Est ce que jais un virus
medi-best-one-m
Messages postés
165
Statut
Membre
-
bibia-306 Messages postés 269 Statut Membre -
bibia-306 Messages postés 269 Statut Membre -
Bonjour,jais ce rapor la
Log created by WinPatrol version :15.9.2008.5
Scan saved at 4:34:17 PM, on 3/15/2009
Platform: Windows XP SP3 Service Pack 3 (Build 2600)
MSIE: Internet Explorer (7.00.6000.16791)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRAM FILES\Intel\Wireless\Bin\EvtEng.exe
C:\PROGRAM FILES\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRAM FILES\FICHIERS COMMUNS\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\PROGRAM FILES\WIDCOMM\BLUETOOTH SOFTWARE\bin\btwdins.exe
C:\PROGRAM FILES\ESET\ESET NOD32 ANTIVIRUS\ekrn.exe
C:\PROGRAM FILES\Nero\Nero 7\InCD\InCDsrv.exe
C:\WINDOWS\explorer.exe
C:\PROGRAM FILES\Intel\Wireless\Bin\RegSrvc.exe
C:\PROGRAM FILES\FICHIERS COMMUNS\Real\UPDATE_OB\REALSCHED.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRAM FILES\INTERNET DOWNLOAD MANAGER\IDMan.exe
C:\DOCUMENTS AND SETTINGS\Admin\LOCAL SETTINGS\APPLICATION DATA\Google\Update\GOOGLEUPDATE.EXE
C:\PROGRAM FILES\HSDPA USB MODEM\USB MODEM.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\iexplore.exe
C:\PROGRAM FILES\MSN MESSENGER\msnmsgr.exe
C:\WINDOWS\AhnRpta.exe
C:\PROGRAM FILES\WinRAR\WinRAR.exe
C:\Documents and Settings\Admin\Local Settings\Temp\Rar$EX23.797\WINPATROLEX.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.ma/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
O1 - Hosts: 127.0.0
O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O4 - HKLM\..\Run: [TkBellExe]C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe -osboot
O4 - HKLM\..\Run: [WinPatrol]C:\DOCUME~1\Admin\LOCALS~1\Temp\Rar$EX00.906\winpatrol.exe -expressboot
O4 - HKCU\..\Run: [ctfmon.exe]C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [amva]C:\WINDOWS\system32\amvo.exe
O4 - HKCU\..\Run: [IDMan]C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [DMSN]C:\Program Files\Dialflirt\dialmsn.exe
O4 - HKCU\..\Run: [cdoosoft]C:\WINDOWS\system32\olhrwef.exe
O4 - HKCU\..\Run: [Google Update]C:\Documents and Settings\Admin\Local Settings\Application Data\Google\Update\GoogleUpdate.exe /c
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [] -
O14 - IERESET.INF: START_PAGE_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
O14 - IERESET.INF: SEARCH_PAGE_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
O14 - IERESET.INF:HKCU, Start Page = %START_PAGE_URL%
O14 - IERESET.INF:HKLM, Default_Page_URL = %START_PAGE_URL%
O14 - IERESET.INF:HKLM, Default_Search_URL = %SEARCH_PAGE_URL%
O14 - IERESET.INF:HKLM, Search Page = %SEARCH_PAGE_URL%
O14 - IERESET.INF:HKCU, Search Page = %SEARCH_PAGE_URL%
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
O21 - WPDShServiceObj - WPDShServiceObj Class - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Bluetooth Service - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Eset HTTP Server - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Accès du périphérique d'interface utilisateur - - C:\WINDOWS\System32\hidserv.dll
O23 - Service: InCD Helper - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
O23 - Service: Process Monitor - Logitech Inc. - c:\program files\fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Ma-Config Service - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O24 - Desktop Component 0: Ma page d'accueil - About:Home
--- Additional WinPatrol Info ---
Default Browser: Firefox - Firefox version 2.0.0.4
MSIE: Internet Explorer (7.00.6000.16791)
Firefox 2.0.0.4 installed in C:\Program Files\Mozilla Firefox.
