Alors voici ce log.
DiagHelp version v1.4 -
http://www.malekal.com
excute le 13/12/2007 à 15:25:50,51
Liste des derniers fichies modifies/crees dans windir\system32 et prefetch
C:\WINDOWS\prefetch\VERCLSID.EXE-28F52AD2.pf -->13/12/2007 15:25:03
C:\WINDOWS\prefetch\MRUBLASTER.EXE-2DA61F7B.pf -->13/12/2007 15:17:29
C:\WINDOWS\prefetch\WUAUCLT.EXE-1360D60A.pf -->13/12/2007 15:12:14
C:\WINDOWS\prefetch\FLASHGOT.EXE-3840CAE3.pf -->13/12/2007 15:11:54
C:\WINDOWS\prefetch\LUCOMS~1.EXE-1DF6F3E9.pf -->13/12/2007 15:10:51
C:\WINDOWS\prefetch\LUCALLBACKPROXY.EXE-29128DB6.pf -->13/12/2007 15:10:51
C:\WINDOWS\prefetch\AUPDATE.EXE-223E3682.pf -->13/12/2007 15:10:51
C:\WINDOWS\prefetch\CTFMON.EXE-05E57A5E.pf -->13/12/2007 15:05:52
C:\WINDOWS\prefetch\HELPCTR.EXE-0BD5B31B.pf -->13/12/2007 15:05:47
C:\WINDOWS\prefetch\IPODSERVICE.EXE-37043579.pf -->13/12/2007 15:05:44
C:\WINDOWS\System32\drivers\aStandard.bin -->12/12/2007 18:18:36
C:\WINDOWS\System32\drivers\nxsIO32.sys -->04/12/2007 06:10:49
C:\WINDOWS\System32\drivers\103C_HP_CPC_EL582AA-AB3 W5380d_YC_0Pavi_QTHT602_E61SEheBLU2_48_ILITHIUM_SASUSTek Computer INC._V1.04_B3.10_T051123_WXH2_L409_M1023_J160_7Intel_8Pentium D_93_#060318_N12603890_Z11C10620_G10027146.MRK -->22/11/2007 11:22:05
C:\WINDOWS\System32\drivers\secdrv.sys -->13/11/2007 17:25:53
C:\WINDOWS\System32\drivers\RtkHDAud.sys -->25/10/2007 06:29:00
C:\WINDOWS\System32\drivers\ativvpxx.vp -->29/09/2007 05:46:54
C:\WINDOWS\System32\drivers\ati2mtag.sys -->29/09/2007 03:06:00
C:\WINDOWS\System32\DSL210.log -->13/12/2007 15:23:53
C:\WINDOWS\System32\TZLog.log -->13/12/2007 14:55:09
C:\WINDOWS\System32\wpa.dbl -->13/12/2007 14:43:45
C:\WINDOWS\System32\nscompat.tlb -->06/12/2007 17:05:06
C:\WINDOWS\System32\amcompat.tlb -->06/12/2007 17:05:06
C:\WINDOWS\System32\MRT.exe -->03/12/2007 06:00:05
C:\WINDOWS\System32\CnxDslWz.log -->24/11/2007 14:35:24
C:\WINDOWS\System32\jupdate-1.6.0_03-b05.log -->24/11/2007 09:38:56
C:\WINDOWS\System32\PerfStringBackup.INI -->23/11/2007 21:03:28
C:\WINDOWS\System32\perfh009.dat -->23/11/2007 21:03:28
C:\WINDOWS\System32\perfc009.dat -->23/11/2007 21:03:28
C:\WINDOWS\System32\FNTCACHE.DAT -->23/11/2007 20:52:16
C:\WINDOWS\System32\$winnt$.inf -->22/11/2007 11:18:38
C:\WINDOWS\System32\QuickTimeVR.qtx -->14/11/2007 23:43:22
C:\WINDOWS\System32\QuickTime.qts -->14/11/2007 23:43:22
C:\WINDOWS\System32\jscript.dll -->14/11/2007 14:26:56
C:\WINDOWS\System32\tzchange.exe -->13/11/2007 18:31:11
C:\WINDOWS\System32\mshtml.dll -->30/10/2007 17:16:33
C:\WINDOWS\System32\quartz.dll -->30/10/2007 05:43:03
C:\WINDOWS\System32\xpsp3res.dll -->29/10/2007 17:04:03
C:\WINDOWS\System32\wmasf.dll -->27/10/2007 17:40:30
C:\WINDOWS\System32\shell32.dll -->26/10/2007 10:34:01
C:\WINDOWS\System32\LegitCheckControl.dll -->11/10/2007 14:12:48
C:\WINDOWS\System32\wininet.dll -->11/10/2007 13:13:45
C:\WINDOWS\System32\urlmon.dll -->11/10/2007 13:13:45
winlogon.exe
Verified: Signed
svchost.exe
Verified: Signed
ws2_32.dll
Verified: Signed
user32.dll
Verified: Signed
tcpip.sys
Verified: Signed
ndis.sys
Verified: Signed
null.sys
Verified: Signed
ListDLLs v2.25 - DLL lister for Win9x/NT
Copyright (C) 1997-2004 Mark Russinovich
Sysinternals -
http://www.sysinternals.com
------------------------------------------------------------------------------
explorer.exe pid: 1940
Command line: C:\WINDOWS\Explorer.EXE
Base Size Version Path
0x5d090000 0x9a000 5.82.2900.2982 C:\WINDOWS\system32\comctl32.dll
0x76fd0000 0x7f000 2001.12.4414.0308 C:\WINDOWS\system32\CLBCATQ.DLL
0x77050000 0xc5000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll
0x76b20000 0x11000 3.05.2284.0000 C:\WINDOWS\system32\ATL.DLL
0x164a0000 0x23000 5.02.5721.5145 C:\WINDOWS\system32\WPDShServiceObj.dll
0x10000000 0x9b000 6.85.0089.0005 C:\Program Files\Nokia\Nokia PC Suite 6\phonebrowser.dll
0x02030000 0xb3000 6.85.0107.0005 C:\Program Files\Nokia\Nokia PC Suite 6\PCSCM.dll
0x7c420000 0x87000 8.00.50727.0762 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll
0x78130000 0x9b000 8.00.50727.0762 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll
0x02220000 0xb000 6.85.0059.0000 C:\Program Files\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_eng.nlr
0x02240000 0x87000 6.85.0017.0000 C:\Program Files\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr
0x109c0000 0x2c000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceTypes.dll
0x10930000 0x49000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceApi.dll
0x7d1e0000 0x2be000 3.01.4000.4039 C:\WINDOWS\system32\msi.dll
0x00cf0000 0x4000 C:\Program Files\Unlocker\UnlockerHook.dll
0x67320000 0x2f000 2006.01.0000.0028 C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\asOEHook.dll
0x7c340000 0x56000 7.10.3052.0004 C:\WINDOWS\system32\MSVCR71.dll
0x01be0000 0x6000 6.03.0002.0116 C:\DOCUME~1\HP_Owner\LOCALS~1\Temp\IadHide5.dll
0x7c3a0000 0x7b000 7.10.3077.0000 C:\WINDOWS\system32\MSVCP71.dll
0x6b180000 0x47000 103.05.0010.0003 c:\Program Files\Common Files\Symantec Shared\ccL35.dll
0x02790000 0xd000 1.00.0000.0007 C:\PROGRA~1\MASSDO~1\MDHELPER.DLL
0x01f50000 0x1c000 7.00.0000.0000 C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll
0x02d20000 0x2c000 C:\Program Files\WinRAR\rarext.dll
0x01b00000 0x6000 C:\Program Files\Unlocker\UnlockerCOM.dll
