exe
2011-05-21 00:59:19 ----A---- C:\Windows\SysWOW64\wuwebv.dll
2011-05-21 00:59:19 ----A---- C:\Windows\SysWOW64\wlanmsm.dll
2011-05-21 00:59:19 ----A---- C:\Windows\SysWOW64\tzutil.exe
2011-05-21 00:59:19 ----A---- C:\Windows\SysWOW64\ReAgent.dll
2011-05-21 00:59:19 ----A---- C:\Windows\SysWOW64\provsvc.dll
2011-05-21 00:59:19 ----A---- C:\Windows\SysWOW64\ocsetup.exe
2011-05-21 00:59:19 ----A---- C:\Windows\SysWOW64\dsuiext.dll
2011-05-21 00:59:19 ----A---- C:\Windows\SysWOW64\dot3ui.dll
2011-05-21 00:59:19 ----A---- C:\Windows\SysWOW64\dfrgui.exe
2011-05-21 00:59:18 ----A---- C:\Windows\SysWOW64\wvc.dll
2011-05-21 00:59:18 ----A---- C:\Windows\SysWOW64\wtsapi32.dll
2011-05-21 00:59:18 ----A---- C:\Windows\SysWOW64\wimgapi.dll
2011-05-21 00:59:18 ----A---- C:\Windows\SysWOW64\twext.dll
2011-05-21 00:59:18 ----A---- C:\Windows\SysWOW64\mstask.dll
2011-05-21 00:59:18 ----A---- C:\Windows\SysWOW64\KernelBase.dll
2011-05-21 00:59:17 ----A---- C:\Windows\twain_32.dll
2011-05-21 00:59:17 ----A---- C:\Windows\SysWOW64\shdocvw.dll
2011-05-21 00:59:17 ----A---- C:\Windows\SysWOW64\setupugc.exe
2011-05-21 00:59:17 ----A---- C:\Windows\SysWOW64\qcap.dll
2011-05-21 00:59:16 ----A---- C:\Windows\SysWOW64\uxlib.dll
2011-05-21 00:59:16 ----A---- C:\Windows\SysWOW64\qasf.dll
2011-05-21 00:59:15 ----A---- C:\Windows\SysWOW64\slwga.dll
2011-05-21 00:59:15 ----A---- C:\Windows\SysWOW64\nslookup.exe
2011-05-21 00:59:15 ----A---- C:\Windows\SysWOW64\msvfw32.dll
2011-05-21 00:59:15 ----A---- C:\Windows\SysWOW64\mciavi32.dll
2011-05-21 00:59:15 ----A---- C:\Windows\SysWOW64\audiodev.dll
2011-05-21 00:59:14 ----A---- C:\Windows\SysWOW64\wmdrmsdk.dll
2011-05-21 00:59:14 ----A---- C:\Windows\SysWOW64\DevicePairingFolder.dll
2011-05-21 00:59:14 ----A---- C:\Windows\SysWOW64\clusapi.dll
2011-05-21 00:59:13 ----A---- C:\Windows\SysWOW64\WPDShServiceObj.dll
2011-05-21 00:59:13 ----A---- C:\Windows\SysWOW64\wimserv.exe
2011-05-21 00:59:13 ----A---- C:\Windows\SysWOW64\TSpkg.dll
2011-05-21 00:59:13 ----A---- C:\Windows\SysWOW64\rpcrt4.dll
2011-05-21 00:59:13 ----A---- C:\Windows\SysWOW64\rdpencom.dll
2011-05-21 00:59:13 ----A---- C:\Windows\SysWOW64\perfmon.exe
2011-05-21 00:59:13 ----A---- C:\Windows\SysWOW64\msscp.dll
2011-05-21 00:59:13 ----A---- C:\Windows\SysWOW64\diskraid.exe
2011-05-21 00:59:13 ----A---- C:\Windows\SysWOW64\acppage.dll
2011-05-21 00:59:12 ----A---- C:\Windows\SysWOW64\remotepg.dll
2011-05-21 00:59:12 ----A---- C:\Windows\SysWOW64\raschap.dll
2011-05-21 00:59:12 ----A---- C:\Windows\SysWOW64\QUTIL.DLL
2011-05-21 00:59:12 ----A---- C:\Windows\SysWOW64\NAPCRYPT.DLL
2011-05-21 00:59:12 ----A---- C:\Windows\SysWOW64\input.dll
2011-05-21 00:59:12 ----A---- C:\Windows\SysWOW64\drmmgrtn.dll
2011-05-21 00:59:12 ----A---- C:\Windows\bfsvc.exe
2011-05-21 00:59:11 ----A---- C:\Windows\SysWOW64\vpnikeapi.dll
2011-05-21 00:59:11 ----A---- C:\Windows\SysWOW64\UserAccountControlSettings.dll
2011-05-21 00:59:11 ----A---- C:\Windows\SysWOW64\olepro32.dll
2011-05-21 00:59:11 ----A---- C:\Windows\SysWOW64\odbccp32.dll
2011-05-21 00:59:11 ----A---- C:\Windows\SysWOW64\ocsetapi.dll
2011-05-21 00:59:11 ----A---- C:\Windows\SysWOW64\networkexplorer.dll
2011-05-21 00:59:10 ----A---- C:\Windows\SysWOW64\wmpdxm.dll
2011-05-21 00:59:10 ----A---- C:\Windows\SysWOW64\onexui.dll
2011-05-21 00:59:10 ----A---- C:\Windows\SysWOW64\iTVData.dll
2011-05-21 00:59:09 ----A---- C:\Windows\SysWOW64\wpdwcn.dll
2011-05-21 00:59:09 ----A---- C:\Windows\SysWOW64\vdsbas.dll
2011-05-21 00:59:09 ----A---- C:\Windows\SysWOW64\runonce.exe
2011-05-21 00:59:09 ----A---- C:\Windows\SysWOW64\dxdiagn.dll
2011-05-21 00:59:08 ----A---- C:\Windows\SysWOW64\logagent.exe
2011-05-21 00:59:06 ----A---- C:\Windows\SysWOW64\msvidc32.dll
2011-05-21 00:59:06 ----A---- C:\Windows\SysWOW64\msiexec.exe
2011-05-21 00:59:06 ----A---- C:\Windows\SysWOW64\MFPlay.dll
2011-05-21 00:59:06 ----A---- C:\Windows\SysWOW64\eapp3hst.dll
2011-05-21 00:59:05 ----A---- C:\Windows\SysWOW64\wmdrmdev.dll
2011-05-21 00:59:05 ----A---- C:\Windows\SysWOW64\shacct.dll
2011-05-21 00:59:05 ----A---- C:\Windows\SysWOW64\d3d10level9.dll
2011-05-21 00:59:04 ----A---- C:\Windows\SysWOW64\wudriver.dll
2011-05-21 00:59:04 ----A---- C:\Windows\SysWOW64\wmpshell.dll
2011-05-21 00:59:04 ----A---- C:\Windows\SysWOW64\lsmproxy.dll
2011-05-21 00:59:04 ----A---- C:\Windows\SysWOW64\bitsadmin.exe
2011-05-21 00:59:03 ----A---- C:\Windows\SysWOW64\unimdmat.dll
2011-05-21 00:59:03 ----A---- C:\Windows\SysWOW64\sqlcese30.dll
2011-05-21 00:59:03 ----A---- C:\Windows\SysWOW64\rdpd3d.dll
2011-05-21 00:59:03 ----A---- C:\Windows\SysWOW64\iscsium.dll
2011-05-21 00:59:02 ----A---- C:\Windows\SysWOW64\PortableDeviceSyncProvider.dll
2011-05-21 00:59:02 ----A---- C:\Windows\SysWOW64\pdh.dll
2011-05-21 00:59:02 ----A---- C:\Windows\SysWOW64\OpcServices.dll
2011-05-21 00:59:02 ----A---- C:\Windows\SysWOW64\mprapi.dll
2011-05-21 00:59:02 ----A---- C:\Windows\SysWOW64\logman.exe
2011-05-21 00:59:02 ----A---- C:\Windows\SysWOW64\cscapi.dll
2011-05-21 00:59:01 ----A---- C:\Windows\SysWOW64\WPDSp.dll
2011-05-21 00:59:01 ----A---- C:\Windows\SysWOW64\tsgqec.dll
2011-05-21 00:59:01 ----A---- C:\Windows\SysWOW64\srvcli.dll
2011-05-21 00:59:01 ----A---- C:\Windows\SysWOW64\QSVRMGMT.DLL
2011-05-21 00:59:01 ----A---- C:\Windows\SysWOW64\PortableDeviceStatus.dll
2011-05-21 00:59:01 ----A---- C:\Windows\SysWOW64\olethk32.dll
2011-05-21 00:59:01 ----A---- C:\Windows\SysWOW64\odbctrac.dll
2011-05-21 00:59:01 ----A---- C:\Windows\SysWOW64\ncryptui.dll
2011-05-21 00:59:00 ----A---- C:\Windows\SysWOW64\WMPhoto.dll
2011-05-21 00:59:00 ----A---- C:\Windows\SysWOW64\WMADMOD.DLL
2011-05-21 00:59:00 ----A---- C:\Windows\SysWOW64\utildll.dll
2011-05-21 00:59:00 ----A---- C:\Windows\SysWOW64\mapistub.dll
2011-05-21 00:59:00 ----A---- C:\Windows\SysWOW64\mapi32.dll
2011-05-21 00:58:59 ----A---- C:\Windows\SysWOW64\wiavideo.dll
2011-05-21 00:58:59 ----A---- C:\Windows\SysWOW64\takeown.exe
2011-05-21 00:58:59 ----A---- C:\Windows\SysWOW64\iyuv_32.dll
2011-05-21 00:58:59 ----A---- C:\Windows\SysWOW64\fphc.dll
2011-05-21 00:58:59 ----A---- C:\Windows\SysWOW64\dot3msm.dll
2011-05-21 00:58:59 ----A---- C:\Windows\SysWOW64\avifil32.dll
2011-05-21 00:58:58 ----A---- C:\Windows\SysWOW64\WMVSDECD.DLL
2011-05-21 00:58:58 ----A---- C:\Windows\SysWOW64\wmdrmnet.dll
2011-05-21 00:58:58 ----A---- C:\Windows\SysWOW64\sqmapi.dll
2011-05-21 00:58:58 ----A---- C:\Windows\SysWOW64\imagehlp.dll
2011-05-21 00:58:57 ----A---- C:\Windows\SysWOW64\sppinst.dll
2011-05-21 00:58:57 ----A---- C:\Windows\SysWOW64\qdv.dll
2011-05-21 00:58:57 ----A---- C:\Windows\SysWOW64\msyuv.dll
2011-05-21 00:58:57 ----A---- C:\Windows\SysWOW64\msnetobj.dll
2011-05-21 00:58:57 ----A---- C:\Windows\SysWOW64\EhStorAPI.dll
2011-05-21 00:58:56 ----A---- C:\Windows\SysWOW64\sspicli.dll
2011-05-21 00:58:56 ----A---- C:\Windows\SysWOW64\QCLIPROV.DLL
2011-05-21 00:58:56 ----A---- C:\Windows\SysWOW64\msrle32.dll
2011-05-21 00:58:56 ----A---- C:\Windows\SysWOW64\cmstp.exe
2011-05-21 00:58:56 ----A---- C:\Windows\SysWOW64\cca.dll
2011-05-21 00:58:55 ----A---- C:\Windows\SysWOW64\wsnmp32.dll
2011-05-21 00:58:55 ----A---- C:\Windows\SysWOW64\WMSPDMOD.DLL
2011-05-21 00:58:55 ----A---- C:\Windows\SysWOW64\vfwwdm32.dll
2011-05-21 00:58:55 ----A---- C:\Windows\SysWOW64\setupcln.dll
