Sujet Précédent Sujet Suivant

PC qui rame de plus en plus

Fermé
noshelter Messages postés 75 Date d'inscription jeudi 22 mars 2007 Statut Membre Dernière intervention 23 avril 2010 - 27 déc. 2008 à 18:00
 Utilisateur anonyme - 27 déc. 2008 à 19:57
Bonjour tout le monde, l'ordinateur de mon beau pere rame de plus en plus, et impossible de se connecter à msn, j'ai vraiment l'impression que l'ordinateur contient beaucoup de virus et autres malwares. je demande donc de l'aide pour m'aider à soigner tout ça.
Merci d'avance
A voir également:

29 réponses

  • 1
  • 2
Réponse 1 / 29
Utilisateur anonyme
27 déc. 2008 à 18:02
Salut ,

commence par sa;


▶ Télécharge hijackthis

▶ Enregistre la cible sous .... "le bureau"

▶ Fais un double-clic sur "HJTInstall.exe" afin de lancer l'installation

▶ Clique sur Install ensuite sur "I Accept"

▶ Clique sur" Do a scan system and save log file"

▶ Le bloc-notes s'ouvrira, fais un copier-coller de tout son contenu ici dans ta prochaine réponse

▶ Tuto hijackthis(Merci à Balltrap34)

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
0
Réponse 2 / 29
noshelter Messages postés 75 Date d'inscription jeudi 22 mars 2007 Statut Membre Dernière intervention 23 avril 2010
27 déc. 2008 à 18:05
voila le rapport:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:04:52, on 27/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
C:\Program Files\Pack Securite\Anti-Virus\fsgk32st.exe
C:\Program Files\Pack Securite\Common\FSMA32.EXE
C:\Program Files\Pack Securite\Anti-Virus\FSGK32.EXE
c:\APPS\HIDSERVICE\HIDSERVICE.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Pack Securite\Common\FSMB32.EXE
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Pack Securite\Common\FCH32.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
c:\APPS\Powercinema\Kernel\TV\CLSched.exe
C:\Program Files\Pack Securite\Common\FAMEH32.EXE
C:\Program Files\Pack Securite\Anti-Virus\fsqh.exe
C:\Program Files\Pack Securite\FSPC\fspc.exe
C:\Program Files\Pack Securite\FSAUA\program\fsaua.exe
C:\Program Files\Pack Securite\Anti-Virus\fssm32.exe
C:\Program Files\Pack Securite\FWES\Program\fsdfwd.exe
C:\Program Files\Pack Securite\FSAUA\program\fsus.exe
C:\Program Files\Pack Securite\Anti-Virus\fsav32.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\RTHDCPL.EXE
C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
C:\apps\ABoard\ABoard.exe
C:\Program Files\Pack Securite\Common\FSM32.EXE
C:\apps\ABoard\AOSD.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Pack Securite\FSGUI\fsguidll.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\WINDOWS\system32\dwwin.exe
C:\PROGRA~1\Yahoo!\Common\unyt.exe
D:\DOCUME~1\MICHEL\LOCALS~1\Temp\GLB3A3.tmp
C:\WINDOWS\system32\msiexec.exe
D:\DOCUME~1\MICHEL\LOCALS~1\Temp\UNYT_P~1.EXE
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\dumprep.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://home.sweetim.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://home.sweetim.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Packard Bell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ATIPTA] "C:\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32"
O4 - HKLM\..\Run: [ACTIVBOARD] c:\apps\ABoard\ABoard.exe
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Pack Securite\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Pack Securite\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [close surf mail dupe] D:\Documents and Settings\All Users\Application Data\Tick Find Close Surf\mags save.exe
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKCU\..\Run: [Ping Remote] D:\DOCUME~1\MICHEL\APPLIC~1\GPLACT~1\Burn Bone View.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\Pack Securite\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\Pack Securite\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Pack Securite\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Pack Securite\Common\FSMA32.EXE
O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: MysqlInventime - Unknown owner - C:\Apps\INVENT~1\mysql\bin\mysqld-nt.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
0
Réponse 3 / 29
noshelter Messages postés 75 Date d'inscription jeudi 22 mars 2007 Statut Membre Dernière intervention 23 avril 2010
27 déc. 2008 à 18:13
Quequ'un peut il m'aider?
0
gadjet
27 déc. 2008 à 18:14
salut pour suivre



Télécharge maintenant Navilog1 depuis-ce lien :

http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe

Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, Fais un Clic-droit sur le raccourci Navilog1 présent sur ton bureau et choisis :

"Exécuter en tant qu'administrateur".

Au menu principal, Fais le choix 1
Laisse toi guider et patiente.
Patiente jusqu'au message :
*** Analyse Termine le ..... ***
Appuie sur une touche le blocnote va s'ouvrir.
Copie-colle l'intégralité du rapport dans une réponse.
Referme le blocnote
Le rapport fixnavi.txt est en outre sauvegardé a la racine du disque

Tuto : http://www.malekal.com/Adware.Magic_Control.php
0
Réponse 4 / 29
Utilisateur anonyme
27 déc. 2008 à 18:16
Re,,tu fait pas ce que gadget le nul te dit.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 29
Utilisateur anonyme
27 déc. 2008 à 18:20
Re,

Passe LOP.

Télécharge Lop S&D

option 1
0
Réponse 6 / 29
noshelter Messages postés 75 Date d'inscription jeudi 22 mars 2007 Statut Membre Dernière intervention 23 avril 2010
27 déc. 2008 à 18:22
lol il dit des betises gadjet?
0
Réponse 7 / 29
Utilisateur anonyme
27 déc. 2008 à 18:23
Re,

Fait LOP

Télécharge Lop S&D


▶ Double-clique dessus pour lancer l'installation

▶ Puis double-clique sur le raccourci Lop S&D présent sur ton bureau

▶ Séléctionne la langue souhaitée

▶ Puis choisis l'Option 1 ( Recherche )

▶ Patiente jusqu'à la fin du scan

▶ Poste le rapport généré ( C:lopR.txt )

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
0
Réponse 8 / 29
noshelter Messages postés 75 Date d'inscription jeudi 22 mars 2007 Statut Membre Dernière intervention 23 avril 2010
27 déc. 2008 à 18:28
Voila le rapport de lop:


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : Award Medallion BIOS v6.00PG
USER : MICHEL ( Administrator )
BOOT : Normal boot
Antivirus : Pack Securite Plus 7.00 7.00 (Activated)
Firewall : Pack Securite Plus 7.00 7.00 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:29 Go (Free:19 Go)
D:\ (Local Disk) - NTFS - Total:148 Go (Free:128 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 27/12/2008|18:21 )

--------------------\\ Listing des dossiers dans APPLIC~1

[20/11/2008|21:23] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[11/11/2005|09:55] D:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[22/05/2007|16:47] D:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL Downloads
[16/11/2008|10:07] D:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishGamesCache
[12/10/2008|18:01] D:\DOCUME~1\ALLUSE~1\APPLIC~1\blg
[15/09/2008|10:07] D:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[13/05/2006|20:00] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Byte Real Aim Type
[15/09/2008|21:03] D:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
[17/12/2008|20:06] D:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonIJPLM
[31/12/2005|12:08] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Ciel
[11/11/2005|10:07] D:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[31/05/2008|07:42] D:\DOCUME~1\ALLUSE~1\APPLIC~1\ENJOY Plus!
[02/07/2008|20:01] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Flood Light Games
[05/07/2008|12:38] D:\DOCUME~1\ALLUSE~1\APPLIC~1\FloodLightGames
[23/05/2008|15:47] D:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[25/05/2008|16:49] D:\DOCUME~1\ALLUSE~1\APPLIC~1\fssg
[29/03/2007|18:25] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[18/09/2007|13:13] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Logishrd
[17/08/2007|21:19] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[14/04/2007|15:11] D:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
[27/12/2008|18:21] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[13/04/2006|16:30] D:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN Search Toolbar
[20/09/2008|13:40] D:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[07/09/2008|17:14] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
[11/11/2005|09:55] D:\DOCUME~1\ALLUSE~1\APPLIC~1\OD2
[05/10/2008|01:06] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[05/10/2008|01:25] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle VideoSpin
[08/09/2008|20:50] D:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[11/11/2005|09:56] D:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[14/09/2008|15:57] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[11/11/2005|18:37] D:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[03/09/2008|12:43] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[27/12/2008|17:55] D:\DOCUME~1\ALLUSE~1\APPLIC~1\SweetIM
[11/11/2008|12:34] D:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[01/08/2008|16:19] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf
[11/11/2005|10:06] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[05/10/2008|01:18] D:\DOCUME~1\ALLUSE~1\APPLIC~1\VideoSpin
[11/11/2005|09:56] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[29/03/2006|15:34] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[12/10/2008|18:02] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[25/05/2008|18:35] D:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[26/10/2008|19:01] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[26/05/2008|00:14] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[26/05/2008|00:14] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[26/05/2008|00:14] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[26/05/2008|00:14] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[11/11/2005|09:59] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[11/11/2005|09:56] D:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver

[14/11/2005|18:19] D:\DOCUME~1\DEFTEMP\APPLIC~1\Identities
[14/11/2005|18:19] D:\DOCUME~1\DEFTEMP\APPLIC~1\Macromedia
[14/11/2005|18:19] D:\DOCUME~1\DEFTEMP\APPLIC~1\Microsoft
[14/11/2005|18:19] D:\DOCUME~1\DEFTEMP\APPLIC~1\Real
[11/11/2005|09:59] D:\DOCUME~1\DEFTEMP\APPLIC~1\Symantec
[14/11/2005|18:19] D:\DOCUME~1\DEFTEMP\APPLIC~1\You've Got Pictures Screensaver

[13/09/2006|15:01] D:\DOCUME~1\Elodie\APPLIC~1\Adobe
[23/03/2008|15:21] D:\DOCUME~1\Elodie\APPLIC~1\AdobeUM
[02/01/2006|13:44] D:\DOCUME~1\Elodie\APPLIC~1\AOL
[19/01/2006|20:57] D:\DOCUME~1\Elodie\APPLIC~1\CyberLink
[23/03/2008|15:22] D:\DOCUME~1\Elodie\APPLIC~1\F-Secure
[23/03/2008|15:23] D:\DOCUME~1\Elodie\APPLIC~1\Google
[29/03/2006|15:36] D:\DOCUME~1\Elodie\APPLIC~1\GTek
[19/01/2006|11:03] D:\DOCUME~1\Elodie\APPLIC~1\Help
[14/11/2005|18:19] D:\DOCUME~1\Elodie\APPLIC~1\Identities
[13/09/2006|13:38] D:\DOCUME~1\Elodie\APPLIC~1\Leadertech
[02/01/2006|14:34] D:\DOCUME~1\Elodie\APPLIC~1\Macromedia
[12/02/2006|21:58] D:\DOCUME~1\Elodie\APPLIC~1\Microsoft
[14/04/2006|18:31] D:\DOCUME~1\Elodie\APPLIC~1\MSN Search Toolbar
[12/02/2006|22:01] D:\DOCUME~1\Elodie\APPLIC~1\MSNInstaller
[19/01/2006|21:00] D:\DOCUME~1\Elodie\APPLIC~1\OD2
[23/03/2008|15:21] D:\DOCUME~1\Elodie\APPLIC~1\OpenOffice.org2
[11/02/2006|17:41] D:\DOCUME~1\Elodie\APPLIC~1\Real
[18/09/2006|09:57] D:\DOCUME~1\Elodie\APPLIC~1\Skype
[13/09/2006|13:39] D:\DOCUME~1\Elodie\APPLIC~1\Sonic
[10/02/2006|18:42] D:\DOCUME~1\Elodie\APPLIC~1\Sun
[11/11/2005|09:59] D:\DOCUME~1\Elodie\APPLIC~1\Symantec
[18/09/2006|09:36] D:\DOCUME~1\Elodie\APPLIC~1\Ulead Systems
[23/03/2008|15:27] D:\DOCUME~1\Elodie\APPLIC~1\VMNTOOLBAR
[14/11/2005|18:19] D:\DOCUME~1\Elodie\APPLIC~1\You've Got Pictures Screensaver

