NTSB Investigator

[Résolu/Fermé]
Signaler
Messages postés
24
Date d'inscription
vendredi 25 juillet 2008
Statut
Membre
Dernière intervention
29 décembre 2008
-
 Utilisateur anonyme -
Bonjour,


Voila la fenêtre qui s'affiche 2 fois au 1ere démarrage de la journée :

http://img187.imageshack.us/img187/166/ntsbvi6.jpg


3 minutes après mon pc redémarre sans que je lui ai rien demandé..



Les symptômes :

- ordi très lent
- disparition de mon antivirus (antvir)
- disparition de SuperAntiSpyware
- impossible de lancer CCleaner ni Adaware

c'est tout ce que j'ai remarqué pour le moment..


J'ai fait une analyse avec Malwaresbytres' Anti-Malware, l'analyse a duré environ 4 heures au lieu d'une heure habituellement et voila le résultat :

http://img243.imageshack.us/img243/5558/malware2vh5.jpg

J'ai cliqué sur "Supprimer la sélection" et ça ma dit dit ça :

http://img166.imageshack.us/img166/3193/malsb1.jpg

J'ai relancé le pc et refait l'analyse 3 fois (ça ma prit toute la journée d'hier) et au final il ne m'en trouve plus qu'un mais le bazar est toujours le même..


Si quelqu'un peut m'aider s'il vous plait, j'en ai marre

27 réponses


Re,

Pas de problème.

A++
1
Merci

Quelques mots de remerciements seront grandement appréciés. Ajouter un commentaire

CCM 41713 internautes nous ont dit merci ce mois-ci


Salut,

Tu as un bagle .

FindyKill de Chiquitine29

▶ Fais un clique droit sur le lien et choisis ( "enregistrer la cible sous ...." )( , destination le bureau .

( Note importante : si tu as le prg Elibagla sur ton PC , supprimes le ( risque de conflit entre les deux outils )( .

▶ Entre dans le dossier " FindyKill "

▶ Double clic sur " FindyKill.bat " (et pas sur autre chose!) pour lancer l'outil .

▶ Choisis ( l'option 1( . Puis laisses travailler ...

▶ Une fois terminé, postes le rapport FindyKill.txt qui est généré ...

( Note : le rapport est sauvegardé à la racine du disque -> C:\FindyKill.txt )

Les-risques-securitaires-du-peer-to-peer

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Messages postés
24
Date d'inscription
vendredi 25 juillet 2008
Statut
Membre
Dernière intervention
29 décembre 2008

Voila le rapport :


----------------- FindyKill V4.710 ------------------

* User : Karima - ****-F3817FC
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 21/12/08 par Chiquitine29
* Recherche effectuée à 9:52:27 le 29/12/2008
* Windows XP - Internet Explorer 7.0.5730.13

((((((((((((((((( *** Recherche *** ))))))))))))))))))


--------------- [ Processus actifs ] ----------------


C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\GSICON.EXE
C:\WINDOWS\system32\dslagent.exe
C:\Program Files\Athan\Athan.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Documents and Settings\Karima\Application Data\drivers\winupgro.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Documents and Settings\Karima\Application Data\drivers\winupgro.exe
C:\Documents and Settings\Karima\Application Data\drivers\winupgro.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe

--------------- [ Processus infectieux stoppés ] ----------------


"C:\Documents and Settings\Karima\Application Data\drivers\winupgro.exe" (2464)
"C:\Documents and Settings\Karima\Application Data\drivers\winupgro.exe" (2500)
"C:\Documents and Settings\Karima\Application Data\drivers\winupgro.exe" (2508)


--------------- [ Fichiers/Dossiers infectieux ] ----------------


»»»» Presence des fichiers dans C:

Found ! [28/12/2008 18:01] - C:\InfoSat.txt

»»»» Presence des fichiers dans C:\WINDOWS


»»»» Presence des fichiers dans C:\WINDOWS\Prefetch

Found ! - C:\WINDOWS\prefetch\183500.EXE-33C0B626.pf
Found ! - C:\WINDOWS\prefetch\217109.EXE-3ADF25B6.pf
Found ! - C:\WINDOWS\prefetch\217234.EXE-236D6135.pf
Found ! - C:\WINDOWS\prefetch\534765.EXE-296497C2.pf
Found ! - C:\WINDOWS\prefetch\535015.EXE-39495E4F.pf
Found ! - C:\WINDOWS\prefetch\543484.EXE-0D5DAA76.pf
Found ! - C:\WINDOWS\prefetch\591265.EXE-322F733C.pf
Found ! - C:\WINDOWS\prefetch\632937.EXE-0A688AB0.pf
Found ! - C:\WINDOWS\prefetch\641390.EXE-1850417B.pf
Found ! - C:\WINDOWS\prefetch\799031.EXE-2DE0F310.pf
Found ! - C:\WINDOWS\prefetch\812187.EXE-264E52C6.pf
Found ! - C:\WINDOWS\prefetch\834218.EXE-39C73925.pf
Found ! - C:\WINDOWS\prefetch\857062.EXE-085B09F9.pf
Found ! - C:\WINDOWS\prefetch\868625.EXE-30C48F3B.pf
Found ! - C:\WINDOWS\prefetch\900187.EXE-39F99FC3.pf
Found ! - C:\WINDOWS\prefetch\FLEC006.EXE-05D53F5D.pf
Found ! - C:\WINDOWS\prefetch\FLEC006.EXE-0D412D6E.pf
Found ! - C:\WINDOWS\prefetch\MDELK.EXE-1D176F91.pf
Found ! - C:\WINDOWS\prefetch\WINTEMS.EXE-2A563F9B.pf
Found ! - C:\WINDOWS\prefetch\WINUPGRO.EXE-10673028.pf
Found ! - C:\WINDOWS\prefetch\WINUPGRO.EXE-2F3DFB86.pf
Found ! - C:\WINDOWS\Prefetch\INSTALL_CRACK.EXE-05C3FB79.pf
Found ! - C:\WINDOWS\Prefetch\INSTALL_CRACK.EXE-05C3FB79.pf

»»»» Presence des fichiers dans C:\WINDOWS\system32

Found ! [29/12/2008 08:48] - C:\WINDOWS\system32\mdelk.exe
Found ! [29/12/2008 08:48] - C:\WINDOWS\system32\wintems.exe
Found ! [29/12/2008 09:51] - C:\WINDOWS\system32\ban_list.txt

»»»» Presence des fichiers dans C:\WINDOWS\system32\config\systemprofile\AppData\Roaming


»»»» Presence des fichiers dans C:\WINDOWS\system32\drivers


»»»» Presence des fichiers dans C:\Documents and Settings\Karima\Application Data