0x03040000 0x35000 11.05.0007.0002 c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
0x7c120000 0x19000 7.10.3077.0000 C:\WINDOWS\system32\ATL71.DLL
0x00d60000 0x13000 1.00.0000.0001 C:\Program Files\ATI Technologies\ATI.ACE\atiacmxx.dll
0x013c0000 0xd000 7.00.0009.0050 C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
0x013d0000 0xd5000 1.04.0000.0000 C:\PROGRA~1\SPYBOT~1\SDHelper.dll
0x6d7c0000 0x79000 6.00.0030.0005 C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
ListDLLs v2.25 - DLL lister for Win9x/NT
Copyright (C) 1997-2004 Mark Russinovich
Sysinternals -
http://www.sysinternals.com
------------------------------------------------------------------------------
winlogon.exe pid: 932
Command line: winlogon.exe
Base Size Version Path
0x01000000 0x80000 \??\C:\WINDOWS\system32\winlogon.exe
0x5d090000 0x9a000 5.82.2900.2982 C:\WINDOWS\system32\COMCTL32.dll
0x74320000 0x3d000 3.525.1117.0000 C:\WINDOWS\system32\ODBC32.dll
0x20000000 0x17000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll
0x10000000 0x20000 6.14.0010.4176 C:\WINDOWS\system32\Ati2evxx.dll
0x77050000 0xc5000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll
0x76fd0000 0x7f000 2001.12.4414.0308 C:\WINDOWS\system32\CLBCATQ.DLL
Volume in drive C is HP_PAVILION
Volume Serial Number is 45E9-E7E1
Directory of C:\WINDOWS\temp
01/06/2005 08:02 65 536 CTPBSEQ.EXE
1 File(s) 65 536 bytes
0 Dir(s) 27 711 250 432 bytes free
Volume in drive C is HP_PAVILION
Volume Serial Number is 45E9-E7E1
Directory of C:\WINDOWS\system
07/05/1998 23:04 52 736 hpsysdrv.exe
1 File(s) 52 736 bytes
0 Dir(s) 27 711 250 432 bytes free
Volume in drive C is HP_PAVILION
Volume Serial Number is 45E9-E7E1
Directory of C:\WINDOWS\system32
04/08/2004 19:00 6 144 csrss.exe
1 File(s) 6 144 bytes
0 Dir(s) 27 711 250 432 bytes free
Contenu de Downloaded Program Files
Volume in drive C is HP_PAVILION
Volume Serial Number is 45E9-E7E1
Directory of C:\WINDOWS\Downloaded Program Files
13/12/2007 14:40 <DIR> .
13/12/2007 14:40 <DIR> ..
26/11/2007 14:14 516 CTPID.inf
10/11/2004 00:37 65 desktop.ini
26/07/2002 00:13 24 576 dwusplay.dll
26/07/2002 00:13 196 608 dwusplay.exe
27/07/2004 22:48 323 584 isusweb.dll
30/07/2007 19:24 295 muweb.inf
11/06/2007 12:21 5 021 swflash.inf
27/03/2007 14:25 465 816 wlscBase.dll
27/03/2007 14:29 320 wlscBase.inf
30/07/2007 19:24 293 wuweb.inf
10 File(s) 1 017 094 bytes
Total Files Listed:
10 File(s) 1 017 094 bytes
2 Dir(s) 27 711 246 336 bytes free
Recherche de rootkit! (Merci S!Ri)
Recherche d'infections connues
Export des clefs sensibles..
Liste des fichiers en exception sur le pare-feu XP SP2
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Updates from HP\\9972322\\Program\\Updates from HP.exe"="C:\\Program Files\\Updates from HP\\9972322\\Program\\Updates from HP.exe:*:Enabled:Updates from HP"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe:*:Enabled:hposid01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"="C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"="C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe:*:Enabled:hpqdia.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe:*:Enabled:hpqnrs08.exe"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Updates from HP\\9972322\\Program\\Updates from HP.exe"="C:\\Program Files\\Updates from HP\\9972322\\Program\\Updates from HP.exe:*:Enabled:Updates from HP"
Export de la clef SharedTaskScheduler
[SharedTaskScheduler]
exports des policies
REGEDIT4
[system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
Export des clefs sensibles..
Rechercher adresses sensibles dans le fichier HOSTS...
catchme 0.3.1319 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2007-12-13 15:26:40
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden services & system hive ...
scanning hidden registry entries ...
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Prefetcher]
"TracesProcessed"=dword:000001a4
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\\e\16#\16/\16K\0163\16.\16/\16\27\16/\16\25\16!\0160\16]
"Order"=hex:08,00,00,00,02,00,00,00,7c,00,00,00,01,00,00,00,01,00,00,00,70,..
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\\e\16#\16/\16K\0163\16.\16/\16\27\16/\16\25\16!\0160\16\,\16\20\16\23\0164\16\23\16F\16#\16\20\16/\0165\16]
"Order"=hex:08,00,00,00,02,00,00,00,0e,01,00,00,01,00,00,00,02,00,00,00,7c,..
scanning hidden files ...
scan completed successfully
hidden services: 0
hidden files: 0
KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (
http://www.security.org.sg)
Process list by traversal of KiWaitListHead
4 - System
216 - CCEVTMGR.EXE
728 - AppleMobileDevi
900 - csrss.exe
932 - winlogon.exe
980 - services.exe
992 - lsass.exe
1172 - svchost.exe
1248 - svchost.exe
1328 - svchost.exe
1456 - svchost.exe
1476 - ati2evxx.exe
1516 - SymWSC.exe
1536 - svchost.exe
1764 - CCPROXY.EXE
1876 - wmiprvse.exe
1940 - explorer.exe
1952 - SNDSrvc.exe
2400 - soffice.bin
3072 - hpqste08.exe
3236 - CCAPP.EXE
3564 - CnxDslTb.exe
3708 - StartFX.exe
3748 - LinkScannerMoni
3760 - iTunesHelper.ex
3784 - GameFace.exe
3816 - ctfmon.exe
3852 - TeaTimer.exe
3864 - pg2.exe
3872 - GoogleToolbarNo
3888 - SmartDoctor.exe
4016 - hpqtra08.exe
4036 - Updates from HP
4084 - scheduler.exe
4232 - iPodService.exe
13808 - cmd.exe
Total number of processes = 36
NOTE: Under WinXP, this will not show all processes.
KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (
http://www.security.org.sg)
Driver/Module list by traversal of PsLoadedModuleList
804D7000 - \WINDOWS\system32\ntkrnlpa.exe
806E2000 - \WINDOWS\system32\hal.dll
F7B50000 - \WINDOWS\system32\KDCOM.DLL
F7A60000 - \WINDOWS\system32\BOOTVID.dll
F7521000 - ACPI.sys
F7B52000 - \WINDOWS\system32\DRIVERS\WMILIB.SYS
F7510000 - pci.sys
F7650000 - isapnp.sys
F7660000 - ohci1394.sys
F7670000 - \WINDOWS\system32\DRIVERS\1394BUS.SYS
F7C18000 - pciide.sys
F78D0000 - \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
F7B54000 - viaide.sys
F7B56000 - intelide.sys
F7680000 - MountMgr.sys
F74F1000 - ftdisk.sys
F78D8000 - PartMgr.sys
F7690000 - VolSnap.sys
F74D9000 - atapi.sys
F76A0000 - disk.sys
F76B0000 - \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
F74B9000 - fltMgr.sys
F74A7000 - sr.sys
F76C0000 - PxHelp20.sys
F7490000 - KSecDD.sys
F7403000 - Ntfs.sys
F73D6000 - NDIS.sys
F76D0000 - sbp2port.sys
F73BB000 - Mup.sys
F7800000 - \SystemRoot\system32\DRIVERS\intelppm.sys
F66C5000 - \SystemRoot\system32\DRIVERS\ati2mtag.sys
F66B1000 - \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
F668C000 - \SystemRoot\system32\DRIVERS\HDAudBus.sys
F7980000 - \SystemRoot\system32\DRIVERS\usbuhci.sys
F6669000 - \SystemRoot\system32\DRIVERS\USBPORT.SYS
F7988000 - \SystemRoot\system32\DRIVERS\usbehci.sys
F7810000 - \SystemRoot\system32\DRIVERS\nic1394.sys
F63BB000 - \SystemRoot\system32\DRIVERS\3xHybrid.sys
F6398000 - \SystemRoot\system32\DRIVERS\ks.sys
F7B10000 - \SystemRoot\system32\DRIVERS\BdaSup.SYS
F634D000 - \SystemRoot\system32\DRIVERS\PCTELSAP.SYS
F6234000 - \SystemRoot\system32\DRIVERS\AGRSM.sys
F7B6E000 - \SystemRoot\system32\DRIVERS\USBD.SYS
F7990000 - \SystemRoot\System32\Drivers\Modem.SYS
F620E000 - \SystemRoot\system32\DRIVERS\e100b325.sys
F61FA000 - \SystemRoot\system32\DRIVERS\parport.sys
F7820000 - \SystemRoot\system32\DRIVERS\imapi.sys
F7830000 - \SystemRoot\system32\DRIVERS\cdrom.sys
F7840000 - \SystemRoot\system32\DRIVERS\redbook.sys
F7998000 - \SystemRoot\System32\Drivers\GEARAspiWDM.sys
F7B20000 - \SystemRoot\system32\drivers\atkkbnt.sys
F7B24000 - \SystemRoot\System32\Drivers\Video3D32.sys
F7D9E000 - \SystemRoot\system32\DRIVERS\audstub.sys
F7850000 - \SystemRoot\system32\DRIVERS\rasl2tp.sys
F7B28000 - \SystemRoot\system32\DRIVERS\ndistapi.sys
F61E3000 - \SystemRoot\system32\DRIVERS\ndiswan.sys
F7860000 - \SystemRoot\system32\DRIVERS\raspppoe.sys
F7870000 - \SystemRoot\system32\DRIVERS\raspptp.sys
F79A0000 - \SystemRoot\system32\DRIVERS\TDI.SYS
F61D2000 - \SystemRoot\system32\DRIVERS\psched.sys
F7880000 - \SystemRoot\system32\DRIVERS\msgpc.sys
F79A8000 - \SystemRoot\system32\DRIVERS\ptilink.sys
F79B0000 - \SystemRoot\system32\DRIVERS\raspti.sys
F7890000 - \SystemRoot\system32\DRIVERS\termdd.sys
F79B8000 - \SystemRoot\system32\DRIVERS\kbdclass.sys
F79C0000 - \SystemRoot\system32\DRIVERS\mouclass.sys
F7B70000 - \SystemRoot\system32\DRIVERS\swenum.sys
F6179000 - \SystemRoot\system32\DRIVERS\update.sys
F7B34000 - \SystemRoot\system32\DRIVERS\mssmbios.sys
F78A0000 - \SystemRoot\System32\Drivers\NDProxy.SYS
AE36C000 - \SystemRoot\system32\drivers\RtkHDAud.sys
AE34A000 - \SystemRoot\system32\drivers\portcls.sys
F6AA5000 - \SystemRoot\system32\drivers\drmk.sys
F6A95000 - \SystemRoot\system32\DRIVERS\usbhub.sys
F7B76000 - \SystemRoot\System32\Drivers\Fs_Rec.SYS
F7C5D000 - \SystemRoot\System32\Drivers\Null.SYS
F7B78000 - \SystemRoot\System32\Drivers\Beep.SYS
F79E0000 - \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
F79E8000 - \SystemRoot\System32\drivers\vga.sys
F7B7A000 - \SystemRoot\System32\Drivers\mnmdd.SYS
F7B7C000 - \SystemRoot\System32\DRIVERS\RDPCDD.sys
F79F0000 - \SystemRoot\System32\Drivers\Msfs.SYS
F79F8000 - \SystemRoot\System32\Drivers\Npfs.SYS
F694F000 - \SystemRoot\system32\DRIVERS\rasacd.sys
AE2EF000 - \SystemRoot\system32\DRIVERS\ipsec.sys
AE297000 - \SystemRoot\system32\DRIVERS\tcpip.sys
AE22F000 - \SystemRoot\System32\Drivers\SYMTDI.SYS
AE20E000 - \SystemRoot\system32\DRIVERS\ipnat.sys
F6A65000 - \SystemRoot\system32\DRIVERS\wanarp.sys
F6A55000 - \SystemRoot\system32\DRIVERS\arp1394.sys
AE1F1000 - \??\C:\Program Files\Symantec\SYMEVENT.SYS
F7B00000 - \SystemRoot\System32\Drivers\SYMREDRV.SYS
F7B7E000 - \SystemRoot\System32\Drivers\SYMDNS.SYS
F6A45000 - \SystemRoot\System32\Drivers\SYMNDIS.SYS
AE1C8000 - \SystemRoot\System32\Drivers\SYMFW.SYS
F7A00000 - \SystemRoot\System32\Drivers\SYMIDS.SYS
AE19D000 - \??\C:\PROGRA~1\COMMON~1\SYMANT~1\SymcData\idsdefs\20071204.001\symidsco.sys
AE175000 - \SystemRoot\system32\DRIVERS\netbt.sys
F7B04000 - \SystemRoot\System32\drivers\ws2ifsl.sys
AE153000 - \SystemRoot\System32\drivers\afd.sys
F6A35000 - \SystemRoot\system32\DRIVERS\netbios.sys
AE055000 - \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
AE041000 - \??\c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRTPEL.SYS
AE016000 - \SystemRoot\system32\DRIVERS\rdbss.sys
ADFA7000 - \SystemRoot\system32\DRIVERS\mrxsmb.sys
F6A15000 - \SystemRoot\System32\Drivers\Fips.SYS
ADF44000 - \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
ADEF9000 - \SystemRoot\System32\Drivers\Fastfat.SYS
F7A18000 - \SystemRoot\system32\DRIVERS\usbccgp.sys