385 IE Cookies in Folder: C:\Documents and Settings\Admin\Cookies\
163 Mozilla Cookies in Folder: C:\Documents and Settings\Admin\Application Data\Mozilla\FireFox\Profiles\thiszvbz.default
WP00 - HKLM\CS1: BootExecute = autocheck autochk *
WP00 - HKLM\CCS: BootExecute = autocheck autochk *
WP00 - HKLM\CS2: BootExecute = autocheck autochk *
WP02 - HKLM\CCS: Command = C:\WINDOWS\system32\cmd.exe
WP03 - Windows Automatic Update = 4:Automatically download recommended updates for my computer and install them.
WP08 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix: Default = http://
WP08 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes: www = http://
WP31 - Scheduled Tasks: [GoogleUpdateTaskUserS-1-5-21-1060284298-562591055-725345543-1003.job]C:\Documents and Settings\Admin\Local Settings\Application Data\Google\Update\GoogleUpdate.exe 03/15/2009 3:46 PM
WP16 - ActiveX: {17492023-C23A-453E-A040-C7C580BBF700} [Windows Genuine Advantage Validation Tool] C:\WINDOWS\system32\LEGITCHECKCONTROL.DLL 1.9.0009.1
WP16 - ActiveX: {19916E01-B44E-4E31-94A4-4696DF46157B} [InformationCardSigninHelper Class] C:\WINDOWS\system32\icardie.dll 7.00.6000.16791
WP16 - ActiveX: {2933BF90-7B36-11D2-B20E-00C04F983E60} [XML DOM Document] C:\WINDOWS\system32\msxml3.dll 8.100.1048.0
WP16 - ActiveX: {2D360201-FFF5-11D1-8D03-00A0C959BC0A} [DHTML Edit Control Safe for Scripting for IE5] C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\Triedit\dhtmled.ocx 6.01.9234
WP16 - ActiveX: {2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93} [RealPlayer RAM Download Handler] C:\WINDOWS\system32\rmoc3260.dll 6.0.9.2846
WP16 - ActiveX: {48123BC4-99D9-11D1-A6B3-00C04FD91555} [XML Document] C:\WINDOWS\system32\msxml3.dll 8.100.1048.0
WP16 - ActiveX: {4eb89ff4-7f78-4a0f-8b8d-2bf02e94e4b2} [Microsoft Terminal Services Client Control (redist)] C:\WINDOWS\system32\mstscax.dll 6.0.6001.18000
WP16 - ActiveX: {4EDCB26C-D24C-4e72-AF07-B576699AC0DE} [Microsoft Terminal Services Client Control (redist)] C:\WINDOWS\system32\mstscax.dll 6.0.6001.18000
WP16 - ActiveX: {55136805-B2DE-11D1-B9F2-00A0C98BC547} [Shell Name Space] C:\WINDOWS\system32\ieframe.dll 7.00.6000.16791
WP16 - ActiveX: {6414512B-B978-451D-A0D8-FCFDF33E833C} [WUWebControl Class] C:\WINDOWS\system32\wuweb.dll 7.2.6001.788
WP16 - ActiveX: {6BF52A52-394A-11D3-B153-00C04F79FAA6} [Windows Media Player] C:\WINDOWS\system32\wmp.dll 11.0.5721.5260
WP16 - ActiveX: {72267F6A-A6F9-11D0-BC94-00C04FB67863} [Active Desktop Mover] C:\WINDOWS\system32\shell32.dll 6.00.2900.5622
WP16 - ActiveX: {7390f3d8-0439-4c05-91e3-cf5cb290c3d0} [Microsoft Terminal Services Client Control (redist)] C:\WINDOWS\system32\mstscax.dll 6.0.6001.18000
WP16 - ActiveX: {7584c670-2274-4efb-b00b-d6aaba6d3850} [Microsoft Terminal Services Client Control (redist)] C:\WINDOWS\system32\mstscax.dll 6.0.6001.18000
