Antivir, Zone Alarm, Hijack boqués !

----------------- FindyKill V4.711 ------------------

* User : KoRnMuse - FURYOFKORNMUSE
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 05/01/09 par Chiquitine29
* Recherche effectuée à  1:44:07 le 07/01/2009
* Windows XP - Internet Explorer 7.0.5730.13
 
((((((((((((((((( *** Recherche *** ))))))))))))))))))  
 
 
--------------- [ Processus actifs ] ----------------  
 

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\PrevxCSI\prevxcsi.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
C:\WINDOWS\system32\HDDSvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0M2.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Wacom_Tablet.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\PrevxCSI\prevxcsi.exe
C:\WINDOWS\system32\WTablet\Wacom_TabletUser.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\system32\Wacom_Tablet.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\rundll32.exe
C:\Documents and Settings\KoRnMuse\Application Data\drivers\winupgro.exe
C:\Program Files\GetRight\GetRight.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Windows Live\Mail\wlmail.exe
C:\Documents and Settings\KoRnMuse\Application Data\drivers\downld\299328.exe
 
--------------- [ Processus infectieux stoppés ] ----------------  
 

"C:\Documents and Settings\KoRnMuse\Application Data\drivers\downld\299328.exe"  (2256)
"C:\Documents and Settings\KoRnMuse\Application Data\drivers\winupgro.exe"  (1416)

 
--------------- [ Fichiers/Dossiers infectieux ] ----------------  
 
 
»»»» Presence des fichiers dans C: 
 
 
»»»» Presence des fichiers dans C:\WINDOWS 
 
 
»»»» Presence des fichiers dans C:\WINDOWS\Prefetch 
 
Found ! - C:\WINDOWS\Prefetch\ILLUSTRATOR CS3 FR CRACK.EXE-39245083.pf 
Found ! - C:\WINDOWS\Prefetch\ILLUSTRATOR CS3 FR CRACK.EXE-39245083.pf 
Found ! - C:\WINDOWS\Prefetch\MEDIAMONKEY.EXE-0382EE81.pf 
 
»»»» Presence des fichiers dans C:\WINDOWS\system32 
 
Found ! [07/01/2009 01:41] - C:\WINDOWS\system32\mdelk.exe 
Found ! [07/01/2009 01:41] - C:\WINDOWS\system32\wintems.exe 
Found ! [07/01/2009 01:41] - C:\WINDOWS\system32\ban_list.txt 
 
»»»» Presence des fichiers dans C:\WINDOWS\system32\drivers 
 
 
»»»» Presence des fichiers dans C:\Documents and Settings\KoRnMuse\Application Data 
 
Found ! [07/01/2009 01:41] - "C:\Documents and Settings\KoRnMuse\Application Data\m\flec006.exe" 
Found ! [07/01/2009 01:42] - "C:\Documents and Settings\KoRnMuse\Application Data\m\list.oct" 
Found ! [07/01/2009 01:42] - "C:\Documents and Settings\KoRnMuse\Application Data\m\data.oct" 
Found ! [07/01/2009 01:42] - "C:\Documents and Settings\KoRnMuse\Application Data\m\srvlist.oct" 
Found ! [07/01/2009 01:42] - "C:\Documents and Settings\KoRnMuse\Application Data\m\shared" 
Found ! [07/01/2009 00:38] - "C:\Documents and Settings\KoRnMuse\Application Data\m" 
Found ! [07/01/2009 00:59] - "C:\Documents and Settings\KoRnMuse\Application Data\drivers" 
Found ! [07/01/2009 01:40] - "C:\Documents and Settings\KoRnMuse\Application Data\drivers\srosa.sys" 
Found ! [07/01/2009 01:40] - "C:\Documents and Settings\KoRnMuse\Application Data\drivers\srosa2.sys" 
Found ! [10/07/2006 06:03] - "C:\Documents and Settings\KoRnMuse\Application Data\drivers\winupgro.exe" 
Found ! [07/01/2009 01:44] - "C:\Documents and Settings\KoRnMuse\Application Data\drivers\downld" 
 
»»»» Presence des fichiers dans C:\DOCUME~1\KoRnMuse\LOCALS~1\Temp 
 
Found ! - C:\DOCUME~1\KoRnMuse\LOCALS~1\Temp\Rar$EX01.750\install_crack.exe  
 
»»»» Presence des fichiers dans C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5 
 
Found ! [09/09/2008 21:34] - C:\Documents and Settings\KoRnMuse\Local Settings\Application Data\Adobe\Flash CS4\en\Configuration\filelist.txt  
Found ! [07/01/2009 01:43] - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\3EPLXAIB\b64_2[1].jpg  
Found ! [07/01/2009 01:41] - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\3EPLXAIB\file[1].txt  
Found ! [07/01/2009 01:41] - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\6N17TLZ7\b64[1].jpg  
Found ! [07/01/2009 01:43] - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\8FTDNM4A\b64_1[1].jpg  
Found ! [07/01/2009 01:41] - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\8FTDNM4A\b64_3[1].jpg  
Found ! [09/09/2008 21:34] - C:\Program Files\Adobe\Adobe Flash CS4\en\First Run\filelist.txt  
Found ! [08/07/2003 04:33] - C:\Program Files\Smart Panel\Guide\file-assist.txt  
Found ! [16/06/2003 23:33] - C:\Program Files\Smart Panel\Guide\file.txt  
 