ADE5B000 - \SystemRoot\system32\DRIVERS\CnxEtU.sys
F7A20000 - \SystemRoot\system32\DRIVERS\USBSTOR.SYS
F6161000 - \SystemRoot\system32\DRIVERS\hidusb.sys
F7710000 - \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
F7720000 - \SystemRoot\system32\DRIVERS\CnxEtP.sys
ADE42000 - \SystemRoot\system32\DRIVERS\CnxTgN.sys
F6159000 - \SystemRoot\system32\DRIVERS\kbdhid.sys
F6155000 - \SystemRoot\system32\DRIVERS\mouhid.sys
BF800000 - \SystemRoot\System32\win32k.sys
AE32E000 - \SystemRoot\System32\drivers\Dxapi.sys
F7A28000 - \SystemRoot\System32\watchdog.sys
BF000000 - \SystemRoot\System32\drivers\dxg.sys
F7D69000 - \SystemRoot\System32\drivers\dxgthk.sys
BF012000 - \SystemRoot\System32\atkdisp.dll
BF052000 - \SystemRoot\System32\ati2dvag.dll
BF097000 - \SystemRoot\System32\ati2cqag.dll
BF111000 - \SystemRoot\System32\atikvmag.dll
BF17D000 - \SystemRoot\System32\atiok3x2.dll
BF1AB000 - \SystemRoot\System32\ati3duag.dll
BF4A8000 - \SystemRoot\System32\ativvaxx.dll
ABB0E000 - \SystemRoot\system32\DRIVERS\ndisuio.sys
AB495000 - \SystemRoot\system32\DRIVERS\mrxdav.sys
AB4FA000 - \??\C:\WINDOWS\system32\drivers\EIO.sys
AB32B000 - \SystemRoot\system32\DRIVERS\srv.sys
F7D2C000 - \??\C:\WINDOWS\System32\DRIVERS\nxsIO32.sys
AB15E000 - \SystemRoot\system32\drivers\wdmaud.sys
AB2CB000 - \SystemRoot\system32\drivers\sysaudio.sys
AADBE000 - \??\c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRT.SYS
AACEC000 - \??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20071212.006\NavEx15.Sys
AACD9000 - \??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20071212.006\NAVENG.Sys
AAB08000 - \SystemRoot\System32\Drivers\HTTP.sys
AAF58000 - \SystemRoot\System32\Drivers\Cdfs.SYS
AAB49000 - \SystemRoot\system32\DRIVERS\ipfltdrv.sys
F7958000 - \??\C:\Program Files\PeerGuardian2\pgfilter.sys
F7BC2000 - \??\C:\Program Files\ASUS\SmartDoctor\atidgllk.sys
BF04F000 - \SystemRoot\System32\atkosdmini.dll
BFFA0000 - \SystemRoot\System32\ATMFD.DLL
A362F000 - \SystemRoot\system32\drivers\kmixer.sys
F7CE3000 - \SystemRoot\System32\DRIVERS\KProcCheck.sys
Total number of drivers = 148
Liste des programmes installes
7 Wonders II
A Series of Unfortunate Events
Abra Academy - Returning Cast
Adobe Flash Player Plugin
Adobe Reader 7.0.5 Language Support
Adobe Reader 7.0.9
Adobe Shockwave Player
Advanced Video FX Engine
Agatha Christie Death On The Nile
Agere Systems PCI-SV92PP Soft Modem
AiO_Scan
AiO_Scan_CDA
AiOSoftware
AiOSoftwareNPI
Alien Shooter
Amazing Adventures The Lost Tomb
Apple Mobile Device Support
Apple Software Update
ASUS ATI Driver
ASUS GameFace Library
ASUS GameFace Library
ASUS GameLiveShow
ASUS GameLiveShow
ASUS Gamer OSD
ASUS SmartDoctor
ASUS SmartDoctor
ASUS Utilities
ASUS Utilities
ASUS VideoSecurity Online
ASUS VideoSecurity Online
ATI - Utilitaire de désinstallation du logiciel
ATI Catalyst Control Center
ATI Display Driver
ATI Parental Control & Encoder
AVIVO Codecs
Ballistik
Bejeweled 2 Deluxe
BeTrapped!
Bookworm Deluxe
Bricks of Egypt
Bricks Of Egypt 2
BufferChm
CameraDrivers
CameraDrivers
CC_ccProxyExt
ccCommon
ccPxyCore
Chainz
Chuzzle
CP_CalendarTemplates1
cp_LightScribeConfig
cp_LightScribePlugin
CP_Package_Basic1
CP_Package_Variety1
CP_Package_Variety2
CP_Package_Variety3
CP_Panorama1Config
Creative Live! Cam Center
Creative Live! Cam Doodling
Creative Live! Cam Manager
Creative Live! Cam Video IM Driver (1.01.01.00)
Creative Photo Calendar
Creative Photo Manager
Creative Software AutoUpdate
Creative System Information
Cubis Gold 2
CueTour
Customer Experience Enhancement
Customer Experience Enhancement
D-Link DSL-210 USB ADSL WAN Adapter
Destinations
DocProc
DocProcQFolder
DocumentViewer
DocumentViewerQFolder
Easy Internet Sign-up
Easy Internet Sign-up
Enhanced Multimedia Keyboard Solution
Escape From Paradise (remove only)
eSupportQFolder
F300
F300_Help
Fab Fashion
Fax
Fax_CDA
Feeding Frenzy
GameFace Messenger
GHOST Hunters The Haunting Of Majesty Manor
Google Toolbar for Internet Explorer
Hawaiian Explorer Pearl Harbor
Hidden Expedition Titanic (remove only)
Hidden Relics
Hide & Secret
High Definition Audio Driver Package - KB888111
HijackThis 2.0.2
Home Theater
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB896344)
Hotfix for Windows XP (KB926239)
Hotfix for Windows XP (KB935448)
HP Boot Optimizer
HP Deskjet Printer Preload
HP Document Viewer 5.3
HP Image Zone 5.3
HP Imaging Device Functions 7.0
HP Photosmart 330,380,420,470,7800,8000,8200 Series
HP Photosmart Cameras 5.0
HP Photosmart Essential
HP Photosmart, Officejet and Deskjet 7.0.A
HP PSC & OfficeJet 5.3.B
HP Software Update
HP Solution Center 7.0
HPPhotoSmartExpress
HPProductAssistant
HpSdpAppCoreApp
Insaniquarium Deluxe
Inspector-Parker
InstantShareDevices
InstantShareDevicesMFC
Intel(R) PRO Network Connections Drivers
InterVideo Home Theater
InterVideo WinDVD Player
InterVideo WinDVD Player
iTunes
J2SE Runtime Environment 5.0 Update 5
Java(TM) 6 Update 3
Jewel Quest
Jigsaw 365
Lemmings for Windows 95
LG USB Modem Driver-MDMS
LG_MobileSync
LightScribe 1.4.56.1
Links® Course Challenge – Chateau Whistler
LinkScanner
LinkScanner
Little Shop of Treasures 2
LiveReg (Symantec Corporation)
LiveUpdate 3.0 (Symantec Corporation)
Luxor
Luxor 3
Macromedia Flash Player 8