WP16 - ActiveX: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} [HardwareDetection Control] C:\Program Files\ma-config.com\HardwareDetection.ocx 3,0,3,0
WP16 - ActiveX: {8856F961-340A-11D0-A96B-00C04FD705A2} [Microsoft Web Browser] C:\WINDOWS\system32\ieframe.dll 7.00.6000.16791
WP16 - ActiveX: {9059f30f-4eb1-4bd2-9fdc-36f43a218f4a} [Microsoft Terminal Services Client Control (redist)] C:\WINDOWS\system32\mstscax.dll 6.0.6001.18000
WP16 - ActiveX: {CD3AFA8F-B84F-48F0-9393-7EDC34128127} [VIDEO__X_MS_ASF Moniker Class] C:\WINDOWS\system32\wmp.dll 11.0.5721.5260
WP16 - ActiveX: {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} [RealPlayer G2 Control] C:\WINDOWS\system32\rmoc3260.dll 6.0.9.2846
WP16 - ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} [Shockwave Flash Object] C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx 10,0,22,87
WP16 - ActiveX: {D7107924-65F7-4C32-B9A3-5FB117019FC2} [Google Update Plugin] C:\DOCUMENTS AND SETTINGS\Admin\LOCAL SETTINGS\APPLICATION DATA\Google\Update\1.2.141.5\NPGOOGLEONECLICK7.DLL 1.2.141.5
WP16 - ActiveX: {ED8C108E-4349-11D2-91A4-00C04F7969E8} [XML HTTP Request] C:\WINDOWS\system32\msxml3.dll 8.100.1048.0
WP16 - ActiveX: {F06608C7-1874-4EEA-B3B2-DF99EBB144B8} [msgsc] C:\Program Files\MSN Messenger\msgsc.dll 7.5.0324
WP16 - ActiveX: {F6D90F16-9C73-11D3-B32E-00C04F990BB4} [XML HTTP] C:\WINDOWS\system32\msxml3.dll 8.100.1048.0
WP16 - ActiveX: {05589fa1-c356-11ce-bf01-00aa0055595a} [ActiveMovieControl Object] C:\WINDOWS\system32\wmpdxm.dll 11.0.5721.5145
WP16 - ActiveX: {0713E8A2-850A-101B-AFC0-4210102A8DA7} [Microsoft TreeView Control, version 5.0 (SP2)] C:\WINDOWS\system32\comctl32.ocx 6.00.8105
WP16 - ActiveX: {0713E8D2-850A-101B-AFC0-4210102A8DA7} [Microsoft ProgressBar Control, version 5.0 (SP2)] C:\WINDOWS\system32\comctl32.ocx 6.00.8105
WP16 - ActiveX: {3605B612-C3CF-4ab4-A426-2D853391DB2E} [Certificates Class] C:\PROGRAM FILES\MICROSOFT CAPICOM 2.1.0.2\Lib\X86\capicom.dll 2, 1, 0, 2
WP16 - ActiveX: {1D2B4F40-1F10-11D1-9E88-00C04FDCAB92} [ThumbCtl Class] C:\WINDOWS\system32\webvw.dll 6.00.2900.5512
WP16 - ActiveX: {52A2AAAE-085D-4187-97EA-8C30DB990436} [HHCtrl Object] C:\WINDOWS\system32\hhctrl.ocx 5.2.3790.4110
WP16 - ActiveX: {58DA8D8A-9D6A-101B-AFC0-4210102A8DA7} [Microsoft ListView Control, version 5.0 (SP2)] C:\WINDOWS\system32\comctl32.ocx 6.00.8105
WP16 - ActiveX: {58DA8D8F-9D6A-101B-AFC0-4210102A8DA7} [Microsoft ImageList Control, version 5.0 (SP2)] C:\WINDOWS\system32\comctl32.ocx 6.00.8105
WP16 - ActiveX: {550C8FFB-4DC0-4756-828C-862E6D0AE74F} [Chain Class] C:\PROGRAM FILES\MICROSOFT CAPICOM 2.1.0.2\Lib\X86\capicom.dll 2, 1, 0, 2
WP16 - ActiveX: {6B7E638F-850A-101B-AFC0-4210102A8DA7} [Microsoft StatusBar Control, version 5.0 (SP2)] C:\WINDOWS\system32\comctl32.ocx 6.00.8105
WP16 - ActiveX: {91D221C4-0CD4-461C-A728-01D509321556} [Store Class] C:\PROGRAM FILES\MICROSOFT CAPICOM 2.1.0.2\Lib\X86\capicom.dll 2, 1, 0, 2