--------------- [ Registre / Startup ] ----------------  
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
   TuneUp MemOptimizer="C:\Program Files\TuneUp Utilities 2008\MemOptimizer.exe" autostart
   SpybotSD TeaTimer=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
   msnmsgr="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run\AdobeUpdater=
   <NO NAME>=

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
   NvCplDaemon=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
   AGRSMMSG=AGRSMMSG.exe
   ZoneAlarm Client="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
   EPSON Stylus Photo RX600=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0M2.EXE /P24 "EPSON Stylus Photo RX600" /O6 "USB001" /M "Stylus Photo RX600"
   Windows Defender="C:\Program Files\Windows Defender\MSASCui.exe" -hide
   Kernel and Hardware Abstraction Layer=KHALMNPR.EXE
   Logitech Hardware Abstraction Layer=KHALMNPR.EXE
   avgnt="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
   nwiz=nwiz.exe /install
   NvMediaCenter=RunDLL32.exe NvMCTray.dll,NvTaskbarInit
   Cmaudio=RunDll32 cmicnfg.cpl,CMICtrlWnd
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
   <NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL=
   Installed=1
   <NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI=
   NoChange=1
   Installed=1
   <NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS=
   Installed=1
   <NO NAME>=
 
[HKEY_CURRENT_USER\software\local appwizard-generated applications\install_crack]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\MemOptimizer]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\MMDiag]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\SmaPanel]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\winupgro]
 
--------------- [ Registre / Clés infectieuses ] ----------------  
 
 
Found ! - HKEY_USERS\S-1-5-21-523101818-3919511441-1700160229-1006\Software\Local AppWizard-Generated Applications\install_crack 
Found ! - HKEY_USERS\S-1-5-21-523101818-3919511441-1700160229-1006\Software\Local AppWizard-Generated Applications\winupgro 
Found ! - HKEY_USERS\S-1-5-21-523101818-3919511441-1700160229-1006\Software\bisoft 
Found ! - HKEY_USERS\S-1-5-21-523101818-3919511441-1700160229-1006\Software\DateTime4 
Found ! - HKEY_USERS\S-1-5-21-523101818-3919511441-1700160229-1006\Software\FFC 
Found ! - HKEY_USERS\S-1-5-21-523101818-3919511441-1700160229-1006\Software\FirtR 
Found ! - HKEY_USERS\S-1-5-21-523101818-3919511441-1700160229-1006\Software\MuleAppData 
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\install_crack 
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winupgro 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\srosa 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SROSA 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SK9OU0S 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SK9OU0S 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sK9Ou0s 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sK9Ou0s 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sK9Ou0s 
Found ! - HKEY_CURRENT_USER\Software\bisoft 
Found ! - HKEY_CURRENT_USER\Software\DateTime4 
Found ! - HKEY_CURRENT_USER\Software\FirtR 
 
/!\ Infection active : HKLM\SYSTEM\...\Services\srosa -> Start = 0x1
/!\ Infection active : HKLM\SYSTEM\...\Services\sK9Ou0s -> Start = 0x1
 
--------------- [ Etat / Services ] ---------------- 
 
Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot 
 
  /!\ Mode sans echec non fonctionnel !! 
 
Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal 
 
  /!\ Mode sans echec non fonctionnel !! 
 
Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network 
 
  /!\ Mode sans echec non fonctionnel !! 
 


+- Services : [ Auto=2 / Demande=3 / Désactivé=4 ] 

/!\ Ndisuio - Type de démarrage = 4 
 
EapHost - Type de démarrage = 3 
 
/!\ Ip6Fw - Type de démarrage = 4 
 
/!\ SharedAccess - Type de démarrage = 4 
 
/!\ wuauserv - Type de démarrage = 4 
 
/!\ wscsvc - Type de démarrage = 4 
 
/!\ WinDefend - Type de démarrage = 4 
 
 
--------------- [ Recherche dans supports amovibles] ----------------  
 
 
+- Informations : 

C: - Lecteur fixe

D: - Lecteur fixe

E: - Lecteur fixe

H: - Lecteur fixe

 
+- presence des fichiers :  

 
 
--------------- [ Registre / Mountpoint2 ] ----------------  
 
 
-> Not found ! 
 
 
------------------- ! Fin du rapport ! --------------------  

----------------- FindyKill V4.711 ------------------

* User : KoRnMuse - FURYOFKORNMUSE
* executed from : C:\Program Files\FindyKill
* Update on 05/01/09 par Chiquitine29
* Start at  2:21:16 the 07/01/2009
* Windows XP - Internet Explorer 7.0.5730.13
 
 
((((((((((((((( *** deleting *** ))))))))))))))))))  
 
 
--------------- [ Active Processes ] ----------------  
 

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\system32\userinit.exe
C:\Program Files\TuneUp Utilities 2009\OneClickStarter.exe
 
--------------- [ Infected files / folders ] ----------------  
 
 
»»»» Supression files in C: 
 
 
»»»» Supression files in C:\WINDOWS 
 
 
»»»» Supression files in C:\WINDOWS\Prefetch 
 
Deleted ! - C:\WINDOWS\prefetch\ILLUSTRATOR CS3 FR CRACK.EXE-39245083.pf 
Deleted ! - C:\WINDOWS\prefetch\MEDIAMONKEY.EXE-0382EE81.pf 
 
»»»» Supression files in C:\WINDOWS\system32 
 
Deleted ! - C:\WINDOWS\system32\mdelk.exe  
Deleted ! - C:\WINDOWS\system32\wintems.exe  
Deleted ! - C:\WINDOWS\system32\ban_list.txt  
 