Found ! [29/12/2008 08:50] - "C:\Documents and Settings\Karima\Application Data\m\flec006.exe"
Found ! [29/12/2008 08:50] - "C:\Documents and Settings\Karima\Application Data\m"
Found ! [29/12/2008 08:46] - "C:\Documents and Settings\Karima\Application Data\drivers"
Found ! [29/12/2008 08:46] - "C:\Documents and Settings\Karima\Application Data\drivers\srosa.sys"
Found ! [29/12/2008 08:46] - "C:\Documents and Settings\Karima\Application Data\drivers\srosa2.sys"
Found ! [05/10/2005 08:05] - "C:\Documents and Settings\Karima\Application Data\drivers\winupgro.exe"
Found ! [29/12/2008 09:00] - "C:\Documents and Settings\Karima\Application Data\drivers\downld"
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\1013156.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\1015687.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\1016859.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15194687.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15195234.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15195468.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15208125.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15254015.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15254421.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15254656.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15265828.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15309078.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15309265.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15309656.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15318890.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15344421.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15345562.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15346640.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15350718.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15351140.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15351406.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15358984.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15383000.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15383296.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15383578.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15386453.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15388031.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15389343.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15391906.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15399718.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15400640.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15401687.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15422046.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15422468.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15422859.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15429796.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15430734.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15431734.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15434250.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15451171.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15452187.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15452968.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15464234.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15464984.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15465734.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15543203.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15571453.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15607765.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15615953.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15616625.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15616953.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15627671.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15640296.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15643109.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15643359.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15643968.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15644328.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15645328.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15647906.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15650453.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15652109.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15669015.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15671562.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15672859.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15684062.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15684312.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15684546.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15688546.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15689890.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15690656.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15701015.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15702406.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15702515.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15702968.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15704000.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15705359.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15706859.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15707968.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15708406.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15709187.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15710000.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15717937.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15719484.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15721046.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15722453.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15725765.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15727671.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15729828.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15732546.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15732968.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15734421.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15734890.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15736250.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15736578.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15744781.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15746078.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15747062.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15752468.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15755968.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15766359.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15767765.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15768937.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15776718.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15776984.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15778968.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15779281.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15780000.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15780625.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15782640.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15788125.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15793906.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15802703.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15803234.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15803703.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15812156.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15814218.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15816187.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15827390.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15829906.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15831843.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15833968.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15836453.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15838062.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15849375.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15874750.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15877015.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15877312.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15878531.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15879187.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15880593.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15893671.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15912640.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15914203.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15915890.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15947281.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15971531.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15973156.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\15974187.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\182328.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\182515.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\185468.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\205578.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\205968.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\206484.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\206812.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\207265.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\208500.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\217234.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\219484.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\220437.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\257921.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\260687.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\261859.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\270109.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\271093.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\271906.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\274390.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\275703.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\276750.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\313078.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\314281.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\327406.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\327421.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\348718.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\348812.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\349015.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\349234.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\349390.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\355015.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\355031.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\355734.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\375921.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\377265.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\377671.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\382906.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\383218.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\383421.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\390718.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\391015.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\391609.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\399375.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\401671.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\401828.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\403078.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\403703.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\405468.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\405484.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\406250.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\407562.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\408468.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\410140.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\410750.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\412281.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\412906.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\414687.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\415062.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\415718.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\418968.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\419031.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\419109.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\421000.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\421171.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\421500.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\423140.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\426468.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\428718.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\458546.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\458812.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\461046.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\461265.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\462125.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\462234.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\466156.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\467156.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\468046.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\471109.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\471265.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\482171.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\489921.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\489968.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\495546.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\496484.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\498562.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\498750.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\498890.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\499593.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\503921.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\506734.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\509312.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\511015.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\512921.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\521593.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\522015.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\522375.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\522640.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\525812.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\526218.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\533921.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\534390.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\534765.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\534796.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\535015.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\544515.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\562250.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\562265.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\562359.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\562703.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\562906.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\563015.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\568281.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\572921.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\574406.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\576093.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\577656.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\578468.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\579093.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\579203.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\579750.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\580578.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\580843.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\581781.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\593171.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\593234.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\593250.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\594453.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\594953.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\598125.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\599000.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\599234.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\599906.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\603250.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\605015.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\606421.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\606968.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\608250.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\608703.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\609000.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\610031.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\610078.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\610875.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\615078.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\616500.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\617812.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\618031.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\621203.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\623031.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\625671.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\631671.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\632937.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\634281.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\635687.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\639015.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\639250.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\639500.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\641390.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\665921.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\667890.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\670453.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\671156.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\673062.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\673828.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\675359.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\677562.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\680687.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\690890.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\691062.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\691546.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\693078.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\711984.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\713781.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\716906.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\717328.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\718656.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\720000.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\720765.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\720796.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\721312.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\726375.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\728265.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\729031.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\731250.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\732390.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\733968.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\737593.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\740203.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\740875.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\741281.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\741515.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\744562.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\746812.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\748562.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\749890.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\750343.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\750781.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\757359.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\761046.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\762687.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\764406.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\771187.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\776484.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\779031.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\780437.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\780937.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\782500.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\783109.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\783468.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\783828.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\784156.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\784671.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\785781.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\786343.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\788265.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\788859.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\789062.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\789343.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\791093.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\791359.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\795375.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\797406.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\797765.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\798265.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\799031.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\799328.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\800234.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\801218.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\806437.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\812171.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\812187.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\813343.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\814796.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\816203.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\816562.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\817718.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\818437.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\823140.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\825531.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\826375.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\827328.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\829031.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\831312.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\833140.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\834218.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\834765.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\835718.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\836187.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\836359.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\836390.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\844890.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\846578.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\846828.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\847500.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\848375.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\849500.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\849671.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\851687.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\852421.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\857062.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\861828.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\863062.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\863796.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\864890.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\865765.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\865968.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\866468.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\867515.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\868625.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\878843.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\879171.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\880578.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\881187.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\882140.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\882781.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\892828.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\894671.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\895625.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\900109.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\901718.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\903437.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\904796.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\906031.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\906718.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\909390.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\911156.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\912593.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\912859.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\917859.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\930968.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\933156.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\934515.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\939218.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\941531.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\942390.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\942468.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\944125.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\944921.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\949625.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\973921.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\975812.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\977609.exe
Found ! [29/12/2008 09:00] - C:\Documents and Settings\Karima\Application Data\drivers\downld\983468.exe

»»»» Presence des fichiers dans C:\DOCUME~1\Karima\LOCALS~1\Temp

Found ! - C:\DOCUME~1\Karima\LOCALS~1\Temp\COL10862\UIEPatch.exe
Found ! - C:\DOCUME~1\Karima\LOCALS~1\Temp\NERO13823\Data\Redist\Verknpfung mit PatchID`s 4Nero 8 webdemos.txt.lnk


[...]

Re,

Il manque une partie...

Re,

Mais bon,

Findykill de chiquitine29 option 2:

▶ Branche tes disques amovibles à ton PC ( (clefs USB, disque dur externe, etc...) sans les ouvrir

▶ Double-clique sur le raccourci FindyKill sur ton bureau

▶ Au menu principal, choisisl'option 2 (Suppression)

/!\ Il y aura 2 redémarrages, laisse travailler l'outil jusqu'à l'apparition du message "nettoyage effectué" /!\

𥭮nsuite, poste le rapport FindyKill.txt

Note : le rapport FindyKill.txt est sauvegardé à la racine du disque.

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Messages postés
24
Date d'inscription
vendredi 25 juillet 2008
Statut
Membre
Dernière intervention
29 décembre 2008

effectivement tout le message n'est pas passé, voici la suite :

[...]

»»»» Presence des fichiers dans C:\DOCUME~1\Karima\LOCALS~1\Temp

Found ! - C:\DOCUME~1\Karima\LOCALS~1\Temp\COL10862\UIEPatch.exe
Found ! - C:\DOCUME~1\Karima\LOCALS~1\Temp\NERO13823\Data\Redist\Verknpfung mit PatchID`s 4Nero 8 webdemos.txt.lnk

»»»» Presence des fichiers dans C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5

Found ! [28/12/2008 13:09] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64[1].jpg
Found ! [28/12/2008 17:17] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64[2].jpg
Found ! [28/12/2008 21:45] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64[3].jpg
Found ! [29/12/2008 08:50] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64[4].jpg
Found ! [28/12/2008 10:00] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_1[1].jpg
Found ! [28/12/2008 13:12] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_1[2].jpg
Found ! [28/12/2008 13:12] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_2[1].jpg
Found ! [28/12/2008 17:36] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_2[2].jpg
Found ! [28/12/2008 21:47] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_2[3].jpg
Found ! [29/12/2008 08:54] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_2[4].jpg
Found ! [28/12/2008 13:06] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_3[1].jpg
Found ! [28/12/2008 21:36] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_3[2].jpg
Found ! [28/12/2008 13:11] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\mxd[2].jpg
Found ! [28/12/2008 09:56] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64[1].jpg
Found ! [28/12/2008 09:57] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64[2].jpg
Found ! [28/12/2008 13:09] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64[3].jpg
Found ! [28/12/2008 17:20] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64[4].jpg
Found ! [28/12/2008 21:42] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64[5].jpg
Found ! [28/12/2008 09:59] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_1[1].jpg
Found ! [28/12/2008 17:35] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_1[2].jpg
Found ! [28/12/2008 17:36] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_1[3].jpg
Found ! [28/12/2008 21:45] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_1[4].jpg
Found ! [28/12/2008 10:00] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_2[1].jpg
Found ! [28/12/2008 13:13] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_2[2].jpg
Found ! [28/12/2008 17:37] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_2[3].jpg
Found ! [28/12/2008 21:49] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_2[4].jpg
Found ! [28/12/2008 17:13] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_3[1].jpg
Found ! [28/12/2008 17:14] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_3[2].jpg
Found ! [28/12/2008 13:06] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_5[1].jpg
Found ! [28/12/2008 13:09] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64[1].jpg
Found ! [28/12/2008 17:16] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64[2].jpg
Found ! [28/12/2008 10:00] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64_1[1].jpg
Found ! [28/12/2008 10:00] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64_2[1].jpg
Found ! [28/12/2008 17:37] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64_2[2].jpg
Found ! [28/12/2008 09:55] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64_3[1].jpg
Found ! [28/12/2008 09:55] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64_3[2].jpg
Found ! [28/12/2008 17:29] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64_3[3].jpg
Found ! [28/12/2008 17:29] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64_3[4].jpg
Found ! [28/12/2008 09:56] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64[1].jpg
Found ! [28/12/2008 17:31] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64[2].jpg
Found ! [29/12/2008 08:50] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64[3].jpg
Found ! [28/12/2008 13:11] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_1[1].jpg
Found ! [28/12/2008 17:19] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_1[2].jpg
Found ! [28/12/2008 21:46] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_1[3].jpg
Found ! [28/12/2008 21:48] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_1[4].jpg
Found ! [29/12/2008 08:52] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_1[5].jpg
Found ! [29/12/2008 08:52] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_1[6].jpg
Found ! [28/12/2008 10:00] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_2[1].jpg
Found ! [28/12/2008 17:20] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_2[2].jpg
Found ! [28/12/2008 17:13] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_3[1].jpg
Found ! [28/12/2008 17:29] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_3[2].jpg
Found ! [28/12/2008 21:38] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_3[3].jpg
Found ! [29/12/2008 08:48] - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_3[4].jpg
Found ! [27/12/2008 21:16] - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\0XEPD2R9\b64[1].jpg
Found ! [28/12/2008 22:42] - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\0XEPD2R9\b64_3[1].jpg
Found ! [28/12/2008 22:47] - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\0XEPD2R9\mxd[1].jpg
Found ! [28/12/2008 22:48] - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\7YY9G87O\b64_2[1].jpg
Found ! [28/12/2008 09:49] - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\7YY9G87O\b64_3[1].jpg
Found ! [27/12/2008 21:15] - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\945HLH0P\b64[1].jpg
Found ! [28/12/2008 22:46] - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\945HLH0P\b64[2].jpg
Found ! [28/12/2008 22:48] - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\945HLH0P\b64_1[1].jpg
Found ! [27/12/2008 21:21] - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\945HLH0P\b64_2[1].jpg
Found ! [27/12/2008 21:10] - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\US50CTE6\b64_3[1].jpg
Found ! [27/12/2008 21:10] - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\US50CTE6\b64_3[2].jpg