WP16 - ActiveX: {8856F961-340A-11D0-A96B-00C04FD705A2} [Microsoft Web Browser] C:\WINDOWS\system32\ieframe.dll 7.00.6000.16791
WP16 - ActiveX: {AE24FDAE-03C6-11D1-8B76-0080C744F389} [Microsoft Scriptlet Component] C:\WINDOWS\system32\mshtml.dll 7.00.6000.16809
WP16 - ActiveX: {CA8A9780-280D-11CF-A24D-444553540000} [Adobe PDF Reader] C:\PROGRAM FILES\FICHIERS COMMUNS\Adobe\Acrobat\ActiveX\AcroPDF.dll
WP16 - ActiveX: {CFCDAA03-8BE4-11cf-B84B-0020AFBBCCFA} [RealPlayer G2 Control] C:\WINDOWS\system32\rmoc3260.dll 6.0.9.2846
WP16 - ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} [Shockwave Flash Object] C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx 10,0,22,87
WP16 - ActiveX: {9171C115-7DD9-46BA-B1E5-0ED50AFFC1B8} [Certificate Class] C:\PROGRAM FILES\MICROSOFT CAPICOM 2.1.0.2\Lib\X86\capicom.dll 2, 1, 0, 2
WP16 - ActiveX: {E5DF9D10-3B52-11D1-83E8-00A0C90DC849} [WebViewFolderIcon Class] C:\WINDOWS\system32\webvw.dll 6.00.2900.5512
WP16 - ActiveX: {3605B612-C3CF-4ab4-A426-2D853391DB2E} [Certificates Class] C:\PROGRAM FILES\MICROSOFT CAPICOM 2.1.0.2\Lib\X86\capicom.dll 2, 1, 0, 2
WP32 - Hidden File: C:\2.bat
WP32 - Hidden File: C:\autorun.inf
WP32 - Hidden File: C:\boot.ini
WP32 - Hidden File: C:\Bootfont.bin
WP32 - Hidden File: C:\cb.exe
WP32 - Hidden File: C:\dbrxubcw.com
WP32 - Hidden File: C:\hiberfil.sys
WP32 - Hidden File: C:\i.com
WP32 - Hidden File: C:\IO.SYS
WP32 - Hidden File: C:\knupkb.com
WP32 - Hidden File: C:\MSDOS.SYS
WP32 - Hidden File: C:\NTDETECT.COM
WP32 - Hidden File: C:\ntldr
WP32 - Hidden File: C:\pagefile.sys
WP32 - Hidden File: C:\tyktjfww.exe
WP32 - Hidden File: C:\u.com
WP32 - Hidden File: C:\uis.com
WP32 - Hidden File: C:\uxkl0apt.bat
WP32 - Hidden File: C:\x0.cmd
WP32 - Hidden File: C:\xdw.com
WP32 - Hidden File: C:\WINDOWS\Thumbs.db
WP32 - Hidden File: C:\WINDOWS\WindowsShell.Manifest
WP32 - Hidden File: C:\WINDOWS\winnt.bmp
WP32 - Hidden File: C:\WINDOWS\winnt256.bmp
WP32 - Hidden File: C:\WINDOWS\system32\AD6507150E.sys
WP32 - Hidden File: C:\WINDOWS\system32\amvo.exe
WP32 - Hidden File: C:\WINDOWS\system32\amvo0.dll
WP32 - Hidden File: C:\WINDOWS\system32\amvo1.dll
WP32 - Hidden File: C:\WINDOWS\system32\cdplayer.exe.manifest
WP32 - Hidden File: C:\WINDOWS\system32\ckvo.exe
WP32 - Hidden File: C:\WINDOWS\system32\ckvo0.dll
WP32 - Hidden File: C:\WINDOWS\system32\ckvo1.dll
WP32 - Hidden File: C:\WINDOWS\system32\config\default.LOG
WP32 - Hidden File: C:\WINDOWS\system32\config\SAM.LOG
WP32 - Hidden File: C:\WINDOWS\system32\config\SECURITY.LOG
WP32 - Hidden File: C:\WINDOWS\system32\config\software.LOG
WP32 - Hidden File: C:\WINDOWS\system32\config\system.LOG
WP32 - Hidden File: C:\WINDOWS\system32\config\TempKey.LOG
WP32 - Hidden File: C:\WINDOWS\system32\config\userdiff.LOG
WP32 - Hidden File: C:\WINDOWS\system32\drivers\fidbox.dat