»»»» Supression files in C:\WINDOWS\system32\drivers 
 
 
»»»» Supression files in C:\Documents and Settings\KoRnMuse\Application Data 
 
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\m\flec006.exe"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\m\list.oct"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\m\data.oct"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\m\srvlist.oct"  
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\1PopCheck 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\A9 SiteInfo 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Abcc DVD to MP4 MP3 iPod MPEG AVI Ripper Pro 5.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Acoustic Labs Multitrack Plus 1.6.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Adobe Flash Player 10.0.12.36.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Aliens on Skateboards 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\All Correspondence and Documents Manager 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Animated Banner Maker for GIF 1.05331.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Aplus XviD to iPhone Converter 1.00.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Artemis Accounts 2.87.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Audio Mp3 Editor 1.25.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Audio To WMA Converter 1.00.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Autumnleaves3D Screensaver 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Biggly 3.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\BitDefender RootkitUncover 1.0 Beta 2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\bitdefender_prof_v9.by.corx.incl.serie.nr.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\BT Reminder Buddy 2.1.2.29.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\BubbleBath.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Calendar Software for Professionals 3.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\CFM Radio Player 1.3.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Code Converter 1.03b.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\CRAZY HAROLD 1.5.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\CT RegKey Backup 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Darken RGB Edges 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\dbOrchestra SQL Server Edition 1.5.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\DGAVCDec 1.0.7.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\DocTranslate 1.1.0.0 Beta.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\DOS Printer 10.37.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Download Sygic.Mobile.v7.0.89.S60v3.SymbianOS9.1 Faster with BitTorrent downloader.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Dreamy Photo 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Drip 0.5.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\DVD95Copy Pro 3.8.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\e-mix club edition 5.0.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Easy Outlook Recovery 1.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\EasyPicture 4.2.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\EDF(+) Compatibility Checker 1.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Emblazer 1.50.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\EMS Data Pump for PostgreSQL 2.2.0.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Eradex 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\EZ Photo Newsletter Creator 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\File Cutter 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\File Data Viewer 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Film Canistr 2.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Filter Forge Freepack 3 - Frames 1.012.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\FilterSIM 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Floopy 1.0.1b.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\FONstatus 1.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Free Chord Finder 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Free Web Radio Toolbar -.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Freedom Bar 8.6.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\FXCM Rates and News 1.0.0.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Google Earth Best Locations 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Graphis 2.9.12.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Guitar Power 1.10.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\HiBase Task Scheduler 2.21.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Hibiscus Float Screensaver 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Hot CPU Tester Pro 4.4.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\ID3-TagIT 3.30.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\ImTOO DVD to WMV Converter 5.0.46.1113.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Info Angel 4.2 Build 4200.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\InnPlanner 2008 Professional 1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Ithaca Toolbar 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Java Email Component 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\JavaScript Pushing PopMenu 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\JPartialDownloader 1.8.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Kahli 3D DeskMate 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\LazyNotepad 1.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\LingvoSoft Picture Dictionary 2008 Spanish - German 1.2.25.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Link Inspector 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Locked! 5.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\London Radio Toolbar 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\MB2-184 - Microsoft CRM Installation and Configuration V.1.2 Practice Test Questions 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Moderator 0.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Multi User Desktop 2004 2.71.0058.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\multitask 0.1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\My iPod Audio Converter 1.0.0.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\My Photos Screen Saver 1.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\MyDownloader 1.6.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\MyIP 3.45.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\MyPhotoIndex 1.21.3058.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Netozaur 0.5 Alpha Build 2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\NOD32.2.70.23.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\NOD32.v.2.70.23.FINAL.para.WinXP.2000.NT.Vista.+.Crack_DnGnMsTr.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\NutriGenie Mother of All Diets 7.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Oracle Append TWO Tables Software 7.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Oscilloscope Frequency Calculator 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Overload.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\PDF Enhancer 3.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\PDFBuilderX 2.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\PicaView 2.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Pinwheel 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Pocket Contacts Synchronizer 2.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Portable DataRecovery 2.4.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\PSP Wallpaper Maker 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\PSServices 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\RA Document Organizer 1.4.1723.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Random Screen Saver Starter 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Reptiles 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\RSExplorer 1.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\SIGamp Plug-In for Rhapsody 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\SMSList 2.9.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Snowflakes MerryXmas Screensaver.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Speakersetup 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\SpyArsenal AIM Logger 1.60.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\SQL Key 7.11.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Stardust Wallpaper Control 1.0.0.3.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\SticksterZ for Windows Media Player 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Stream TV 4.70.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\SWF Media Browser 2003a.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Switch Center Workgroup 1.1.9.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\SwitchDisplay 0.11.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Synesthesia IR library WAV 1.1.3.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\TexTally Word Line and Character Counter 1.07.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\TextPredictive 1.0.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Thumbs.db Viewer 1.4.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\tinsel 1.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Traffic Counter 2.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Unique Tv Online toolbar 4.5.151.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\US States Flash map Gold 2.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\VidCrop PRO 1.1.0.23.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Video Poker 1.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Viking Audio Player 1.31.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\WAV to MP3 Converter 3.15.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Willing Webcam 4.6.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Word Sorter.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Xtreme Forum Manager 1.00.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\YASA VOB to MPEG Converter 3.2.36c.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Z-DATdump 2.1 Build 00.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\ZIP RAR ACE Password Recovery 1.72.zip 
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\m\shared"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\m"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\drivers\srosa.sys"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\drivers\srosa2.sys"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\drivers\winupgro.exe"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\drivers\downld"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\drivers"  
 