2011-05-21 00:58:55 ----A---- C:\Windows\SysWOW64\pdhui.dll
2011-05-21 00:58:55 ----A---- C:\Windows\SysWOW64\MuiUnattend.exe
2011-05-21 00:58:54 ----A---- C:\Windows\SysWOW64\tsbyuv.dll
2011-05-21 00:58:54 ----A---- C:\Windows\SysWOW64\msorcl32.dll
2011-05-21 00:58:54 ----A---- C:\Windows\SysWOW64\iasrecst.dll
2011-05-21 00:58:54 ----A---- C:\Windows\SysWOW64\AzSqlExt.dll
2011-05-21 00:58:53 ----A---- C:\Windows\SysWOW64\relog.exe
2011-05-21 00:58:53 ----A---- C:\Windows\SysWOW64\netiougc.exe
2011-05-21 00:58:52 ----A---- C:\Windows\SysWOW64\wkscli.dll
2011-05-21 00:58:52 ----A---- C:\Windows\SysWOW64\spbcd.dll
2011-05-21 00:58:52 ----A---- C:\Windows\SysWOW64\iscsicli.exe
2011-05-21 00:58:51 ----A---- C:\Windows\SysWOW64\mydocs.dll
2011-05-21 00:58:51 ----A---- C:\Windows\SysWOW64\amstream.dll
2011-05-21 00:58:49 ----A---- C:\Windows\SysWOW64\rastapi.dll
2011-05-21 00:58:49 ----A---- C:\Windows\SysWOW64\netbtugc.exe
2011-05-21 00:58:49 ----A---- C:\Windows\SysWOW64\diskpart.exe
2011-05-21 00:58:48 ----A---- C:\Windows\SysWOW64\secproc_ssp_isv.dll
2011-05-21 00:58:48 ----A---- C:\Windows\SysWOW64\resutils.dll
2011-05-21 00:58:48 ----A---- C:\Windows\SysWOW64\itircl.dll
2011-05-21 00:58:47 ----A---- C:\Windows\SysWOW64\syssetup.dll
2011-05-21 00:58:47 ----A---- C:\Windows\SysWOW64\secproc_ssp.dll
2011-05-21 00:58:47 ----A---- C:\Windows\SysWOW64\CertPolEng.dll
2011-05-21 00:58:46 ----A---- C:\Windows\SysWOW64\wmpps.dll
2011-05-21 00:58:45 ----A---- C:\Windows\SysWOW64\wuapp.exe
2011-05-21 00:58:45 ----A---- C:\Windows\SysWOW64\WerFaultSecure.exe
2011-05-21 00:58:45 ----A---- C:\Windows\SysWOW64\tlscsp.dll
2011-05-21 00:58:45 ----A---- C:\Windows\SysWOW64\secur32.dll
2011-05-21 00:58:45 ----A---- C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2011-05-21 00:58:45 ----A---- C:\Windows\SysWOW64\RMActivate_ssp.exe
2011-05-21 00:58:45 ----A---- C:\Windows\SysWOW64\ReAgentc.exe
2011-05-21 00:58:45 ----A---- C:\Windows\SysWOW64\netutils.dll
2011-05-21 00:58:45 ----A---- C:\Windows\SysWOW64\mobsync.exe
2011-05-21 00:58:45 ----A---- C:\Windows\SysWOW64\mciqtz32.dll
2011-05-21 00:58:45 ----A---- C:\Windows\SysWOW64\findstr.exe
2011-05-21 00:58:45 ----A---- C:\Windows\SysWOW64\eappgnui.dll
2011-05-21 00:58:44 ----A---- C:\Windows\SysWOW64\sppc.dll
2011-05-21 00:58:44 ----A---- C:\Windows\SysWOW64\netapi32.dll
2011-05-21 00:58:44 ----A---- C:\Windows\SysWOW64\muifontsetup.dll
2011-05-21 00:58:44 ----A---- C:\Windows\SysWOW64\iccvid.dll
2011-05-21 00:58:44 ----A---- C:\Windows\SysWOW64\cabinet.dll
2011-05-21 00:58:43 ----A---- C:\Windows\SysWOW64\unlodctr.exe
2011-05-21 00:58:43 ----A---- C:\Windows\SysWOW64\spopk.dll
2011-05-21 00:58:43 ----A---- C:\Windows\SysWOW64\shimgvw.dll
2011-05-21 00:58:43 ----A---- C:\Windows\SysWOW64\msdmo.dll
2011-05-21 00:58:43 ----A---- C:\Windows\SysWOW64\luainstall.dll
2011-05-21 00:58:42 ----A---- C:\Windows\SysWOW64\rdprefdrvapi.dll
2011-05-21 00:58:42 ----A---- C:\Windows\SysWOW64\inetmib1.dll
2011-05-21 00:58:40 ----A---- C:\Windows\SysWOW64\UIRibbonRes.dll
2011-05-21 00:58:40 ----A---- C:\Windows\SysWOW64\odbcconf.dll
2011-05-21 00:58:40 ----A---- C:\Windows\SysWOW64\browcli.dll
2011-05-21 00:58:39 ----A---- C:\Windows\SysWOW64\wups.dll
2011-05-21 00:58:38 ----A---- C:\Windows\SysWOW64\perfts.dll
2011-05-21 00:58:38 ----A---- C:\Windows\SysWOW64\imm32.dll
2011-05-21 00:58:37 ----A---- C:\Windows\SysWOW64\elsTrans.dll
2011-05-21 00:58:36 ----A---- C:\Windows\SysWOW64\wshbth.dll
2011-05-21 00:58:36 ----A---- C:\Windows\SysWOW64\TRAPI.dll
2011-05-21 00:58:36 ----A---- C:\Windows\SysWOW64\schedcli.dll
2011-05-21 00:58:36 ----A---- C:\Windows\SysWOW64\napdsnap.dll
2011-05-21 00:58:36 ----A---- C:\Windows\SysWOW64\dsauth.dll
2011-05-21 00:58:36 ----A---- C:\Windows\SysWOW64\cscdll.dll
2011-05-21 00:58:36 ----A---- C:\Windows\SysWOW64\bitsperf.dll
2011-05-21 00:58:34 ----A---- C:\Windows\SysWOW64\wsdchngr.dll
2011-05-21 00:58:34 ----A---- C:\Windows\SysWOW64\sscore.dll
2011-05-21 00:58:33 ----A---- C:\Windows\SysWOW64\shgina.dll
2011-05-21 00:58:33 ----A---- C:\Windows\SysWOW64\riched32.dll
2011-05-21 00:58:30 ----A---- C:\Windows\SysWOW64\wshirda.dll
2011-05-21 00:58:28 ----A---- C:\Windows\SysWOW64\spwmp.dll
2011-05-21 00:58:28 ----A---- C:\Windows\SysWOW64\browseui.dll
2011-05-21 00:58:27 ----A---- C:\Windows\SysWOW64\C_ISCII.DLL
2011-05-21 00:58:25 ----A---- C:\Windows\SysWOW64\shunimpl.dll
2011-05-21 00:58:25 ----A---- C:\Windows\SysWOW64\dxmasf.dll
2011-05-21 00:58:24 ----A---- C:\Windows\SysWOW64\KBDTUQ.DLL
2011-05-21 00:58:24 ----A---- C:\Windows\SysWOW64\KBDTUF.DLL
2011-05-21 00:58:24 ----A---- C:\Windows\SysWOW64\KBDSG.DLL
2011-05-21 00:58:24 ----A---- C:\Windows\SysWOW64\kbdlk41a.dll
2011-05-21 00:58:24 ----A---- C:\Windows\SysWOW64\KBDGR1.DLL
2011-05-21 00:58:23 ----A---- C:\Windows\SysWOW64\wmploc.DLL
2011-05-21 00:58:23 ----A---- C:\Windows\SysWOW64\KBDGKL.DLL
2011-05-21 00:58:23 ----A---- C:\Windows\SysWOW64\KBDGEO.DLL
2011-05-21 00:58:23 ----A---- C:\Windows\SysWOW64\KBDBLR.DLL
2011-05-21 00:58:22 ----A---- C:\Windows\SysWOW64\KBDUS.DLL
2011-05-21 00:58:22 ----A---- C:\Windows\SysWOW64\KBDTURME.DLL
2011-05-21 00:58:22 ----A---- C:\Windows\SysWOW64\KBDTAJIK.DLL
2011-05-21 00:58:22 ----A---- C:\Windows\SysWOW64\KBDMON.DLL
2011-05-21 00:58:22 ----A---- C:\Windows\SysWOW64\KBDINTEL.DLL
2011-05-21 00:58:22 ----A---- C:\Windows\SysWOW64\KBDINHIN.DLL
2011-05-21 00:58:22 ----A---- C:\Windows\SysWOW64\KBDCZ1.DLL
2011-05-21 00:58:21 ----A---- C:\Windows\SysWOW64\KBDUGHR1.DLL
2011-05-21 00:58:21 ----A---- C:\Windows\SysWOW64\KBDMAORI.DLL
2011-05-21 00:58:21 ----A---- C:\Windows\SysWOW64\KBDLT1.DLL
2011-05-21 00:58:21 ----A---- C:\Windows\SysWOW64\KBDINTAM.DLL
2011-05-21 00:58:21 ----A---- C:\Windows\SysWOW64\KBDINORI.DLL
2011-05-21 00:58:21 ----A---- C:\Windows\SysWOW64\KBDINMAR.DLL
2011-05-21 00:58:21 ----A---- C:\Windows\SysWOW64\KBDINKAN.DLL
2011-05-21 00:58:21 ----A---- C:\Windows\SysWOW64\KBDINBEN.DLL
2011-05-21 00:58:21 ----A---- C:\Windows\SysWOW64\KBDBULG.DLL
2011-05-21 00:58:20 ----A---- C:\Windows\SysWOW64\tzres.dll
2011-05-21 00:58:20 ----A---- C:\Windows\SysWOW64\KBDSF.DLL
2011-05-21 00:58:20 ----A---- C:\Windows\SysWOW64\KBDPO.DLL
2011-05-21 00:58:20 ----A---- C:\Windows\SysWOW64\KBDNEPR.DLL
2011-05-21 00:58:20 ----A---- C:\Windows\SysWOW64\KBDBASH.DLL
2011-05-21 00:58:20 ----A---- C:\Windows\SysWOW64\dpnaddr.dll
2011-05-21 00:58:19 ----A---- C:\Windows\SysWOW64\spwizres.dll
2011-05-21 00:58:19 ----A---- C:\Windows\SysWOW64\pifmgr.dll
2011-05-21 00:58:19 ----A---- C:\Windows\SysWOW64\nlsbres.dll
2011-05-21 00:57:40 ----A---- C:\Windows\SysWOW64\wdscore.dll
2011-05-21 00:57:39 ----A---- C:\Windows\SysWOW64\PkgMgr.exe
2011-05-21 00:57:22 ----A---- C:\Windows\SysWOW64\drvstore.dll
2011-05-21 00:57:22 ----A---- C:\Windows\SysWOW64\dpx.dll
2011-05-21 00:57:18 ----A---- C:\Windows\SysWOW64\wbemcomn.dll
2011-05-19 09:32:59 ----A---- C:\Windows\SysWOW64\poqexec.exe
2011-05-11 10:23:46 ----A---- C:\Windows\SysWOW64\ntkrnlpa.exe
2011-05-11 10:23:45 ----A---- C:\Windows\SysWOW64\ntoskrnl.exe
2011-05-08 12:31:33 ----D---- C:\Program Files (x86)\Common Files\Java
2011-05-08 12:30:14 ----A---- C:\Windows\SysWOW64\javaws.exe
2011-05-08 12:30:14 ----A---- C:\Windows\SysWOW64\javaw.exe
2011-05-08 12:30:14 ----A---- C:\Windows\SysWOW64\java.exe