[26/05/2008|00:14] D:\DOCUME~1\ELODIE~1.107\APPLIC~1\Identities
[26/05/2008|00:14] D:\DOCUME~1\ELODIE~1.107\APPLIC~1\Macromedia
[26/05/2008|00:14] D:\DOCUME~1\ELODIE~1.107\APPLIC~1\Microsoft
[26/05/2008|00:14] D:\DOCUME~1\ELODIE~1.107\APPLIC~1\Real
[11/11/2005|09:59] D:\DOCUME~1\ELODIE~1.107\APPLIC~1\Symantec
[11/11/2005|09:56] D:\DOCUME~1\ELODIE~1.107\APPLIC~1\You've Got Pictures Screensaver

[26/05/2008|00:14] D:\DOCUME~1\INVITe\APPLIC~1\Identities
[26/05/2008|00:14] D:\DOCUME~1\INVITe\APPLIC~1\Macromedia
[26/05/2008|00:14] D:\DOCUME~1\INVITe\APPLIC~1\Microsoft
[26/05/2008|00:14] D:\DOCUME~1\INVITe\APPLIC~1\Real
[11/11/2005|09:59] D:\DOCUME~1\INVITe\APPLIC~1\Symantec
[11/11/2005|09:56] D:\DOCUME~1\INVITe\APPLIC~1\You've Got Pictures Screensaver

[28/12/2006|11:41] D:\DOCUME~1\INVITS~1\APPLIC~1\Adobe
[09/01/2007|09:19] D:\DOCUME~1\INVITS~1\APPLIC~1\AdobeUM
[02/01/2006|14:57] D:\DOCUME~1\INVITS~1\APPLIC~1\AOL
[09/01/2007|09:19] D:\DOCUME~1\INVITS~1\APPLIC~1\CyberLink
[02/07/2007|13:51] D:\DOCUME~1\INVITS~1\APPLIC~1\Google
[14/11/2005|18:19] D:\DOCUME~1\INVITS~1\APPLIC~1\Identities
[25/05/2006|15:47] D:\DOCUME~1\INVITS~1\APPLIC~1\Macromedia
[25/05/2006|15:48] D:\DOCUME~1\INVITS~1\APPLIC~1\Microsoft
[02/07/2007|11:18] D:\DOCUME~1\INVITS~1\APPLIC~1\Mozilla
[29/12/2006|13:28] D:\DOCUME~1\INVITS~1\APPLIC~1\OD2
[09/01/2007|09:19] D:\DOCUME~1\INVITS~1\APPLIC~1\Real
[28/12/2006|13:08] D:\DOCUME~1\INVITS~1\APPLIC~1\Sun
[11/11/2005|09:59] D:\DOCUME~1\INVITS~1\APPLIC~1\Symantec
[14/11/2005|18:19] D:\DOCUME~1\INVITS~1\APPLIC~1\You've Got Pictures Screensaver

[31/12/2005|10:39] D:\DOCUME~1\JULIE\APPLIC~1\Adobe
[01/02/2006|18:34] D:\DOCUME~1\JULIE\APPLIC~1\AdobeUM
[28/12/2005|19:07] D:\DOCUME~1\JULIE\APPLIC~1\AOL
[15/01/2006|16:52] D:\DOCUME~1\JULIE\APPLIC~1\CyberLink
[09/01/2007|09:06] D:\DOCUME~1\JULIE\APPLIC~1\EoRezo
[17/04/2007|13:55] D:\DOCUME~1\JULIE\APPLIC~1\F-Secure
[04/04/2007|13:19] D:\DOCUME~1\JULIE\APPLIC~1\Google
[20/07/2006|14:22] D:\DOCUME~1\JULIE\APPLIC~1\Help
[14/11/2005|18:19] D:\DOCUME~1\JULIE\APPLIC~1\Identities
[14/11/2005|18:19] D:\DOCUME~1\JULIE\APPLIC~1\Macromedia
[14/05/2006|20:26] D:\DOCUME~1\JULIE\APPLIC~1\mess junk eggs
[30/04/2007|15:03] D:\DOCUME~1\JULIE\APPLIC~1\MessengerSkinner
[24/02/2006|12:23] D:\DOCUME~1\JULIE\APPLIC~1\Microsoft
[17/04/2007|13:53] D:\DOCUME~1\JULIE\APPLIC~1\Mozilla
[02/01/2006|14:47] D:\DOCUME~1\JULIE\APPLIC~1\OD2
[14/05/2006|20:26] D:\DOCUME~1\JULIE\APPLIC~1\okaytrustbolt
[06/02/2006|20:07] D:\DOCUME~1\JULIE\APPLIC~1\Real
[28/09/2006|12:10] D:\DOCUME~1\JULIE\APPLIC~1\Skype
[29/01/2006|13:53] D:\DOCUME~1\JULIE\APPLIC~1\Sun
[01/03/2006|12:55] D:\DOCUME~1\JULIE\APPLIC~1\Symantec
[15/01/2006|16:52] D:\DOCUME~1\JULIE\APPLIC~1\Ulead Systems
[14/11/2005|18:19] D:\DOCUME~1\JULIE\APPLIC~1\You've Got Pictures Screensaver

[26/05/2008|00:14] D:\DOCUME~1\JULIE~1.107\APPLIC~1\Identities
[26/05/2008|00:14] D:\DOCUME~1\JULIE~1.107\APPLIC~1\Macromedia
[26/05/2008|00:14] D:\DOCUME~1\JULIE~1.107\APPLIC~1\Microsoft
[26/05/2008|00:14] D:\DOCUME~1\JULIE~1.107\APPLIC~1\Real
[11/11/2005|09:59] D:\DOCUME~1\JULIE~1.107\APPLIC~1\Symantec
[11/11/2005|09:56] D:\DOCUME~1\JULIE~1.107\APPLIC~1\You've Got Pictures Screensaver

[06/04/2006|15:03] D:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[04/07/2008|10:21] D:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[14/05/2006|20:26] D:\DOCUME~1\LOCALS~1\APPLIC~1\okaytrustbolt

[26/06/2006|14:12] D:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft

[05/08/2006|15:56] D:\DOCUME~1\LOCALS~1.000\APPLIC~1\Microsoft

[09/01/2007|09:18] D:\DOCUME~1\LOCALS~1.001\APPLIC~1\Microsoft

[09/01/2007|09:18] D:\DOCUME~1\LOCALS~1.002\APPLIC~1\Microsoft

[25/03/2007|12:55] D:\DOCUME~1\LOCALS~1.003\APPLIC~1\Microsoft

[23/04/2007|17:34] D:\DOCUME~1\LOCALS~1.004\APPLIC~1\Microsoft

[03/06/2007|11:13] D:\DOCUME~1\LOCALS~1.005\APPLIC~1\Microsoft

[02/09/2007|22:42] D:\DOCUME~1\LOCALS~1.006\APPLIC~1\Microsoft

[23/05/2006|19:50] D:\DOCUME~1\MARYSE\APPLIC~1\Adobe
[30/12/2005|18:21] D:\DOCUME~1\MARYSE\APPLIC~1\AOL
[14/11/2005|18:19] D:\DOCUME~1\MARYSE\APPLIC~1\Identities
[30/12/2005|18:24] D:\DOCUME~1\MARYSE\APPLIC~1\Macromedia
[14/11/2005|18:19] D:\DOCUME~1\MARYSE\APPLIC~1\Microsoft
[09/05/2006|20:14] D:\DOCUME~1\MARYSE\APPLIC~1\MSN Search Toolbar
[01/06/2006|15:54] D:\DOCUME~1\MARYSE\APPLIC~1\OD2
[14/11/2005|18:19] D:\DOCUME~1\MARYSE\APPLIC~1\Real
[30/12/2005|18:24] D:\DOCUME~1\MARYSE\APPLIC~1\Sun
[30/12/2005|18:23] D:\DOCUME~1\MARYSE\APPLIC~1\Symantec
[30/10/2006|16:19] D:\DOCUME~1\MARYSE\APPLIC~1\Ulead Systems
[14/11/2005|18:19] D:\DOCUME~1\MARYSE\APPLIC~1\You've Got Pictures Screensaver

[26/05/2008|00:14] D:\DOCUME~1\MARYSE~1.107\APPLIC~1\Identities
[26/05/2008|00:14] D:\DOCUME~1\MARYSE~1.107\APPLIC~1\Macromedia
[26/05/2008|00:14] D:\DOCUME~1\MARYSE~1.107\APPLIC~1\Microsoft
[26/05/2008|00:14] D:\DOCUME~1\MARYSE~1.107\APPLIC~1\Real
[11/11/2005|09:59] D:\DOCUME~1\MARYSE~1.107\APPLIC~1\Symantec
[11/11/2005|09:56] D:\DOCUME~1\MARYSE~1.107\APPLIC~1\You've Got Pictures Screensaver