--------------- [ Registre / Startup ] ----------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
CTFMON.EXE=C:\WINDOWS\system32\ctfmon.exe
MSMSGS="C:\Program Files\Messenger\msmsgs.exe" /background
SUPERAntiSpyware=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}="C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
DAEMON Tools Lite="C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
NeroFilterCheck="C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe"
GSICONEXE="C:\WINDOWS\system32\GSICON.EXE"
DSLAGENTEXE="C:\WINDOWS\system32\dslagent.exe" USB
SunJavaUpdateSched="C:\Program Files\Java\jre6\bin\jusched.exe"
avgnt="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
AppleSyncNotifier="C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe"
Athan="C:\Program Files\Athan\Athan.exe"
HP Software Update="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
Windows Defender="C:\Program Files\Windows Defender\MSASCui.exe" -hide
QuickTime Task="C:\Program Files\QuickTime\QTTask.exe" -atboottime
iTunesHelper="C:\Program Files\iTunes\iTunesHelper.exe"
Adobe Reader Speed Launcher="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL=
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI=
NoChange=1
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS=
Installed=1
<NO NAME>=

[HKEY_CURRENT_USER\software\local appwizard-generated applications\DestComp]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\hprbui]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\msmsgs]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\NeroCheck]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\NMBgMonitor]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\winupgro]

--------------- [ Registre / Clés infectieuses ] ----------------


Found ! - HKEY_USERS\S-1-5-21-796845957-746137067-682003330-1005\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_USERS\S-1-5-21-796845957-746137067-682003330-1005\Software\bisoft
Found ! - HKEY_USERS\S-1-5-21-796845957-746137067-682003330-1005\Software\DateTime4
Found ! - HKEY_USERS\S-1-5-21-796845957-746137067-682003330-1005\Software\FFC
Found ! - HKEY_USERS\S-1-5-21-796845957-746137067-682003330-1005\Software\FirtR
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
Found ! - HKEY_CURRENT_USER\Software\bisoft
Found ! - HKEY_CURRENT_USER\Software\DateTime4
Found ! - HKEY_CURRENT_USER\Software\FirtR
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SK9OU0S

--------------- [ Etat / Services ] ----------------

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot

- sans echec non fonctionnel !!

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal

- sans echec non fonctionnel !!

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network

- sans echec non fonctionnel !!



+- Services : [ Auto=2 / Demande=3 / Désactivé=4 ]

/!\ Ndisuio - Type de démarrage = 4

EapHost - Type de démarrage = 3

/!\ Ip6Fw - Type de démarrage = 4

/!\ SharedAccess - Type de démarrage = 4

/!\ wuauserv - Type de démarrage = 4

/!\ wscsvc - Type de démarrage = 4

/!\ WinDefend - Type de démarrage = 4



--------------- [ Recherche dans supports amovibles] ----------------


+- Informations :

C: - Lecteur fixe


+- presence des fichiers :



--------------- [ Registre / Mountpoint2 ] ----------------


-> Not found !


------------------- ! Fin du rapport ! --------------------

Re,

Findykill de chiquitine29 option 2:

▶ Branche tes disques amovibles à ton PC ( (clefs USB, disque dur externe, etc...) sans les ouvrir

▶ Double-clique sur le raccourci FindyKill sur ton bureau

▶ Au menu principal, choisisl'option 2 (Suppression)

/!\ Il y aura 2 redémarrages, laisse travailler l'outil jusqu'à l'apparition du message "nettoyage effectué" /!\

𥭮nsuite, poste le rapport FindyKill.txt

Note : le rapport FindyKill.txt est sauvegardé à la racine du disque.

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Messages postés
24
Date d'inscription
vendredi 25 juillet 2008
Statut
Membre
Dernière intervention
29 décembre 2008

Je viens de le faire et voila le rapport :




----------------- FindyKill V4.710 ------------------

* User : Karima - ****-F3817FC
* executed from : C:\Program Files\FindyKill
* Update on 21/12/08 par Chiquitine29
* Start at 10:24:12 the 29/12/2008
* Windows XP - Internet Explorer 7.0.5730.13


((((((((((((((( *** deleting *** ))))))))))))))))))


--------------- [ Active Processes ] ----------------


C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\userinit.exe

--------------- [ Infected files / folders ] ----------------


»»»» Supression files in C:

Deleted ! - C:\InfoSat.txt

»»»» Supression files in C:\WINDOWS


»»»» Supression files in C:\WINDOWS\Prefetch

Deleted ! - C:\WINDOWS\prefetch\183500.EXE-33C0B626.pf
Deleted ! - C:\WINDOWS\prefetch\217109.EXE-3ADF25B6.pf
Deleted ! - C:\WINDOWS\prefetch\217234.EXE-236D6135.pf
Deleted ! - C:\WINDOWS\prefetch\534765.EXE-296497C2.pf
Deleted ! - C:\WINDOWS\prefetch\535015.EXE-39495E4F.pf
Deleted ! - C:\WINDOWS\prefetch\543484.EXE-0D5DAA76.pf
Deleted ! - C:\WINDOWS\prefetch\591265.EXE-322F733C.pf
Deleted ! - C:\WINDOWS\prefetch\632937.EXE-0A688AB0.pf
Deleted ! - C:\WINDOWS\prefetch\641390.EXE-1850417B.pf
Deleted ! - C:\WINDOWS\prefetch\799031.EXE-2DE0F310.pf
Deleted ! - C:\WINDOWS\prefetch\812187.EXE-264E52C6.pf
Deleted ! - C:\WINDOWS\prefetch\834218.EXE-39C73925.pf
Deleted ! - C:\WINDOWS\prefetch\857062.EXE-085B09F9.pf
Deleted ! - C:\WINDOWS\prefetch\868625.EXE-30C48F3B.pf
Deleted ! - C:\WINDOWS\prefetch\900187.EXE-39F99FC3.pf
Deleted ! - C:\WINDOWS\prefetch\FLEC006.EXE-05D53F5D.pf
Deleted ! - C:\WINDOWS\prefetch\FLEC006.EXE-0D412D6E.pf
Deleted ! - C:\WINDOWS\prefetch\INSTALL_CRACK.EXE-05C3FB79.pf
Deleted ! - C:\WINDOWS\prefetch\MDELK.EXE-1D176F91.pf
Deleted ! - C:\WINDOWS\prefetch\WINTEMS.EXE-2A563F9B.pf
Deleted ! - C:\WINDOWS\prefetch\WINUPGRO.EXE-10673028.pf
Deleted ! - C:\WINDOWS\prefetch\WINUPGRO.EXE-2F3DFB86.pf

»»»» Supression files in C:\WINDOWS\system32

Deleted ! - C:\WINDOWS\system32\mdelk.exe
Deleted ! - C:\WINDOWS\system32\wintems.exe
Deleted ! - C:\WINDOWS\system32\ban_list.txt

»»»» Supression files in C:\WINDOWS\system32\config\systemprofile\AppData\Roaming


»»»» Supression files in C:\WINDOWS\system32\drivers

Deleted ! - C:\WINDOWS\system32\drivers\srosa.sys
Deleted ! - C:\WINDOWS\system32\drivers\srosa2.sys