WP32 - Hidden File: C:\WINDOWS\system32\drivers\fidbox.idx
WP33 - File Type .AVI: [Vidéo AVI]C:\Program Files\Real\RealPlayer\RealPlay.exe %1
WP33 - File Type .BAT: [Fichier de commande MS-DOS]%1 %*
WP33 - File Type .CAB: [WinRAR archive]C:\Program Files\WinRAR\WinRAR.exe %1
WP33 - File Type .CAT: [Catalogue de sécurité]rundll32.exe cryptext.dll,CryptExtOpenCAT %1
WP33 - File Type .CHM: [Fichier HTML compilé]C:\WINDOWS\hh.exe %1
WP33 - File Type .COM: [Application MS-DOS]%1 %*
WP33 - File Type .CMD: [Script de commande Windows NT]%1 %*
WP33 - File Type .DOC: [Document WordPad]C:\Program Files\Windows NT\Accessoires\WORDPAD.EXE %1
WP33 - File Type .EML: [Message de Outlook Express Mail]C:\Program Files\Outlook Express\msimn.exe /eml:%1
WP33 - File Type .EXE: [Application]%1 %*
WP33 - File Type .INF: [Informations de configuration]C:\WINDOWS\System32\NOTEPAD.EXE %1
WP33 - File Type .JS: [Fichier script JScript]C:\WINDOWS\System32\WScript.exe %1 %*
WP33 - File Type .LOG: [Document texte]C:\WINDOWS\system32\NOTEPAD.EXE %1
WP33 - File Type .MSI: [Windows Installer Package]C:\WINDOWS\System32\msiexec.exe /i %1 %*
WP33 - File Type .MID: [MIDI Audio]C:\Program Files\Real\RealPlayer\RealPlay.exe %1
WP33 - File Type .MP3: [Fichier audio MP3]C:\Program Files\Real\RealPlayer\RealPlay.exe %1
WP33 - File Type .PIF: [Raccourci pour le programme MS-DOS]%1 %*
WP33 - File Type .RAM: [Présentation RealPlayer]C:\Program Files\Real\RealPlayer\RealPlay.exe %1
WP33 - File Type .REG: [Inscription dans le Registre]regedit.exe %1
WP33 - File Type .RTF: [Document au format RTF]C:\Program Files\Windows NT\Accessoires\WORDPAD.EXE %1
WP33 - File Type .SCR: [Écran de veille]%1 /S
WP33 - File Type .TXT: [Document texte]C:\WINDOWS\system32\NOTEPAD.EXE %1
WP33 - File Type .URL: [Raccourci Internet]rundll32.exe ieframe.dll,OpenURL %l
WP33 - File Type .VBS: [Fichier script VBScript]C:\WINDOWS\System32\WScript.exe %1 %*
WP33 - File Type .VBE: [Fichier script crypté VBScript]C:\WINDOWS\System32\WScript.exe %1 %*
WP33 - File Type .WSF: [Fichier script Windows]C:\WINDOWS\System32\WScript.exe %1 %*
WP33 - File Type .WSH: [Fichier de configuration de l'environnement d'exécution de scripts Windows]C:\WINDOWS\System32\WScript.exe %1 %*
Memory currently in use: 46%
Physical Memory Free: 558,072 KB
Paging File Free: 1,215,448 KB
Virtual Memory Free: 2,052,272 KB
Log created by WinPatrol version :15.9.2008.5
Scan saved at 4:34:17 PM, on 3/15/2009
Platform: Windows XP SP3 Service Pack 3 (Build 2600)
MSIE: Internet Explorer (7.00.6000.16791)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRAM FILES\Intel\Wireless\Bin\EvtEng.exe
C:\PROGRAM FILES\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRAM FILES\FICHIERS COMMUNS\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\PROGRAM FILES\WIDCOMM\BLUETOOTH SOFTWARE\bin\btwdins.exe
C:\PROGRAM FILES\ESET\ESET NOD32 ANTIVIRUS\ekrn.exe