[25/12/2008|18:03] D:\DOCUME~1\MICHEL\APPLIC~1\Adobe
[26/05/2008|07:54] D:\DOCUME~1\MICHEL\APPLIC~1\AdobeUM
[12/10/2008|18:02] D:\DOCUME~1\MICHEL\APPLIC~1\BeachPartyCraze
[03/07/2008|18:30] D:\DOCUME~1\MICHEL\APPLIC~1\Big Fish Games
[25/09/2008|16:12] D:\DOCUME~1\MICHEL\APPLIC~1\blg
[17/09/2008|18:15] D:\DOCUME~1\MICHEL\APPLIC~1\Canon
[20/09/2008|08:08] D:\DOCUME~1\MICHEL\APPLIC~1\CD-LabelPrint
[07/11/2008|22:21] D:\DOCUME~1\MICHEL\APPLIC~1\CyberLink
[31/05/2008|07:42] D:\DOCUME~1\MICHEL\APPLIC~1\ENJOY Plus!
[08/10/2008|20:49] D:\DOCUME~1\MICHEL\APPLIC~1\FarmerJane
[02/07/2008|20:01] D:\DOCUME~1\MICHEL\APPLIC~1\Flood Light Games
[05/07/2008|12:38] D:\DOCUME~1\MICHEL\APPLIC~1\FloodLightGames
[02/07/2008|14:55] D:\DOCUME~1\MICHEL\APPLIC~1\F-Secure
[17/12/2008|21:00] D:\DOCUME~1\MICHEL\APPLIC~1\Google
[27/10/2008|18:03] D:\DOCUME~1\MICHEL\APPLIC~1\GPLACTIVE
[26/12/2008|17:30] D:\DOCUME~1\MICHEL\APPLIC~1\gtk-2.0
[24/07/2008|17:52] D:\DOCUME~1\MICHEL\APPLIC~1\Help
[26/05/2008|00:14] D:\DOCUME~1\MICHEL\APPLIC~1\Identities
[19/06/2008|16:31] D:\DOCUME~1\MICHEL\APPLIC~1\Leadertech
[25/05/2008|16:42] D:\DOCUME~1\MICHEL\APPLIC~1\Macromedia
[26/12/2008|19:17] D:\DOCUME~1\MICHEL\APPLIC~1\Microsoft
[03/09/2008|16:50] D:\DOCUME~1\MICHEL\APPLIC~1\Mozilla
[27/12/2008|18:06] D:\DOCUME~1\MICHEL\APPLIC~1\MSNInstaller
[01/06/2008|13:54] D:\DOCUME~1\MICHEL\APPLIC~1\OD2
[08/09/2008|20:50] D:\DOCUME~1\MICHEL\APPLIC~1\PlayFirst
[07/09/2008|22:49] D:\DOCUME~1\MICHEL\APPLIC~1\Playrix Entertainment
[26/08/2008|16:24] D:\DOCUME~1\MICHEL\APPLIC~1\Real
[12/10/2008|18:01] D:\DOCUME~1\MICHEL\APPLIC~1\Skype
[05/10/2008|10:20] D:\DOCUME~1\MICHEL\APPLIC~1\skypePM
[19/06/2008|16:35] D:\DOCUME~1\MICHEL\APPLIC~1\Sonic
[07/09/2008|21:44] D:\DOCUME~1\MICHEL\APPLIC~1\SultansLabyrinth
[05/06/2008|12:48] D:\DOCUME~1\MICHEL\APPLIC~1\Sun
[11/11/2005|09:59] D:\DOCUME~1\MICHEL\APPLIC~1\Symantec
[26/10/2008|11:04] D:\DOCUME~1\MICHEL\APPLIC~1\Ulead Systems
[18/06/2008|06:42] D:\DOCUME~1\MICHEL\APPLIC~1\Viewpoint
[27/08/2008|17:26] D:\DOCUME~1\MICHEL\APPLIC~1\ViquaSoft
[11/11/2005|09:56] D:\DOCUME~1\MICHEL\APPLIC~1\You've Got Pictures Screensaver

[11/11/2005|18:37] D:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[30/12/2005|18:40] D:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

[26/06/2006|14:12] D:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft

[05/08/2006|15:56] D:\DOCUME~1\NETWOR~1.000\APPLIC~1\Microsoft

[09/01/2007|09:18] D:\DOCUME~1\NETWOR~1.001\APPLIC~1\Microsoft

[09/01/2007|09:18] D:\DOCUME~1\NETWOR~1.002\APPLIC~1\Microsoft

[25/03/2007|12:55] D:\DOCUME~1\NETWOR~1.003\APPLIC~1\Microsoft

[23/04/2007|17:34] D:\DOCUME~1\NETWOR~1.004\APPLIC~1\Microsoft

[14/11/2005|18:19] D:\DOCUME~1\NETWOR~1.005\APPLIC~1\Microsoft

[14/11/2005|18:19] D:\DOCUME~1\NETWOR~1.006\APPLIC~1\Microsoft

[26/04/2008|13:05] D:\DOCUME~1\TMPACC~1\APPLIC~1\Adobe
[23/05/2008|06:53] D:\DOCUME~1\TMPACC~1\APPLIC~1\AdobeUM
[27/12/2005|21:19] D:\DOCUME~1\TMPACC~1\APPLIC~1\AOL
[29/01/2006|09:16] D:\DOCUME~1\TMPACC~1\APPLIC~1\CyberLink
[28/04/2007|00:30] D:\DOCUME~1\TMPACC~1\APPLIC~1\EoRezo
[23/04/2007|16:19] D:\DOCUME~1\TMPACC~1\APPLIC~1\F-Secure
[07/08/2007|21:23] D:\DOCUME~1\TMPACC~1\APPLIC~1\FUJIFILM
[07/04/2007|14:43] D:\DOCUME~1\TMPACC~1\APPLIC~1\Google
[27/12/2005|21:28] D:\DOCUME~1\TMPACC~1\APPLIC~1\Help
[14/11/2005|18:19] D:\DOCUME~1\TMPACC~1\APPLIC~1\Identities
[06/01/2006|11:19] D:\DOCUME~1\TMPACC~1\APPLIC~1\Leadertech
[14/11/2005|18:19] D:\DOCUME~1\TMPACC~1\APPLIC~1\Macromedia
[13/05/2006|19:20] D:\DOCUME~1\TMPACC~1\APPLIC~1\mess junk eggs
[23/02/2008|01:48] D:\DOCUME~1\TMPACC~1\APPLIC~1\Microsoft
[14/04/2007|14:50] D:\DOCUME~1\TMPACC~1\APPLIC~1\Mozilla
[02/01/2006|16:38] D:\DOCUME~1\TMPACC~1\APPLIC~1\OD2
[26/05/2008|00:02] D:\DOCUME~1\TMPACC~1\APPLIC~1\OFFICE One v6
[14/05/2006|20:26] D:\DOCUME~1\TMPACC~1\APPLIC~1\okaytrustbolt
[12/05/2008|21:54] D:\DOCUME~1\TMPACC~1\APPLIC~1\OpenOffice.org2
[28/01/2006|09:05] D:\DOCUME~1\TMPACC~1\APPLIC~1\Real
[08/01/2007|08:07] D:\DOCUME~1\TMPACC~1\APPLIC~1\Skype
[06/01/2006|11:24] D:\DOCUME~1\TMPACC~1\APPLIC~1\Sonic
[28/12/2005|18:30] D:\DOCUME~1\TMPACC~1\APPLIC~1\Sun
[27/12/2005|20:58] D:\DOCUME~1\TMPACC~1\APPLIC~1\Symantec
[23/07/2006|10:50] D:\DOCUME~1\TMPACC~1\APPLIC~1\Ulead Systems
[05/08/2007|15:36] D:\DOCUME~1\TMPACC~1\APPLIC~1\vlc
[23/05/2008|13:19] D:\DOCUME~1\TMPACC~1\APPLIC~1\vmntoolbar
[14/11/2005|18:19] D:\DOCUME~1\TMPACC~1\APPLIC~1\You've Got Pictures Screensaver

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[27/12/2008 18:00][--a------] C:\WINDOWS\tasks\Configurer mon PC.job
[27/12/2008 18:00][--ah-----] C:\WINDOWS\tasks\BB2D817193DE32F1.job
[27/12/2008 07:19][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

( BB2D817193DE32F1.job )=( d:\docume~1\michel\applic~1\gplact~1\Grimplayload.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[20/11/2008|21:23] C:\Program Files\Adobe
[26/05/2008|00:16] C:\Program Files\AOL 9.0
[26/05/2008|00:07] C:\Program Files\AOL Compagnon
[11/11/2008|11:58] C:\Program Files\bfgclient
[12/10/2008|17:55] C:\Program Files\Boonty
[12/10/2008|17:56] C:\Program Files\BoontyGames
[12/10/2008|17:56] C:\Program Files\Canon
[17/09/2008|18:03] C:\Program Files\CanonBJ
[27/12/2008|17:57] C:\Program Files\CCleaner
[29/07/2008|08:52] C:\Program Files\Circle Developement
[26/05/2008|00:07] C:\Program Files\ComPlus Applications
[26/05/2008|00:07] C:\Program Files\CyberLink
[05/06/2008|18:03] C:\Program Files\ENJOY Plus!
[27/12/2008|16:18] C:\Program Files\Everest Poker
[12/10/2008|17:58] C:\Program Files\Fichiers communs
[24/12/2008|17:28] C:\Program Files\GIMP-2.0
[26/05/2008|00:07] C:\Program Files\GMixon
[17/12/2008|20:58] C:\Program Files\Google
[22/07/2008|17:40] C:\Program Files\GPLACTIVE
[25/05/2008|18:53] C:\Program Files\InstallShield Installation Information
[10/12/2008|23:12] C:\Program Files\Internet Explorer
[23/12/2008|12:01] C:\Program Files\Java
[26/05/2008|00:07] C:\Program Files\Learn2.com
[26/06/2008|12:27] C:\Program Files\Logitech
[16/10/2008|17:24] C:\Program Files\Messenger
[27/12/2008|18:12] C:\Program Files\Messenger Plus! Live
[23/12/2008|09:55] C:\Program Files\Microsoft
[25/05/2008|19:14] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[26/05/2008|00:07] C:\Program Files\microsoft frontpage
[11/12/2008|20:32] C:\Program Files\Microsoft Office
[23/12/2008|09:56] C:\Program Files\Microsoft Silverlight
[16/10/2008|17:20] C:\Program Files\Movie Maker
[27/12/2008|16:52] C:\Program Files\Mozilla Firefox
[27/12/2008|17:54] C:\Program Files\MSECache
[27/12/2008|18:06] C:\Program Files\MSN
[26/05/2008|00:07] C:\Program Files\MSN Gaming Zone
[25/05/2008|18:30] C:\Program Files\MSXML 4.0
[27/12/2008|18:19] C:\Program Files\Navilog1
[16/10/2008|17:17] C:\Program Files\NetMeeting
[25/05/2008|16:40] C:\Program Files\Neuf
[26/05/2008|00:07] C:\Program Files\Norman
[26/05/2008|00:10] C:\Program Files\Online Services
[16/10/2008|17:17] C:\Program Files\Outlook Express
[21/10/2008|13:22] C:\Program Files\Pack Securite
[26/08/2008|13:02] C:\Program Files\PhotoFiltre
[12/10/2008|17:55] C:\Program Files\PhotoScape
[24/10/2008|23:20] C:\Program Files\Picasa2
[05/10/2008|01:18] C:\Program Files\Pinnacle
[27/12/2008|18:19] C:\Program Files\Pogo FR
[26/05/2008|00:10] C:\Program Files\QuickTime
[26/05/2008|00:07] C:\Program Files\Real
[26/05/2008|00:07] C:\Program Files\Realtek
[14/09/2008|13:08] C:\Program Files\ReflexiveArcade
[27/12/2008|18:05] C:\Program Files\Sallys Spa
[26/05/2008|00:11] C:\Program Files\Services en ligne
[26/05/2008|00:07] C:\Program Files\Sonic
[27/12/2008|18:03] C:\Program Files\Trend Micro
[26/05/2008|00:07] C:\Program Files\Ulead Systems
[26/05/2008|00:07] C:\Program Files\Uninstall Information
[05/10/2008|00:56] C:\Program Files\URUSoft
[26/05/2008|00:07] C:\Program Files\Viewpoint
[27/12/2008|18:18] C:\Program Files\Windows Live
[23/12/2008|09:54] C:\Program Files\Windows Live Toolbar
[26/05/2008|00:07] C:\Program Files\Windows Media Components
[04/07/2008|09:46] C:\Program Files\Windows Media Connect 2
[16/10/2008|17:17] C:\Program Files\Windows Media Player
[16/10/2008|17:17] C:\Program Files\Windows NT
[26/05/2008|00:07] C:\Program Files\WindowsUpdate
[06/07/2008|18:17] C:\Program Files\Wondershare
[26/05/2008|00:07] C:\Program Files\xerox
[27/12/2008|17:54] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[24/12/2008|17:15] C:\Program Files\Fichiers communs\Adobe
[26/05/2008|00:07] C:\Program Files\Fichiers communs\AOL
[26/05/2008|00:07] C:\Program Files\Fichiers communs\aolshare
[12/10/2008|17:55] C:\Program Files\Fichiers communs\BOONTY Shared
[17/09/2008|18:09] C:\Program Files\Fichiers communs\CANON
[12/10/2008|17:56] C:\Program Files\Fichiers communs\Designer
[26/05/2008|00:07] C:\Program Files\Fichiers communs\InstallShield
[26/05/2008|00:07] C:\Program Files\Fichiers communs\Java
[26/06/2008|12:34] C:\Program Files\Fichiers communs\LogiShrd
[23/12/2008|09:50] C:\Program Files\Fichiers communs\Microsoft Shared
[26/05/2008|00:07] C:\Program Files\Fichiers communs\MSSoap
[26/05/2008|00:07] C:\Program Files\Fichiers communs\Nullsoft
[26/05/2008|00:07] C:\Program Files\Fichiers communs\ODBC
[26/08/2008|16:24] C:\Program Files\Fichiers communs\Real
[26/05/2008|00:07] C:\Program Files\Fichiers communs\Services
[12/10/2008|17:55] C:\Program Files\Fichiers communs\Skype
[26/05/2008|00:07] C:\Program Files\Fichiers communs\Sonic Shared
[26/05/2008|00:07] C:\Program Files\Fichiers communs\SpeechEngines
[26/05/2008|00:07] C:\Program Files\Fichiers communs\SureThing Shared
[16/10/2008|17:17] C:\Program Files\Fichiers communs\System
[26/05/2008|00:07] C:\Program Files\Fichiers communs\Ulead Systems
[12/10/2008|17:58] C:\Program Files\Fichiers communs\Windows Live
[25/05/2008|18:37] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[05/10/2008|01:18] C:\Program Files\Fichiers communs\Yahoo!