»»»» Supression files in C:\Documents and Settings\Karima\Application Data

Deleted ! - "C:\Documents and Settings\Karima\Application Data\m\flec006.exe"
Deleted ! - "C:\Documents and Settings\Karima\Application Data\m"
Deleted ! - "C:\Documents and Settings\Karima\Application Data\drivers\srosa.sys"
Deleted ! - "C:\Documents and Settings\Karima\Application Data\drivers\srosa2.sys"
Deleted ! - "C:\Documents and Settings\Karima\Application Data\drivers\winupgro.exe"
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\1013156.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\1015687.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\1016859.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15194687.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15195234.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15195468.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15208125.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15254015.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15254421.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15254656.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15265828.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15309078.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15309265.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15309656.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15318890.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15344421.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15345562.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15346640.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15350718.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15351140.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15351406.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15358984.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15383000.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15383296.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15383578.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15386453.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15388031.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15389343.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15391906.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15399718.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15400640.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15401687.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15422046.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15422468.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15422859.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15429796.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15430734.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15431734.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15434250.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15451171.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15452187.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15452968.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15464234.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15464984.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15465734.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15543203.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15571453.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15607765.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15615953.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15616625.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15616953.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15627671.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15640296.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15643109.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15643359.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15643968.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15644328.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15645328.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15647906.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15650453.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15652109.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15669015.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15671562.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15672859.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15684062.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15684312.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15684546.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15688546.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15689890.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15690656.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15701015.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15702406.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15702515.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15702968.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15704000.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15705359.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15706859.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15707968.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15708406.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15709187.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15710000.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15717937.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15719484.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15721046.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15722453.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15725765.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15727671.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15729828.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15732546.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15732968.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15734421.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15734890.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15736250.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15736578.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15744781.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15746078.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15747062.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15752468.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15755968.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15766359.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15767765.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15768937.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15776718.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15776984.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15778968.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15779281.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15780000.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15780625.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15782640.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15788125.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15793906.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15802703.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15803234.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15803703.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15812156.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15814218.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15816187.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15827390.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15829906.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15831843.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15833968.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15836453.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15838062.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15849375.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15874750.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15877015.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15877312.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15878531.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15879187.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15880593.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15893671.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15912640.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15914203.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15915890.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15947281.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15971531.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15973156.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\15974187.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\182328.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\182515.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\185468.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\205578.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\205968.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\206484.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\206812.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\207265.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\208500.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\217234.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\219484.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\220437.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\257921.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\260687.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\261859.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\270109.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\271093.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\271906.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\274390.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\275703.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\276750.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\313078.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\314281.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\327406.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\327421.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\348718.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\348812.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\349015.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\349234.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\349390.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\355015.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\355031.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\355734.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\375921.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\377265.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\377671.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\382906.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\383218.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\383421.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\390718.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\391015.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\391609.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\399375.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\401671.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\401828.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\403078.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\403703.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\405468.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\405484.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\406250.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\407562.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\408468.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\410140.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\410750.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\412281.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\412906.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\414687.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\415062.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\415718.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\418968.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\419031.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\419109.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\421000.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\421171.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\421500.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\423140.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\426468.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\428718.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\458546.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\458812.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\461046.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\461265.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\462125.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\462234.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\466156.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\467156.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\468046.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\471109.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\471265.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\482171.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\489921.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\489968.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\495546.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\496484.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\498562.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\498750.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\498890.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\499593.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\503921.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\506734.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\509312.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\511015.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\512921.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\521593.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\522015.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\522375.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\522640.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\525812.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\526218.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\533921.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\534390.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\534765.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\534796.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\535015.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\544515.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\562250.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\562265.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\562359.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\562703.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\562906.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\563015.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\568281.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\572921.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\574406.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\576093.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\577656.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\578468.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\579093.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\579203.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\579750.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\580578.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\580843.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\581781.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\593171.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\593234.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\593250.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\594453.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\594953.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\598125.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\599000.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\599234.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\599906.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\603250.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\605015.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\606421.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\606968.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\608250.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\608703.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\609000.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\610031.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\610078.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\610875.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\615078.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\616500.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\617812.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\618031.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\621203.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\623031.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\625671.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\631671.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\632937.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\634281.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\635687.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\639015.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\639250.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\639500.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\641390.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\665921.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\667890.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\670453.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\671156.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\673062.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\673828.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\675359.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\677562.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\680687.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\690890.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\691062.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\691546.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\693078.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\711984.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\713781.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\716906.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\717328.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\718656.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\720000.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\720765.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\720796.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\721312.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\726375.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\728265.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\729031.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\731250.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\732390.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\733968.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\737593.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\740203.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\740875.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\741281.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\741515.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\744562.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\746812.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\748562.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\749890.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\750343.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\750781.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\757359.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\761046.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\762687.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\764406.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\771187.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\776484.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\779031.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\780437.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\780937.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\782500.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\783109.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\783468.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\783828.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\784156.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\784671.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\785781.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\786343.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\788265.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\788859.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\789062.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\789343.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\791093.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\791359.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\795375.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\797406.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\797765.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\798265.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\799031.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\799328.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\800234.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\801218.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\806437.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\812171.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\812187.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\813343.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\814796.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\816203.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\816562.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\817718.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\818437.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\823140.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\825531.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\826375.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\827328.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\829031.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\831312.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\833140.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\834218.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\834765.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\835718.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\836187.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\836359.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\836390.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\844890.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\846578.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\846828.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\847500.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\848375.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\849500.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\849671.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\851687.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\852421.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\857062.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\861828.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\863062.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\863796.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\864890.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\865765.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\865968.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\866468.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\867515.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\868625.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\878843.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\879171.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\880578.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\881187.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\882140.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\882781.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\892828.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\894671.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\895625.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\900109.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\901718.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\903437.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\904796.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\906031.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\906718.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\909390.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\911156.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\912593.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\912859.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\917859.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\930968.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\933156.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\934515.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\939218.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\941531.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\942390.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\942468.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\944125.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\944921.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\949625.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\973921.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\975812.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\977609.exe
Deleted ! - C:\Documents and Settings\Karima\Application Data\drivers\downld\983468.exe
Deleted ! - "C:\Documents and Settings\Karima\Application Data\drivers\downld"
Deleted ! - "C:\Documents and Settings\Karima\Application Data\drivers"

»»»» Supression files in C:\DOCUME~1\Karima\LOCALS~1\Temp

Deleted ! - C:\DOCUME~1\Karima\LOCALS~1\Temp\COL10862\UIEPatch.exe
Deleted ! - C:\DOCUME~1\Karima\LOCALS~1\Temp\NERO13823\Data\Redist\Verknpfung mit PatchID`s 4Nero 8 webdemos.txt.lnk

»»»» Supression files in C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5

Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64[3].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64[4].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_1[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_1[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_2[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_2[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_2[3].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_2[4].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_3[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\b64_3[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\EG6AXZB2\mxd[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64[3].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64[4].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64[5].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_1[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_1[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_1[3].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_1[4].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_2[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_2[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_2[3].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_2[4].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_3[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_3[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\KHZEH0LP\b64_5[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64_1[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64_2[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64_2[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64_3[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64_3[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64_3[3].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\SK5U5B7I\b64_3[4].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64[3].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_1[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_1[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_1[3].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_1[4].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_1[5].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_1[6].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_2[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_2[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_3[1].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_3[2].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_3[3].jpg
Deleted ! - C:\Documents and Settings\Karima\Local Settings\Temporary Internet Files\Content.IE5\TGN0FEY3\b64_3[4].jpg
Deleted ! - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\0XEPD2R9\b64[1].jpg
Deleted ! - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\0XEPD2R9\b64_3[1].jpg
Deleted ! - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\0XEPD2R9\mxd[1].jpg
Deleted ! - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\7YY9G87O\b64_2[1].jpg
Deleted ! - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\7YY9G87O\b64_3[1].jpg
Deleted ! - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\945HLH0P\b64[1].jpg
Deleted ! - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\945HLH0P\b64[2].jpg
Deleted ! - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\945HLH0P\b64_1[1].jpg
Deleted ! - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\945HLH0P\b64_2[1].jpg
Deleted ! - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\US50CTE6\b64_3[1].jpg
Deleted ! - C:\Documents and Settings\UTILISATEUR\Local Settings\Temporary Internet Files\Content.IE5\US50CTE6\b64_3[2].jpg

--------------- [ Registry / Infected keys ] ----------------

Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\srosa
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Deleted ! - HKEY_CURRENT_CONFIG\System\CurrentControlSet\Enum\ROOT\LEGACY_SROSA
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SK9OU0S
Deleted ! - HKEY_USERS\S-1-5-21-796845957-746137067-682003330-1005\Software\Local AppWizard-Generated Applications\winupgro

--------------- [ States / Restarting of services ] ----------------

+- Safe boot mode restored !


+- Services : [ Auto=2 / Request=3 / Disable=4 ]

Ndisuio - Type of startup = 3

EapHost - Type of startup = 2

Ip6Fw - Type of startup = 2

SharedAccess - Type of startup = 2

wuauserv - Type of startup = 2

wscsvc - Type of startup = 2

WinDefend - Type of startup = 2


--------------- [ Cleaning removable drives ] ----------------

+- Informations :

C: - Lecteur fixe

J: - Lecteur amovible


+- deleting files :


--------------- [ Registry / Mountpoint2 ] ----------------


-> Not found !


--------------- [ Searching Cracks / Keygen ] ----------------



---------------- ! End of report ! ------------------

Re,

Fait ceci maintenant:

▶ Télécharge hijackthis

▶ Enregistre la cible sous .... "le bureau"

▶ Fais un double-clic sur "HJTInstall.exe" afin de lancer l'installation

▶ Clique sur Install ensuite sur "I Accept"

▶ Clique sur" Do a scan system and save log file"

▶ Le bloc-notes s'ouvrira, fais un copier-coller de tout son contenu ici dans ta prochaine réponse

▶ Tuto hijackthis(Merci à Balltrap34)

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Messages postés
24
Date d'inscription
vendredi 25 juillet 2008
Statut
Membre
Dernière intervention
29 décembre 2008

Voila le résultat du scan avec Hijackthis :


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:38:03, on 29/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Windows Live\Mail\wlmail.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://runonce.msn.com/runonce3.aspx
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {0124123D-61B4-456f-AF86-78C53A0790C5} - (no file)
O4 - HKLM\..\Run: [NeroFilterCheck] "C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe"
O4 - HKLM\..\Run: [GSICONEXE] "C:\WINDOWS\system32\GSICON.EXE"
O4 - HKLM\..\Run: [DSLAGENTEXE] "C:\WINDOWS\system32\dslagent.exe" USB
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [AppleSyncNotifier] "C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe"
O4 - HKLM\..\Run: [Athan] "C:\Program Files\Athan\Athan.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [german.exe] C:\WINDOWS\system32\wintems.exe
O4 - HKCU\..\Run: [mule_st_key] C:\Documents and Settings\Karima\Application Data\m\flec006.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Service Manager.lnk = C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/mcfscan/2,2,0,5414/mcfscan.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{3F17B6FA-5A1C-48E6-ACC6-A2FC6388F7D7}: NameServer = 84.103.237.146 86.64.145.146
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe

Re,

Combofix. Attention, ce logiciel est très puissant, une mauvaise utilisation peut faire des dégâts...

Fais exactement ce qui suit :

Télécharge ComboFix (de sUBs) sur ton Bureau (et pas ailleurs !) :
Fais un clic droit sur ce lien et choisis "enregistrer la cible sous ... " : dans la fenêtre qui s'ouvre tape C-Fix, choisis le bureau comme destination et valide :

--------------------------------------------- [ ! ATTENTION ! ] ----------------------------------------------------------
!! déconnecte toi, ferme toutes tes applications en cours et DESACTIVE TOUTES TES DEFENCES (anti-virus, antispyware, pare-feu) le temps de la manipulation (si jamais tu en as et que je ne les ai pas vu sur le rapport hijackthis....)