Magic Ball 2
Magic Inlay
Mah Jong Medley
Mah Jong Quest
Manuel d'utilisation de Creative Live! Cam Video IM (Français)
Media Player Classic fr
MetaProducts Mass Downloader
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Encarta Encyclopedia Standard 2005
Microsoft Money
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Works
Mirror Magic
Mozilla Firefox (2.0.0.11)
MSRedist
MSVC80_x86
MSXML 4.0 SP2 (KB936181)
MSXML 6.0 Parser (KB933579)
muvee autoProducer 4.5
My Cinema
My Cinema
Mystery Case Files - Prime Suspects (remove only)
Mystery Case Files - Ravenhearst (remove only)
Mysteryville
Mysteryville 2
Neptune's Secret
NewCopy
NewCopy_CDA
Nokia Connectivity Cable Driver
Nokia PC Suite
Nokia PC Suite
Norton AntiSpam
Norton AntiVirus 2005
Norton Internet Security
Norton Internet Security
Norton Internet Security
Norton Internet Security
Norton Internet Security
Norton Internet Security
Norton Internet Security
Norton Internet Security
Norton Internet Security
Norton Internet Security
Norton Internet Security 2005 (Symantec Corporation)
Norton Security Center
Norton WMI Update
Norton WMI Update
OCR Software by I.R.I.S 7.0
PanoStandAlone
PC-Doctor 5 for Windows
PC Connectivity Solution
PC DUAL SHOCK
PeerGuardian 2.0
PhotoGallery
Poker Superstars
ProductContextNPI
PSPrinters08
PSTAPlugin
Python 2.2 pywin32 extensions (build 203)
Python 2.2.3
QuickTime
RandMap
Readme
RealPlayer
Realtek High Definition Audio Driver
Ricochet Lost Worlds
Scan
ScannerCopy
Secrets of Olympus
Security Update for CAPICOM (KB931906)
Security Update for CAPICOM (KB931906)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB896688)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901190)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB918118)
Security Update for Windows XP (KB918439)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920213)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB921503)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB923980)
Security Update for Windows XP (KB924270)
Security Update for Windows XP (KB924496)
Security Update for Windows XP (KB924667)
Security Update for Windows XP (KB925902)
Security Update for Windows XP (KB926255)
Security Update for Windows XP (KB926436)
Security Update for Windows XP (KB927779)
Security Update for Windows XP (KB927802)
Security Update for Windows XP (KB928255)
Security Update for Windows XP (KB928843)
Security Update for Windows XP (KB929123)
Security Update for Windows XP (KB930178)
Security Update for Windows XP (KB931261)
Security Update for Windows XP (KB931784)
Security Update for Windows XP (KB932168)
Security Update for Windows XP (KB933729)
Security Update for Windows XP (KB935839)
Security Update for Windows XP (KB935840)
Security Update for Windows XP (KB936021)
Security Update for Windows XP (KB938127)
Security Update for Windows XP (KB938829)
Security Update for Windows XP (KB939653)
Security Update for Windows XP (KB941202)
Security Update for Windows XP (KB941568)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB942615)
Security Update for Windows XP (KB943460)
Security Update for Windows XP (KB944653)
Shape Solitaire
Shockwave
SkinsHP1
Skype™ 3.6
Slingo
SolutionCenter
Sonic Express Labeler
Sonic MyDVD Plus
Sonic RecordNow Audio
Sonic RecordNow Copy
Sonic RecordNow Data
Sonic Update Manager
Sonic_PrimoSDK
SPBBC
Spin & Win
Status
Symantec Network Drivers Update
SymNet
The Dark Legions
The Treasures Of Montezuma
Toolbox
Tradewinds 2
Travelogue 360 Paris (remove only)
Travelogue 360 Rome
TrayApp
Tumblebugs
Unload
Unlocker 1.8.5
Update for Windows XP (KB898461)
Update for Windows XP (KB900485)
Update for Windows XP (KB904942)
Update for Windows XP (KB908531)
Update for Windows XP (KB910437)
Update for Windows XP (KB911280)
Update for Windows XP (KB916595)
Update for Windows XP (KB920342)
Update for Windows XP (KB920872)
Update for Windows XP (KB922582)
Update for Windows XP (KB925876)
Update for Windows XP (KB927891)
Update for Windows XP (KB930916)
Update for Windows XP (KB933360)
Update for Windows XP (KB936357)
Update for Windows XP (KB938828)
Update for Windows XP (KB942763)
Update for Windows XP (KB942840)
Updates from HP (remove only)
VideoLAN VLC media player 0.8.6d
WebFldrs XP
WebReg
Winamp
Windows Driver Package - Nokia (WUDFRd) WPD (11/05/2007 6.85.35.3)
Windows Driver Package - Nokia Modem (08/03/2007 3.2)
Windows Driver Package - Nokia Modem (08/03/2007 6.84.0.2)
Windows Driver Package - Nokia Modem (10/12/2007 3.6)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Installer 3.1 (KB893803)
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player 11
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB883667
Windows XP Hotfix - KB885250
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB887742
Windows XP Hotfix - KB888113
Windows XP Hotfix - KB888239
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890175
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB891781
Windows XP Hotfix - KB892050
Windows XP Hotfix - KB893066
Wonderland - Secret Worlds
XviD MPEG-4 Video Codec
Zuma Deluxe
Volume in drive C is HP_PAVILION
Volume Serial Number is 45E9-E7E1
Directory of C:\Program Files
13/12/2007 15:01 <DIR> .
13/12/2007 15:01 <DIR> ..