--------------------\\ Process

( 65 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

D:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf
D:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf\mags save.0xe
D:\DOCUME~1\MICHEL\APPLIC~1\gplact~1
D:\DOCUME~1\MICHEL\APPLIC~1\gplact~1\1 Base Mail Deaf.0xe
D:\DOCUME~1\MICHEL\APPLIC~1\gplact~1\Burn Bone View.0xe
D:\DOCUME~1\MICHEL\APPLIC~1\gplact~1\Grimplayload.0xe
D:\DOCUME~1\MICHEL\APPLIC~1\gplact~1\huoaceje.0xe
C:\Program Files\gplact~1
D:\DOCUME~1\MICHEL\LOCALS~1\Temp\nsa444.tmp
D:\DOCUME~1\MICHEL\LOCALS~1\Temp\nsb3F1.tmp
D:\DOCUME~1\MICHEL\LOCALS~1\Temp\nsg3D1.tmp
D:\DOCUME~1\MICHEL\LOCALS~1\Temp\nsh416.tmp
D:\DOCUME~1\MICHEL\LOCALS~1\Temp\nsk3D3.tmp
D:\DOCUME~1\MICHEL\LOCALS~1\Temp\nsx46A.tmp
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.0xe
C:\WINDOWS\Tasks\BB2D817193DE32F1.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Ping Remote"="D:\\DOCUME~1\\MICHEL\\APPLIC~1\\GPLACT~1\\Burn Bone View.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"close surf mail dupe"="D:\\Documents and Settings\\All Users\\Application Data\\Tick Find Close Surf\\mags save.exe"

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-27 18:26:00
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
folder error: D:\DOCUME~1\MICHEL\LOCALS~1\APPLIC~1

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:303][D:53]-> D:\DOCUME~1\MICHEL\LOCALS~1\Temp
[F:15][D:0]-> D:\DOCUME~1\MICHEL\Cookies
[F:375][D:4]-> D:\DOCUME~1\MICHEL\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 27/12/2008|18:27 - Option : [1]

--------------------\\ Fin du rapport a 18:27:28
0
Réponse 9 / 29
Utilisateur anonyme
27 déc. 2008 à 18:29
Re,

▶ Relance Lop S&D

▶ Choisis cette fois ci l'Option 2 ( Suppression )

▶ Ne ferme pas la fenêtre lors de la suppression !

▶ Poste le rapport généré ( C:\lopR.txt )

( Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr, Onglet Fichier,

Nouvelle tâche, tape explorer.exe et valide )

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
0
Réponse 10 / 29
noshelter Messages postés 75 Date d'inscription jeudi 22 mars 2007 Statut Membre Dernière intervention 23 avril 2010
27 déc. 2008 à 18:48
La suppression est en cours, je post des que c'est fini
0
Réponse 11 / 29
noshelter Messages postés 75 Date d'inscription jeudi 22 mars 2007 Statut Membre Dernière intervention 23 avril 2010
27 déc. 2008 à 18:53
voila seconde rapport :



--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : Award Medallion BIOS v6.00PG
USER : MICHEL ( Administrator )
BOOT : Normal boot
Antivirus : Pack Securite Plus 7.00 7.00 (Activated)
Firewall : Pack Securite Plus 7.00 7.00 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:29 Go (Free:19 Go)
D:\ (Local Disk) - NTFS - Total:148 Go (Free:128 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 27/12/2008|18:41 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - D:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf\mags save.0xe
Supprime! - D:\DOCUME~1\MICHEL\APPLIC~1\gplact~1\1 Base Mail Deaf.0xe
Supprime! - D:\DOCUME~1\MICHEL\APPLIC~1\gplact~1\Burn Bone View.0xe
Supprime! - D:\DOCUME~1\MICHEL\APPLIC~1\gplact~1\Grimplayload.0xe
Supprime! - D:\DOCUME~1\MICHEL\APPLIC~1\gplact~1\huoaceje.0xe
Supprime! - C:\Program Files\Circle Developement\Uninstall.0xe
Supprime! - C:\WINDOWS\Tasks\BB2D817193DE32F1.job
Supprime! - D:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf
Supprime! - D:\DOCUME~1\MICHEL\APPLIC~1\gplact~1
Supprime! - C:\Program Files\gplact~1
Supprime! - C:\Program Files\Circle Developement

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

Supprime! - C:\Program Files\Viewpoint
Supprime! - D:\DOCUME~1\MICHEL\APPLIC~1\Viewpoint
Supprime! - D:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[20/11/2008|21:23] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[11/11/2005|09:55] D:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[22/05/2007|16:47] D:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL Downloads
[16/11/2008|10:07] D:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishGamesCache
[12/10/2008|18:01] D:\DOCUME~1\ALLUSE~1\APPLIC~1\blg
[15/09/2008|10:07] D:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[13/05/2006|20:00] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Byte Real Aim Type
[15/09/2008|21:03] D:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
[17/12/2008|20:06] D:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonIJPLM
[31/12/2005|12:08] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Ciel
[11/11/2005|10:07] D:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[31/05/2008|07:42] D:\DOCUME~1\ALLUSE~1\APPLIC~1\ENJOY Plus!
[02/07/2008|20:01] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Flood Light Games
[05/07/2008|12:38] D:\DOCUME~1\ALLUSE~1\APPLIC~1\FloodLightGames
[23/05/2008|15:47] D:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[25/05/2008|16:49] D:\DOCUME~1\ALLUSE~1\APPLIC~1\fssg
[29/03/2007|18:25] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[18/09/2007|13:13] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Logishrd
[17/08/2007|21:19] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[14/04/2007|15:11] D:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
[27/12/2008|18:21] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[13/04/2006|16:30] D:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN Search Toolbar
[20/09/2008|13:40] D:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[07/09/2008|17:14] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
[11/11/2005|09:55] D:\DOCUME~1\ALLUSE~1\APPLIC~1\OD2
[05/10/2008|01:06] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[05/10/2008|01:25] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle VideoSpin
[08/09/2008|20:50] D:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[11/11/2005|09:56] D:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[14/09/2008|15:57] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[11/11/2005|18:37] D:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[03/09/2008|12:43] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[27/12/2008|17:55] D:\DOCUME~1\ALLUSE~1\APPLIC~1\SweetIM
[11/11/2008|12:34] D:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[11/11/2005|10:06] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[05/10/2008|01:18] D:\DOCUME~1\ALLUSE~1\APPLIC~1\VideoSpin
[29/03/2006|15:34] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[12/10/2008|18:02] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[25/05/2008|18:35] D:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[26/10/2008|19:01] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[26/05/2008|00:14] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[26/05/2008|00:14] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[26/05/2008|00:14] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[26/05/2008|00:14] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[11/11/2005|09:59] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[11/11/2005|09:56] D:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver

[14/11/2005|18:19] D:\DOCUME~1\DEFTEMP\APPLIC~1\Identities
[14/11/2005|18:19] D:\DOCUME~1\DEFTEMP\APPLIC~1\Macromedia
[14/11/2005|18:19] D:\DOCUME~1\DEFTEMP\APPLIC~1\Microsoft
[14/11/2005|18:19] D:\DOCUME~1\DEFTEMP\APPLIC~1\Real
[11/11/2005|09:59] D:\DOCUME~1\DEFTEMP\APPLIC~1\Symantec
[14/11/2005|18:19] D:\DOCUME~1\DEFTEMP\APPLIC~1\You've Got Pictures Screensaver

[13/09/2006|15:01] D:\DOCUME~1\Elodie\APPLIC~1\Adobe
[23/03/2008|15:21] D:\DOCUME~1\Elodie\APPLIC~1\AdobeUM
[02/01/2006|13:44] D:\DOCUME~1\Elodie\APPLIC~1\AOL
[19/01/2006|20:57] D:\DOCUME~1\Elodie\APPLIC~1\CyberLink
[23/03/2008|15:22] D:\DOCUME~1\Elodie\APPLIC~1\F-Secure
[23/03/2008|15:23] D:\DOCUME~1\Elodie\APPLIC~1\Google
[29/03/2006|15:36] D:\DOCUME~1\Elodie\APPLIC~1\GTek
[19/01/2006|11:03] D:\DOCUME~1\Elodie\APPLIC~1\Help
[14/11/2005|18:19] D:\DOCUME~1\Elodie\APPLIC~1\Identities
[13/09/2006|13:38] D:\DOCUME~1\Elodie\APPLIC~1\Leadertech
[02/01/2006|14:34] D:\DOCUME~1\Elodie\APPLIC~1\Macromedia
[12/02/2006|21:58] D:\DOCUME~1\Elodie\APPLIC~1\Microsoft
[14/04/2006|18:31] D:\DOCUME~1\Elodie\APPLIC~1\MSN Search Toolbar
[12/02/2006|22:01] D:\DOCUME~1\Elodie\APPLIC~1\MSNInstaller
[19/01/2006|21:00] D:\DOCUME~1\Elodie\APPLIC~1\OD2
[23/03/2008|15:21] D:\DOCUME~1\Elodie\APPLIC~1\OpenOffice.org2
[11/02/2006|17:41] D:\DOCUME~1\Elodie\APPLIC~1\Real
[18/09/2006|09:57] D:\DOCUME~1\Elodie\APPLIC~1\Skype
[13/09/2006|13:39] D:\DOCUME~1\Elodie\APPLIC~1\Sonic
[10/02/2006|18:42] D:\DOCUME~1\Elodie\APPLIC~1\Sun
[11/11/2005|09:59] D:\DOCUME~1\Elodie\APPLIC~1\Symantec
[18/09/2006|09:36] D:\DOCUME~1\Elodie\APPLIC~1\Ulead Systems
[23/03/2008|15:27] D:\DOCUME~1\Elodie\APPLIC~1\VMNTOOLBAR
[14/11/2005|18:19] D:\DOCUME~1\Elodie\APPLIC~1\You've Got Pictures Screensaver