---> Surtout, si tu rencontres des difficultés à ce niveau là, dis le moi avant de poursuivre...

--->Je te conseil d'installer la console de récupération.(Voir le tutoriel).

Tuto ici : TUTO
---------------------------------------------------------------------------------------------------------------------------------

Ensuite :

Double-clique sur C-Fix.exe (= combofix.exe ) .

Appuie sur une touche pour démarrer le scan .

Attention : n'utilise pas ta souris ni ton clavier pendant que le programme tourne. Cela pourrait figer l'ordi ---> si un message d'erreur windows apparait à un moment : clique sur la croix rouge en haut à droite de la fenêtre pour la fermer

Le rapport sera crée dans: C:\Combofix.txt , poste le ici stp

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Messages postés
24
Date d'inscription
vendredi 25 juillet 2008
Statut
Membre
Dernière intervention
29 décembre 2008

ComboFix 08-12-28.01 - Karima 2008-12-29 11:04:12.1 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.639.372 [GMT 1:00]
Lancé depuis: c:\documents and settings\Karima\Bureau\C-Fix.exe
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Outdated)
* Un nouveau point de restauration a été créé
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Karima\Cookies\avisumobab.com
c:\documents and settings\Karima\Cookies\okufewe.dat
c:\documents and settings\Karima\Cookies\tahuzaqo.bat
c:\documents and settings\Karima\Cookies\wuquxuhy.reg
c:\documents and settings\Karima\Cookies\ydyd.dat
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\167296.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\173093.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\177781.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\177875.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\182437.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\182562.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\183500.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\186609.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\186750.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\196296.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\206984.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\207046.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\207078.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\211281.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\217109.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\217234.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\234375.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\235968.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\236656.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\258593.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\259593.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\262453.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\262531.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\263562.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\264296.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\391500.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\445343.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\446187.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\446203.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\462437.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\464359.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\465140.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\466140.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\469109.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\471437.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\497390.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\498953.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\499625.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\510312.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\521921.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\523546.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\524125.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\543484.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\549109.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\568703.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\570687.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\570890.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\581468.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\591265.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\683250.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\685890.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\686421.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\713515.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\718593.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\719296.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\719609.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\719859.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\720859.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\723593.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\726406.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\728265.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\758937.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\761843.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\763375.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\765906.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\768296.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\770500.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\784328.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\788156.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\789812.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\822406.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\824968.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\826031.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\827234.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\827984.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\828671.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\858656.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\859765.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\860437.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\900187.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\900906.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\903828.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\905156.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\933687.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\935187.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\downld\936000.exe
c:\documents and settings\UTILISATEUR\Application Data\drivers\srosa.sys
c:\documents and settings\UTILISATEUR\Application Data\drivers\srosa2.sys
c:\documents and settings\UTILISATEUR\Application Data\drivers\winupgro.exe
c:\documents and settings\UTILISATEUR\Application Data\m
c:\documents and settings\UTILISATEUR\Application Data\m\data.oct
c:\documents and settings\UTILISATEUR\Application Data\m\flec006.exe
c:\documents and settings\UTILISATEUR\Application Data\m\list.oct
c:\documents and settings\UTILISATEUR\Application Data\m\shared\(Programma.ITA).Nod32.2.51.26.+.crack.per.aggiornamenti.-.Windows.XP.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\[0].Panda.Antivirus.Titanium.2006.5.02.01.crack.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\3D Disco Girl 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\3D Mailbox 1.1.0.58.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\A-one DVD Copy 6.8.5.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\A2 Flash 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\ABC Amber Photoshop Converter 1.05.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Alchemy Network Inventory 7.7.3.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Aloaha PDF Suite 3.6.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\AM-DeadLink 3.3.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Amazing Media Browser 0.27.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Another Matrix Screen Saver 1.0.12.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Aqua Coral Reefs 1.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Atory Password Generator 1.2.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Auto Volume Control 2.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Barcode XL 1.60.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\BG.-.Ork..Kristali.(2005).-.Kaderim.(by.Panda_1960).zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Bhagavad gita As It Is 1.08.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Binary Clock 3.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Birdhouse Icon 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Bitdefender.Internet.Security.v9.0.Build.9.German.Deutsch.Winall.Incl.Keymaker-Core.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Bitdefender_9_internet_security_serial_at_2007.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Breeze Designer 2.0.10.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Brushes Pack 2 - Pieces for Illustrator 1.0.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Buddy Icon Grabber 1.04.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Calendar (VML) 2.1.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\cam2pc - Freeware 4.6.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Christmas Story Screen Saver 3.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Churches 1.1.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Cisco Snmp Tool 2.5.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\CT Quick Spell 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\DACCEL.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Dataconomy MeterReading Standard Edition 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Debugger Selector 1.12.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Delphi Programmers tutorial 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\DFM Converter 1.0.0.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Dictionary German-Polish 1.8.33.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\DigitalPoint Forums Toolbar 1.1.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Djuggler Business 2.0.7.168.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\DrWeb.4.32.Key.NhT-TeaM.OrG(1).zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\EA.Mobile.Burnout.3D.Mobile.S60v3.N95.J2ME.webpleasure.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Easy DVD Burner 3.38.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Easy Movie Converter 5.20.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Email Sending Software 8.11.13.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Entertainment Gossip from Zorpia 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Face Smoother 1.71.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Flash LogoWizard 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Flexiblesoft Dialer XP Lite 5.2.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\FRS GradeBook 1.7.1.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Gluten Guard XP 2.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Grocery Companion 1.20.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Groovy backgrounds 33.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Guitar Shed 2.9.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\GX'mas Tree 1.0.0.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\HP Earth's Harry Potter Clock 1.3.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\HS FTP Client C Source Library 1.1.12.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\IntelliPRINT Reporting 5.1.2.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Joy iPod Converter 3.2.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Kaspersky.Anti-Virus.For.Ms.Nt.Server.v4.5.0.104.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Keyboard Logger 2.1.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Korean HakGyo 2.2.2831.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Lock My Computer 1.0.1.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\M2Convert for Smartphones 2.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Magic 8 Ball 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\McAfee VirusScan ITA 10.0.25.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\MCE Mover 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\MemChinese 1.5.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Michelangelo Art 2.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\miniPHP Studio 1.8.5.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\MMEmail 1.0.3.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Money Management Explorer 1.25.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Motorola Siemens 128x128 128x160.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Mémo Friend 3.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\My Address Book 4.9.1.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\My WinPopup Express 2005.20.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\MyStars! 2.7.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\NeoPlanet 5.1 build 1262.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Nevron Chart for Windows Forms 3.1.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\NGS 1.0.0.74.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Niall's Real Time Synth 1.02.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\NOD32.Antivirus.System.2.51.28.Retail.Full.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\OakDoc PS to TIFF Converter 1.1.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Oldskool 0.2.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Online TV Player 3.0.0.940.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Open With Arguments 1.2.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Particls 0.9.2375.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Patient Appointment Manager 3.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Perfect Format 3.4.6.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Pic Dropper 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\PictureBoxEx Activex Control 2.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Portable Nikosa ScreenCapture 1.0.0.5.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Purrint Build 19.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\PWSMoney 4.0.0.778.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\qvPDF 3.1 RC2.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\RE
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Recover 2.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\RioCams 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\RouterOS 3.0 beta5.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Sandy Beaches Screensaver.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Santa's List by Drawing Hand 5.6d.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\SBAppLocale 1.1.0.9.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Sc MP3 - Wav Converter 7.0.0.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Secrets 6.0.119.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Sentinel 2.2.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\ShowGPS 2.77.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Sketchy icons.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\SkyLlian 0.7.0 RC 1.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Sqirlz Water Reflections 2.5.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\StatWin Enterprise 7.8.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\System Up Time 1.2.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\TempusFugit 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Text Template Plugin 1.2.4.6.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\The Code Project Ticker 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\TingleSoft Zune Converter 1.6.208.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Titanium
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Topee Hotkey Manager 1.2.6.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Tree Notes 1.60.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Tropical Fish 3D Photo Screensaver 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\UniquePVPers Temperature Converter 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\UserInfo 1.0 Beta 1.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Value Trend Indicator 5.60.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\VaPointer 2.1.9.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Video Guide to Paint Shop Pro X 1.2.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Word Icons 1.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Xilisoft DVD Maker Suite 1.1.16.1212.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\XSS Me 0.4.0.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\YGPM 1.10.zip
c:\documents and settings\UTILISATEUR\Application Data\m\shared\Zip Manager 1.9 Beta.zip
c:\documents and settings\UTILISATEUR\Application Data\m\srvlist.oct
C:\Documents
c:\program files\Fichiers communs\Ahead\Lib\NeroCheck.exe
c:\program files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
c:\program files\Messenger\msmsgs.exe
c:\windows\system32\cafeacbf7_z.dll

.
((((((((((((((((((((((((((((( Fichiers créés du 2008-11-28 au 2008-12-29 ))))))))))))))))))))))))))))))))))))
.