======List of files/folders modified in the last 1 months======

2011-06-04 20:10:49 ----D---- C:\Windows\Temp
2011-06-04 20:10:23 ----RD---- C:\Program Files (x86)
2011-06-04 20:10:23 ----D---- C:\Windows\Prefetch
2011-06-04 17:37:30 ----D---- C:\Windows\System32
2011-06-04 00:54:25 ----SHD---- C:\System Volume Information
2011-06-03 23:40:31 ----D---- C:\Windows\inf
2011-06-03 23:37:48 ----A---- C:\Windows\SysWOW64\log.txt
2011-06-03 23:28:28 ----A---- C:\bdlog.txt
2011-06-01 08:53:45 ----SHD---- C:\Windows\Installer
2011-06-01 08:53:45 ----SHD---- C:\Config.Msi
2011-06-01 08:53:25 ----D---- C:\Program Files (x86)\Google
2011-05-29 00:59:06 ----RSD---- C:\Windows\Fonts
2011-05-28 06:46:58 ----D---- C:\Program Files (x86)\CesarFTP
2011-05-27 21:52:06 ----HD---- C:\ProgramData
2011-05-27 21:51:30 ----D---- C:\Windows\winsxs
2011-05-26 22:39:14 ----D---- C:\Windows
2011-05-24 18:43:24 ----RSD---- C:\Windows\assembly
2011-05-24 18:43:24 ----D---- C:\Windows\Microsoft.NET
2011-05-24 18:42:34 ----D---- C:\ProgramData\UAB
2011-05-23 18:59:23 ----D---- C:\Users\Fred\AppData\Roaming\vlc
2011-05-21 06:39:54 ----D---- C:\Windows\rescache
2011-05-21 03:15:07 ----A---- C:\Windows\win.ini
2011-05-21 03:14:28 ----D---- C:\Windows\twain_32
2011-05-21 03:11:50 ----D---- C:\ProgramData\HP
2011-05-21 03:11:25 ----D---- C:\Program Files (x86)\Hp
2011-05-21 03:10:24 ----D---- C:\Windows\SysWOW64
2011-05-21 03:10:08 ----D---- C:\Program Files (x86)\Common Files
2011-05-21 02:00:11 ----D---- C:\Program Files (x86)\Windows Sidebar
2011-05-21 02:00:11 ----D---- C:\Program Files (x86)\Windows Portable Devices
2011-05-21 02:00:11 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2011-05-21 02:00:11 ----D---- C:\Program Files (x86)\Windows Media Player
2011-05-21 02:00:11 ----D---- C:\Program Files (x86)\Windows Mail
2011-05-21 02:00:08 ----D---- C:\Windows\servicing
2011-05-21 02:00:08 ----D---- C:\Windows\ehome
2011-05-21 02:00:05 ----D---- C:\Windows\SysWOW64\oobe
2011-05-21 02:00:05 ----D---- C:\Windows\SysWOW64\migration
2011-05-21 02:00:05 ----D---- C:\Windows\SysWOW64\fr-FR
2011-05-21 02:00:05 ----D---- C:\Windows\SysWOW64\da-DK
2011-05-21 02:00:05 ----D---- C:\Windows\SysWOW64\AdvancedInstallers
2011-05-21 02:00:04 ----D---- C:\Windows\SysWOW64\sppui
2011-05-21 02:00:04 ----D---- C:\Windows\SysWOW64\Setup
2011-05-21 02:00:04 ----D---- C:\Windows\SysWOW64\manifeststore
2011-05-21 02:00:04 ----D---- C:\Windows\SysWOW64\es-ES
2011-05-21 02:00:04 ----D---- C:\Windows\SysWOW64\cs-CZ
2011-05-21 01:59:59 ----D---- C:\Windows\SysWOW64\wbem
2011-05-21 01:59:59 ----D---- C:\Windows\SysWOW64\migwiz
2011-05-21 01:59:59 ----D---- C:\Windows\SysWOW64\Dism
2011-05-21 01:59:30 ----D---- C:\Windows\AppPatch
2011-05-21 01:17:46 ----A---- C:\Windows\SysWOW64\msclmd.dll
2011-05-20 18:47:37 ----SD---- C:\ProgramData\Microsoft
2011-05-20 18:20:26 ----D---- C:\ProgramData\Spybot - Search & Destroy
2011-05-13 00:51:47 ----D---- C:\SwSetup
2011-05-12 11:08:52 ----D---- C:\Users\Fred\AppData\Roaming\Hewlett-Packard
2011-05-12 11:08:50 ----D---- C:\Windows\Hewlett-Packard
2011-05-12 03:01:13 ----D---- C:\Windows\debug
2011-05-11 03:12:46 ----D---- C:\Users\Fred\AppData\Roaming\Media Player Classic
2011-05-11 03:10:35 ----D---- C:\Windows\Minidump
2011-05-08 12:30:07 ----D---- C:\Program Files (x86)\Java
2011-05-07 10:40:11 ----D---- C:\Windows\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 bdfsfltr;bdfsfltr; C:\Windows\system32\DRIVERS\bdfsfltr.sys []
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys []
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys []
R0 Lbd;Lbd; C:\Windows\system32\DRIVERS\Lbd.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R1 Bdfndisf;BitDefender Firewall NDIS 6 Filter Driver; \??\c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2010-10-29 88144]
R1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys [2010-10-29 99408]
R1 Bdvedisk;BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys []
R1 DVMIO;DeviceVM IO Service; C:\Windows\system32\DRIVERS\dvmio.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R3 Accelerometer;HP Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys []
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys []
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys []
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys []
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys []
R3 BDFM;BDFM; C:\Windows\system32\DRIVERS\bdfm.sys []
R3 BthEnum;Service d'énumérateur Bluetooth; C:\Windows\system32\DRIVERS\BthEnum.sys []
R3 BthPan;Périphérique Bluetooth (réseau personnel); C:\Windows\system32\DRIVERS\bthpan.sys []
R3 BTHUSB;Pilote USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys []
R3 btwaudio;Périphérique audio Bluetooth; C:\Windows\system32\drivers\btwaudio.sys []
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys []
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys []
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys []
R3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys []
R3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys []
R3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys []
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys []
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys []
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys []
R3 Lavasoft Kernexplorer;Lavasoft helper driver; \??\C:\Program Files (x86)\Lavasoft\Ad-Aware\KernExplorer64.sys [2010-12-03 17440]
R3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\Windows\system32\DRIVERS\rfcomm.sys []
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys []
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys []
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys []
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys []
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys []
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys []
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys []
R3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys []
R3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys []
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys []
S3 BTHPORT;Pilote de port Bluetooth; C:\Windows\System32\Drivers\BTHport.sys []
S3 cpuz132;cpuz132; \??\C:\Users\Fred\AppData\Local\Temp\cpuz132\cpuz132_x64.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys []
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys []
S3 ivusb;Initio Driver for USB Default Controller; C:\Windows\system32\DRIVERS\ivusb.sys []
S3 MotDev;Motorola Inc. USB Device; C:\Windows\system32\DRIVERS\motodrv.sys []
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys []
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys []
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys []
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS []
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS []
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys []
S4 avc3;avc3; C:\Windows\system32\DRIVERS\avc3.sys []
S4 avckf;avckf; C:\Windows\system32\DRIVERS\avckf.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [2009-03-03 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe []
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-02-18 37664]
R2 Bonjour Service;Service Bonjour; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2010-10-07 345376]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 873248]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2010-02-28 821664]
R2 DpHost;@C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128; C:\Program Files\DigitalPersona\Bin\DpHostW.exe [2009-12-30 444680]
R2 DvmMDES;DeviceVM Meta Data Export Service; C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe [2010-02-08 338168]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\System32\ezSharedSvcHost.exe [2010-01-25 514232]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-11-15 126520]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-02-04 92216]
R2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe []
R2 HPWMISVC;HPWMISVC; C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-01-18 20480]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2010-12-03 1389400]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-01-22 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-05-01 325656]
R2 MotoHelper;MotoHelper Service; C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe [2010-12-03 218432]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2010-03-10 189728]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2010-04-24 483688]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe [2010-01-14 244736]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-05-01 2533400]
R2 Updatesrv;BitDefender Desktop Update Service; C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe [2011-03-08 53224]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2010-01-06 1791280]
R2 VSSERV;BitDefender Virus Shield; C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe [2011-03-08 2613744]
R2 WebSynchroWindowsService;WebSynchroWindowsService; C:\Program Files (x86)\Oodrive\WebSynchro\WS.WindowsService.exe [2010-08-23 8192]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2011-02-04 797240]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2011-03-07 934176]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2010-04-24 209768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Service Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-24 136176]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-01-05 238328]
S3 hpdoccardsvc;HP Documention Flash Card Detection Service; C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe [2010-03-24 83240]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 Update Server;BitDefender Update Server v2; C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2011-03-08 467248]

-----------------EOF-----------------

Et voici info.txt :