[26/05/2008|00:14] D:\DOCUME~1\ELODIE~1.107\APPLIC~1\Identities
[26/05/2008|00:14] D:\DOCUME~1\ELODIE~1.107\APPLIC~1\Macromedia
[26/05/2008|00:14] D:\DOCUME~1\ELODIE~1.107\APPLIC~1\Microsoft
[26/05/2008|00:14] D:\DOCUME~1\ELODIE~1.107\APPLIC~1\Real
[11/11/2005|09:59] D:\DOCUME~1\ELODIE~1.107\APPLIC~1\Symantec
[11/11/2005|09:56] D:\DOCUME~1\ELODIE~1.107\APPLIC~1\You've Got Pictures Screensaver

[26/05/2008|00:14] D:\DOCUME~1\INVITe\APPLIC~1\Identities
[26/05/2008|00:14] D:\DOCUME~1\INVITe\APPLIC~1\Macromedia
[26/05/2008|00:14] D:\DOCUME~1\INVITe\APPLIC~1\Microsoft
[26/05/2008|00:14] D:\DOCUME~1\INVITe\APPLIC~1\Real
[11/11/2005|09:59] D:\DOCUME~1\INVITe\APPLIC~1\Symantec
[11/11/2005|09:56] D:\DOCUME~1\INVITe\APPLIC~1\You've Got Pictures Screensaver

[28/12/2006|11:41] D:\DOCUME~1\INVITS~1\APPLIC~1\Adobe
[09/01/2007|09:19] D:\DOCUME~1\INVITS~1\APPLIC~1\AdobeUM
[02/01/2006|14:57] D:\DOCUME~1\INVITS~1\APPLIC~1\AOL
[09/01/2007|09:19] D:\DOCUME~1\INVITS~1\APPLIC~1\CyberLink
[02/07/2007|13:51] D:\DOCUME~1\INVITS~1\APPLIC~1\Google
[14/11/2005|18:19] D:\DOCUME~1\INVITS~1\APPLIC~1\Identities
[25/05/2006|15:47] D:\DOCUME~1\INVITS~1\APPLIC~1\Macromedia
[25/05/2006|15:48] D:\DOCUME~1\INVITS~1\APPLIC~1\Microsoft
[02/07/2007|11:18] D:\DOCUME~1\INVITS~1\APPLIC~1\Mozilla
[29/12/2006|13:28] D:\DOCUME~1\INVITS~1\APPLIC~1\OD2
[09/01/2007|09:19] D:\DOCUME~1\INVITS~1\APPLIC~1\Real
[28/12/2006|13:08] D:\DOCUME~1\INVITS~1\APPLIC~1\Sun
[11/11/2005|09:59] D:\DOCUME~1\INVITS~1\APPLIC~1\Symantec
[14/11/2005|18:19] D:\DOCUME~1\INVITS~1\APPLIC~1\You've Got Pictures Screensaver

[31/12/2005|10:39] D:\DOCUME~1\JULIE\APPLIC~1\Adobe
[01/02/2006|18:34] D:\DOCUME~1\JULIE\APPLIC~1\AdobeUM
[28/12/2005|19:07] D:\DOCUME~1\JULIE\APPLIC~1\AOL
[15/01/2006|16:52] D:\DOCUME~1\JULIE\APPLIC~1\CyberLink
[09/01/2007|09:06] D:\DOCUME~1\JULIE\APPLIC~1\EoRezo
[17/04/2007|13:55] D:\DOCUME~1\JULIE\APPLIC~1\F-Secure
[04/04/2007|13:19] D:\DOCUME~1\JULIE\APPLIC~1\Google
[20/07/2006|14:22] D:\DOCUME~1\JULIE\APPLIC~1\Help
[14/11/2005|18:19] D:\DOCUME~1\JULIE\APPLIC~1\Identities
[14/11/2005|18:19] D:\DOCUME~1\JULIE\APPLIC~1\Macromedia
[14/05/2006|20:26] D:\DOCUME~1\JULIE\APPLIC~1\mess junk eggs
[30/04/2007|15:03] D:\DOCUME~1\JULIE\APPLIC~1\MessengerSkinner
[24/02/2006|12:23] D:\DOCUME~1\JULIE\APPLIC~1\Microsoft
[17/04/2007|13:53] D:\DOCUME~1\JULIE\APPLIC~1\Mozilla
[02/01/2006|14:47] D:\DOCUME~1\JULIE\APPLIC~1\OD2
[14/05/2006|20:26] D:\DOCUME~1\JULIE\APPLIC~1\okaytrustbolt
[06/02/2006|20:07] D:\DOCUME~1\JULIE\APPLIC~1\Real
[28/09/2006|12:10] D:\DOCUME~1\JULIE\APPLIC~1\Skype
[29/01/2006|13:53] D:\DOCUME~1\JULIE\APPLIC~1\Sun
[01/03/2006|12:55] D:\DOCUME~1\JULIE\APPLIC~1\Symantec
[15/01/2006|16:52] D:\DOCUME~1\JULIE\APPLIC~1\Ulead Systems
[14/11/2005|18:19] D:\DOCUME~1\JULIE\APPLIC~1\You've Got Pictures Screensaver

[26/05/2008|00:14] D:\DOCUME~1\JULIE~1.107\APPLIC~1\Identities
[26/05/2008|00:14] D:\DOCUME~1\JULIE~1.107\APPLIC~1\Macromedia
[26/05/2008|00:14] D:\DOCUME~1\JULIE~1.107\APPLIC~1\Microsoft
[26/05/2008|00:14] D:\DOCUME~1\JULIE~1.107\APPLIC~1\Real
[11/11/2005|09:59] D:\DOCUME~1\JULIE~1.107\APPLIC~1\Symantec
[11/11/2005|09:56] D:\DOCUME~1\JULIE~1.107\APPLIC~1\You've Got Pictures Screensaver

[06/04/2006|15:03] D:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[04/07/2008|10:21] D:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[14/05/2006|20:26] D:\DOCUME~1\LOCALS~1\APPLIC~1\okaytrustbolt

[26/06/2006|14:12] D:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft

[05/08/2006|15:56] D:\DOCUME~1\LOCALS~1.000\APPLIC~1\Microsoft

[09/01/2007|09:18] D:\DOCUME~1\LOCALS~1.001\APPLIC~1\Microsoft

[09/01/2007|09:18] D:\DOCUME~1\LOCALS~1.002\APPLIC~1\Microsoft

[25/03/2007|12:55] D:\DOCUME~1\LOCALS~1.003\APPLIC~1\Microsoft

[23/04/2007|17:34] D:\DOCUME~1\LOCALS~1.004\APPLIC~1\Microsoft

[03/06/2007|11:13] D:\DOCUME~1\LOCALS~1.005\APPLIC~1\Microsoft

[02/09/2007|22:42] D:\DOCUME~1\LOCALS~1.006\APPLIC~1\Microsoft

[23/05/2006|19:50] D:\DOCUME~1\MARYSE\APPLIC~1\Adobe
[30/12/2005|18:21] D:\DOCUME~1\MARYSE\APPLIC~1\AOL
[14/11/2005|18:19] D:\DOCUME~1\MARYSE\APPLIC~1\Identities
[30/12/2005|18:24] D:\DOCUME~1\MARYSE\APPLIC~1\Macromedia
[14/11/2005|18:19] D:\DOCUME~1\MARYSE\APPLIC~1\Microsoft
[09/05/2006|20:14] D:\DOCUME~1\MARYSE\APPLIC~1\MSN Search Toolbar
[01/06/2006|15:54] D:\DOCUME~1\MARYSE\APPLIC~1\OD2
[14/11/2005|18:19] D:\DOCUME~1\MARYSE\APPLIC~1\Real
[30/12/2005|18:24] D:\DOCUME~1\MARYSE\APPLIC~1\Sun
[30/12/2005|18:23] D:\DOCUME~1\MARYSE\APPLIC~1\Symantec
[30/10/2006|16:19] D:\DOCUME~1\MARYSE\APPLIC~1\Ulead Systems
[14/11/2005|18:19] D:\DOCUME~1\MARYSE\APPLIC~1\You've Got Pictures Screensaver

[26/05/2008|00:14] D:\DOCUME~1\MARYSE~1.107\APPLIC~1\Identities
[26/05/2008|00:14] D:\DOCUME~1\MARYSE~1.107\APPLIC~1\Macromedia
[26/05/2008|00:14] D:\DOCUME~1\MARYSE~1.107\APPLIC~1\Microsoft
[26/05/2008|00:14] D:\DOCUME~1\MARYSE~1.107\APPLIC~1\Real
[11/11/2005|09:59] D:\DOCUME~1\MARYSE~1.107\APPLIC~1\Symantec
[11/11/2005|09:56] D:\DOCUME~1\MARYSE~1.107\APPLIC~1\You've Got Pictures Screensaver