C:\PROGRAM FILES\Nero\Nero 7\InCD\InCDsrv.exe
C:\WINDOWS\explorer.exe
C:\PROGRAM FILES\Intel\Wireless\Bin\RegSrvc.exe
C:\PROGRAM FILES\FICHIERS COMMUNS\Real\UPDATE_OB\REALSCHED.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRAM FILES\INTERNET DOWNLOAD MANAGER\IDMan.exe
C:\DOCUMENTS AND SETTINGS\Admin\LOCAL SETTINGS\APPLICATION DATA\Google\Update\GOOGLEUPDATE.EXE
C:\PROGRAM FILES\HSDPA USB MODEM\USB MODEM.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\iexplore.exe
C:\PROGRAM FILES\MSN MESSENGER\msnmsgr.exe
C:\WINDOWS\AhnRpta.exe
C:\PROGRAM FILES\WinRAR\WinRAR.exe
C:\Documents and Settings\Admin\Local Settings\Temp\Rar$EX23.797\WINPATROLEX.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.ma/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
O1 - Hosts: 127.0.0
O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O4 - HKLM\..\Run: [TkBellExe]C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe -osboot
O4 - HKLM\..\Run: [WinPatrol]C:\DOCUME~1\Admin\LOCALS~1\Temp\Rar$EX00.906\winpatrol.exe -expressboot
O4 - HKCU\..\Run: [ctfmon.exe]C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [amva]C:\WINDOWS\system32\amvo.exe
O4 - HKCU\..\Run: [IDMan]C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [DMSN]C:\Program Files\Dialflirt\dialmsn.exe
O4 - HKCU\..\Run: [cdoosoft]C:\WINDOWS\system32\olhrwef.exe
O4 - HKCU\..\Run: [Google Update]C:\Documents and Settings\Admin\Local Settings\Application Data\Google\Update\GoogleUpdate.exe /c
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [] -
O14 - IERESET.INF: START_PAGE_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
O14 - IERESET.INF: SEARCH_PAGE_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
O14 - IERESET.INF:HKCU, Start Page = %START_PAGE_URL%
O14 - IERESET.INF:HKLM, Default_Page_URL = %START_PAGE_URL%
O14 - IERESET.INF:HKLM, Default_Search_URL = %SEARCH_PAGE_URL%
O14 - IERESET.INF:HKLM, Search Page = %SEARCH_PAGE_URL%
O14 - IERESET.INF:HKCU, Search Page = %SEARCH_PAGE_URL%
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
O21 - WPDShServiceObj - WPDShServiceObj Class - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Bluetooth Service - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Eset HTTP Server - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Accès du périphérique d'interface utilisateur - - C:\WINDOWS\System32\hidserv.dll
O23 - Service: InCD Helper - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
O23 - Service: Process Monitor - Logitech Inc. - c:\program files\fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Ma-Config Service - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O24 - Desktop Component 0: Ma page d'accueil - About:Home
--- Additional WinPatrol Info ---
Default Browser: Firefox - Firefox version 2.0.0.4
MSIE: Internet Explorer (7.00.6000.16791)
Firefox 2.0.0.4 installed in C:\Program Files\Mozilla Firefox.