info.txt logfile of random's system information tool 1.08 2011-06-04 20:11:13

======Uninstall list======

-->"C:\Program Files (x86)\HP Games\Game Explorer Categories - genres\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Game Explorer Categories - main\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - Club Penguin\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - Dark Orbit\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - RuneScape HD\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - Seafight\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - World of Warcraft\Uninstall.exe"
-->"C:\Program Files (x86)\InstallShield Installation Information\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}\setup.exe" /z-uninstall
Acrobat.com-->MsiExec.exe /X{287ECFA4-719A-2143-A09B-D6A12DE54E40}
ActiveCheck component for HP Active Support Library-->MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}
Ad-Aware-->"C:\ProgramData\{2162CCC0-3A5F-4887-B51F-CE5F195B3620}\Ad-Aware90Install.exe" REMOVE=TRUE MODIFY=FALSE
Ad-Aware-->C:\ProgramData\{2162CCC0-3A5F-4887-B51F-CE5F195B3620}\Ad-Aware90Install.exe
Adobe AIR-->c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Flash Player 10 ActiveX-->C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.exe -maintain activex
Adobe Reader 9.4.4 MUI-->MsiExec.exe /I{AC76BA86-7AD7-FFFF-7B44-A91000000001}
Adobe Shockwave Player-->MsiExec.exe /X{D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}
Agatha Christie - Death on the Nile-->"C:\Program Files (x86)\HP Games\Agatha Christie - Death on the Nile\Uninstall.exe"
AIDA32 v3.93-->"C:\Program Files (x86)\AIDA32 - Personal System Information\unins000.exe"
Apple Application Support-->MsiExec.exe /I{2DC94AFD-A6E2-4AB4-9132-4A3F8E07B386}
Apple Software Update-->MsiExec.exe /I{C41300B9-185D-475E-BFEC-39EF732F19B1}
Atheros Driver Installation Program-->C:\Program Files (x86)\InstallShield Installation Information\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}\setup.exe -runfromtemp -l0x040c
Audacity 1.3.12 (Unicode)-->"C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\unins000.exe"
Bejeweled 2 Deluxe-->"C:\Program Files (x86)\HP Games\Bejeweled 2 Deluxe\Uninstall.exe"
Bing Bar-->MsiExec.exe /X{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}
Blasterball 3-->"C:\Program Files (x86)\HP Games\Blasterball 3\Uninstall.exe"
BS.Player FREE-->"C:\Program Files (x86)\Webteh\BSplayer\uninstall.exe"
BS_Player Toolbar-->C:\PROGRA~2\BS_PLA~1\UNWISE.EXE /U C:\PROGRA~2\BS_PLA~1\INSTALL.LOG
Bus Driver-->"C:\Program Files (x86)\HP Games\Bus Driver\Uninstall.exe"
Catalyst Control Center - Branding-->MsiExec.exe /I{C1A0D5F7-02F3-4D95-872A-0E56CF968DC6}
CCleaner-->"C:\Program Files (x86)\CCleaner\uninst.exe"
CesarFTP 0.99g-->"C:\Program Files (x86)\CesarFTP\unins000.exe"
Chuzzle Deluxe-->"C:\Program Files (x86)\HP Games\Chuzzle Deluxe\Uninstall.exe"
Complément Messenger-->MsiExec.exe /I{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
Contrôle ActiveX Windows Live Mesh pour connexions à distance-->MsiExec.exe /I{55D003F4-9599-44BF-BA9E-95D060730DD3}
Corel DESIGNER Technical Suite X5 - IPM-->MsiExec.exe /I{481A6B64-9B0C-418F-B7A1-C8D92A3CE138}
Corel DESIGNER Technical Suite X5 - WT-->MsiExec.exe /I{9244E956-5939-4B88-930C-0699D4AB2B95}
Corel DESIGNER Technical Suite X5-->c:\Program Files (x86)\Corel\Corel DESIGNER Technical Suite X5\Setup\SetupARP.exe /arp
Corel Graphics - Windows Shell Extension-->c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellUninst.exe -ProductCode {B922902F-E9E9-4AD9-B87D-7F62FA9EA1AD} -arp
Corel Graphics - Windows Shell Extension-->MsiExec.exe /X{B922902F-E9E9-4AD9-B87D-7F62FA9EA1AD}
Correctif pour Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789)-->c:\Windows\SysWOW64\msiexec.exe /package {3514CD14-6F9C-39C9-94F5-6644CAD122CF} /uninstall /qb+ REBOOTPROMPT=""
CyberLink DVD Suite-->"C:\Program Files (x86)\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\Setup.exe" /z-uninstall
CyberLink DVD Suite-->"C:\Program Files (x86)\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\Setup.exe" /z-uninstall
D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
Deep Exploration 6 CE-->MsiExec.exe /I{AC8B571C-9C6E-47C1-A508-3BF1BCBED443}
Definition update for Microsoft Office 2010 (KB982726)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-003D-0000-0000-0000000FF1CE}" "{2FD3FD50-4D6B-433B-9AB8-83F04675DA44}" "1036" "0"
Diner Dash 2 Restaurant Rescue-->"C:\Program Files (x86)\HP Games\Diner Dash 2 Restaurant Rescue\Uninstall.exe"
Dream Chronicles-->"C:\Program Files (x86)\HP Games\Dream Chronicles\Uninstall.exe"
DVD Menu Pack for HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}\setup.exe" /z-uninstall
DVD Menu Pack for HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}\setup.exe" /z-uninstall /zMS
ESU for Microsoft Windows 7-->MsiExec.exe /I{3877C901-7B90-4727-A639-B6ED2DD59D43}
FATE-->"C:\Program Files (x86)\HP Games\FATE\Uninstall.exe"
FnacSynchro-->C:\Program Files (x86)\Oodrive\WebSynchro\uninstall.exe
Galerie de photos Windows Live-->MsiExec.exe /X{488F0347-C4A7-4374-91A7-30818BEDA710}
Gem Shop-->"C:\Program Files (x86)\HP Games\Gem Shop\Uninstall.exe"
GIMP 2.6.11-->"C:\Program Files (x86)\GIMP-2.0\setup\unins000.exe"
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Earth-->MsiExec.exe /X{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}
Grand Dictionnaire Hachette-Oxford-->C:\Program Files (x86)\GDHO\Uninstal.exe
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946040)-->c:\Windows\SysWOW64\msiexec.exe /package {AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946308)-->c:\Windows\SysWOW64\msiexec.exe /package {AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946344)-->c:\Windows\SysWOW64\msiexec.exe /package {AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947540)-->c:\Windows\SysWOW64\msiexec.exe /package {AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789)-->c:\Windows\SysWOW64\msiexec.exe /package {AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB} /uninstall /qb+ REBOOTPROMPT=""
HP Advisor-->MsiExec.exe /X{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}
HP Customer Experience Enhancements-->MsiExec.exe /X{07FA4960-B038-49EB-891B-9F95930AA544}
HP DVB-T TV Tuner 8.0.64.43-->C:\Program Files (x86)\HP\HP DVB-T TV Tuner\uninst.exe
HP ENVY Document Card Utilities-->MsiExec.exe /I{FEC7B56F-A010-4866-809E-F5082CF5BB8C}
HP Game Console-->"C:\Program Files (x86)\HP Games\HP Game Console\Uninstall.exe"
HP Games-->"C:\Program Files (x86)\HP Games\Uninstall.exe"
HP MediaSmart DVD-->"C:\Program Files (x86)\InstallShield Installation Information\{DCCAD079-F92C-44DA-B258-624FC6517A5A}\setup.exe" /z-uninstall
HP MediaSmart DVD-->"C:\Program Files (x86)\InstallShield Installation Information\{DCCAD079-F92C-44DA-B258-624FC6517A5A}\setup.exe" /z-uninstall
HP MediaSmart Internet TV-->"C:\Program Files (x86)\InstallShield Installation Information\{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}\setup.exe" /z-uninstall
HP MediaSmart Internet TV-->"C:\Program Files (x86)\InstallShield Installation Information\{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}\setup.exe" /z-uninstall
HP MediaSmart Music-->"C:\Program Files (x86)\InstallShield Installation Information\{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}\setup.exe" /z-uninstall
HP MediaSmart Music-->"C:\Program Files (x86)\InstallShield Installation Information\{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}\setup.exe" /z-uninstall /zMS
HP MediaSmart Photo-->"C:\Program Files (x86)\InstallShield Installation Information\{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}\setup.exe" /z-uninstall
HP MediaSmart Photo-->"C:\Program Files (x86)\InstallShield Installation Information\{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}\setup.exe" /z-uninstall
HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{D12E3E7F-1B13-4933-A915-16C7DD37A095}\setup.exe" /z-uninstall
HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{D12E3E7F-1B13-4933-A915-16C7DD37A095}\setup.exe" /z-uninstall
HP MediaSmart Webcam-->"C:\Program Files (x86)\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
HP MediaSmart Webcam-->"C:\Program Files (x86)\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
HP Product Detection-->MsiExec.exe /X{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}
HP QuickWeb Installer-->Msi
 
 

Prospero

Avatar de Prospero
49 messages
Disquette
Disquette

Lien direct Le 04 Juin 2011 à 14h50

Pour une raison que j'ignore (Trop long?), mon post précédent a été coupé! Je re-copie info.txt :