[25/12/2008|18:03] D:\DOCUME~1\MICHEL\APPLIC~1\Adobe
[26/05/2008|07:54] D:\DOCUME~1\MICHEL\APPLIC~1\AdobeUM
[12/10/2008|18:02] D:\DOCUME~1\MICHEL\APPLIC~1\BeachPartyCraze
[03/07/2008|18:30] D:\DOCUME~1\MICHEL\APPLIC~1\Big Fish Games
[25/09/2008|16:12] D:\DOCUME~1\MICHEL\APPLIC~1\blg
[17/09/2008|18:15] D:\DOCUME~1\MICHEL\APPLIC~1\Canon
[20/09/2008|08:08] D:\DOCUME~1\MICHEL\APPLIC~1\CD-LabelPrint
[07/11/2008|22:21] D:\DOCUME~1\MICHEL\APPLIC~1\CyberLink
[31/05/2008|07:42] D:\DOCUME~1\MICHEL\APPLIC~1\ENJOY Plus!
[08/10/2008|20:49] D:\DOCUME~1\MICHEL\APPLIC~1\FarmerJane
[02/07/2008|20:01] D:\DOCUME~1\MICHEL\APPLIC~1\Flood Light Games
[05/07/2008|12:38] D:\DOCUME~1\MICHEL\APPLIC~1\FloodLightGames
[02/07/2008|14:55] D:\DOCUME~1\MICHEL\APPLIC~1\F-Secure
[17/12/2008|21:00] D:\DOCUME~1\MICHEL\APPLIC~1\Google
[26/12/2008|17:30] D:\DOCUME~1\MICHEL\APPLIC~1\gtk-2.0
[24/07/2008|17:52] D:\DOCUME~1\MICHEL\APPLIC~1\Help
[26/05/2008|00:14] D:\DOCUME~1\MICHEL\APPLIC~1\Identities
[19/06/2008|16:31] D:\DOCUME~1\MICHEL\APPLIC~1\Leadertech
[25/05/2008|16:42] D:\DOCUME~1\MICHEL\APPLIC~1\Macromedia
[26/12/2008|19:17] D:\DOCUME~1\MICHEL\APPLIC~1\Microsoft
[03/09/2008|16:50] D:\DOCUME~1\MICHEL\APPLIC~1\Mozilla
[27/12/2008|18:06] D:\DOCUME~1\MICHEL\APPLIC~1\MSNInstaller
[01/06/2008|13:54] D:\DOCUME~1\MICHEL\APPLIC~1\OD2
[08/09/2008|20:50] D:\DOCUME~1\MICHEL\APPLIC~1\PlayFirst
[07/09/2008|22:49] D:\DOCUME~1\MICHEL\APPLIC~1\Playrix Entertainment
[26/08/2008|16:24] D:\DOCUME~1\MICHEL\APPLIC~1\Real
[12/10/2008|18:01] D:\DOCUME~1\MICHEL\APPLIC~1\Skype
[05/10/2008|10:20] D:\DOCUME~1\MICHEL\APPLIC~1\skypePM
[19/06/2008|16:35] D:\DOCUME~1\MICHEL\APPLIC~1\Sonic
[07/09/2008|21:44] D:\DOCUME~1\MICHEL\APPLIC~1\SultansLabyrinth
[05/06/2008|12:48] D:\DOCUME~1\MICHEL\APPLIC~1\Sun
[11/11/2005|09:59] D:\DOCUME~1\MICHEL\APPLIC~1\Symantec
[26/10/2008|11:04] D:\DOCUME~1\MICHEL\APPLIC~1\Ulead Systems
[27/08/2008|17:26] D:\DOCUME~1\MICHEL\APPLIC~1\ViquaSoft
[11/11/2005|09:56] D:\DOCUME~1\MICHEL\APPLIC~1\You've Got Pictures Screensaver

[11/11/2005|18:37] D:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[30/12/2005|18:40] D:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

[26/06/2006|14:12] D:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft

[05/08/2006|15:56] D:\DOCUME~1\NETWOR~1.000\APPLIC~1\Microsoft

[09/01/2007|09:18] D:\DOCUME~1\NETWOR~1.001\APPLIC~1\Microsoft

[09/01/2007|09:18] D:\DOCUME~1\NETWOR~1.002\APPLIC~1\Microsoft

[25/03/2007|12:55] D:\DOCUME~1\NETWOR~1.003\APPLIC~1\Microsoft

[23/04/2007|17:34] D:\DOCUME~1\NETWOR~1.004\APPLIC~1\Microsoft

[14/11/2005|18:19] D:\DOCUME~1\NETWOR~1.005\APPLIC~1\Microsoft

[14/11/2005|18:19] D:\DOCUME~1\NETWOR~1.006\APPLIC~1\Microsoft

[26/04/2008|13:05] D:\DOCUME~1\TMPACC~1\APPLIC~1\Adobe
[23/05/2008|06:53] D:\DOCUME~1\TMPACC~1\APPLIC~1\AdobeUM
[27/12/2005|21:19] D:\DOCUME~1\TMPACC~1\APPLIC~1\AOL
[29/01/2006|09:16] D:\DOCUME~1\TMPACC~1\APPLIC~1\CyberLink
[28/04/2007|00:30] D:\DOCUME~1\TMPACC~1\APPLIC~1\EoRezo
[23/04/2007|16:19] D:\DOCUME~1\TMPACC~1\APPLIC~1\F-Secure
[07/08/2007|21:23] D:\DOCUME~1\TMPACC~1\APPLIC~1\FUJIFILM
[07/04/2007|14:43] D:\DOCUME~1\TMPACC~1\APPLIC~1\Google
[27/12/2005|21:28] D:\DOCUME~1\TMPACC~1\APPLIC~1\Help
[14/11/2005|18:19] D:\DOCUME~1\TMPACC~1\APPLIC~1\Identities
[06/01/2006|11:19] D:\DOCUME~1\TMPACC~1\APPLIC~1\Leadertech
[14/11/2005|18:19] D:\DOCUME~1\TMPACC~1\APPLIC~1\Macromedia
[13/05/2006|19:20] D:\DOCUME~1\TMPACC~1\APPLIC~1\mess junk eggs
[23/02/2008|01:48] D:\DOCUME~1\TMPACC~1\APPLIC~1\Microsoft
[14/04/2007|14:50] D:\DOCUME~1\TMPACC~1\APPLIC~1\Mozilla
[02/01/2006|16:38] D:\DOCUME~1\TMPACC~1\APPLIC~1\OD2
[26/05/2008|00:02] D:\DOCUME~1\TMPACC~1\APPLIC~1\OFFICE One v6
[14/05/2006|20:26] D:\DOCUME~1\TMPACC~1\APPLIC~1\okaytrustbolt
[12/05/2008|21:54] D:\DOCUME~1\TMPACC~1\APPLIC~1\OpenOffice.org2
[28/01/2006|09:05] D:\DOCUME~1\TMPACC~1\APPLIC~1\Real
[08/01/2007|08:07] D:\DOCUME~1\TMPACC~1\APPLIC~1\Skype
[06/01/2006|11:24] D:\DOCUME~1\TMPACC~1\APPLIC~1\Sonic
[28/12/2005|18:30] D:\DOCUME~1\TMPACC~1\APPLIC~1\Sun
[27/12/2005|20:58] D:\DOCUME~1\TMPACC~1\APPLIC~1\Symantec
[23/07/2006|10:50] D:\DOCUME~1\TMPACC~1\APPLIC~1\Ulead Systems
[05/08/2007|15:36] D:\DOCUME~1\TMPACC~1\APPLIC~1\vlc
[23/05/2008|13:19] D:\DOCUME~1\TMPACC~1\APPLIC~1\vmntoolbar
[14/11/2005|18:19] D:\DOCUME~1\TMPACC~1\APPLIC~1\You've Got Pictures Screensaver

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[27/12/2008 18:30][--a------] C:\WINDOWS\tasks\Configurer mon PC.job
[27/12/2008 18:39][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[20/11/2008|21:23] C:\Program Files\Adobe
[26/05/2008|00:16] C:\Program Files\AOL 9.0
[26/05/2008|00:07] C:\Program Files\AOL Compagnon
[11/11/2008|11:58] C:\Program Files\bfgclient
[12/10/2008|17:55] C:\Program Files\Boonty
[12/10/2008|17:56] C:\Program Files\BoontyGames
[12/10/2008|17:56] C:\Program Files\Canon
[17/09/2008|18:03] C:\Program Files\CanonBJ
[27/12/2008|17:57] C:\Program Files\CCleaner
[26/05/2008|00:07] C:\Program Files\ComPlus Applications
[26/05/2008|00:07] C:\Program Files\CyberLink
[05/06/2008|18:03] C:\Program Files\ENJOY Plus!
[27/12/2008|16:18] C:\Program Files\Everest Poker
[12/10/2008|17:58] C:\Program Files\Fichiers communs
[24/12/2008|17:28] C:\Program Files\GIMP-2.0
[26/05/2008|00:07] C:\Program Files\GMixon
[17/12/2008|20:58] C:\Program Files\Google
[25/05/2008|18:53] C:\Program Files\InstallShield Installation Information
[10/12/2008|23:12] C:\Program Files\Internet Explorer
[23/12/2008|12:01] C:\Program Files\Java
[26/05/2008|00:07] C:\Program Files\Learn2.com
[26/06/2008|12:27] C:\Program Files\Logitech
[16/10/2008|17:24] C:\Program Files\Messenger
[23/12/2008|09:55] C:\Program Files\Microsoft
[25/05/2008|19:14] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[26/05/2008|00:07] C:\Program Files\microsoft frontpage
[11/12/2008|20:32] C:\Program Files\Microsoft Office
[23/12/2008|09:56] C:\Program Files\Microsoft Silverlight
[16/10/2008|17:20] C:\Program Files\Movie Maker
[27/12/2008|16:52] C:\Program Files\Mozilla Firefox
[27/12/2008|17:54] C:\Program Files\MSECache
[27/12/2008|18:06] C:\Program Files\MSN
[26/05/2008|00:07] C:\Program Files\MSN Gaming Zone
[25/05/2008|18:30] C:\Program Files\MSXML 4.0
[27/12/2008|18:19] C:\Program Files\Navilog1
[16/10/2008|17:17] C:\Program Files\NetMeeting
[25/05/2008|16:40] C:\Program Files\Neuf
[26/05/2008|00:07] C:\Program Files\Norman
[26/05/2008|00:10] C:\Program Files\Online Services
[16/10/2008|17:17] C:\Program Files\Outlook Express
[21/10/2008|13:22] C:\Program Files\Pack Securite
[26/08/2008|13:02] C:\Program Files\PhotoFiltre
[12/10/2008|17:55] C:\Program Files\PhotoScape
[24/10/2008|23:20] C:\Program Files\Picasa2
[05/10/2008|01:18] C:\Program Files\Pinnacle
[27/12/2008|18:19] C:\Program Files\Pogo FR
[26/05/2008|00:10] C:\Program Files\QuickTime
[26/05/2008|00:07] C:\Program Files\Real
[26/05/2008|00:07] C:\Program Files\Realtek
[14/09/2008|13:08] C:\Program Files\ReflexiveArcade
[27/12/2008|18:05] C:\Program Files\Sallys Spa
[26/05/2008|00:11] C:\Program Files\Services en ligne
[26/05/2008|00:07] C:\Program Files\Sonic
[27/12/2008|18:03] C:\Program Files\Trend Micro
[26/05/2008|00:07] C:\Program Files\Ulead Systems
[26/05/2008|00:07] C:\Program Files\Uninstall Information
[05/10/2008|00:56] C:\Program Files\URUSoft
[27/12/2008|18:18] C:\Program Files\Windows Live
[23/12/2008|09:54] C:\Program Files\Windows Live Toolbar
[26/05/2008|00:07] C:\Program Files\Windows Media Components
[04/07/2008|09:46] C:\Program Files\Windows Media Connect 2
[16/10/2008|17:17] C:\Program Files\Windows Media Player
[16/10/2008|17:17] C:\Program Files\Windows NT
[26/05/2008|00:07] C:\Program Files\WindowsUpdate
[06/07/2008|18:17] C:\Program Files\Wondershare
[26/05/2008|00:07] C:\Program Files\xerox
[27/12/2008|17:54] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[24/12/2008|17:15] C:\Program Files\Fichiers communs\Adobe
[26/05/2008|00:07] C:\Program Files\Fichiers communs\AOL
[26/05/2008|00:07] C:\Program Files\Fichiers communs\aolshare
[12/10/2008|17:55] C:\Program Files\Fichiers communs\BOONTY Shared
[17/09/2008|18:09] C:\Program Files\Fichiers communs\CANON
[12/10/2008|17:56] C:\Program Files\Fichiers communs\Designer
[26/05/2008|00:07] C:\Program Files\Fichiers communs\InstallShield
[26/05/2008|00:07] C:\Program Files\Fichiers communs\Java
[26/06/2008|12:34] C:\Program Files\Fichiers communs\LogiShrd
[23/12/2008|09:50] C:\Program Files\Fichiers communs\Microsoft Shared
[26/05/2008|00:07] C:\Program Files\Fichiers communs\MSSoap
[26/05/2008|00:07] C:\Program Files\Fichiers communs\Nullsoft
[26/05/2008|00:07] C:\Program Files\Fichiers communs\ODBC
[26/08/2008|16:24] C:\Program Files\Fichiers communs\Real
[26/05/2008|00:07] C:\Program Files\Fichiers communs\Services
[12/10/2008|17:55] C:\Program Files\Fichiers communs\Skype
[26/05/2008|00:07] C:\Program Files\Fichiers communs\Sonic Shared
[26/05/2008|00:07] C:\Program Files\Fichiers communs\SpeechEngines
[26/05/2008|00:07] C:\Program Files\Fichiers communs\SureThing Shared
[16/10/2008|17:17] C:\Program Files\Fichiers communs\System
[26/05/2008|00:07] C:\Program Files\Fichiers communs\Ulead Systems
[12/10/2008|17:58] C:\Program Files\Fichiers communs\Windows Live
[25/05/2008|18:37] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[05/10/2008|01:18] C:\Program Files\Fichiers communs\Yahoo!