2008-12-29 09:48 . 2008-12-29 10:30 <REP> d-------- c:\program files\FindyKill
2008-12-27 21:03 . 2008-12-29 11:05 <REP> d--h----- c:\documents and settings\UTILISATEUR\Application Data\drivers
2008-12-25 11:23 . 2008-12-25 11:23 <REP> d--h----- c:\windows\PIF
2008-12-25 11:23 . 2008-12-25 11:23 <REP> d-------- c:\program files\ma-config.com
2008-12-25 11:23 . 2008-12-25 11:23 <REP> d-------- c:\documents and settings\All Users\Application Data\ma-config.com
2008-12-17 17:18 . 2008-12-28 22:41 <REP> d-------- c:\documents and settings\UTILISATEUR\Tracing
2008-12-16 10:52 . 2008-12-29 10:35 <REP> d-------- c:\documents and settings\Karima\Tracing
2008-12-16 10:48 . 2008-12-16 10:48 <REP> d-------- c:\program files\Microsoft
2008-12-16 10:47 . 2008-12-16 10:47 <REP> d-------- c:\program files\Windows Live SkyDrive
2008-12-16 10:40 . 2008-12-16 10:40 <REP> d-------- c:\program files\Fichiers communs\Windows Live
2008-12-14 09:23 . 2008-12-14 09:23 <REP> d-------- c:\program files\Microsoft Silverlight
2008-12-11 18:35 . 2008-12-11 18:35 <REP> d-------- c:\program files\Microsoft Works
2008-12-11 18:33 . 2008-12-11 18:33 <REP> d-------- c:\program files\Microsoft.NET
2008-12-11 18:18 . 2008-12-11 18:18 <REP> d-------- c:\documents and settings\Karima\Application Data\DAEMON Tools Pro
2008-12-11 18:18 . 2008-12-11 18:18 <REP> d-------- c:\documents and settings\Karima\Application Data\DAEMON Tools
2008-12-11 18:17 . 2008-12-11 18:17 <REP> d-------- c:\program files\DAEMON Tools Lite
2008-12-11 18:17 . 2008-12-11 18:17 <REP> d-------- c:\documents and settings\All Users\Application Data\DAEMON Tools Lite
2008-12-11 18:10 . 2008-12-11 18:22 <REP> d-------- c:\documents and settings\Karima\Application Data\DAEMON Tools Lite
2008-12-11 18:10 . 2008-12-11 18:10 717,296 --a------ c:\windows\system32\drivers\sptd.sys
2008-12-11 17:49 . 2008-12-11 17:49 <REP> d-------- c:\program files\Windows Installer Clean Up
2008-12-10 16:05 . 2008-12-10 16:05 410,984 --a------ c:\windows\system32\deploytk.dll
2008-12-09 19:14 . 2008-12-09 19:15 <REP> d-------- c:\program files\iTunes
2008-12-09 19:14 . 2008-12-09 19:14 <REP> d-------- c:\program files\iPod
2008-12-09 19:14 . 2008-12-09 19:15 <REP> d-------- c:\documents and settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-12-09 19:11 . 2008-12-09 19:12 <REP> d-------- c:\program files\QuickTime
2008-12-09 17:49 . 2008-12-09 17:49 <REP> d-------- c:\program files\splus
2008-12-09 17:49 . 2005-10-17 18:13 447,488 --a------ c:\windows\system32\splus.cpl
2008-12-08 23:10 . 1998-10-29 16:45 306,688 --a------ c:\windows\IsUninst.exe
2008-12-08 23:09 . 2008-12-08 23:09 <REP> d-------- c:\program files\Microsoft SQL Server
2008-12-08 22:19 . 2008-12-08 22:19 <REP> d-------- c:\program files\MSBuild
2008-12-08 22:10 . 2008-12-11 18:28 <REP> d-------- c:\program files\Microsoft Visual Studio 8
2008-12-08 22:08 . 2008-12-17 09:26 <REP> d-------- c:\documents and settings\All Users\Application Data\Microsoft Help
2008-12-08 22:06 . 2008-12-08 22:06 <REP> dr-h----- C:\MSOCache
2008-12-02 22:37 . 2008-12-02 22:37 49,480 --a------ c:\windows\system32\sirenacm.dll

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-12-29 09:51 --------- d-----w c:\program files\SUPERAntiSpyware
2008-12-28 16:21 --------- d-----w c:\program files\eMule
2008-12-22 17:46 --------- d-----w c:\program files\CCleaner
2008-12-22 17:45 --------- d-----w c:\program files\Fichiers communs\Adobe
2008-12-18 12:49 --------- d-----w c:\program files\Messenger Plus! Live
2008-12-16 10:28 --------- d-----w c:\documents and settings\Karima\Application Data\Image Zone Express
2008-12-16 09:46 --------- d-----w c:\program files\Windows Live
2008-12-12 19:58 --------- d-----w c:\documents and settings\Karima\Application Data\U3
2008-12-11 16:49 --------- d-----w c:\program files\MSECache
2008-12-10 15:05 --------- d-----w c:\program files\Java
2008-12-09 18:14 --------- d-----w c:\program files\Fichiers communs\Apple
2008-12-05 10:19 --------- d-----w c:\program files\Malwarebytes' Anti-Malware
2008-12-03 18:52 38,496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
2008-12-03 18:52 15,504 ----a-w c:\windows\system32\drivers\mbam.sys
2008-11-25 20:41 --------- d-----w c:\documents and settings\All Users\Application Data\WLInstaller
2008-11-14 14:13 --------- d-----w c:\program files\DivX
2008-11-14 14:02 --------- d-----w c:\program files\Fichiers communs\Teleca Shared
2008-11-12 13:39 --------- d-----w c:\documents and settings\All Users\Application Data\HP Product Assistant
2008-11-04 16:25 66,600 ----a-w c:\documents and settings\Karima\Application Data\GDIPFONTCACHEV1.DAT
2008-11-04 12:21 --------- d-----w c:\documents and settings\UTILISATEUR\Application Data\Printer Info Cache
2008-11-04 12:21 --------- d-----w c:\documents and settings\UTILISATEUR\Application Data\Image Zone Express
2008-10-23 12:36 286,720 ----a-w c:\windows\system32\gdi32.dll
2008-10-17 05:22 18,808 ----a-w c:\windows\system32\orepem.vbs
2008-10-17 05:22 18,377 ----a-w c:\windows\qahyzan.vbs
2008-10-17 05:22 18,085 ----a-w c:\program files\Fichiers communs\iquhum.pif
2008-10-17 05:22 17,567 ----a-w c:\documents and settings\All Users\Application Data\ecydonuqa.bat
2008-10-17 05:22 16,924 ----a-w c:\program files\Fichiers communs\hicozuteku.sys
2008-10-17 05:22 15,905 ----a-w c:\documents and settings\Karima\Application Data\netifet.com
2008-10-17 05:22 14,867 ----a-w c:\windows\lenesudyje.com
2008-10-17 05:22 14,784 ----a-w c:\documents and settings\All Users\Application Data\utuqibumul.vbs
2008-10-17 05:22 13,966 ----a-w c:\windows\system32\evoqacapux.vbs
2008-10-17 05:22 10,240 ----a-w c:\windows\zocoru.com
2008-10-16 20:18 826,368 ----a-w c:\windows\system32\wininet.dll
2008-10-16 13:13 202,776 ----a-w c:\windows\system32\wuweb.dll
2008-10-16 13:13 1,809,944 ----a-w c:\windows\system32\wuaueng.dll
2008-10-16 13:12 561,688 ----a-w c:\windows\system32\wuapi.dll
2008-10-16 13:12 323,608 ----a-w c:\windows\system32\wucltui.dll
2008-10-16 13:09 92,696 ----a-w c:\windows\system32\cdm.dll
2008-10-16 13:09 51,224 ----a-w c:\windows\system32\wuauclt.exe
2008-10-16 13:09 43,544 ----a-w c:\windows\system32\wups2.dll
2008-10-16 13:08 34,328 ----a-w c:\windows\system32\wups.dll
2008-10-16 13:06 268,648 ----a-w c:\windows\system32\mucltui.dll
2008-10-16 13:06 208,744 ----a-w c:\windows\system32\muweb.dll
2008-10-03 10:03 247,326 ----a-w c:\windows\system32\strmdll.dll
2008-09-30 15:43 1,286,152 ----a-w c:\windows\system32\msxml4.dll
2008-09-30 07:20 737,280 ----a-w c:\windows\iun6002.exe
2008-04-12 17:24 60,856 ----a-w c:\documents and settings\UTILISATEUR\Application Data\GDIPFONTCACHEV1.DAT
2008-09-10 12:07 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\Historique\History.IE5\MSHist012008091020080911\index.dat
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2008-12-10 216520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GSICONEXE"="c:\windows\system32\GSICON.EXE" [2002-01-22 90112]
"DSLAGENTEXE"="c:\windows\system32\dslagent.exe" [2002-01-22 16384]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-10 136600]
"avgnt"="c:\program files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-12-29 266497]
"AppleSyncNotifier"="c:\program files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2008-09-03 111936]
"Athan"="c:\program files\Athan\Athan.exe" [2008-08-18 1069056]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2006-12-10 49152]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2008-11-04 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2008-11-20 290088]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" [2007-08-24 437160]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-01-02 210520]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-02-13 83360]
Service Manager.lnk - c:\program files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe [2000-08-06 69632]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSLauncher]
--a------ 2007-09-07 13:44 3100672 c:\program files\Nokia\Nokia Software Launcher\NSLauncher.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\SopCast\\adv\\SopAdver.exe"=
"c:\\Program Files\\BitTornado\\btdownloadgui.exe"=
"c:\\Program Files\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"=
"c:\\Program Files\\Fichiers communs\\Nokia\\Service Layer\\A\\nsl_host_process.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=