27/06/2007 09:16 <DIR> 123 Free Solitaire
09/11/2006 06:11 <DIR> 3ivx
26/11/2007 09:57 <DIR> 7 Wonders II
10/12/2007 09:25 <DIR> Abra Academy - Returning Cast
09/11/2006 06:45 <DIR> AC3Filter
04/01/2006 22:07 <DIR> Adobe
20/09/2006 10:20 <DIR> adslTV
22/05/2006 12:32 <DIR> Alcohol Soft
17/05/2006 08:35 <DIR> Alwil Software
26/11/2007 06:30 <DIR> Amazing Adventures The Lost Tomb
21/06/2007 10:14 <DIR> Ant Renamer
16/09/2007 18:47 <DIR> Apple Software Update
22/06/2007 14:54 <DIR> AppSnap
17/10/2007 16:43 <DIR> Arovax Shield
01/08/2006 01:02 <DIR> a-squared
27/11/2007 19:41 <DIR> a-squared Free
13/12/2007 14:15 <DIR> ASUS
11/12/2007 20:20 <DIR> ATI Technologies
04/02/2007 17:12 <DIR> AvantGo Connect
27/02/2007 19:40 <DIR> Avi2Dvd
27/02/2007 19:38 <DIR> AviSynth 2.5
15/05/2007 07:58 <DIR> Axon Data
15/04/2007 14:29 <DIR> Bassic Technologies
08/01/2007 19:46 <DIR> Bazooka Scanner
05/12/2007 11:10 <DIR> BFG
21/12/2006 06:51 <DIR> BitComet
25/11/2007 18:18 <DIR> Bricks Of Egypt 2
10/11/2006 15:04 <DIR> burnatonce
22/06/2007 15:54 <DIR> BZFlag
20/07/2007 19:02 <DIR> Camfrog
17/07/2007 12:40 <DIR> CCleaner
18/07/2006 08:08 <DIR> CDBurnerXP Pro 3
03/06/2007 12:49 <DIR> CDisplay
08/07/2006 12:01 <DIR> Codemasters
09/11/2006 06:43 <DIR> Combined Community Codec Pack
13/12/2007 15:01 <DIR> Common Files
22/06/2007 06:06 <DIR> Comodo
30/11/2004 01:50 <DIR> ComPlus Applications
07/12/2007 17:35 <DIR> Creative
26/04/2006 06:48 <DIR> DAEMON Tools
13/08/2007 10:08 <DIR> DC++
10/12/2007 15:26 <DIR> Death On The Nile
22/08/2007 07:09 <DIR> DF?-Optimierer
21/02/2007 08:58 <DIR> Dictionnaire
06/12/2007 11:39 <DIR> DIFX
06/12/2007 16:18 <DIR> directx
07/06/2007 22:32 <DIR> DivX
24/11/2007 14:37 <DIR> D-Link
14/12/2006 18:56 <DIR> D-Link(2)
02/02/2007 11:00 <DIR> Duplicate Cleaner
13/12/2007 10:27 <DIR> eMule
03/12/2007 19:37 <DIR> Escape From Paradise
07/12/2007 11:43 <DIR> EtiketaGoGo
09/12/2007 14:00 <DIR> ExPLabs.com
21/10/2007 08:57 <DIR> FileZilla Client
19/10/2006 08:50 <DIR> FLAC
19/08/2006 13:23 <DIR> FLV Player
02/10/2007 18:33 <DIR> Foreignword
17/06/2007 14:02 <DIR> Foxit Software
13/01/2007 10:39 <DIR> Free Window Registry Repair
15/05/2007 06:01 <DIR> Future Pinball
13/12/2007 14:27 <DIR> GameFace Messenger
06/12/2007 10:36 <DIR> GameHouse
14/11/2007 22:53 <DIR> GameShadow
11/12/2007 15:21 <DIR> GHOST Hunters The Haunting Of Majesty Manor
24/11/2007 10:40 <DIR> Google
10/06/2006 15:35 <DIR> GrabIt
30/03/2007 11:28 <DIR> GRISOFT
21/10/2007 08:44 <DIR> GuerillaSoft
26/11/2007 10:33 <DIR> Gunner 2
27/05/2006 14:21 <DIR> GXTranscoder v2
08/12/2007 01:15 <DIR> Hawaiian Explorer Pearl Harbor
24/11/2007 08:46 <DIR> Hewlett-Packard
11/12/2007 09:16 <DIR> Hidden Expedition Titanic
03/12/2007 03:09 <DIR> Hidden Relics
30/11/2007 04:10 <DIR> Hide & Secret
16/02/2005 11:06 218 112 HijackThis.exe
04/01/2006 21:47 <DIR> HP
27/06/2007 13:32 <DIR> hxupdate
13/02/2007 00:17 <DIR> Intel
13/12/2007 14:56 <DIR> Internet Explorer
04/01/2006 22:06 <DIR> InterVideo
14/06/2007 07:45 <DIR> IObit
07/11/2007 02:47 <DIR> iPod
23/11/2007 21:33 <DIR> iTunes
24/11/2007 09:38 <DIR> Java
09/11/2006 05:58 <DIR> JockerSoft
23/07/2006 07:04 <DIR> Jocsoft
25/03/2006 09:05 <DIR> KC Softwares
05/07/2006 06:55 <DIR> KillProcess
09/06/2007 10:23 <DIR> Lavasoft
06/12/2007 11:20 <DIR> LG Electronics
06/12/2007 11:19 <DIR> LGE GSM PC Sync
04/01/2006 22:07 <DIR> Macrovision Corp
10/12/2007 13:19 <DIR> Mass Downloader
15/08/2006 18:11 <DIR> Matroska Playback Pack
24/11/2007 02:07 <DIR> Media Player Classic
21/05/2006 12:10 <DIR> MediaCoder
24/04/2006 08:07 <DIR> MediaInfo
23/11/2007 00:53 <DIR> Messenger
04/02/2007 17:21 <DIR> Microsoft ActiveSync
09/05/2007 08:52 <DIR> Microsoft CAPICOM 2.1.0.2
04/01/2006 21:57 <DIR> Microsoft Encarta
05/01/2005 01:21 <DIR> microsoft frontpage
14/03/2007 07:48 <DIR> Microsoft Games
04/01/2006 22:08 <DIR> Microsoft Money 2005
04/01/2006 22:09 <DIR> Microsoft Office
04/01/2006 22:09 <DIR> Microsoft Works
24/11/2006 18:03 <DIR> Mindscape
10/12/2007 09:40 <DIR> Mirror Magic
03/09/2006 00:20 <DIR> Monkey's Audio
23/11/2007 00:53 <DIR> Movie Maker
13/12/2007 15:11 <DIR> Mozilla Firefox
10/12/2007 13:22 <DIR> Mozilla Thunderbird
07/12/2007 11:43 <DIR> MRU-Blaster
06/02/2007 04:54 <DIR> MSBuild
05/01/2005 01:21 <DIR> MSN
05/01/2005 01:21 <DIR> MSN Gaming Zone
15/10/2006 15:58 <DIR> MSXML 4.0
03/08/2007 00:03 <DIR> MSXML 6.0
04/01/2006 22:12 <DIR> muvee Technologies
23/11/2007 18:20 <DIR> My Company Name
09/12/2007 01:37 <DIR> Mystery Case Files - Prime Suspects
13/12/2007 08:15 <DIR> Mystery Case Files - Ravenhearst
25/11/2007 03:37 <DIR> Mysteryville
27/11/2007 09:40 <DIR> Mysteryville 2
01/12/2007 07:42 <DIR> Neptune's Secret
15/02/2007 17:04 <DIR> Nero
23/11/2007 00:53 <DIR> NetMeeting
19/05/2006 02:16 <DIR> NetVeda
10/06/2006 15:35 <DIR> NewsLeecher(2)
06/12/2007 11:38 <DIR> Nokia
06/12/2007 04:38 <DIR> Norton Internet Security
04/01/2006 22:03 <DIR> Oberon Media
08/05/2006 17:00 <DIR> Object Fix Zip
04/01/2006 22:22 <DIR> Online Services
14/06/2007 07:35 <DIR> OpenOffice.org 2.0
17/11/2007 12:09 <DIR> OpenOffice.org 2.2
17/11/2007 12:10 <DIR> OpenOffice.org 2.3
23/11/2007 20:39 <DIR> Outlook Express
06/12/2007 11:38 <DIR> PC Connectivity Solution
04/01/2006 22:19 <DIR> PC-Doctor 5 for Windows
04/01/2006 22:19 <DIR> PC-Doctor for DOS
10/12/2007 12:26 <DIR> PeerGuardian2
09/07/2007 11:58 <DIR> phonostar
11/06/2007 13:09 <DIR> PopCap Games
27/10/2007 12:10 <DIR> Port Detective
05/09/2006 23:10 <DIR> Proximodo
04/09/2007 02:48 <DIR> Purebreaker 2 - Evolution
09/06/2006 09:02 <DIR> QuickPar
23/11/2007 21:33 <DIR> QuickTime
04/01/2006 21:58 <DIR> Real
29/04/2006 19:59 <DIR> RealArcade
26/07/2007 06:23 <DIR> Recover Files
10/10/2006 20:38 <DIR> Redoubt
06/02/2007 04:49 <DIR> Reference Assemblies