»»»» Supression files in C:\DOCUME~1\KoRnMuse\LOCALS~1\Temp 
 
Deleted ! - C:\DOCUME~1\KoRnMuse\LOCALS~1\Temp\Rar$EX01.750\install_crack.exe     
 
»»»» Supression files in C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5 
 
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\3EPLXAIB\b64_1[1].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\3EPLXAIB\b64_2[1].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\3EPLXAIB\b64_2[2].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\3EPLXAIB\file[1].txt    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\6N17TLZ7\b64[1].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\6N17TLZ7\b64[2].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\8FTDNM4A\b64_1[1].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\8FTDNM4A\b64_3[1].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\8FTDNM4A\b64_3[2].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\8FTDNM4A\mxd[1].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\BNVQU2WZ\b64_1[1].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\BNVQU2WZ\file[1].txt    
 
--------------- [  Registry / Infected keys ] ---------------- 
 
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\srosa   
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S   
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SK9OU0S   
Deleted ! - HKEY_CURRENT_USER\Software\bisoft   
Deleted ! - HKEY_CURRENT_USER\Software\DateTime4   
Deleted ! - HKEY_CURRENT_USER\Software\FirtR   
Deleted ! - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mdelk.exe   
Deleted ! - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wintems.exe   
Deleted ! - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\flec006.exe   
Deleted ! - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hldrrr.exe   
Deleted ! - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\winfilse.exe   
Deleted ! - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\winupgro.exe   
Deleted ! - HKEY_USERS\S-1-5-21-523101818-3919511441-1700160229-1006\Software\Local AppWizard-Generated Applications\install_crack   
Deleted ! - HKEY_USERS\S-1-5-21-523101818-3919511441-1700160229-1006\Software\Local AppWizard-Generated Applications\winupgro   
Deleted ! - HKEY_USERS\S-1-5-21-523101818-3919511441-1700160229-1006\Software\FFC   
Deleted ! - HKEY_USERS\S-1-5-21-523101818-3919511441-1700160229-1006\Software\MuleAppData   
 
--------------- [ States / Restarting of services ] ---------------- 
 
+- Safe boot mode restored ! 


+- Services : [ Auto=2 / Request=3 / Disable=4 ] 

Ndisuio - Type of startup  = 3 
 
EapHost - Type of startup  = 2 
 
Ip6Fw - Type of startup  = 2 
 
SharedAccess - Type of startup  = 2 
 
wuauserv - Type of startup  = 2 
 
wscsvc - Type of startup  = 2 
 
WinDefend - Type of startup  = 2 
 
 
---------------   [ Cleaning removable drives ] ----------------  
 
+- Informations : 

C: - Lecteur fixe

D: - Lecteur fixe

E: - Lecteur fixe

H: - Lecteur fixe

 
+- deleting files : 
 
 
--------------- [ Registry / Mountpoint2 ] ----------------  
 
 
 -> Not found ! 
 
 
--------------- [ Searching Other Infections ] ----------------  
 
 
Références de comparaison Bagle MD5 :

113ac36b77630a2f67dd6cb7844406a4  C:\WINDOWS\system32\mdelk.exe 
113ac36b77630a2f67dd6cb7844406a4  C:\WINDOWS\system32\wintems.exe 
d532a42b8f3f3787529bfe86d6cf5f02  C:\Documents and Settings\KoRnMuse\Application Data\drivers\winupgro.exe 
5d641d5e744ad9aca087e8dae68e7822  C:\Avenger\wintems.exe 

Suspect ! - d532a42b8f3f3787529bfe86d6cf5f02  C:\Program Files\TuneUp Utilities 2008\MemOptimizer.exe  
 