info.txt logfile of random's system information tool 1.08 2011-06-04 20:11:13

======Uninstall list======

-->"C:\Program Files (x86)\HP Games\Game Explorer Categories - genres\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Game Explorer Categories - main\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - Club Penguin\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - Dark Orbit\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - RuneScape HD\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - Seafight\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - World of Warcraft\Uninstall.exe"
-->"C:\Program Files (x86)\InstallShield Installation Information\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}\setup.exe" /z-uninstall
Acrobat.com-->MsiExec.exe /X{287ECFA4-719A-2143-A09B-D6A12DE54E40}
ActiveCheck component for HP Active Support Library-->MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}
Ad-Aware-->"C:\ProgramData\{2162CCC0-3A5F-4887-B51F-CE5F195B3620}\Ad-Aware90Install.exe" REMOVE=TRUE MODIFY=FALSE
Ad-Aware-->C:\ProgramData\{2162CCC0-3A5F-4887-B51F-CE5F195B3620}\Ad-Aware90Install.exe
Adobe AIR-->c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Flash Player 10 ActiveX-->C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.exe -maintain activex
Adobe Reader 9.4.4 MUI-->MsiExec.exe /I{AC76BA86-7AD7-FFFF-7B44-A91000000001}
Adobe Shockwave Player-->MsiExec.exe /X{D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}
Agatha Christie - Death on the Nile-->"C:\Program Files (x86)\HP Games\Agatha Christie - Death on the Nile\Uninstall.exe"
AIDA32 v3.93-->"C:\Program Files (x86)\AIDA32 - Personal System Information\unins000.exe"
Apple Application Support-->MsiExec.exe /I{2DC94AFD-A6E2-4AB4-9132-4A3F8E07B386}
Apple Software Update-->MsiExec.exe /I{C41300B9-185D-475E-BFEC-39EF732F19B1}
Atheros Driver Installation Program-->C:\Program Files (x86)\InstallShield Installation Information\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}\setup.exe -runfromtemp -l0x040c
Audacity 1.3.12 (Unicode)-->"C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\unins000.exe"
Bejeweled 2 Deluxe-->"C:\Program Files (x86)\HP Games\Bejeweled 2 Deluxe\Uninstall.exe"
Bing Bar-->MsiExec.exe /X{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}
Blasterball 3-->"C:\Program Files (x86)\HP Games\Blasterball 3\Uninstall.exe"
BS.Player FREE-->"C:\Program Files (x86)\Webteh\BSplayer\uninstall.exe"
BS_Player Toolbar-->C:\PROGRA~2\BS_PLA~1\UNWISE.EXE /U C:\PROGRA~2\BS_PLA~1\INSTALL.LOG
Bus Driver-->"C:\Program Files (x86)\HP Games\Bus Driver\Uninstall.exe"
Catalyst Control Center - Branding-->MsiExec.exe /I{C1A0D5F7-02F3-4D95-872A-0E56CF968DC6}
CCleaner-->"C:\Program Files (x86)\CCleaner\uninst.exe"
CesarFTP 0.99g-->"C:\Program Files (x86)\CesarFTP\unins000.exe"
Chuzzle Deluxe-->"C:\Program Files (x86)\HP Games\Chuzzle Deluxe\Uninstall.exe"
Complément Messenger-->MsiExec.exe /I{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
Contrôle ActiveX Windows Live Mesh pour connexions à distance-->MsiExec.exe /I{55D003F4-9599-44BF-BA9E-95D060730DD3}
Corel DESIGNER Technical Suite X5 - IPM-->MsiExec.exe /I{481A6B64-9B0C-418F-B7A1-C8D92A3CE138}
Corel DESIGNER Technical Suite X5 - WT-->MsiExec.exe /I{9244E956-5939-4B88-930C-0699D4AB2B95}
Corel DESIGNER Technical Suite X5-->c:\Program Files (x86)\Corel\Corel DESIGNER Technical Suite X5\Setup\SetupARP.exe /arp
Corel Graphics - Windows Shell Extension-->c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellUninst.exe -ProductCode {B922902F-E9E9-4AD9-B87D-7F62FA9EA1AD} -arp
Corel Graphics - Windows Shell Extension-->MsiExec.exe /X{B922902F-E9E9-4AD9-B87D-7F62FA9EA1AD}
Correctif pour Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789)-->c:\Windows\SysWOW64\msiexec.exe /package {3514CD14-6F9C-39C9-94F5-6644CAD122CF} /uninstall /qb+ REBOOTPROMPT=""
CyberLink DVD Suite-->"C:\Program Files (x86)\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\Setup.exe" /z-uninstall
CyberLink DVD Suite-->"C:\Program Files (x86)\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\Setup.exe" /z-uninstall
D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
Deep Exploration 6 CE-->MsiExec.exe /I{AC8B571C-9C6E-47C1-A508-3BF1BCBED443}
Definition update for Microsoft Office 2010 (KB982726)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-003D-0000-0000-0000000FF1CE}" "{2FD3FD50-4D6B-433B-9AB8-83F04675DA44}" "1036" "0"
Diner Dash 2 Restaurant Rescue-->"C:\Program Files (x86)\HP Games\Diner Dash 2 Restaurant Rescue\Uninstall.exe"
Dream Chronicles-->"C:\Program Files (x86)\HP Games\Dream Chronicles\Uninstall.exe"
DVD Menu Pack for HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}\setup.exe" /z-uninstall
DVD Menu Pack for HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}\setup.exe" /z-uninstall /zMS
ESU for Microsoft Windows 7-->MsiExec.exe /I{3877C901-7B90-4727-A639-B6ED2DD59D43}
FATE-->"C:\Program Files (x86)\HP Games\FATE\Uninstall.exe"
FnacSynchro-->C:\Program Files (x86)\Oodrive\WebSynchro\uninstall.exe
Galerie de photos Windows Live-->MsiExec.exe /X{488F0347-C4A7-4374-91A7-30818BEDA710}
Gem Shop-->"C:\Program Files (x86)\HP Games\Gem Shop\Uninstall.exe"
GIMP 2.6.11-->"C:\Program Files (x86)\GIMP-2.0\setup\unins000.exe"
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Earth-->MsiExec.exe /X{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}
Grand Dictionnaire Hachette-Oxford-->C:\Program Files (x86)\GDHO\Uninstal.exe
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946040)-->c:\Windows\SysWOW64\msiexec.exe /package {AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946308)-->c:\Windows\SysWOW64\msiexec.exe /package {AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946344)-->c:\Windows\SysWOW64\msiexec.exe /package {AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947540)-->c:\Windows\SysWOW64\msiexec.exe /package {AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789)-->c:\Windows\SysWOW64\msiexec.exe /package {AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB} /uninstall /qb+ REBOOTPROMPT=""
HP Advisor-->MsiExec.exe /X{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}
HP Customer Experience Enhancements-->MsiExec.exe /X{07FA4960-B038-49EB-891B-9F95930AA544}
HP DVB-T TV Tuner 8.0.64.43-->C:\Program Files (x86)\HP\HP DVB-T TV Tuner\uninst.exe
HP ENVY Document Card Utilities-->MsiExec.exe /I{FEC7B56F-A010-4866-809E-F5082CF5BB8C}
HP Game Console-->"C:\Program Files (x86)\HP Games\HP Game Console\Uninstall.exe"
HP Games-->"C:\Program Files (x86)\HP Games\Uninstall.exe"
HP MediaSmart DVD-->"C:\Program Files (x86)\InstallShield Installation Information\{DCCAD079-F92C-44DA-B258-624FC6517A5A}\setup.exe" /z-uninstall
HP MediaSmart DVD-->"C:\Program Files (x86)\InstallShield Installation Information\{DCCAD079-F92C-44DA-B258-624FC6517A5A}\setup.exe" /z-uninstall
HP MediaSmart Internet TV-->"C:\Program Files (x86)\InstallShield Installation Information\{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}\setup.exe" /z-uninstall
HP MediaSmart Internet TV-->"C:\Program Files (x86)\InstallShield Installation Information\{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}\setup.exe" /z-uninstall
HP MediaSmart Music-->"C:\Program Files (x86)\InstallShield Installation Information\{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}\setup.exe" /z-uninstall
HP MediaSmart Music-->"C:\Program Files (x86)\InstallShield Installation Information\{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}\setup.exe" /z-uninstall /zMS
HP MediaSmart Photo-->"C:\Program Files (x86)\InstallShield Installation Information\{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}\setup.exe" /z-uninstall
HP MediaSmart Photo-->"C:\Program Files (x86)\InstallShield Installation Information\{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}\setup.exe" /z-uninstall
HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{D12E3E7F-1B13-4933-A915-16C7DD37A095}\setup.exe" /z-uninstall
HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{D12E3E7F-1B13-4933-A915-16C7DD37A095}\setup.exe" /z-uninstall
HP MediaSmart Webcam-->"C:\Program Files (x86)\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
HP MediaSmart Webcam-->"C:\Program Files (x86)\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
HP Product Detection-->MsiExec.exe /X{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}
HP QuickWeb Installer-->MsiExec.exe /X{394FA67A-FF0A-4356-BB77-D85E5A300BDE}
HP Setup-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{E2831862-F131-4327-B9CC-FA30F587EB6C}\setup.exe" -l0x9 -removeonly
HP Software Framework-->MsiExec.exe /X{CE9A85B7-358E-42E2-B211-E10C75D96171}
HP Support Assistant-->"C:\Program Files (x86)\InstallShield Installation Information\{08DB3902-2CE0-474D-BCE3-0177766CE9F1}\setup.exe" -runfromtemp -l0x0409 -removeonly
HP Update-->MsiExec.exe /X{D46D081B-F60E-467E-A7C4-117B70D76731}
HP User Guides 0176-->MsiExec.exe /X{20B88A14-02F9-48D4-ACEC-6D8F5F3E8A83}
HPAsset component for HP Active Support Library-->MsiExec.exe /X{669D4A35-146B-4314-89F1-1AC3D7B88367}
IDT Audio-->"C:\Program Files (x86)\InstallShield Installation Information\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}\setup.exe" -remove -removeonly
Inkscape 0.48.0-->C:\Program Files (x86)\Inkscape\Uninstall.exe
Insaniquarium Deluxe-->"C:\Program Files (x86)\HP Games\Insaniquarium Deluxe\Uninstall.exe"
Intel(R) Management Engine Components-->C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
Intel(R) Rapid Storage Technology-->C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\Uninstall\setup.exe -uninstall
Intel(R) Turbo Boost Technology Driver-->C:\Program Files (x86)\Intel\Intel(R) Turbo Boost Technology Driver\Uninstall\setup.exe -uninstall -iips
IrfanView (remove only)-->C:\Program Files (x86)\IrfanView\iv_uninstall.exe
IsoBuster 2.8-->"C:\Program Files (x86)\Smart Projects\IsoBuster\Uninst\unins000.exe"
Java(TM) 6 Update 24-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216023FF}
Jewel Quest II-->"C:\Program Files (x86)\HP Games\Jewel Quest II\Uninstall.exe"
Jewel Quest Solitaire-->"C:\Program Files (x86)\HP Games\Jewel Quest Solitaire\Uninstall.exe"
Junk Mail filter update-->MsiExec.exe /I{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
LabelPrint-->"C:\Program Files (x86)\InstallShield Installation Information\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\Setup.exe" /z-uninstall
LabelPrint-->"C:\Program Files (x86)\InstallShield Installation Information\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\Setup.exe" /z-uninstall
LAME v3.98.3 for Audacity-->"C:\Program Files (x86)\Lame For Audacity\unins000.exe"
LightScribe System Software-->MsiExec.exe /X{FA8BFB25-BF48-4F8B-8859-B30810745190}
Logiciel d'archivage WinRAR-->C:\Program Files (x86)\WinRAR\uninstall.exe
Magic Desktop-->C:\Windows\system32\ezMDUninstall.exe
Mahjongg Artifacts-->"C:\Program Files (x86)\HP Games\Mahjongg Artifacts\Uninstall.exe"
Mesh Runtime-->MsiExec.exe /I{8C6D6116-B724-4810-8F2D-D047E6B7D68E}
Microsoft Default Manager-->MsiExec.exe /X{1CAC7A41-583B-4483-9FA5-3E5465AFF8C2}
Microsoft Office « Démarrer en un clic » 2010-->"C:\PROGRA~2\COMMON~1\MICROS~1\VIRTUA~1\CVHBS.EXE" /removeall
Microsoft Office Access MUI (French) 2010-->MsiExec.exe /X{90140000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2010-->MsiExec.exe /X{90140000-0016-040C-0000-0000000FF1CE}
Microsoft Office Famille et Étudiant 2010-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\setup.exe" /uninstall SINGLEIMAGE /dll OSETUP.DLL
Microsoft Office OneNote MUI (French) 2010-->MsiExec.exe /X{90140000-00A1-040C-0000-0000000FF1CE}
Microsoft Office Outlook MUI (French) 2010-->MsiExec.exe /X{90140000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2010-->MsiExec.exe /X{90140000-0018-040C-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2010-->MsiExec.exe /X{90140000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2010-->MsiExec.exe /X{90140000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2010-->MsiExec.exe /X{90140000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2010-->MsiExec.exe /X{90140000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2010-->MsiExec.exe /X{90140000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2010-->MsiExec.exe /X{90140000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2010-->MsiExec.exe /X{90140000-002C-040C-0000-0000000FF1CE}
Microsoft Office Publisher MUI (French) 2010-->MsiExec.exe /X{90140000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2010-->MsiExec.exe /X{90140000-006E-040C-0000-0000000FF1CE}
Microsoft Office Single Image 2010-->MsiExec.exe /X{90140000-003D-0000-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2010-->MsiExec.exe /X{90140000-001B-040C-0000-0000000FF1CE}
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit-->MsiExec.exe /X{95140000-007D-0409-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable - KB2467175-->MsiExec.exe /X{a0fe116e-9a8a-466f-aee0-625cb7c207e3}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570-->MsiExec.exe /X{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual Studio Tools for Applications 2.0 - ENU-->MsiExec.exe /X{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}
Microsoft Visual Studio Tools for Applications 2.0 Language Pack - FRA-->MsiExec.exe /X{3514CD14-6F9C-39C9-94F5-6644CAD122CF}
Microsoft Visual Studio Tools for Applications 2.0 Runtime Language Pack - FRA-->MsiExec.exe /X{8A8F0E9B-4FC9-3C40-9AFB-9AEEFE81D6A7}
Microsoft Visual Studio Tools for Applications 2.0 Runtime-->MsiExec.exe /X{299C0434-4F4E-341F-A916-4E07AEB35E79}
Mise à jour pour Microsoft Outlook Social Connector (KB2441641)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-001A-040C-0000-0000000FF1CE}" "{4336B480-0058-43B4-B3C1-0C95A04E28F1}" "1036" "0"
MotoHelper 2.0.40 Driver 4.9.0-->C:\Program Files (x86)\Motorola\MotoHelper\uninstall.exe
MotoHelper MergeModules-->MsiExec.exe /I{94CAC2F1-C856-47F4-AF24-65A1E75AEDB9}
Movie Theme Pack for HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{3023EBDA-BF1B-4831-B347-E5018555F26E}\setup.exe" /z-uninstall
Movie Theme Pack for HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{3023EBDA-BF1B-4831-B347-E5018555F26E}\setup.exe" /z-uninstall /zMS
MSVCRT_amd64-->MsiExec.exe /I{D0B44725-3666-492D-BEF6-587A14BD9BD9}
MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Mystery P.I. - The Vegas Heist-->"C:\Program Files (x86)\HP Games\Mystery P.I. - The Vegas Heist\Uninstall.exe"
Penguins!-->"C:\Program Files (x86)\HP Games\Penguins!\Uninstall.exe"
PhotoNow!-->"C:\Program Files (x86)\InstallShield Installation Information\{D36DD326-7280-11D8-97C8-000129760CBE}\Setup.exe" /z-uninstall
PhotoNow!-->"C:\Program Files (x86)\InstallShield Installation Information\{D36DD326-7280-11D8-97C8-000129760CBE}\Setup.exe" /z-uninstall
Polar Bowler-->"C:\Program Files (x86)\HP Games\Polar Bowler\Uninstall.exe"
Power2Go-->"C:\Program Files (x86)\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\Setup.exe" /z-uninstall
Power2Go-->"C:\Program Files (x86)\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\Setup.exe" /z-uninstall
PowerDirector-->"C:\Program Files (x86)\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\Setup.exe" /z-uninstall
PowerDirector-->"C:\Program Files (x86)\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\Setup.exe" /z-uninstall
QuickTime-->MsiExec.exe /I{57752979-A1C9-4C02-856B-FBB27AC4E02C}
Realtek Ethernet Controller Driver For Windows 7-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -removeonly
Realtek USB 2.0 Card Reader-->"C:\Program Files (x86)\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setup.exe" -runfromtemp -removeonly
Recovery Manager-->"C:\Program Files (x86)\InstallShield Installation Information\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}\setup.exe" /z-uninstall
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)-->c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {FD8D7C9A-E56A-3E7B-BA6D-FE68F13296E3} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)-->c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {F66C3466-1FDB-347C-B3AE-FB6C50627B10} /parameterfolder Client
Security Update for Microsoft Excel 2010 (KB2466146)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-003D-0000-0000-0000000FF1CE}" "{4D3B2D30-46D3-4DC0-BA73-85306B10E0AE}" "1036" "0"
Security Update for Microsoft Office 2010 (KB2289078)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-003D-0000-0000-0000000FF1CE}" "{1D1A4F08-2F17-475B-BA72-476CE5992FEE}" "1036" "0"
Security Update for Microsoft Office 2010 (KB2289161)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-003D-0000-0000-0000000FF1CE}" "{F134C2C6-30B3-4169-A325-58482B4CE6FC}" "1036" "0"
Security Update for Microsoft PowerPoint 2010 (KB2519975)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-003D-0000-0000-0000000FF1CE}" "{45D7C5CD-B967-44AF-9DAB-E5C8545558AD}" "1036" "0"
Security Update for Microsoft Publisher 2010 (KB2409055)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-003D-0000-0000-0000000FF1CE}" "{C3C277D5-36E3-4B1A-926A-175B2BC019CF}" "1036" "0"
Security Update for Microsoft Word 2010 (KB2345000)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-003D-0000-0000-0000000FF1CE}" "{A6D422EE-1196-45EE-B9AE-6B5B64975E8B}" "1036" "0"
Slingo Deluxe-->"C:\Program Files (x86)\HP Games\Slingo Deluxe\Uninstall.exe"
Spybot - Search & Destroy-->"C:\Program Files (x86)\Spybot - Search & Destroy\unins000.exe"
Tableau de Bord Pack Fnac 2011-->"C:\Windows\EP_UNINSTALL.EXE" "C:\Program Files (x86)\Fnac\TBPackFnac2011\UNINSTALL.INI"
ToutMail-->"C:\Program Files (x86)\Fookes Software\ToutMail\unins000.exe"
Update for Microsoft Office 2010 (KB2202188)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-003D-0000-0000-0000000FF1CE}" "{86B7A074-265D-420C-9E1E-7A920EF0ECA7}" "1036" "0"
Update for Microsoft Office 2010 (KB2413186)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-003D-0000-0000-0000000FF1CE}" "{556146F7-74AE-4E0A-B64F-5B8B93469F61}" "1036" "0"
Update for Microsoft Office 2010 (KB2413186)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-003D-0000-0000-0000000FF1CE}" "{B5516874-E926-4BFD-B412-D0E70112F244}" "1036" "0"
Update for Microsoft Office 2010 (KB2413186)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-003D-0000-0000-0000000FF1CE}" "{D6CE7280-6EE3-419A-8F47-DB111C040B1B}" "1036" "0"
Update for Microsoft Office 2010 (KB2494150)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-003D-0000-0000-0000000FF1CE}" "{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}" "1036" "0"
Update for Microsoft OneNote 2010 (KB2493983)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-003D-0000-0000-0000000FF1CE}" "{309EEC22-83CE-4109-B019-BA9392FAA322}" "1036" "0"
Update for Microsoft Outlook Social Connector (KB2441641)-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Oarpmany.exe" /removereleaseinpatch "{90140000-003D-0000-0000-0000000FF1CE}" "{A10DC2B7-6FDA-4C17-9DF0-6A834CAC4306}" "1036" "0"
Virtual Villagers - The Secret City-->"C:\Program Files (x86)\HP Games\Virtual Villagers - The Secret City\Uninstall.exe"
Visual C++ 2008 x86 Runtime - (v9.0.30729)-->MsiExec.exe /X{F333A33D-125C-32A2-8DCE-5C5D14231E27}
Visual C++ 2008 x86 Runtime - v9.0.30729.01-->C:\Windows\SysWOW64\msiexec.exe /x {F333A33D-125C-32A2-8DCE-5C5D14231E27} /qb+ REBOOTPROMPT=""
VLC media player 1.1.4-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
Wedding Dash-->"C:\Program Files (x86)\HP Games\Wedding Dash\Uninstall.exe"
Windows Live Communications Platform-->MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066}
Windows Live FolderShare-->MsiExec.exe /X{2075CB0A-D26F-4DAA-B424-5079296B43BA}
Windows Live Installer-->MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917}
Windows Live Mail-->MsiExec.exe /I{9D56775A-93F3-44A3-8092-840E3826DE30}
Windows Live Mail-->MsiExec.exe /I{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
Windows Live Mesh-->MsiExec.exe /I{841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}
Windows Live Mesh-->MsiExec.exe /I{DECDCB7C-58CC-4865-91AF-627F9798FE48}
Windows Live Messenger Companion Core-->MsiExec.exe /I{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}
Windows Live Messenger-->MsiExec.exe /X{6057E21C-ABE9-4059-AE3E-3BEB9925E660}
Windows Live Messenger-->MsiExec.exe /X{EB4DF488-AAEF-406F-A341-CB2AAA315B90}
Windows Live Movie Maker-->MsiExec.exe /X{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
Windows Live Movie Maker-->MsiExec.exe /X{92EA4134-10D1-418A-91E1-5A0453131A38}
Windows Live Photo Common-->MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
Windows Live Photo Common-->MsiExec.exe /X{C893D8C0-1BA0-4517-B11C-E89B65E72F70}
Windows Live Photo Gallery-->MsiExec.exe /X{3336F667-9049-4D46-98B6-4C743EEBC5B1}
Windows Live PIMT Platform-->MsiExec.exe /I{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}
Windows Live SOXE Definitions-->MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F}
Windows Live SOXE-->MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{09F56A49-A7B1-4AAB-95B9-D13094254AD1}
Windows Live UX Platform-->MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
Windows Live Writer Resources-->MsiExec.exe /X{62687B11-58B5-4A18-9BC3-9DF4CE03F194}
Windows Live Writer-->MsiExec.exe /X{3B9A92DA-6374-4872-B646-253F18624D5F}
Windows Live Writer-->MsiExec.exe /X{A726AE06-AAA3-43D1-87E3-70F510314F04}
Windows Live Writer-->MsiExec.exe /X{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
Windows Live-->C:\Program Files (x86)\Windows Live\Installer\wlarp.exe
Windows Live-->MsiExec.exe /I{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
Zuma Deluxe-->"C:\Program Files (x86)\HP Games\Zuma Deluxe\Uninstall.exe"