385 IE Cookies in Folder: C:\Documents and Settings\Admin\Cookies\
163 Mozilla Cookies in Folder: C:\Documents and Settings\Admin\Application Data\Mozilla\FireFox\Profiles\thiszvbz.default
WP00 - HKLM\CS1: BootExecute = autocheck autochk *
WP00 - HKLM\CCS: BootExecute = autocheck autochk *
WP00 - HKLM\CS2: BootExecute = autocheck autochk *
WP02 - HKLM\CCS: Command = C:\WINDOWS\system32\cmd.exe
WP03 - Windows Automatic Update = 4:Automatically download recommended updates for my computer and install them.
WP08 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix: Default = http://
WP08 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes: www = http://
WP31 - Scheduled Tasks: [GoogleUpdateTaskUserS-1-5-21-1060284298-562591055-725345543-1003.job]C:\Documents and Settings\Admin\Local Settings\Application Data\Google\Update\GoogleUpdate.exe 03/15/2009 3:46 PM
WP16 - ActiveX: {17492023-C23A-453E-A040-C7C580BBF700} [Windows Genuine Advantage Validation Tool] C:\WINDOWS\system32\LEGITCHECKCONTROL.DLL 1.9.0009.1
WP16 - ActiveX: {19916E01-B44E-4E31-94A4-4696DF46157B} [InformationCardSigninHelper Class] C:\WINDOWS\system32\icardie.dll 7.00.6000.16791
WP16 - ActiveX: {2933BF90-7B36-11D2-B20E-00C04F983E60} [XML DOM Document] C:\WINDOWS\system32\msxml3.dll 8.100.1048.0
WP16 - ActiveX: {2D360201-FFF5-11D1-8D03-00A0C959BC0A} [DHTML Edit Control Safe for Scripting for IE5] C:\PROGRAM FILES\FICHIERS COMMUNS\MICROSOFT SHARED\Triedit\dhtmled.ocx 6.01.9234
WP16 - ActiveX: {2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93} [RealPlayer RAM Download Handler] C:\WINDOWS\system32\rmoc3260.dll 6.0.9.2846
WP16 - ActiveX: {48123BC4-99D9-11D1-A6B3-00C04FD91555} [XML Document] C:\WINDOWS\system32\msxml3.dll 8.100.1048.0
WP16 - ActiveX: {4eb89ff4-7f78-4a0f-8b8d-2bf02e94e4b2} [Microsoft Terminal Services Client Control (redist)] C:\WINDOWS\system32\mstscax.dll 6.0.6001.18000
WP16 - ActiveX: {4EDCB26C-D24C-4e72-AF07-B576699AC0DE} [Microsoft Terminal Services Client Control (redist)] C:\WINDOWS\system32\mstscax.dll 6.0.6001.18000
WP16 - ActiveX: {55136805-B2DE-11D1-B9F2-00A0C98BC547} [Shell Name Space] C:\WINDOWS\system32\ieframe.dll 7.00.6000.16791
WP16 - ActiveX: {6414512B-B978-451D-A0D8-FCFDF33E833C} [WUWebControl Class] C:\WINDOWS\system32\wuweb.dll 7.2.6001.788
WP16 - ActiveX: {6BF52A52-394A-11D3-B153-00C04F79FAA6} [Windows Media Player] C:\WINDOWS\system32\wmp.dll 11.0.5721.5260