--------------- [ Searching Cracks / Keygen ] ----------------  
 
C:\Documents and Settings\KoRnMuse\Bureau\Adobe CS3 fr (dreamweaver - fireworks - flash) + crack par fatah.fr.rar
C:\Documents and Settings\KoRnMuse\Bureau\Adobe Illustrator CS3 fr + crack par fatah.fr.rar
C:\Documents and Settings\KoRnMuse\Bureau\wallace et gromit - Cracking contraptions sub.zip
C:\Documents and Settings\KoRnMuse\Bureau\Adobe Fireworks CS4 (CORE)\CORE\keygen.exe
C:\Documents and Settings\KoRnMuse\Bureau\Adobe Illustrator CS3 (Fatah)\Illustrator CS3 fr crack.exe
C:\Documents and Settings\KoRnMuse\Bureau\Illustrator CS4\adobe-master-cs4-keygen.exe
C:\Documents and Settings\KoRnMuse\Favoris\Aircrack-ng, aireplay-ng, airodump-ng, Tutorial crack cle wep.url
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Acrobat 8.0
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe After Effects CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Contribute CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Dreamweaver CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Encore CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Fireworks CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Flash CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Flash CS3 Video Encoder
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Illustrator CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe InDesign CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Photoshop CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Premiere Pro CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Soundbooth CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\asneu.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\install.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Acrobat 8.0\Acrobat
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Acrobat 8.0\Acrobat\Acrobat.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe After Effects CS3\Support Files
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe After Effects CS3\Support Files\AfterFX.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Contribute CS3\Contribute.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Dreamweaver CS3\Dreamweaver.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Encore CS3\Adobe Encore.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Fireworks CS3\Fireworks.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Flash CS3\Flash.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Flash CS3 Video Encoder\Flash Video Encoder.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Illustrator CS3\Support Files
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Illustrator CS3\Support Files\Contents
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Illustrator CS3\Support Files\Contents\Windows
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Illustrator CS3\Support Files\Contents\Windows\Illustrator.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe InDesign CS3\Public.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Photoshop CS3\Photoshop.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Premiere Pro CS3\Premiere.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Soundbooth CS3\AppModule.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\After Effects
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Avid AVX 1.0
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Avid AVX 1.5
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\BorisFX8 Keyframer.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\BorisFX8.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Edius
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\host
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\in-sync Blade
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Incite
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Media 100 iFinish
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Pinnacle Liquid Products
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Premiere Pro
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Speed Razor
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Ulead
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Vegas
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\After Effects\BorisFX8 AE.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Avid AVX 1.0\BorisFX8-10.avx
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Avid AVX 1.5\BorisFX8-15.avx
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Edius\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\host\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\in-sync Blade\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Incite\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Media 100 iFinish\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Pinnacle Liquid Products\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Premiere Pro\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Speed Razor\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Ulead\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Vegas\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris Graffiti 4.02\Crack
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris Graffiti 4.02\Crack\Adobe After Effects
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris Graffiti 4.02\Crack\Graffiti4 Keyframer.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris Graffiti 4.02\Crack\Graffiti4.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris Graffiti 4.02\Crack\Adobe After Effects\Graffiti4 AE.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\After Effects
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\Avid AVX 1.0
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\Avid AVX 1.5
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\BorisRED3 Engine.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\BorisRED3.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\After Effects\BorisRED3 AE.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\Avid AVX 1.0\BorisRED3-10.avx
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\Avid AVX 1.5\Avid FX.avx
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\Avid AVX 1.5\BorisRED3-15.avx
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\iNFERNO.reg
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\Magic Bullet Editors Premiere
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\readme.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\Magic Bullet Editors Premiere\Deartifacter
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\Magic Bullet Editors Premiere\MBLook Suite.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\Magic Bullet Editors Premiere\Deartifacter\MBDeartifacter.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\BasicScratch.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\Contrast.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\DeepScratch.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\Displace.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\Fading.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\FilmDust.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\FilmFunk.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\FilmGrain.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\FilmSplotch.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\Flicker.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\GateWeave.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\MicroScratch.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\MisFire.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\Vignette.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe Photoshop CS3\Pinzells\IceCrackFBrushSet1.abr
 
 
---------------- ! End of report ! ------------------ 

----------------- FindyKill V4.711 ------------------

* User : KoRnMuse - FURYOFKORNMUSE
* executed from : C:\Program Files\FindyKill
* Update on 05/01/09 par Chiquitine29
* Start at  2:21:16 the 07/01/2009
* Windows XP - Internet Explorer 7.0.5730.13
 
 
((((((((((((((( *** deleting *** ))))))))))))))))))  
 
 
--------------- [ Active Processes ] ----------------  
 

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\system32\userinit.exe
C:\Program Files\TuneUp Utilities 2009\OneClickStarter.exe
 
--------------- [ Infected files / folders ] ----------------  
 
 
»»»» Supression files in C: 
 
 
»»»» Supression files in C:\WINDOWS 
 
 
»»»» Supression files in C:\WINDOWS\Prefetch 
 
Deleted ! - C:\WINDOWS\prefetch\ILLUSTRATOR CS3 FR CRACK.EXE-39245083.pf 
Deleted ! - C:\WINDOWS\prefetch\MEDIAMONKEY.EXE-0382EE81.pf 
 
»»»» Supression files in C:\WINDOWS\system32 
 
Deleted ! - C:\WINDOWS\system32\mdelk.exe  
Deleted ! - C:\WINDOWS\system32\wintems.exe  
Deleted ! - C:\WINDOWS\system32\ban_list.txt  
 