06/08/2007 06:34 <DIR> ReflexiveArcade
10/06/2006 15:35 <DIR> Ripp-it_AM
04/10/2006 08:27 <DIR> RkUnhooker
04/10/2006 08:31 <DIR> RootKit Hook Analyzer
15/06/2006 20:43 <DIR> S64Games
15/11/2007 05:07 <DIR> Scan2PDF
31/05/2006 20:00 <DIR> Screamer Radio
04/12/2007 05:22 <DIR> Skype
25/04/2006 19:55 <DIR> Smart Projects
04/01/2006 22:03 <DIR> Sonic
26/05/2007 12:08 <DIR> splus
27/11/2007 19:50 <DIR> Spybot - Search & Destroy
27/06/2007 09:03 <DIR> Super Brickanoid
23/11/2007 20:22 <DIR> Symantec
23/11/2007 20:22 <DIR> SymNetDrv
08/07/2006 13:01 <DIR> The Adventure Compagny
05/12/2007 21:02 <DIR> The Dark Legions
02/12/2007 07:41 <DIR> The Treasures Of Montezuma
07/09/2006 06:31 <DIR> Torrent Search
10/12/2007 09:28 <DIR> Travelogue 360 Paris
07/12/2007 18:20 <DIR> Travelogue 360 Rome
22/06/2007 15:42 <DIR> Tremulous
22/04/2006 07:59 <DIR> TryMedia
03/06/2007 12:49 <DIR> TT111-V3
08/01/2007 19:45 <DIR> Twin USB Vibration Gamepad
05/01/2007 08:20 <DIR> Uniblue
30/11/2004 01:50 <DIR> Uninstall Information
08/08/2006 22:17 <DIR> Unlocker
04/01/2006 22:15 <DIR> Updates from HP
26/12/2006 15:06 <DIR> USB Vibration Joystick
27/10/2007 12:52 <DIR> uTorrent
06/12/2007 16:17 <DIR> VGA USB Camera
23/11/2007 18:26 <DIR> VID_0E8F&PID_0003
21/03/2006 08:44 <DIR> VideoLAN
18/11/2007 10:53 <DIR> Virtual Earth 3D
17/04/2007 20:13 <DIR> VSO
03/06/2007 12:06 <DIR> VSRevoGroup
18/02/2007 05:32 <DIR> WebWasher
10/04/2006 06:28 <DIR> WellGet
24/11/2007 01:23 <DIR> Winamp
18/10/2007 08:31 <DIR> Winamp Remote
18/10/2007 08:26 <DIR> Winamp Toolbar
20/09/2007 05:33 <DIR> Windows Live Safety Center
06/02/2007 04:48 <DIR> Windows Media Connect 2
06/12/2007 17:04 <DIR> Windows Media Player
23/11/2007 00:53 <DIR> Windows NT
30/11/2004 01:50 <DIR> WindowsUpdate
24/11/2007 15:29 <DIR> WinLemm
03/06/2007 12:49 <DIR> WinRAR
12/08/2007 10:09 <DIR> WinSoko
29/05/2006 01:48 <DIR> WinZip
16/09/2007 18:47 <DIR> XdN Software
05/01/2005 01:21 <DIR> xerox
09/11/2006 06:17 <DIR> XviD
27/06/2007 13:31 <DIR> Yahoo!
29/04/2006 21:31 <DIR> Zone.com Deluxe Games
05/12/2007 04:54 <DIR> Zylom Games
27/06/2007 13:31 <DIR> ????????????
1 File(s) 218 112 bytes
215 Dir(s) 27 710 902 272 bytes free
Volume in drive C is HP_PAVILION
Volume Serial Number is 45E9-E7E1
Directory of C:\Program Files\common files
13/12/2007 15:01 <DIR> .
13/12/2007 15:01 <DIR> ..
04/01/2006 22:07 <DIR> Adobe
17/02/2007 01:51 <DIR> Ahead
30/06/2007 06:14 <DIR> Apple
23/11/2007 18:09 <DIR> ATI Technologies
04/01/2006 21:47 <DIR> Hewlett-Packard
04/01/2006 21:48 <DIR> HP
04/01/2006 22:06 <DIR> InstallShield
04/01/2006 22:06 <DIR> InterVideo
04/01/2006 21:29 <DIR> Java
04/01/2006 22:04 <DIR> LightScribe
13/08/2007 10:30 <DIR> Macrovision Shared
04/01/2006 22:09 <DIR> Microsoft Shared
05/01/2005 01:20 <DIR> MSSoap
04/01/2006 22:12 <DIR> muvee Technologies
27/12/2006 14:07 <DIR> Nokia
04/01/2006 22:00 <DIR> Oberon Media
05/01/2005 01:20 <DIR> ODBC
28/01/2007 07:47 <DIR> PCSuite
04/01/2006 21:58 <DIR> Real
04/01/2006 22:03 <DIR> Roxio Shared
23/11/2007 00:53 <DIR> Services
04/12/2007 05:22 <DIR> Skype
19/04/2006 05:25 <DIR> Sonic
04/01/2006 21:59 <DIR> Sonic Shared
05/01/2005 01:20 <DIR> SpeechEngines
04/01/2006 21:59 <DIR> SureThing Shared
12/12/2007 16:21 <DIR> Symantec Shared
23/11/2007 20:39 <DIR> System
04/01/2006 22:03 <DIR> TiVo Shared
14/11/2007 22:24 <DIR> Wise Installation Wizard
04/01/2006 21:58 <DIR> xing shared
0 File(s) 0 bytes
33 Dir(s) 27 710 902 272 bytes free
c:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 7.5.0.20\iTunesSetupAdmin.exe
c:\Documents and Settings\All Users\Application Data\Installations\{FCD8DCE6-94C8-4FF6-8E3E-D3C96A5A707E}\Nokia_PC_Suite_rel_6_85_12_0_eng_web.exe
c:\Documents and Settings\All Users\Application Data\Installations\{FCD8DCE6-94C8-4FF6-8E3E-D3C96A5A707E}\Installer\CommonCustomActions\UninstCCD.exe
c:\Documents and Settings\All Users\Application Data\Installations\{FCD8DCE6-94C8-4FF6-8E3E-D3C96A5A707E}\Installer\CommonCustomActions\UninstPCS.exe
c:\Documents and Settings\All Users\Application Data\Installations\{FCD8DCE6-94C8-4FF6-8E3E-D3C96A5A707E}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\LinkScannerLiteSetup_2_7_0_0105_6.exe
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\DAB3BB89\9D7D7B6A\LinkScannerChecker.exe
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\DAB3BB89\9D7D7B6A\LinkScannerConsole.exe
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\DAB3BB89\9D7D7B6A\LinkScannerMonitor.exe
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\DAB3BB89\9D7D7B6A\UpdateRestart.exe
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\DAB3BB89\9D7D7B6A\wrnetdrv_install.exe
c:\Documents and Settings\HP_Owner\.housecall6.6\getMac.exe
c:\Documents and Settings\HP_Owner\.housecall6.6\patch.exe
c:\Documents and Settings\HP_Owner\.housecall6.6\tsc.exe
c:\Documents and Settings\HP_Owner\Application Data\Adobe\Acrobat\7.0\Updater\AdbeRdr709_en_US.exe
c:\Documents and Settings\HP_Owner\Application Data\Microsoft\Installer\{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}\ARPPRODUCTICON.exe
c:\Documents and Settings\HP_Owner\Application Data\Microsoft\Installer\{E8590564-FD80-4864-B219-619BD4B3EB83}\ARPPRODUCTICON.exe
c:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\0pmusdp9.default\FlashGot.exe
c:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\0pmusdp9.default\extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}\FEBEbg.exe
c:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\0pmusdp9.default\extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}\FEBEunzip.exe
c:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\0pmusdp9.default\extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}\FEBEzip.exe
c:\Documents and Settings\HP_Owner\Application Data\phonostar-Player\update.exe