R1 SASKUTIL;SASKUTIL;\??\c:\program files\SUPERAntiSpyware\SASKUTIL.sys []
S0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys []
S2 gafwload;ECI Telecom USB ADSL Loader;c:\windows\system32\DRIVERS\gafwload.sys [2008-03-28 26987]
S2 WinDefend;Windows Defender;"c:\program files\Windows Defender\MsMpEng.exe" [2006-11-03 13592]
S3 maconfservice;Ma-Config Service;"c:\program files\ma-config.com\maconfservice.exe" [2008-12-19 195752]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a68caf48-3007-11dd-8758-00ff00300101}]
\Shell\AutoRun\command - J:\LaunchU3.exe -a

*Newly Created Service* - EAPHOST
*Newly Created Service* - IP6FW
*Newly Created Service* - PROCEXP90
.
Contenu du dossier 'Tâches planifiées'

2008-12-16 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

2008-12-22 c:\windows\Tasks\At1.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-29 c:\windows\Tasks\At10.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-29 c:\windows\Tasks\At11.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-29 c:\windows\Tasks\At12.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-28 c:\windows\Tasks\At13.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-28 c:\windows\Tasks\At14.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-28 c:\windows\Tasks\At15.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-28 c:\windows\Tasks\At16.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-28 c:\windows\Tasks\At17.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-28 c:\windows\Tasks\At18.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-28 c:\windows\Tasks\At19.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-10 c:\windows\Tasks\At2.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-28 c:\windows\Tasks\At20.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-28 c:\windows\Tasks\At21.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-28 c:\windows\Tasks\At22.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-28 c:\windows\Tasks\At23.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-28 c:\windows\Tasks\At24.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-22 c:\windows\Tasks\At25.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-10 c:\windows\Tasks\At26.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-16 c:\windows\Tasks\At27.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-16 c:\windows\Tasks\At28.job
- c:\windows\system32\L6S38KNT.exe []

2008-10-31 c:\windows\Tasks\At29.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-16 c:\windows\Tasks\At3.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-14 c:\windows\Tasks\At30.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-14 c:\windows\Tasks\At31.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-14 c:\windows\Tasks\At32.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-14 c:\windows\Tasks\At33.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-29 c:\windows\Tasks\At34.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-29 c:\windows\Tasks\At35.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-29 c:\windows\Tasks\At36.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-28 c:\windows\Tasks\At37.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-28 c:\windows\Tasks\At38.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-28 c:\windows\Tasks\At39.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-16 c:\windows\Tasks\At4.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-28 c:\windows\Tasks\At40.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-28 c:\windows\Tasks\At41.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-28 c:\windows\Tasks\At42.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-28 c:\windows\Tasks\At43.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-28 c:\windows\Tasks\At44.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-28 c:\windows\Tasks\At45.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-28 c:\windows\Tasks\At46.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-28 c:\windows\Tasks\At47.job
- c:\windows\system32\L6S38KNT.exe []

2008-12-28 c:\windows\Tasks\At48.job
- c:\windows\system32\L6S38KNT.exe []

2008-10-31 c:\windows\Tasks\At5.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-14 c:\windows\Tasks\At6.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-14 c:\windows\Tasks\At7.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-14 c:\windows\Tasks\At8.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-14 c:\windows\Tasks\At9.job
- c:\windows\system32\O5M1b77o.exe []

2008-12-27 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 18:20]
.
- - - - ORPHELINS SUPPRIMES - - - -

HKCU-Run-MSMSGS - c:\program files\Messenger\msmsgs.exe
HKCU-Run-BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - c:\program files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe


.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.fr/
mStart Page = hxxp://www.google.com
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: {3F17B6FA-5A1C-48E6-ACC6-A2FC6388F7D7} = 84.103.237.144 86.64.145.144
FF - ProfilePath - c:\documents and settings\Karima\Application Data\Mozilla\Firefox\Profiles\km14c9ul.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/
FF - plugin: c:\documents and settings\Karima\Application Data\Mozilla\Firefox\Profiles\km14c9ul.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}\plugins\nphardwaredetection.dll
FF - plugin: c:\program files\ma-config.com\nphardwaredetection.dll
FF - plugin: c:\program files\Microsoft Silverlight\2.0.31005.0\npctrl.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npMdm.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-29 11:06:47
Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'winlogon.exe'(564)
c:\program files\SUPERAntiSpyware\SASWINLO.DLL
c:\windows\system32\Ati2evxx.dll
.
Heure de fin: 2008-12-29 11:08:11
ComboFix-quarantined-files.txt 2008-12-29 10:07:38

Avant-CF: 37 404 991 488 octets libres
Après-CF: 37,639,647,232 octets libres

WindowsXP-KB310994-SP2-Home-BootDisk-FRA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP dition familiale" /noexecute=optin /fastdetect

537 --- E O F --- 2008-12-26 09:25:00

Re,

Tu fait ceci maintenant:

▶ Télécharge random's system information tool (RSIT) et enregistre le sur ton bureau.

▶ Double clique sur RSIT.exe pour lancer l'outil.

▶ Clique sur ' continue ' à l'écran Disclaimer.

Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.

▶ Une fois le scan fini , 2 rapports vont apparaitre. Poste le contenu des 2 rapports
( log.txt & info.txt )

(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Messages postés
24
Date d'inscription
vendredi 25 juillet 2008
Statut
Membre
Dernière intervention
29 décembre 2008

Voila le rapport log.txt :

Logfile of random's system information tool 1.05 (written by random/random)
Run by Karima at 2008-12-29 11:19:07
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 37 GB (48%) free of 76 GB
Total RAM: 639 MB (33% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:19:27, on 29/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Documents and Settings\Karima\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Karima.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://runonce.msn.com/runonce3.aspx
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {0124123D-61B4-456f-AF86-78C53A0790C5} - (no file)
O4 - HKLM\..\Run: [GSICONEXE] "C:\WINDOWS\system32\GSICON.EXE"
O4 - HKLM\..\Run: [DSLAGENTEXE] "C:\WINDOWS\system32\dslagent.exe" USB
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [AppleSyncNotifier] "C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe"
O4 - HKLM\..\Run: [Athan] "C:\Program Files\Athan\Athan.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Service Manager.lnk = C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/mcfscan/2,2,0,5414/mcfscan.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{3F17B6FA-5A1C-48E6-ACC6-A2FC6388F7D7}: NameServer = 84.103.237.144 86.64.145.144
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
Messages postés
24
Date d'inscription
vendredi 25 juillet 2008
Statut
Membre
Dernière intervention
29 décembre 2008