======System event log======

Computer Name: Bijiben
Event Code: 51
Message: Une erreur a été détectée sur le périphérique \Device\Harddisk1\DR1 lors d'une opération de pagination.
Record Number: 252667
Source Name: Disk
Time Written: 20110415135058.743730-000
Event Type: Avertissement
User:

Computer Name: Bijiben
Event Code: 51
Message: Une erreur a été détectée sur le périphérique \Device\Harddisk1\DR1 lors d'une opération de pagination.
Record Number: 252666
Source Name: Disk
Time Written: 20110415135058.743730-000
Event Type: Avertissement
User:

Computer Name: Bijiben
Event Code: 51
Message: Une erreur a été détectée sur le périphérique \Device\Harddisk1\DR1 lors d'une opération de pagination.
Record Number: 252665
Source Name: Disk
Time Written: 20110415135058.743730-000
Event Type: Avertissement
User:

Computer Name: Bijiben
Event Code: 51
Message: Une erreur a été détectée sur le périphérique \Device\Harddisk1\DR1 lors d'une opération de pagination.
Record Number: 252664
Source Name: Disk
Time Written: 20110415135058.743730-000
Event Type: Avertissement
User:

Computer Name: Bijiben
Event Code: 51
Message: Une erreur a été détectée sur le périphérique \Device\Harddisk1\DR1 lors d'une opération de pagination.
Record Number: 252663
Source Name: Disk
Time Written: 20110415135058.743730-000
Event Type: Avertissement
User:

=====Application event log=====

Computer Name: Bijiben
Event Code: 20227
Message: CoID={1EB32E61-9C3C-49A0-B6CC-F4825D7FB78E} : L’utilisateur Bijiben\Fred a composé le numéro de la connexion Connexion haut débit. La connexion a échoué. Code d’erreur retourné : 691.
Record Number: 2156
Source Name: RasClient
Time Written: 20101015224049.000000-000
Event Type: Erreur
User:

Computer Name: Bijiben
Event Code: 20227
Message: CoID={B65F8482-0418-4E4F-BAA3-8185E2740D94} : L’utilisateur Bijiben\Fred a composé le numéro de la connexion Connexion haut débit. La connexion a échoué. Code d’erreur retourné : 691.
Record Number: 2140
Source Name: RasClient
Time Written: 20101015223907.000000-000
Event Type: Erreur
User:

Computer Name: Bijiben
Event Code: 20227
Message: CoID={542ED627-C385-4AFB-B545-0EEE19FF041C} : L’utilisateur Bijiben\Fred a composé le numéro de la connexion Connexion haut débit. La connexion a échoué. Code d’erreur retourné : 691.
Record Number: 2111
Source Name: RasClient
Time Written: 20101015222815.000000-000
Event Type: Erreur
User:

Computer Name: Bijiben
Event Code: 20227
Message: CoID={EE59A32F-95A9-4051-A4F5-20DDFF1279C0} : L’utilisateur Bijiben\Fred a composé le numéro de la connexion Connexion haut débit. La connexion a échoué. Code d’erreur retourné : 691.
Record Number: 2105
Source Name: RasClient
Time Written: 20101015222807.000000-000
Event Type: Erreur
User:

Computer Name: Bijiben
Event Code: 1530
Message: Windows a détecté que votre fichier de Registre est toujours utilisé par d’autres applications ou services. Le fichier va être déchargé. Les applications ou services qui ont accès à votre Registre risquent de ne pas fonctionner correctement après cela.

DÉTAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-4248047820-2620514176-44819496-1000:
Process 556 (\Device\HarddiskVolume2\Windows\System32\winlogon.exe) has opened key \REGISTRY\USER\S-1-5-21-4248047820-2620514176-44819496-1000

Record Number: 1757
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20101007205322.974355-000
Event Type: Avertissement
User: AUTORITE NT\Système

=====Security event log=====

Computer Name: Bijiben
Event Code: 4624
Message: L’ouverture de session d’un compte s’est correctement déroulée.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : BIJIBEN$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Type d’ouverture de session : 5

Nouvelle ouverture de session :
ID de sécurité : S-1-5-18
Nom du compte : Système
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Informations sur le processus :
ID du processus : 0x2a4
Nom du processus : C:\Windows\System32\services.exe

Informations sur le réseau :
Nom de la station de travail :
Adresse du réseau source : -
Port source : -

Informations détaillées sur l’authentification :
Processus d’ouverture de session : Advapi
Package d’authentification : Negotiate
Services en transit : -
Nom du package (NTLM uniquement) : -
Longueur de la clé : 0

Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
- Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
- Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
- Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
- La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
Record Number: 7879
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101226235900.713747-000
Event Type: Succès de l’audit
User:

Computer Name: Bijiben
Event Code: 4672
Message: Privilèges spéciaux attribués à la nouvelle ouverture de session.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : Système
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7

Privilèges : SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 7878
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101226225858.303701-000
Event Type: Succès de l’audit
User:

Computer Name: Bijiben
Event Code: 4624
Message: L’ouverture de session d’un compte s’est correctement déroulée.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : BIJIBEN$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Type d’ouverture de session : 5

Nouvelle ouverture de session :
ID de sécurité : S-1-5-18
Nom du compte : Système
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Informations sur le processus :
ID du processus : 0x2a4
Nom du processus : C:\Windows\System32\services.exe

Informations sur le réseau :
Nom de la station de travail :
Adresse du réseau source : -
Port source : -

Informations détaillées sur l’authentification :
Processus d’ouverture de session : Advapi
Package d’authentification : Negotiate
Services en transit : -
Nom du package (NTLM uniquement) : -
Longueur de la clé : 0

Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
- Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
- Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
- Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
- La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
Record Number: 7877
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101226225858.303701-000
Event Type: Succès de l’audit
User:

Computer Name: Bijiben
Event Code: 4672
Message: Privilèges spéciaux attribués à la nouvelle ouverture de session.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : Système
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7

Privilèges : SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 7876
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101226215856.279677-000
Event Type: Succès de l’audit
User:

Computer Name: Bijiben
Event Code: 4624
Message: L’ouverture de session d’un compte s’est correctement déroulée.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : BIJIBEN$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Type d’ouverture de session : 5

Nouvelle ouverture de session :
ID de sécurité : S-1-5-18
Nom du compte : Système
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Informations sur le processus :
ID du processus : 0x2a4
Nom du processus : C:\Windows\System32\services.exe

Informations sur le réseau :
Nom de la station de travail :
Adresse du réseau source : -
Port source : -