c:\Documents and Settings\HP_Owner\Application Data\phonostar-Player\update2.exe
c:\Documents and Settings\HP_Owner\Application Data\Real\RealPlayer\setup\AU_setup.exe
c:\Documents and Settings\HP_Owner\Application Data\U3\temp\cleanup.exe
c:\Documents and Settings\HP_Owner\Desktop\SymNRT.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\catchme.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\diff.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\dumphive.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\FilesInfoCmd.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\find2.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\Fport.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\grep.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\gzip.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\KProcCheck.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\LFiles.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\LISTDLLS.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\md5sums.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\pslist.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\sigcheck.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\streams.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\swreg.exe
c:\Documents and Settings\HP_Owner\Desktop\DiagHelp\tar.exe
c:\Documents and Settings\HP_Owner\Desktop\OpenOffice.org 2.0 Installation Files\instmsia.exe
c:\Documents and Settings\HP_Owner\Desktop\OpenOffice.org 2.0 Installation Files\instmsiw.exe
c:\Documents and Settings\HP_Owner\Desktop\OpenOffice.org 2.0 Installation Files\setup.exe
c:\Documents and Settings\HP_Owner\Desktop\OpenOffice.org 2.0 Installation Files\java\jre-1_5_0_07-windows-i586-p.exe
c:\Documents and Settings\HP_Owner\Desktop\OpenOffice.org 2.2 Installation Files\instmsia.exe
c:\Documents and Settings\HP_Owner\Desktop\OpenOffice.org 2.2 Installation Files\instmsiw.exe
c:\Documents and Settings\HP_Owner\Desktop\OpenOffice.org 2.2 Installation Files\setup.exe
c:\Documents and Settings\HP_Owner\Desktop\OpenOffice.org 2.3 Installation Files\instmsia.exe
c:\Documents and Settings\HP_Owner\Desktop\OpenOffice.org 2.3 Installation Files\instmsiw.exe
c:\Documents and Settings\HP_Owner\Desktop\OpenOffice.org 2.3 Installation Files\setup.exe
c:\Documents and Settings\HP_Owner\Desktop\OpenOffice.org 2.3 Installation Files\java\jre-6u2-windows-i586-p.exe
c:\Documents and Settings\HP_Owner\Local Settings\Application Data\Bassic_Technologies\OnlineRadioTuner.exe_StrongName_35sngzagvlze2z1z5wk20edgufcu43yc
c:\Documents and Settings\HP_Owner\My Documents\OOo_2.3.0_Win32Intel_install_wJRE_fr.exe
c:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\CZ07QLOD\iTunesSetupAdmin[1].exe
c:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\W32FSHKJ\iTunesSetupAdmin[1].exe
c:\Documents and Settings\All Users\Application Data\Microsoft\USMT\iconlib.dll
c:\Documents and Settings\All Users\Application Data\PopCap\PopCapLoader\popcap\heavyweapon\HeavyWeapon.dll
c:\Documents and Settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\winamptbres.dll
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\mMSI.dll
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\4B0456EC\ECBE8ECB\SearchShield.dll
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\827C26DB\BC32353\zlib1.dll
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\9B35EE0A\9D7D7B6A\XPLPP.dll
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\DAB3BB89\9D7D7B6A\LinkScannerIE.dll
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\DAB3BB89\9D7D7B6A\NetProcTrack.dll
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\DAB3BB89\9D7D7B6A\SiteBlocker.dll
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\DAB3BB89\9D7D7B6A\SploitChecker.dll
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\DAB3BB89\9D7D7B6A\wrnetdrv.dll
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\DAB3BB89\9D7D7B6A\XPLmwSDK.dll
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\DAB3BB89\9D7D7B6A\XPLPP.dll
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\DBAE6E6B\9D7D7B6A\LinkScannerIE.dll
c:\Documents and Settings\All Users\Application Data\{C02AA202-5DA6-404B-946D-B75886E8252D}\offline\mMSI.dll\mMSIExec.dll
c:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\0pmusdp9.default\extensions\{2b5cfade-d133-429c-aea5-865911de4e1d}\chrome\plugins\2.0 r11\NPSWF32.dll
c:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\0pmusdp9.default\extensions\{2b5cfade-d133-429c-aea5-865911de4e1d}\chrome\plugins\3.0 r18\NPSWF32.dll
c:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\0pmusdp9.default\extensions\{2b5cfade-d133-429c-aea5-865911de4e1d}\chrome\plugins\4.0 r28\NPSWF32.dll
c:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\0pmusdp9.default\extensions\{2b5cfade-d133-429c-aea5-865911de4e1d}\chrome\plugins\6.0 r79\NPSWF32.dll
c:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\0pmusdp9.default\extensions\{2b5cfade-d133-429c-aea5-865911de4e1d}\chrome\plugins\7.0 r63\NPSWF32.dll
c:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\0pmusdp9.default\extensions\{2b5cfade-d133-429c-aea5-865911de4e1d}\chrome\plugins\8.0 r24\NPSWF32.dll
c:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\0pmusdp9.default\extensions\{2b5cfade-d133-429c-aea5-865911de4e1d}\chrome\plugins\9.0 r16\NPSWF32.dll
c:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\0pmusdp9.default\extensions\{D249FD00-4DF9-11D9-9FDC-0080481ADA61}\components\mpint.dll
c:\Documents and Settings\HP_Owner\Application Data\phonostar-Player\skins\phonostarstd.dll
c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll
****** Fin du rapport DiagHelp
Veuillez svp envoyer le fichier C:\upload_moi_CHRISTOS.tar.gz a l'adresse
http://upload.malekal.com
Bonne journée