--------------------\\ Process

( 61 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-27 18:51:19
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
folder error: D:\DOCUME~1\MICHEL\LOCALS~1\APPLIC~1

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:306][D:50]-> D:\DOCUME~1\MICHEL\LOCALS~1\Temp
[F:15][D:0]-> D:\DOCUME~1\MICHEL\Cookies
[F:375][D:4]-> D:\DOCUME~1\MICHEL\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 27/12/2008|18:27 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 27/12/2008|18:52 - Option : [2]

--------------------\\ Fin du rapport a 18:52:54
0
Réponse 12 / 29
Utilisateur anonyme
27 déc. 2008 à 18:55
Re,

Très bien.

Fait ce qui suit:

▶ Télécharge random's system information tool (RSIT) et enregistre le sur ton bureau.

▶ Double clique sur RSIT.exe pour lancer l'outil.

▶ Clique sur ' continue ' à l'écran Disclaimer.

Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.

▶ Une fois le scan fini , 2 rapports vont apparaitre. Poste le contenu des 2 rapports
( log.txt & info.txt )

(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
0
Réponse 13 / 29
noshelter Messages postés 75 Date d'inscription jeudi 22 mars 2007 Statut Membre Dernière intervention 23 avril 2010
27 déc. 2008 à 18:57
a part ca, ca avance ? t'en penses quoi de tout ca?
0
Réponse 14 / 29
noshelter Messages postés 75 Date d'inscription jeudi 22 mars 2007 Statut Membre Dernière intervention 23 avril 2010
27 déc. 2008 à 18:58
info.txt logfile of random's system information tool 1.05 2008-12-27 18:57:26

======Uninstall list======

-->"C:\Program Files\Fichiers communs\aolshare\Coach\AolCInUn.exe" -lang="fr-fr"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Spyware Scanner"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Spyware"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Virus Client Security Installer"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Virus"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Automatic Update Agent"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure DAAS"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Diagnostics"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure E-mail Scanning"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure FWES"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure GateKeeper Interface"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Gemini"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure GUI"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Help"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure HIPS"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Internet Shield"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Localization API"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Management Agent"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Pegasus Engine"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Protocol Scanner"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Spam Control"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Spam Scanner"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure TNB"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Uninstall"
-->"C:\Program Files\Pack Securite\Uninstall\fsuninst.exe" /UninstRegKey:"F-Secure Web Filter"
-->C:\PROGRA~1\FICHIE~1\AOL\ACS\AcsUninstall.exe /c
-->C:\PROGRA~1\Norman\NORMAN~1\UNWISE.EXE C:\PROGRA~1\Norman\NORMAN~1\INSTALL.LOG
-->C:\Program Files\Fichiers communs\AOL\Screensaver\uninst_ygpss.exe
-->C:\Program Files\Fichiers communs\aolshare\Aolunins_fr.exe
-->C:\Program Files\Learn2.com\StRunner\stuninst.exe
-->C:\Program Files\Viewpoint\Viewpoint Experience Technology\mtsAxInstaller.exe /u
-->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19}
-->C:\WINDOWS\unvise32qt.exe C:\WINDOWS\system32\QuickTime\Uninstall.log
-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
-->MsiExec.exe /I{8B543A39-9401-44F4-B572-069E64C15189}
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\Setup.EXE" -uninstall
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3F9CFBD8-8F77-4DCD-8CB5-CDD5F653C872}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4F1DA6BF-3614-48A1-9970-9E90F646789E}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5A065EA0-0EEC-4E94-A2A0-40812576C122}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5AFA4872-16B2-419E-ADCA-8E96E739115D}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0A32C786-85DE-48F8-9E54-848B3E34A90C}\setup.exe" -l0x40c -removeonly
-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 7.0 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70000000000}
Adobe Shockwave Player 11-->C:\WINDOWS\system32\adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
Adobe® Photoshop® Album Edition Découverte 3.2-->MsiExec.exe /I{A654A805-41D9-40C7-AA46-4AF04F044D61}
Assistant de connexion Windows Live-->MsiExec.exe /I{D6E592B3-67DA-4BBB-9783-E1838FB253A2}
Barre d'outils Outlook de Windows Live (Windows Live Toolbar)-->MsiExec.exe /X{4002F73D-EBB3-4EA1-A2FF-DBCB4529759E}
Big Fish Games Client-->C:\Program Files\bfgclient\Uninstall.exe
Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{51F366F4-C2E4-429A-866A-59C885ED42FD}
Canon MP Navigator EX 1.0-->"C:\Program Files\Canon\MP Navigator EX 1.0\Maint.exe" /UninstallRemove C:\Program Files\Canon\MP Navigator EX 1.0\uninst.ini
Canon MP610 series-->"C:\WINDOWS\system32\CanonIJ Uninstaller Information\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP610_series\DelDrv.exe" /U:{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP610_series /L0x000c
Canon My Printer-->C:\Program Files\Canon\MyPrinter\uninst.exe uninst.ini
Canon Utilities Easy-PhotoPrint EX-->C:\Program Files\Canon\Easy-PhotoPrint EX\uninst.exe uninst.ini
Canon Utilities Solution Menu-->C:\Program Files\Canon\SolutionMenu\uninst.exe uninst.ini
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
CD-LabelPrint-->"C:\Program Files\Canon\CD-LabelPrint\Uninstal.exe" Canon.CDLabelPrint.Application
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Codeur Windows Media Série 9-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Coffret de pilotes Logitech Legacy USB Camera-->"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\legacyqcam\10.51.2023\LgDrvInst.exe" -remove -instdir"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\legacyqcam\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -promptuninstall -arpregkey"legacyqcam_10.51" /clone_wait /hide_progress
Coffret de pilotes Logitech QuickCam-->"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\lvdrivers\11.50.1145\LgDrvInst.exe" -remove -instdir"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\lvdrivers\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -promptuninstall -arpregkey"lvdrivers_11.50" /clone_wait /hide_progress
Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{175B7C4A-CAF8-437A-B597-73E0D2D970FE}
ENJOY Plus!-->"C:\Program Files\ENJOY Plus!\UnInstall.exe"
Enregistrement utilisateur de Canon MP610 series-->C:\Program Files\Canon\IJEREG\MP610 series\UNINST.EXE
Everest Poker (Remove Only)-->C:\Program Files\Everest Poker\cstart.exe /uninstall
Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{D518AD32-C710-4616-BA0D-D4B1FA5F82E8}
GIMP 2.6.3-->"C:\Program Files\GIMP-2.0\setup\unins000.exe"
Google Earth-->MsiExec.exe /I{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
J2SE Runtime Environment 5.0 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150020}
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
king.com (remove only)-->"C:\WINDOWS\king-uninstall.exe"
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Logitech Audio Echo Cancellation Component-->MsiExec.exe /X{BEF726DD-4037-4214-8C6A-E625C02D2870}
Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\Setup.exe" -l0x40c UNINSTALL
Logitech QuickCam-->MsiExec.exe /X{945AC98B-3DC8-45BE-BAE0-22CEEE37A103}
Logitech Video Enumerator-->MsiExec.exe /X{EA516024-D84D-41F1-814F-83175A6188F2}
Macromedia Shockwave Player-->MsiExec.exe /X{7D1D6A24-65D4-454C-8815-4F08A5FFF12C}
Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{3585ED1C-74C5-43B0-A232-831B96A12A2B}
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Live Add-in 1.3-->MsiExec.exe /I{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
Microsoft Office Word Viewer 2003-->MsiExec.exe /I{9085040C-6000-11D3-8CFE-0150048383C9}
Microsoft Office XP Professional-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0050048383C9}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Mise à jour de sécurité pour le Codeur Windows Media (KB954156)-->"C:\WINDOWS\$NtUninstallKB954156_WM9L$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB942763)-->"C:\WINDOWS\$NtUninstallKB942763$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mozilla Firefox (3.0.5)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MVision-->MsiExec.exe /I{35725FBC-A136-4A46-9F29-091759D9BB93}
Navilog1 3.7.0-->"C:\Program Files\Navilog1\unins000.exe"
Neuf - Kit de connexion-->C:\Program Files\Neuf\Kit\uninstall.exe
OneCare Advisor (Windows Live Toolbar)-->MsiExec.exe /X{F242B06B-517F-4D62-B654-16B11564A912}
Pack Securite Plus-->"C:\Program Files\Pack Securite\FSGUI\PostInstall.exe" /tUnInstall
Panneau de contrôle ATI-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"
PhotoScape-->"C:\Program Files\PhotoScape\uninstall.exe"
Picasa 2-->"C:\Program Files\Picasa2\Uninstall.exe"
Pinnacle VideoSpin-->MsiExec.exe /X{4EDB1CA5-983F-4FC3-A8E3-E34981E05A60}
PIXMA Extended Survey Program-->C:\Program Files\Canon\IJPLM\SETUP.EXE -R
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Skype™ 3.8-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
Sonic MyDVD-->MsiExec.exe /I{21657574-BD54-48A2-9450-EB03B2C7FC29}
Sonic RecordNow!-->MsiExec.exe /I{9541FED0-327F-4DF0-8B96-EF57EF622F19}
Subtitle Workshop 2.51-->"C:\Program Files\URUSoft\Subtitle Workshop\uninstall.exe"
SweetIM Toolbar for Internet Explorer 3.1-->MsiExec.exe /X{59971D79-8111-42C2-9E40-883A0C277E78}
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
Wondershare Photo Collage Studio (V4.2.8) Trial Version-->"C:\Program Files\Wondershare\Photo Collage Studio\unins000.exe"
Yahoo! Install Manager-->C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL

======Security center information======

AV: Pack Securite Plus 7.00
FW: Pack Securite Plus 7.00

System event log

Computer Name: 107055350316
Event Code: 7
Message: Le périphérique \Device\CdRom0 comporte un bloc défectueux.