Informations détaillées sur l’authentification :
Processus d’ouverture de session : Advapi
Package d’authentification : Negotiate
Services en transit : -
Nom du package (NTLM uniquement) : -
Longueur de la clé : 0

Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
- Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
- Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
- Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
- La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
Record Number: 7875
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101226215856.279677-000
Event Type: Succès de l’audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Smart Projects\IsoBuster;C:\Program Files (x86)\QuickTime\QTSystem\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
"PROCESSOR_REVISION"=2502
"OnlineServices"=Online Services
"Platform"=MCD
"PCBRAND"=Pavilion
"asl.log"=Destination=file
"CLASSPATH"=.;C:\Program Files (x86)\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files (x86)\Java\jre6\lib\ext\QTJava.zip

-----------------EOF-----------------

Voilà! Merci d'avance pour l'aide! C'est sûr que moi je ne comprends rien à tout ça!Sourire

Cordialement,
Prospero
 
 

Winx

Avatar de Winx
19826 messages
No-Life
No-Life
AidoHardware
AidoHardware
AidoAntivirus
AidoAntivirus
AidoWindows
AidoWindows

Lien direct Le 04 Juin 2011 à 18h50

re,

Fais un scan avec Hijackthis sur ta machine, apparemment il ne s'est pas installé automatiquement...tu as ce message:

Citation

HijackThis download failed




regarde ici le tuto,

--->aide visuelle, clic ici
ps: la version de Hijackthis doit être:

Citation

Logfile of Trend Micro HijackThis v2.0.4

  Je n'ai pas la prétention de résoudre les problèmes, mais celle de vous aider à les résoudre ;-)
 

Prospero

Avatar de Prospero
49 messages
Disquette
Disquette

Lien direct Le 05 Juin 2011 à 20h29

Bonjour,

Eh bien je n'ai ni l'un ni l'autre! En fait, je n'ai eu aucun message d'erreur, par contre effectivement la version n'est pas la même, c'est une ancienne puisque j'ai un 2.0.2! Je ne sais pas pourquoi, mais sinon le programme marche très bien. Voici le résultat du scan :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:23:10, on 06/06/2011
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe
C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe
C:\Program Files\BitDefender\BitDefender 2011\Antispam32\pchooklaunch32.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\eMule\emule.exe
C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.exe
C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Fred\Downloads\hijackthis(2).exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: HP SimplePass Identity Protection Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\IPSBHO.DLL
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\coIEPlg.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2011\Antispam32\IEToolbar.dll
O3 - Toolbar: (no name) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Fred\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.exe -update activex
O4 - HKUS\S-1-5-18\..\RunOnce: [{90140000-003D-0000-0000-0000000FF1CE}] C:\Windows\system32\cmd.exe /C del "C:\ProgramData\Microsoft Help\Rgstrtn.lck" /Q /A:H (User 'Système')
O4 - HKUS\.DEFAULT\..\RunOnce: [{90140000-003D-0000-0000-0000000FF1CE}] C:\Windows\system32\cmd.exe /C del "C:\ProgramData\Microsoft Help\Rgstrtn.lck" /Q /A:H (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Envoyer à Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Envoyer au périphérique &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O13 - Gopher Prefix:
O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://oas.support.microsoft.com/ActiveX/MSDcode.cab
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{E5CF9BE1-D88C-4427-AACA-35F0A12FC056}: NameServer = 116.228.111.18 180.168.255.118
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: DeviceVM Meta Data Export Service (DvmMDES) - DeviceVM, Inc. - C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Documention Flash Card Detection Service (hpdoccardsvc) - Hewlett-Packard Developement Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Unknown owner - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MotoHelper Service (MotoHelper) - Unknown owner - C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: BitDefender Update Server v2 (Update Server) - BitDefender - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
O23 - Service: BitDefender Desktop Update Service (Updatesrv) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WebSynchroWindowsService - Oodrive - C:\Program Files (x86)\Oodrive\WebSynchro\WS.WindowsService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 16766 bytes

Voilà! Cela peut aller avec cette version? Car j'ignore comment faire pour que la 2.0.4 marche!??

A bientôt,

Prospero
 
 

Winx

Avatar de Winx
19826 messages
No-Life
No-Life
AidoHardware
AidoHardware
AidoAntivirus
AidoAntivirus
AidoWindows
AidoWindows

Lien direct Le 06 Juin 2011 à 18h56

re,

télécharge la bonne Hijackthis version ici:

et reposte un rapport
  Je n'ai pas la prétention de résoudre les problèmes, mais celle de vous aider à les résoudre ;-)
 

Prospero

Avatar de Prospero
49 messages
Disquette
Disquette

Lien direct Le 06 Juin 2011 à 19h16

Désolé! Je viens de cliquer sur ton lien, j'ai téléchargé le programme, j'ai fait exécuter, j'ai cliqué sur le scan, et quand j'ai le résultat, j'ai en en-tête :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 01:10:18, on 07/06/2011
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Toujours la version 2.0.2!!!

Je ne peux rien y faire, à moins que toi tu saches??!! Mon ordi est à jour, Windows update et Cie, rien de particulier, donc je ne comprends absolument pas ce qui se passe!

Qu'est-ce que je peux faire??? Cette version est incapable de trouver où se niche cette sal... dans mon browser???

Merci d'avance de ton aide, car je sens que ça se complique (Comme d'habitude... Avec l'info, je n'ai jamais de "problème normal"!)

A bientôt,

Prospero
 
 

Winx

Avatar de Winx
19826 messages
No-Life
No-Life
AidoHardware
AidoHardware
AidoAntivirus
AidoAntivirus
AidoWindows
AidoWindows

Lien direct Le 06 Juin 2011 à 19h45

re;
pas de panique.....
tu as effectivement deux versions installées
supprime les deux versions hijackthis dans ton dossier

C:\Users\Fred\Downloads\

ensuite au téléchargement change le nom Hijacthis.exe en scanner.exe

ferme la fenêtre si le téléchargement démarre automatiquement
fais in clic droit sur le lien ici et choisis "enregistrer la cible du lien sous...."
tape alors scanner.exe
une fois téléchargé, crée un dossier c:/hijackthis et copie scanner.exe dedans crée un raccourcis au besoin et balance le raccourcis sur le bureau.
Exécute et copie moi le rapport
  Je n'ai pas la prétention de résoudre les problèmes, mais celle de vous aider à les résoudre ;-)
 

Prospero

Avatar de Prospero
49 messages
Disquette
Disquette

Lien direct Le 24 Juin 2011 à 11h00

Bonjour!

Désolé, j'ai été absent plusieurs jours!
J'ai aussi repris contact avec les mecs de BitDeffender, mon antivirus & antispyware, toujours incapables de m'aider d'ailleurs!!

J'ai donc fait exactement ce que tu m'as dit et cette fois j'ai un 2.0.4!

Voici le fichier log de hijackthis après scan : (plus bas il y a RSIT refait)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:22:16, on 24/06/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe
C:\Program Files\BitDefender\BitDefender 2011\Antispam32\pchooklaunch32.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\iTunes\iTunes.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe
C:\eMule\emule.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10t_ActiveX.exe
C:\hijackthis\scanner.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: HP SimplePass Identity Protection Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\IPSBHO.DLL
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\coIEPlg.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2011\Antispam32\IEToolbar.dll
O3 - Toolbar: (no name) - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - (no file)
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Fred\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-18\..\RunOnce: [{90140000-003D-0000-0000-0000000FF1CE}] C:\Windows\system32\cmd.exe /C del "C:\ProgramData\Microsoft Help\Rgstrtn.lck" /Q /A:H (User 'Système')
O4 - HKUS\S-1-5-18\..\RunOnce: [{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}] C:\Windows\system32\cmd.exe /C del "C:\ProgramData\Microsoft Help\Rgstrtn.lck" /Q /A:H (User 'Système')
O4 - HKUS\.DEFAULT\..\RunOnce: [{90140000-003D-0000-0000-0000000FF1CE}] C:\Windows\system32\cmd.exe /C del "C:\ProgramData\Microsoft Help\Rgstrtn.lck" /Q /A:H (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Envoyer à Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Envoyer au périphérique &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://oas.support.microsoft.com/ActiveX/MSDcode.cab
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{E5CF9BE1-D88C-4427-AACA-35F0A12FC056}: NameServer = 116.228.111.18 180.168.255.118
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: DeviceVM Meta Data Export Service (DvmMDES) - DeviceVM, Inc. - C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Documention Flash Card Detection Service (hpdoccardsvc) - Hewlett-Packard Developement Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: hpqcxs08 - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service HP CUE DeviceDiscovery (hpqddsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Unknown owner - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft Limited - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: MotoHelper Service (MotoHelper) - Unknown owner - C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: BitDefender Update Server v2 (Update Server) - BitDefender - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
O23 - Service: BitDefender Desktop Update Service (Updatesrv) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: WebSynchroWindowsService - Oodrive - C:\Program Files (x86)\Oodrive\WebSynchro\WS.WindowsService.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 30050 bytes



J'ai aussi refait RSIT :

Logfile of random's system information tool 1.08 (written by random/random)
Run by Fred at 2011-06-24 16:55:27
Microsoft Windows 7 Édition Familiale Premium Service Pack 1
System drive C: has 361 GB (62%) free of 587 GB
Total RAM: 3894 MB (25% free)


======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4248047820-2620514176-44819496-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4248047820-2620514176-44819496-1000UA.job
C:\Windows\tasks\HPCeeScheduleForFred.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20 328248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-23 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP SimplePass Identity Protection Extension - C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll [2009-12-30 1262856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\coIEPlg.dll [2009-08-29 392560]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\IPSBHO.DLL [2009-08-30 79224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20 509496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\17.0.0.136\coIEPlg.dll [2009-08-29 392560]
{381FFDE8-2394-4F90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2011\Antispam32\IEToolbar.dll [2011-03-08 160832]
{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-06-08 37296]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2010-11-29 421888]
"hpqSRMon"=C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [2008-07-22 150528]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2011-04-27 421160]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"=C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe [2010-01-27 1712184]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2010-01-22 2363392]
"msnmsgr"=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2010-11-10 4240760]
"SpybotSD TeaTimer"=C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2009-01-26 2144088]
"Google Update"=C:\Users\Fred\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-24 136176]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayL oad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHoo ks]
"{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\SysWow64\EZUPBH~1.DLL [2010-05-18 52920]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableChangePassword"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"EnableShellExecuteHooks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewall policy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewall policy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-06-24 16:13:53 ----D---- C:\hijackthis
2011-06-24 15:28:45 ----D---- C:\Program Files (x86)\Common Files\Java
2011-06-24 15:28:18 ----A---- C:\Windows\SysWOW64\javaws.exe
2011-06-24 15:28:18 ----A---- C:\Windows\SysWOW64\javaw.exe
2011-06-24 15:28:18 ----A---- C:\Windows\SysWOW64\java.exe
2011-06-24 15:12:32 ----D---- C:\ComboFix
2011-06-24 15:06:38 ----D---- C:\Qoobox
2011-06-24 15:06:35 ----SD---- C:\32788R22FWJFW
2011-06-18 15:06:21 ----D---- C:\ProgramData\{E91883C8-8CDC-46A4-A45F-CB40EB82ED60}
2011-06-17 03:03:38 ----A---- C:\Windows\SysWOW64\mshtmled.dll
2011-06-17 03:03:37 ----A---- C:\Windows\SysWOW64\ieui.dll
2011-06-17 03:03:37 ----A---- C:\Windows\SysWOW64\iertutil.dll
2011-06-17 03:03:36 ----A---- C:\Windows\SysWOW64\jscript9.dll
2011-06-17 03:03:36 ----A---- C:\Windows\SysWOW64\jscript.dll
2011-06-17 03:03:35 ----A---- C:\Windows\SysWOW64\urlmon.dll
2011-06-17 03:03:35 ----A---- C:\Windows\SysWOW64\mshtml.dll
2011-06-17 03:03:33 ----A---- C:\Windows\SysWOW64\ieframe.dll
2011-06-16 18:38:23 ----A---- C:\Windows\SysWOW64\oleaut32.dll
2011-06-16 18:32:32 ----A---- C:\Windows\SysWOW64\inetcomm.dll
2011-06-06 02:15:21 ----D---- C:\Program Files (x86)\iTunes
2011-06-06 02:09:55 ----D---- C:\Program Files (x86)\Bonjour
2011-06-04 20:10:23 ----D---- C:\rsit
2011-06-04 20:10:23 ----D---- C:\Program Files (x86)\trend micro
2011-05-27 21:52:06 ----HDC---- C:\ProgramData\{2162CCC0-3A5F-4887-B51F-CE5F195B3620}
2011-05-27 21:51:37 ----D---- C:\ProgramData\Lavasoft
2011-05-27 21:51:37 ----D---- C:\Program Files (x86)\Lavasoft