»»»» Supression files in C:\WINDOWS\system32\drivers 
 
 
»»»» Supression files in C:\Documents and Settings\KoRnMuse\Application Data 
 
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\m\flec006.exe"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\m\list.oct"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\m\data.oct"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\m\srvlist.oct"  
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\1PopCheck 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\A9 SiteInfo 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Abcc DVD to MP4 MP3 iPod MPEG AVI Ripper Pro 5.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Acoustic Labs Multitrack Plus 1.6.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Adobe Flash Player 10.0.12.36.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Aliens on Skateboards 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\All Correspondence and Documents Manager 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Animated Banner Maker for GIF 1.05331.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Aplus XviD to iPhone Converter 1.00.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Artemis Accounts 2.87.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Audio Mp3 Editor 1.25.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Audio To WMA Converter 1.00.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Autumnleaves3D Screensaver 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Biggly 3.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\BitDefender RootkitUncover 1.0 Beta 2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\bitdefender_prof_v9.by.corx.incl.serie.nr.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\BT Reminder Buddy 2.1.2.29.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\BubbleBath.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Calendar Software for Professionals 3.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\CFM Radio Player 1.3.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Code Converter 1.03b.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\CRAZY HAROLD 1.5.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\CT RegKey Backup 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Darken RGB Edges 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\dbOrchestra SQL Server Edition 1.5.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\DGAVCDec 1.0.7.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\DocTranslate 1.1.0.0 Beta.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\DOS Printer 10.37.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Download Sygic.Mobile.v7.0.89.S60v3.SymbianOS9.1 Faster with BitTorrent downloader.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Dreamy Photo 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Drip 0.5.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\DVD95Copy Pro 3.8.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\e-mix club edition 5.0.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Easy Outlook Recovery 1.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\EasyPicture 4.2.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\EDF(+) Compatibility Checker 1.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Emblazer 1.50.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\EMS Data Pump for PostgreSQL 2.2.0.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Eradex 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\EZ Photo Newsletter Creator 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\File Cutter 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\File Data Viewer 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Film Canistr 2.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Filter Forge Freepack 3 - Frames 1.012.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\FilterSIM 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Floopy 1.0.1b.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\FONstatus 1.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Free Chord Finder 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Free Web Radio Toolbar -.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Freedom Bar 8.6.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\FXCM Rates and News 1.0.0.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Google Earth Best Locations 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Graphis 2.9.12.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Guitar Power 1.10.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\HiBase Task Scheduler 2.21.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Hibiscus Float Screensaver 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Hot CPU Tester Pro 4.4.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\ID3-TagIT 3.30.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\ImTOO DVD to WMV Converter 5.0.46.1113.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Info Angel 4.2 Build 4200.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\InnPlanner 2008 Professional 1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Ithaca Toolbar 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Java Email Component 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\JavaScript Pushing PopMenu 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\JPartialDownloader 1.8.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Kahli 3D DeskMate 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\LazyNotepad 1.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\LingvoSoft Picture Dictionary 2008 Spanish - German 1.2.25.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Link Inspector 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Locked! 5.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\London Radio Toolbar 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\MB2-184 - Microsoft CRM Installation and Configuration V.1.2 Practice Test Questions 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Moderator 0.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Multi User Desktop 2004 2.71.0058.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\multitask 0.1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\My iPod Audio Converter 1.0.0.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\My Photos Screen Saver 1.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\MyDownloader 1.6.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\MyIP 3.45.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\MyPhotoIndex 1.21.3058.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Netozaur 0.5 Alpha Build 2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\NOD32.2.70.23.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\NOD32.v.2.70.23.FINAL.para.WinXP.2000.NT.Vista.+.Crack_DnGnMsTr.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\NutriGenie Mother of All Diets 7.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Oracle Append TWO Tables Software 7.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Oscilloscope Frequency Calculator 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Overload.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\PDF Enhancer 3.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\PDFBuilderX 2.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\PicaView 2.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Pinwheel 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Pocket Contacts Synchronizer 2.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Portable DataRecovery 2.4.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\PSP Wallpaper Maker 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\PSServices 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\RA Document Organizer 1.4.1723.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Random Screen Saver Starter 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Reptiles 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\RSExplorer 1.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\SIGamp Plug-In for Rhapsody 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\SMSList 2.9.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Snowflakes MerryXmas Screensaver.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Speakersetup 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\SpyArsenal AIM Logger 1.60.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\SQL Key 7.11.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Stardust Wallpaper Control 1.0.0.3.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\SticksterZ for Windows Media Player 1.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Stream TV 4.70.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\SWF Media Browser 2003a.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Switch Center Workgroup 1.1.9.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\SwitchDisplay 0.11.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Synesthesia IR library WAV 1.1.3.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\TexTally Word Line and Character Counter 1.07.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\TextPredictive 1.0.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Thumbs.db Viewer 1.4.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\tinsel 1.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Traffic Counter 2.2.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Unique Tv Online toolbar 4.5.151.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\US States Flash map Gold 2.0.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\VidCrop PRO 1.1.0.23.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Video Poker 1.1.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Viking Audio Player 1.31.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\WAV to MP3 Converter 3.15.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Willing Webcam 4.6.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Word Sorter.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Xtreme Forum Manager 1.00.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\YASA VOB to MPEG Converter 3.2.36c.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\Z-DATdump 2.1 Build 00.zip 
Deleted ! - C:\Documents and Settings\KoRnMuse\Application Data\m\shared\ZIP RAR ACE Password Recovery 1.72.zip 
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\m\shared"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\m"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\drivers\srosa.sys"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\drivers\srosa2.sys"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\drivers\winupgro.exe"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\drivers\downld"  
Deleted ! - "C:\Documents and Settings\KoRnMuse\Application Data\drivers"  
 
»»»» Supression files in C:\DOCUME~1\KoRnMuse\LOCALS~1\Temp 
 
Deleted ! - C:\DOCUME~1\KoRnMuse\LOCALS~1\Temp\Rar$EX01.750\install_crack.exe     
 
»»»» Supression files in C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5 
 
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\3EPLXAIB\b64_1[1].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\3EPLXAIB\b64_2[1].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\3EPLXAIB\b64_2[2].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\3EPLXAIB\file[1].txt    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\6N17TLZ7\b64[1].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\6N17TLZ7\b64[2].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\8FTDNM4A\b64_1[1].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\8FTDNM4A\b64_3[1].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\8FTDNM4A\b64_3[2].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\8FTDNM4A\mxd[1].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\BNVQU2WZ\b64_1[1].jpg    
Deleted ! - C:\Documents and Settings\KoRnMuse\Local Settings\Temporary Internet Files\Content.IE5\BNVQU2WZ\file[1].txt    
 
--------------- [  Registry / Infected keys ] ---------------- 
 
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\srosa   
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S   
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SK9OU0S   
Deleted ! - HKEY_CURRENT_USER\Software\bisoft   
Deleted ! - HKEY_CURRENT_USER\Software\DateTime4   
Deleted ! - HKEY_CURRENT_USER\Software\FirtR   
Deleted ! - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mdelk.exe   
Deleted ! - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wintems.exe   
Deleted ! - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\flec006.exe   
Deleted ! - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hldrrr.exe   
Deleted ! - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\winfilse.exe   
Deleted ! - HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\winupgro.exe   
Deleted ! - HKEY_USERS\S-1-5-21-523101818-3919511441-1700160229-1006\Software\Local AppWizard-Generated Applications\install_crack   
Deleted ! - HKEY_USERS\S-1-5-21-523101818-3919511441-1700160229-1006\Software\Local AppWizard-Generated Applications\winupgro   
Deleted ! - HKEY_USERS\S-1-5-21-523101818-3919511441-1700160229-1006\Software\FFC   
Deleted ! - HKEY_USERS\S-1-5-21-523101818-3919511441-1700160229-1006\Software\MuleAppData   
 
--------------- [ States / Restarting of services ] ---------------- 
 
+- Safe boot mode restored ! 