Et voilainfo.txt


info.txt logfile of random's system information tool 1.05 2008-12-29 11:19:32

======Uninstall list======

-->C:\Program Files\Nero\Nero 7\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
32 Bit HP CIO Components Installer-->MsiExec.exe /I{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81300000003}
Apple Mobile Device Support-->MsiExec.exe /I{EC4455AB-F155-4CC1-A4C5-88F3777F9886}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{D6E592B3-67DA-4BBB-9783-E1838FB253A2}
Athan Basic 3.4-->C:\WINDOWS\iun6002.exe "C:\Program Files\Athan\irunin.ini"
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
AviSynth 2.5-->"C:\Program Files\AviSynth 2.5\Uninstall.exe"
Aztech CNR2900 V.90 Modem-->C:\WINDOWS\Modio\SLAMR2KO\Setup.exe /Remove
BitTornado 0.3.18-->C:\Program Files\BitTornado\uninst.exe
Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Disque de souvenirs HP-->MsiExec.exe /X{B376402D-58EA-45EA-BD50-DD924EB67A70}
DVD Decoder Pak for Windows XP-->MsiExec.exe /X{92C5DB3D-9D6F-4324-BB11-57825F4C2635}
FindyKill-->C:\Program Files\FindyKill\Uninstal.exe
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
HP Customer Participation Program 8.0-->C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Imaging Device Functions 8.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
HP OCR Software 8.0-->C:\Program Files\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat
HP Officejet All-In-One Series-->C:\Program Files\HP\Digital Imaging\{2D0DF835-98AB-487e-8514-0E0941F728C4}\setup\hpzscr01.exe -datfile hpwscr10.dat
HP Officejet All-In-One Series-->C:\Program Files\HP\Digital Imaging\{3C43EAE7-22C0-4b33-ABFB-3757ECA5FD7B}\setup\hpzscr01.exe -datfile hpwscr10.dat
HP Photosmart Essential-->MsiExec.exe /X{EB21A812-671B-4D08-B974-2A347F0D8F70}
HP Product Assistant-->MsiExec.exe /I{36FDBE6E-6684-462B-AE98-9A39A1B200CC}
HP Solution Center 8.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
HPSSupply-->MsiExec.exe /X{EB75DE50-5754-4F6F-875D-126EDF8E4CB3}
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{3CCB732A-E472-4CF9-B1EE-F18365341FE0}
iTunes-->MsiExec.exe /I{318AB667-3230-41B5-A617-CB3BF748D371}
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(TM) 6 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160060}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Junk Mail filter update-->MsiExec.exe /I{4AB8B41B-3AF1-46BE-99B0-0ACD3B300C0A}
K-Lite Codec Pack 3.8.5 Full-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Ma-Config.com-->MsiExec.exe /X{EC7FE2ED-F305-41B7-90B8-3DAE9E35307A}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft Internet Explorer Administration Kit 5-->rundll32 advpack.dll,LaunchINFSection ieak5.inf,IEAK.Uninstall
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Professional Plus 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server Desktop Engine-->MsiExec.exe /X{E09B48B5-E141-427A-AB0C-D3605127224A}
Microsoft User-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWudf01005$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Modem DSL ECI Telecom-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C7B39B40-52C3-11D4-AFCE-00E0B8138A4A}\Setup.exe" -l0x40c REMOVE
Mozilla Firefox (3.0.5)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 and SOAP Toolkit 3.0-->MsiExec.exe /I{32343DB6-9A52-40C9-87E4-5E7C79791C87}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
Nero 7 Essentials-->MsiExec.exe /X{AAB93551-3FFE-42B2-8315-96252BBC1036}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Nokia Connectivity Cable Driver-->MsiExec.exe /X{C3F19A5F-35A8-4FDB-A6ED-0F4CE398DA48}
Nokia Flashing Cable Driver-->MsiExec.exe /X{2A0A6470-FD0F-4F45-9B11-85F3167DB943}
Nokia Lifeblog 2.5-->MsiExec.exe /I{E94603CA-2996-4154-8EE2-A5FCD4BFB500}
Nokia NSeries Application Installer-->MsiExec.exe /I{FD349381-D79C-4E5C-8980-015DFFB962D5}
Nokia NSeries Content Copier-->MsiExec.exe /X{F779EC8D-6703-4C4A-817C-37B07898E647}
Nokia NSeries Multimedia Player-->MsiExec.exe /I{FA25FAF6-3097-43C9-BBB2-A77CE8AF1881}
Nokia NSeries Music Manager-->MsiExec.exe /I{F89E5AD8-AE47-49B5-B9F9-C498791E6255}
Nokia NSeries One Touch Access-->MsiExec.exe /I{F4EE8763-EAA8-4BC1-8594-8501F5F00414}
Nokia NSeries System Utilities-->MsiExec.exe /X{96E94E18-54D6-42C1-8FC4-24DACEDC3395}
Nokia Nseries Video Manager-->MsiExec.exe /X{2D21ECE3-8EC1-4315-AE4E-1970FB3AF17A}
Nokia Software Launcher-->MsiExec.exe /I{A8C856AD-63CD-4613-AA29-E6C85607EA06}
Nokia Software Updater-->MsiExec.exe /X{48110A46-A3A4-481E-8230-7873B7F4C696}
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Panda ActiveScan 2.0-->C:\Program Files\Panda Security\ActiveScan 2.0\as2uninst.exe
Panneau de configuration MobileMe-->MsiExec.exe /I{6DA9102E-199F-43A0-A36B-6EF48081A658}
PC Connectivity Solution-->MsiExec.exe /I{6094AB91-4CC8-498E-9DFF-134CC0B159DE}
PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"
QuickTime-->MsiExec.exe /I{F958CA02-BB40-4007-894B-258729456EE4}
SAMSUNG CDMA Modem Driver Set-->C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
SAMSUNG Mobile Composite Device Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\6\SSBCUninstall.exe
Samsung Mobile phone USB driver Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\5\SSSDUninstall.exe
SAMSUNG Mobile USB Modem 1.0 Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
SAMSUNG Mobile USB Modem Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
Samsung PC Studio 3-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -l0x40c -removeonly
Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85}
Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
Security Update for 2007 Microsoft Office System (KB958439)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {6491B8AA-D11C-4648-A461-6234B31EB7E2}
Security Update for Microsoft Office Excel 2007 (KB958437)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {648FC016-2D6B-4A16-8D87-404533642F4B}
Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}
Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85}
Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC}
Security Update for Microsoft Office Word 2007 (KB956358)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2E64517C}
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Spelling Dictionaries Support For Adobe Reader 8-->MsiExec.exe /I{AC76BA86-7AD7-5464-3428-800000000003}
Suppress plus 1.8-->"C:\Program Files\splus\unins000.exe"
Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756}
Update for Office 2007 (KB946691)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278}
Update for Outlook 2007 Junk Email Filter (kb958619)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {79B301C1-DBC0-467C-AFDA-2A6CDAFA4302}
Windows Defender-->MsiExec.exe /I{A06275F4-324B-4E85-95E6-87B2CD729401}
Windows Driver Package - Nokia (WUDFRd) WPD (03/19/2007 6.83.31.1)-->C:\PROGRA~1\DIFX\D6ACC4BE676423A2B130B78A4B627FC457D98997\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\pccswpddri_039E7E24575DBAE6A389611AF28F4EB97729D33E\pccswpddriver.inf
Windows Installer Clean Up-->MsiExec.exe /X{121634B0-2F4B-11D3-ADA3-00C04F52DD52}
Windows Live Call-->MsiExec.exe /I{01523985-2098-43AF-9C97-12B07BE02A9B}
Windows Live Communications Platform-->MsiExec.exe /I{F69E83CF-B440-43F8-89E6-6EA80712109B}
Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"

Hosts File Missing
======Security center information======

AV: Avira AntiVir PersonalEdition

System event log

Computer Name: AFARNOS-F3817FC
Event Code: 7901
Message: La commande At37.job n'a pas pu démarrer du fait de l'erreur suivante :
%%2147942402

Record Number: 12272
Source Name: Schedule
Time Written: 20081216120000.000000+060
Event Type: erreur
User:

Computer Name: AFARNOS-F3817FC
Event Code: 7901
Message: La commande At13.job n'a pas pu démarrer du fait de l'erreur suivante :
%%2147942402

Record Number: 12271
Source Name: Schedule
Time Written: 20081216120000.000000+060
Event Type: erreur
User:

Computer Name: AFARNOS-F3817FC
Event Code: 7036
Message: Le service Windows Installer est entré dans l'état : arrêté.

Record Number: 12270
Source Name: Service Control Manager
Time Written: 20081216110247.000000+060
Event Type: Informations
User:

Computer Name: AFARNOS-F3817FC
Event Code: 7901
Message: La commande At36.job n'a pas pu démarrer du fait de l'erreur suivante :
%%2147942402

Record Number: 12269
Source Name: Schedule
Time Written: 20081216110000.000000+060
Event Type: erreur
User:

Computer Name: AFARNOS-F3817FC
Event Code: 7901
Message: La commande At12.job n'a pas pu démarrer du fait de l'erreur suivante :
%%2147942402

Record Number: 12268
Source Name: Schedule
Time Written: 20081216110000.000000+060
Event Type: erreur
User:

Application event log

Computer Name: AFARNOS-F3817FC
Event Code: 0
Message:
Record Number: 12282
Source Name: hpqcxs08
Time Written: 20081122102505.000000+060
Event Type: Informations
User:

Computer Name: AFARNOS-F3817FC
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.

Record Number: 12281
Source Name: SecurityCenter
Time Written: 20081122102457.000000+060
Event Type: Informations
User:

Computer Name: AFARNOS-F3817FC
Event Code: 4096
Message: The AntiVir service has been started successfully!

Record Number: 12280
Source Name: Avira AntiVir
Time Written: 20081122102448.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: AFARNOS-F3817FC
Event Code: 1
Message:
Record Number: 12279
Source Name: Bonjour Service
Time Written: 20081122102447.000000+060
Event Type: Informations
User:

Computer Name: AFARNOS-F3817FC
Event Code: 0
Message:
Record Number: 12278
Source Name: hpqddsvc
Time Written: 20081122102437.000000+060
Event Type: Informations
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\PC Connectivity Solution;C:\Program Files\Fichiers communs\Teleca Shared;C:\Program Files\Samsung\Samsung PC Studio 3;C:\Program Files\Microsoft SQL Server\80\Tools\Binn;C:\Program Files\QuickTime\QTSystem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 3 Stepping 3, GenuineIntel
"PROCESSOR_REVISION"=0303
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip

-----------------EOF-----------------

Re,

1- Télécharges OTMoveIt3 (de Old_Timer) sur ton Bureau.

http://oldtimer.geekstogo.com/OTMoveIt3.exe

! Déconnectes toi et fermes toute tes applications en cours !

Double cliques sur "OTMoveIt3.exe" pour ouvrir le prg .
Puis copies ce qui se trouve en citation ci-dessous,


:Processes
explorer.exe

:Files
C:\WINDOWS\tasks\At1.job
C:\WINDOWS\tasks\At2.job

:Commands
[purity]
[emptytemp]
[start explorer]
[reboot]


et colles le dans le cadre de gauche de OTMoveIt3 :
Paste Instructions for items to be moved.
(ne touche à rien d'autre !)

-> cliques sur MoveIt! pour lancer la suppression.
-> laisses travailler l'outil ...

( Note : ton bureau va disparaitre puis réapparaitre, c'est normal .)

-->Postes le contenu du rapport qui se trouve dans le dossier "C:\_OTMoveIt\MovedFiles"
( " xxxx2008_xxxxxx.log " où les "x" correspondent au jour et à l'heure de l'utilisation ).
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Tu redémarre ton pc après m'avoir poster le rapport de Otmoveit et tu refait un scan Complet avec malwarebyte,Tu me poste le rapport générer par malwarebyte bien entendue.

Re,

Fait le message => 15
Messages postés
24
Date d'inscription
vendredi 25 juillet 2008
Statut
Membre
Dernière intervention
29 décembre 2008

========== PROCESSES ==========
Process explorer.exe killed successfully.
========== FILES ==========
C:\WINDOWS\tasks\At1.job moved successfully.
C:\WINDOWS\tasks\At2.job moved successfully.
========== COMMANDS ==========
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_53c.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.7.2 log created on 12292008_113621

Files moved on Reboot...
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be moved on reboot.
File C:\WINDOWS\temp\Perflib_Perfdata_53c.dat not found!
Messages postés
24
Date d'inscription
vendredi 25 juillet 2008
Statut
Membre
Dernière intervention
29 décembre 2008

C'est bon, c'est fini ???

Re,

Fait un scan complet avec malwarebute et poste moi le rappiort et ensuite tu me refait un rapport avec RSIT et je

pense que ce sera bon,je te donnerais la fin.