======List of files/folders modified in the last 1 months======

2011-06-24 16:55:56 ----D---- C:\Windows\Temp
2011-06-24 16:50:37 ----D---- C:\Windows\System32
2011-06-24 16:50:37 ----D---- C:\Windows\inf
2011-06-24 16:29:40 ----D---- C:\Windows\Prefetch
2011-06-24 15:28:45 ----SHD---- C:\Windows\Installer
2011-06-24 15:28:45 ----SHD---- C:\Config.Msi
2011-06-24 15:28:45 ----D---- C:\Program Files (x86)\Common Files
2011-06-24 15:28:18 ----D---- C:\Windows\SysWOW64
2011-06-24 15:28:10 ----D---- C:\Program Files (x86)\Java
2011-06-24 15:26:28 ----SHD---- C:\System Volume Information
2011-06-24 15:21:21 ----A---- C:\Windows\SysWOW64\log.txt
2011-06-24 15:18:51 ----D---- C:\Windows\Tasks
2011-06-24 15:14:25 ----A---- C:\Windows\ntbtlog.txt
2011-06-20 01:49:41 ----D---- C:\Windows\Microsoft.NET
2011-06-20 01:48:43 ----RSD---- C:\Windows\assembly
2011-06-20 00:11:23 ----D---- C:\Windows\winsxs
2011-06-19 19:21:09 ----D---- C:\Users\Fred\AppData\Roaming\vlc
2011-06-18 15:14:05 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-06-18 15:13:48 ----D---- C:\Windows\Help
2011-06-18 15:08:02 ----D---- C:\Program Files (x86)\Hewlett-Packard
2011-06-18 15:06:21 ----HD---- C:\ProgramData
2011-06-18 15:03:24 ----D---- C:\SwSetup
2011-06-17 03:26:03 ----A---- C:\bdlog.txt
2011-06-17 03:25:42 ----D---- C:\Program Files (x86)\Internet Explorer
2011-06-17 03:06:56 ----D---- C:\ProgramData\Microsoft Help
2011-06-17 03:02:51 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2011-06-16 18:52:41 ----D---- C:\eMule
2011-06-06 02:15:22 ----RD---- C:\Program Files
2011-06-06 02:15:21 ----RD---- C:\Program Files (x86)
2011-06-06 02:15:21 ----D---- C:\Program Files (x86)\Common Files\Apple
2011-06-01 08:53:25 ----D---- C:\Program Files (x86)\Google
2011-05-29 00:59:06 ----RSD---- C:\Windows\Fonts
2011-05-28 06:46:58 ----D---- C:\Program Files (x86)\CesarFTP
2011-05-26 22:39:14 ----D---- C:\Windows

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 bdfsfltr;bdfsfltr; C:\Windows\system32\DRIVERS\bdfsfltr.sys []
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys []
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys []
R0 Lbd;Lbd; C:\Windows\system32\DRIVERS\Lbd.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R1 Bdfndisf;BitDefender Firewall NDIS 6 Filter Driver; \??\c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2010-10-29 88144]
R1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys [2010-10-29 99408]
R1 Bdvedisk;BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys []
R1 DVMIO;DeviceVM IO Service; C:\Windows\system32\DRIVERS\dvmio.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R3 Accelerometer;HP Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys []
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys []
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys []
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys []
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys []
R3 BDFM;BDFM; C:\Windows\system32\DRIVERS\bdfm.sys []
R3 BthEnum;Service d'énumérateur Bluetooth; C:\Windows\system32\DRIVERS\BthEnum.sys []
R3 BthPan;Périphérique Bluetooth (réseau personnel); C:\Windows\system32\DRIVERS\bthpan.sys []
R3 BTHUSB;Pilote USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys []
R3 btwaudio;Périphérique audio Bluetooth; C:\Windows\system32\drivers\btwaudio.sys []
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys []
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys []
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys []
R3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys []
R3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys []
R3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys []
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys []
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys []
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys []
R3 Lavasoft Kernexplorer;Lavasoft helper driver; \??\C:\Program Files (x86)\Lavasoft\Ad-Aware\KernExplorer64.sys [2011-05-27 17152]
R3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\Windows\system32\DRIVERS\rfcomm.sys []
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys []
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys []
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys []
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys []
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys []
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys []
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys []
R3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys []
R3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys []
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys []
S3 BTHPORT;Pilote de port Bluetooth; C:\Windows\System32\Drivers\BTHport.sys []
S3 cpuz132;cpuz132; \??\C:\Users\Fred\AppData\Local\Temp\cpuz132\cpuz132_x64.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys []
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys []
S3 ivusb;Initio Driver for USB Default Controller; C:\Windows\system32\DRIVERS\ivusb.sys []
S3 MotDev;Motorola Inc. USB Device; C:\Windows\system32\DRIVERS\motodrv.sys []
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys []
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys []
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys []
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS []
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS []
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys []
S4 avc3;avc3; C:\Windows\system32\DRIVERS\avc3.sys []
S4 avckf;avckf; C:\Windows\system32\DRIVERS\avckf.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [2009-03-03 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe []
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-02-18 37664]
R2 Bonjour Service;Service Bonjour; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2011-04-06 349472]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 873248]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2010-02-28 821664]
R2 DpHost;@C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128; C:\Program Files\DigitalPersona\Bin\DpHostW.exe [2009-12-30 444680]
R2 DvmMDES;DeviceVM Meta Data Export Service; C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe [2010-02-08 338168]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\System32\ezSharedSvcHost.exe [2010-01-25 514232]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2011-02-23 125496]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-02-04 92216]
R2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe []
R2 HPWMISVC;HPWMISVC; C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-01-18 20480]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2011-06-06 2151128]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-01-22 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-05-01 325656]
R2 MotoHelper;MotoHelper Service; C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe [2010-12-03 218432]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2010-03-10 189728]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2010-04-24 483688]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe [2010-01-14 244736]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-05-01 2533400]
R2 Updatesrv;BitDefender Desktop Update Service; C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe [2011-03-08 53224]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2010-01-06 1791280]
R2 VSSERV;BitDefender Virus Shield; C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe [2011-03-08 2613744]
R2 WebSynchroWindowsService;WebSynchroWindowsService; C:\Program Files (x86)\Oodrive\WebSynchro\WS.WindowsService.exe [2010-08-23 8192]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2011-02-04 797240]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2011-04-27 934176]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2010-04-24 209768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Service Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-24 136176]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-01-05 238328]
S3 hpdoccardsvc;HP Documention Flash Card Detection Service; C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe [2010-03-24 83240]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 Update Server;BitDefender Update Server v2; C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2011-03-08 467248]

-----------------EOF-----------------

Voilà!
 
 

Winx

Avatar de Winx
19826 messages
No-Life
No-Life
AidoHardware
AidoHardware
AidoAntivirus
AidoAntivirus
AidoWindows
AidoWindows

Lien direct Le 25 Juin 2011 à 10h47


Fais ceci,

* Désactive ton Antivirus pour le moment.
* Télécharge Ad-Remover (de C_XX) sur le bureau.

* /!\ Déconnecte-toi et ferme toutes les applications en cours /!\
* Double clic sur le programme pour le lancer...
* Pour Vista et Seven toujours faire un clic droit, et choisir lancer comme administrateur
* Au menu principal choisis l'option "Scanner"

* /!\ Laisse travailler l'outil /!\
* Patiente jusqu'à la fin du scan sans rien faire d'autre sur ton PC.
* Un rapport apparaitra à la fin, poste le sur le forum dans ta réponse.
Si tu ne trouve pas !
(Le rapport est aussi sauvegardé sous C:\Ad-Report-SCAN.log)

  Je n'ai pas la prétention de résoudre les problèmes, mais celle de vous aider à les résoudre ;-)
 

Prospero

Avatar de Prospero
49 messages
Disquette
Disquette

Lien direct Le 25 Juin 2011 à 18h22

Ah, alors nous voilà rendus au problème Ad-Remover!!!

Eh bien les mecs de bit-Defender m'en ont parlé aussi (Mais en m'indiquant une utilisation légèrement différente de la tienne, donc c'est intéressant!) mais JE NE PEUX ABSOLUMENT PAS LE TELECHARGER!!!
Alors, je n'ai aucun idée du pourquoi : est-il censuré depuis la Chine??? Ca me paraît absurde, en tout cas, le lien que tu m'as donné ne marche évidemment pas, mais en fait depuis n'importe quel site de téléchargement, ou bien sûr en voulant aller à son site officiel lui-même, il est systématiquement inaccessible!Triste(( Ce n'est pas un problème temporaire, c'est tous les jours.

Donc, est-ce qu'il vous est possible via ce site de m'envoyer le fichier d'installation??? Ca doit être un truc qui ne prend pas beaucoup de place, mais je ne suis pas un spécialiste : y a-t-il des sites sur le net où on peut s'envoyer ce genre de chose??? Sinon j'ai MSN! En tout cas, je suis prêt à me mettre en contact avec quiconque peut m'envoyer Ad-remover car moi je ne peut rien faire depuis mon ordi!

As-tu une solution?
Et encore désolé pour le dérangement!

Prospero
 
 

Winx

Avatar de Winx
19826 messages
No-Life
No-Life
AidoHardware
AidoHardware
AidoAntivirus
AidoAntivirus
AidoWindows
AidoWindows

Lien direct Le 25 Juin 2011 à 20h06

re,

bizarre ça, essaye en changeant le nom au téléchargement ? (ex: scanner.exe )
  Je n'ai pas la prétention de résoudre les problèmes, mais celle de vous aider à les résoudre ;-)
 

Prospero

Avatar de Prospero
49 messages
Disquette
Disquette

Lien direct Le 25 Juin 2011 à 20h32

Mais je n'ai accès à aucun fichier en téléchargement et je ne peux donc rien renommer! Dès que je clique sur un lien, ou si je saisis l'URL du site offciel, j'ai invariablement la fenêtre classqie du browser comme quoi le site ou la fenêtre est inaccessible!

Le seul moyen donc pour j'ai ad-remover c'est que quelqu'un me l'envoie par e-mail, ou msn, ou ce genre de truc. A moins qu'il existe des sites web ou A peut uploader depuis son ordi un fichier ou un programme que B peut ensuite dowloader sur son ordi!

Si tu connais un moyen, dis moi!

Merci d'avance!

Prospero
 
 

Winx

Avatar de Winx
19826 messages
No-Life
No-Life
AidoHardware
AidoHardware
AidoAntivirus
AidoAntivirus
AidoWindows
AidoWindows

Lien direct Le 28 Juin 2011 à 10h53

re,
je t'ai envoyé un MP, tu l'as reçu ?
  Je n'ai pas la prétention de résoudre les problèmes, mais celle de vous aider à les résoudre ;-)
 

<<<1234567>>>

 [Page 1 sur 7 - 92 messages]

Forum informatique > Aide Virus, Spywares et autres logiciels malveillants > MALWARE INTERNET impossible à éliminer! [Résolu]

Chargement...

Chargement