+- Services : [ Auto=2 / Request=3 / Disable=4 ] 

Ndisuio - Type of startup  = 3 
 
EapHost - Type of startup  = 2 
 
Ip6Fw - Type of startup  = 2 
 
SharedAccess - Type of startup  = 2 
 
wuauserv - Type of startup  = 2 
 
wscsvc - Type of startup  = 2 
 
WinDefend - Type of startup  = 2 
 
 
---------------   [ Cleaning removable drives ] ----------------  
 
+- Informations : 

C: - Lecteur fixe

D: - Lecteur fixe

E: - Lecteur fixe

H: - Lecteur fixe

 
+- deleting files : 
 
 
--------------- [ Registry / Mountpoint2 ] ----------------  
 
 
 -> Not found ! 
 
 
--------------- [ Searching Other Infections ] ----------------  
 
 
Références de comparaison Bagle MD5 :

113ac36b77630a2f67dd6cb7844406a4  C:\WINDOWS\system32\mdelk.exe 
113ac36b77630a2f67dd6cb7844406a4  C:\WINDOWS\system32\wintems.exe 
d532a42b8f3f3787529bfe86d6cf5f02  C:\Documents and Settings\KoRnMuse\Application Data\drivers\winupgro.exe 
5d641d5e744ad9aca087e8dae68e7822  C:\Avenger\wintems.exe 

Suspect ! - d532a42b8f3f3787529bfe86d6cf5f02  C:\Program Files\TuneUp Utilities 2008\MemOptimizer.exe  
 
--------------- [ Searching Cracks / Keygen ] ----------------  
 
C:\Documents and Settings\KoRnMuse\Bureau\Adobe CS3 fr (dreamweaver - fireworks - flash) + crack par fatah.fr.rar
C:\Documents and Settings\KoRnMuse\Bureau\Adobe Illustrator CS3 fr + crack par fatah.fr.rar
C:\Documents and Settings\KoRnMuse\Bureau\wallace et gromit - Cracking contraptions sub.zip
C:\Documents and Settings\KoRnMuse\Bureau\Adobe Fireworks CS4 (CORE)\CORE\keygen.exe
C:\Documents and Settings\KoRnMuse\Bureau\Adobe Illustrator CS3 (Fatah)\Illustrator CS3 fr crack.exe
C:\Documents and Settings\KoRnMuse\Bureau\Illustrator CS4\adobe-master-cs4-keygen.exe
C:\Documents and Settings\KoRnMuse\Favoris\Aircrack-ng, aireplay-ng, airodump-ng, Tutorial crack cle wep.url
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Acrobat 8.0
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe After Effects CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Contribute CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Dreamweaver CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Encore CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Fireworks CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Flash CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Flash CS3 Video Encoder
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Illustrator CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe InDesign CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Photoshop CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Premiere Pro CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Soundbooth CS3
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\asneu.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\install.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Acrobat 8.0\Acrobat
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Acrobat 8.0\Acrobat\Acrobat.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe After Effects CS3\Support Files
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe After Effects CS3\Support Files\AfterFX.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Contribute CS3\Contribute.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Dreamweaver CS3\Dreamweaver.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Encore CS3\Adobe Encore.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Fireworks CS3\Fireworks.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Flash CS3\Flash.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Flash CS3 Video Encoder\Flash Video Encoder.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Illustrator CS3\Support Files
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Illustrator CS3\Support Files\Contents
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Illustrator CS3\Support Files\Contents\Windows
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Illustrator CS3\Support Files\Contents\Windows\Illustrator.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe InDesign CS3\Public.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Photoshop CS3\Photoshop.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Premiere Pro CS3\Premiere.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\Crack\Adobe Soundbooth CS3\AppModule.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\After Effects
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Avid AVX 1.0
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Avid AVX 1.5
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\BorisFX8 Keyframer.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\BorisFX8.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Edius
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\host
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\in-sync Blade
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Incite
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Media 100 iFinish
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Pinnacle Liquid Products
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Premiere Pro
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Speed Razor
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Ulead
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Vegas
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\After Effects\BorisFX8 AE.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Avid AVX 1.0\BorisFX8-10.avx
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Avid AVX 1.5\BorisFX8-15.avx
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Edius\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\host\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\in-sync Blade\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Incite\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Media 100 iFinish\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Pinnacle Liquid Products\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Premiere Pro\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Speed Razor\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Ulead\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris FX 8\Crack\Vegas\ReadMe.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris Graffiti 4.02\Crack
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris Graffiti 4.02\Crack\Adobe After Effects
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris Graffiti 4.02\Crack\Graffiti4 Keyframer.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris Graffiti 4.02\Crack\Graffiti4.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris Graffiti 4.02\Crack\Adobe After Effects\Graffiti4 AE.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\After Effects
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\Avid AVX 1.0
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\Avid AVX 1.5
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\BorisRED3 Engine.exe
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\BorisRED3.dll
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\After Effects\BorisRED3 AE.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\Avid AVX 1.0\BorisRED3-10.avx
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\Avid AVX 1.5\Avid FX.avx
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2 & AAE7) Boris RED 3GL 3.04\Crack\Avid AVX 1.5\BorisRED3-15.avx
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\iNFERNO.reg
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\Magic Bullet Editors Premiere
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\readme.txt
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\Magic Bullet Editors Premiere\Deartifacter
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\Magic Bullet Editors Premiere\MBLook Suite.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\Magic Bullet Editors Premiere\Deartifacter\MBDeartifacter.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\BasicScratch.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\Contrast.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\DeepScratch.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\Displace.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\Fading.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\FilmDust.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\FilmFunk.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\FilmGrain.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\FilmSplotch.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\Flicker.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\GateWeave.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\MicroScratch.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\MisFire.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe After Effects_Adobe Premiere Pro\(APP2) Red Giant Magic Bullet Editors 2.0\crack\MisFire\Vignette.aex
C:\Documents and Settings\KoRnMuse\Mes documents\Adobe Creative Suite 3 Master Collection\-=]OverM@rk[=-\PlugIns\Adobe Photoshop CS3\Pinzells\IceCrackFBrushSet1.abr
 