Record Number: 17555
Source Name: Cdrom
Time Written: 20081210225446.000000+060
Event Type: erreur
User:

Computer Name: 107055350316
Event Code: 7
Message: Le périphérique \Device\CdRom0 comporte un bloc défectueux.

Record Number: 17554
Source Name: Cdrom
Time Written: 20081210225444.000000+060
Event Type: erreur
User:

Computer Name: 107055350316
Event Code: 7
Message: Le périphérique \Device\CdRom0 comporte un bloc défectueux.

Record Number: 17553
Source Name: Cdrom
Time Written: 20081210225442.000000+060
Event Type: erreur
User:

Computer Name: 107055350316
Event Code: 7
Message: Le périphérique \Device\CdRom0 comporte un bloc défectueux.

Record Number: 17552
Source Name: Cdrom
Time Written: 20081210225440.000000+060
Event Type: erreur
User:

Computer Name: 107055350316
Event Code: 7
Message: Le périphérique \Device\CdRom0 comporte un bloc défectueux.

Record Number: 17551
Source Name: Cdrom
Time Written: 20081210225437.000000+060
Event Type: erreur
User:

Application event log

Computer Name: 107055350316
Event Code: 103
Message: msnmsgr (5784) \\.\D:\Documents and Settings\MICHEL\Local Settings\Application Data\Microsoft\Messenger\layoulidu62@hotmail.fr\SharingMetadata\Working\database_6804_8846_488_18E8\dfsr.db: Le moteur de base de données a arrêté une instance (0).

Record Number: 17371
Source Name: ESENT
Time Written: 20081115135742.000000+060
Event Type: Informations
User:

Computer Name: 107055350316
Event Code: 102
Message: msnmsgr (5784) \\.\D:\Documents and Settings\MICHEL\Local Settings\Application Data\Microsoft\Messenger\layoulidu62@hotmail.fr\SharingMetadata\Working\database_6804_8846_488_18E8\dfsr.db: Le moteur de base de données a démarré une nouvelle instance (0).

Record Number: 17370
Source Name: ESENT
Time Written: 20081115104520.000000+060
Event Type: Informations
User:

Computer Name: 107055350316
Event Code: 100
Message: msnmsgr (5784) Le moteur de base de données 5.01.2600.5512 est démarré.

Record Number: 17369
Source Name: ESENT
Time Written: 20081115104520.000000+060
Event Type: Informations
User:

Computer Name: 107055350316
Event Code: 12001
Message:
Record Number: 17368
Source Name: usnjsvc
Time Written: 20081115104517.000000+060
Event Type:
User:

Computer Name: 107055350316
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.

Record Number: 17367
Source Name: SecurityCenter
Time Written: 20081115060316.000000+060
Event Type: Informations
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\ATI Technologies\ATI Control Panel;C:\Program Files\Fichiers communs\Ulead Systems\MPEG;C:\PROGRA~1\FICHIE~1\SONICS~1\;C:\Program Files\Pinnacle\Shared Files\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 4 Stepping 1, GenuineIntel
"PROCESSOR_REVISION"=0401
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------








Logfile of random's system information tool 1.05 (written by random/random)
Run by MICHEL at 2008-12-27 18:56:53
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 19 GB (63%) free of 31 GB
Total RAM: 511 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:57:22, on 27/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
c:\APPS\Powercinema\Kernel\TV\CLSched.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
C:\Program Files\Pack Securite\Anti-Virus\fsgk32st.exe
C:\Program Files\Pack Securite\Common\FSMA32.EXE
C:\Program Files\Pack Securite\Anti-Virus\FSGK32.EXE
c:\APPS\HIDSERVICE\HIDSERVICE.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Pack Securite\Common\FSMB32.EXE
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\RTHDCPL.EXE
C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
C:\apps\ABoard\ABoard.exe
C:\Program Files\Pack Securite\Common\FSM32.EXE
C:\Program Files\Pack Securite\Common\FCH32.EXE
C:\apps\ABoard\AOSD.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Pack Securite\Common\FAMEH32.EXE
C:\Program Files\Pack Securite\Anti-Virus\fsqh.exe
C:\Program Files\Pack Securite\FSPC\fspc.exe
C:\Program Files\Pack Securite\Anti-Virus\fssm32.exe
C:\Program Files\Pack Securite\FSAUA\program\fsaua.exe
C:\Program Files\Pack Securite\FSGUI\fsguidll.exe
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Pack Securite\FWES\Program\fsdfwd.exe
C:\Program Files\Pack Securite\FSAUA\program\fsus.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Pack Securite\Anti-Virus\fsav32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
D:\Documents and Settings\MICHEL\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\MICHEL.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://home.sweetim.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://home.sweetim.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Packard Bell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ATIPTA] "C:\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32"
O4 - HKLM\..\Run: [ACTIVBOARD] c:\apps\ABoard\ABoard.exe
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Pack Securite\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Pack Securite\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\Pack Securite\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\Pack Securite\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Pack Securite\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Pack Securite\Common\FSMA32.EXE
O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: MysqlInventime - Unknown owner - C:\Apps\INVENT~1\mysql\bin\mysqld-nt.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
0
Réponse 15 / 29
Utilisateur anonyme
27 déc. 2008 à 18:58
Re,

Fait RSIT et te dit quoi.
0
Réponse 16 / 29
noshelter Messages postés 75 Date d'inscription jeudi 22 mars 2007 Statut Membre Dernière intervention 23 avril 2010
27 déc. 2008 à 19:00
ca y'est c'est posté ^^
0
Réponse 17 / 29
Utilisateur anonyme
27 déc. 2008 à 19:01
Re,

▶ Télécharge UsbFix (de Chiquitine29) sur ton Bureau :

▶ Lance l'installation avec les paramètres par défaut.

▶ Branche tes sources de données externes à ton PC (clé USB, disque dur externe, etc...) sans les ouvrir.

▶ Double-clique sur le raccourci UsbFix sur ton Bureau.

Choisit l'option 1

▶ Le PC va redémarrer.

▶ Après redémarrage, poste le rapport UsbFix.txt

Note : le rapport UsbFix.txt est sauvegardé à la racine du disque.

(Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet "Fichier", "Nouvelle tâche", tape explorer.exe et valide)

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
0
Réponse 18 / 29
Utilisateur anonyme
27 déc. 2008 à 19:01
Re,

Fait le poste 22
0
Réponse 19 / 29
noshelter Messages postés 75 Date d'inscription jeudi 22 mars 2007 Statut Membre Dernière intervention 23 avril 2010
27 déc. 2008 à 19:10
-------------- UsbFix V2.413.7 ---------------

* User : MICHEL - 107055350316
* Outils mis a jours le 24/12/2008 par Chiquitine29 et Chimay8
* Recherche effectuée à 19:03:58 le 27/12/2008
* Windows Xp - Internet Explorer 7.0.5730.13


--------------- [ Processus actifs ] ----------------


C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\userinit.exe
C:\WINDOWS\Explorer.EXE

--------------- [ Informations lecteurs ] ----------------

C: - Lecteur fixe

D: - Lecteur fixe

E: - Lecteur de CD-ROM


--------------- [ Lecteur C ] ----------------

C: - Lecteur fixe


+- Listing des fichiers présents :

[05/08/2004 14:00][--a------] C:\NTDETECT.COM
[25/05/2008 15:31][-rahs----] C:\BOOT.INI
[11/11/2005 17:35][--a------] C:\DWNLOG.TXT
[11/11/2005 17:35][--a------] C:\fixnavi.txt
[11/11/2005 17:35][--a------] C:\log_lobby.txt
[11/11/2005 17:35][--a------] C:\log_lobby_dumper.txt
[11/11/2005 17:35][--a------] C:\lopR.txt
[11/11/2005 17:35][--a------] C:\SAUDIT.TXT
[11/11/2005 17:35][--a------] C:\UsbFix.txt
[][] C:\hiberfil.sys
[][] C:\IO.SYS
[][] C:\MSDOS.SYS
[][] C:\pagefile.sys

--------------- [ Lecteur D ] ----------------

D: - Lecteur fixe


+- Listing des fichiers présents :


--------------- [ Lecteur E ] ----------------

E: - Lecteur de CD-ROM


+- Listing des fichiers présents :


--------------- [ Registre / Startup ] ----------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
ctfmon.exe=C:\WINDOWS\system32\ctfmon.exe
msnmsgr="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
PHIME2002ASync=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
PHIME2002A=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
High Definition Audio Property Page Shortcut=HDAShCut.exe
AzMixerSel=C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
RTHDCPL=RTHDCPL.EXE
Alcmtr=ALCMTR.EXE
ATIPTA="C:\ATI Technologies\ATI Control Panel\atiptaxx.exe"
SunJavaUpdateSched="C:\Program Files\Java\jre6\bin\jusched.exe"
Ulead AutoDetector v2=C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
IMJPMIG8.1="C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32"
ACTIVBOARD=c:\apps\ABoard\ABoard.exe
F-Secure Manager="C:\Program Files\Pack Securite\Common\FSM32.EXE" /splash
F-Secure TNB="C:\Program Files\Pack Securite\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
CanonSolutionMenu=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
CanonMyPrinter=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
Adobe Photo Downloader="C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL=
Installed=1
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI=
Installed=1
NoChange=1
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS=
Installed=1

--------------- [ Registre / Mountpoint2 ] ----------------

Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{70a63f5d-d136-11dd-8c34-00038a000015}\Shell\AutoRun\command
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d3b2e01d-d1d5-11dd-8c35-00038a000015}\Shell\AutoRun\command

--------------- [ Nettoyage des disques ] ----------------


--------------- [ Resumé ] ----------------

-> /!\ Le resultat doit etre interprété par un spécialiste /!\

[05/08/2004 14:00][--a------] C:\NTDETECT.COM
[25/05/2008 15:31][-rahs----] C:\BOOT.INI

Joyeuses fetes a tous de la part de T'Chiki et Chimay ...et merci a toutes les personnes ayant,
de pret ou de loin participé a UsbFix durant l annee 2008 , merci a eux !

--------------- ! Fin du rapport ! ----------------
0
Réponse 20 / 29
Utilisateur anonyme
27 déc. 2008 à 19:12
Re,

▶ Télécharges AD-Remover ( de Cyrildu17 / C_XX ) sur ton bureau :


/!\ Déconnectes toi et fermes toutes applications en cours/!\

● Double clique sur le programme d'installation , et installe le dans son emplacement par défaut. ( C:\Program files )
● Double clique sur l'icône Ad-removersituée sur ton bureau
● Au menu principal choisi l'option "A"
● Postes le rapport qui apparait à la fin .

( le rapport est sauvegardé aussi sous C:\Ad-report(date).log )

(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

Note :

"Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
0