 
---------------- ! End of report ! ------------------ 

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:08:36, on 07/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\PrevxCSI\prevxcsi.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\HDDSvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\AGRSMMSG.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0M2.EXE
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\PrevxCSI\prevxcsi.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Wacom_Tablet.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
C:\WINDOWS\system32\WTablet\Wacom_TabletUser.exe
C:\WINDOWS\system32\Wacom_Tablet.exe
C:\Program Files\GetRight\GetRight.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Windows Live\Mail\wlmail.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.search.yahoo.com/search?fr=mcafee&p=%s
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: # Copyright (c) 1993-1999 Microsoft Corp.
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O2 - BHO: IE to GetRight Helper - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GetRight\xx2gr.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (file missing)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (file missing)
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [EPSON Stylus Photo RX600] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0M2.EXE /P24 "EPSON Stylus Photo RX600" /O6 "USB001" /M "Stylus Photo RX600"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKCU\..\Run: [TuneUp MemOptimizer] "C:\Program Files\TuneUp Utilities 2008\MemOptimizer.exe" autostart
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - Global Startup: GetRight.lnk = C:\Program Files\GetRight\GetRight.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Ajouter au fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O9 - Extra 'Tools' menuitem: &KeyScrambler... - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.carrefour.fr/
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: CSIScanner - Prevx - C:\Program Files\PrevxCSI\prevxcsi.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HDD Information Service (HDDSvc) - AltrixSoft (http://www.altrixsoft.com/ - C:\WINDOWS\system32\HDDSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TabletServiceWacom - Wacom Technology, Corp. - C:\WINDOWS\system32\Wacom_Tablet.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

--
End of file - 13229 bytes

Malwarebytes' Anti-Malware 1.32
Version de la base de données: 1626
Windows 5.1.2600 Service Pack 3

07/01/2009 16:28:16
mbam-log-2009-01-07 (16-28-16).txt

Type de recherche: Examen complet (C:\|D:\|E:\|)
Eléments examinés: 523999
Temps écoulé: 1 hour(s), 42 minute(s), 1 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 6

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\System Volume Information\_restore{304D2AD8-90BA-4F09-BF12-4CDA4A6F0226}\RP180\A0127491.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{304D2AD8-90BA-4F09-BF12-4CDA4A6F0226}\RP180\A0127519.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{304D2AD8-90BA-4F09-BF12-4CDA4A6F0226}\RP181\A0127562.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{304D2AD8-90BA-4F09-BF12-4CDA4A6F0226}\RP181\A0128558.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{304D2AD8-90BA-4F09-BF12-4CDA4A6F0226}\RP181\A0129558.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{304D2AD8-90BA-4F09-BF12-4CDA4A6F0226}\RP181\A0129583.sys (Worm.Bagel) -> Quarantined and deleted successfully.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:30:57, on 08/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\PrevxCSI\prevxcsi.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\HDDSvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Wacom_Tablet.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
C:\WINDOWS\system32\WTablet\Wacom_TabletUser.exe
C:\WINDOWS\system32\Wacom_Tablet.exe
C:\Program Files\PrevxCSI\prevxcsi.exe
C:\WINDOWS\AGRSMMSG.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0M2.EXE
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\GetRight\GetRight.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.search.yahoo.com/search?fr=mcafee&p=%s
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O2 - BHO: IE to GetRight Helper - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GetRight\xx2gr.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (file missing)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (file missing)
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [EPSON Stylus Photo RX600] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0M2.EXE /P24 "EPSON Stylus Photo RX600" /O6 "USB001" /M "Stylus Photo RX600"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - Global Startup: GetRight.lnk = C:\Program Files\GetRight\GetRight.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Ajouter au fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O9 - Extra 'Tools' menuitem: &KeyScrambler... - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.carrefour.fr/
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: CSIScanner - Prevx - C:\Program Files\PrevxCSI\prevxcsi.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HDD Information Service (HDDSvc) - AltrixSoft (http://www.altrixsoft.com/ - C:\WINDOWS\system32\HDDSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TabletServiceWacom - Wacom Technology, Corp. - C:\WINDOWS\system32\Wacom_Tablet.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

--
End of file - 13336 bytes