WP16 - ActiveX: {72267F6A-A6F9-11D0-BC94-00C04FB67863} [Active Desktop Mover] C:\WINDOWS\system32\shell32.dll 6.00.2900.5622
WP16 - ActiveX: {7390f3d8-0439-4c05-91e3-cf5cb290c3d0} [Microsoft Terminal Services Client Control (redist)] C:\WINDOWS\system32\mstscax.dll 6.0.6001.18000
WP16 - ActiveX: {7584c670-2274-4efb-b00b-d6aaba6d3850} [Microsoft Terminal Services Client Control (redist)] C:\WINDOWS\system32\mstscax.dll 6.0.6001.18000
WP16 - ActiveX: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} [HardwareDetection Control] C:\Program Files\ma-config.com\HardwareDetection.ocx 3,0,3,0
WP16 - ActiveX: {8856F961-340A-11D0-A96B-00C04FD705A2} [Microsoft Web Browser] C:\WINDOWS\system32\ieframe.dll 7.00.6000.16791
WP16 - ActiveX: {9059f30f-4eb1-4bd2-9fdc-36f43a218f4a} [Microsoft Terminal Services Client Control (redist)] C:\WINDOWS\system32\mstscax.dll 6.0.6001.18000
WP16 - ActiveX: {CD3AFA8F-B84F-48F0-9393-7EDC34128127} [VIDEO__X_MS_ASF Moniker Class] C:\WINDOWS\system32\wmp.dll 11.0.5721.5260
WP16 - ActiveX: {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} [RealPlayer G2 Control] C:\WINDOWS\system32\rmoc3260.dll 6.0.9.2846
WP16 - ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} [Shockwave Flash Object] C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx 10,0,22,87
WP16 - ActiveX: {D7107924-65F7-4C32-B9A3-5FB117019FC2} [Google Update Plugin] C:\DOCUMENTS AND SETTINGS\Admin\LOCAL SETTINGS\APPLICATION DATA\Google\Update\1.2.141.5\NPGOOGLEONECLICK7.DLL 1.2.141.5
WP16 - ActiveX: {ED8C108E-4349-11D2-91A4-00C04F7969E8} [XML HTTP Request] C:\WINDOWS\system32\msxml3.dll 8.100.1048.0
WP16 - ActiveX: {F06608C7-1874-4EEA-B3B2-DF99EBB144B8} [msgsc] C:\Program Files\MSN Messenger\msgsc.dll 7.5.0324
WP16 - ActiveX: {F6D90F16-9C73-11D3-B32E-00C04F990BB4} [XML HTTP] C:\WINDOWS\system32\msxml3.dll 8.100.1048.0
WP16 - ActiveX: {05589fa1-c356-11ce-bf01-00aa0055595a} [ActiveMovieControl Object] C:\WINDOWS\system32\wmpdxm.dll 11.0.5721.5145
WP16 - ActiveX: {0713E8A2-850A-101B-AFC0-4210102A8DA7} [Microsoft TreeView Control, version 5.0 (SP2)] C:\WINDOWS\system32\comctl32.ocx 6.00.8105
WP16 - ActiveX: {0713E8D2-850A-101B-AFC0-4210102A8DA7} [Microsoft ProgressBar Control, version 5.0 (SP2)] C:\WINDOWS\system32\comctl32.ocx 6.00.8105
WP16 - ActiveX: {3605B612-C3CF-4ab4-A426-2D853391DB2E} [Certificates Class] C:\PROGRAM FILES\MICROSOFT CAPICOM 2.1.0.2\Lib\X86\capicom.dll 2, 1, 0, 2
WP16 - ActiveX: {1D2B4F40-1F10-11D1-9E88-00C04FDCAB92} [ThumbCtl Class] C:\WINDOWS\system32\webvw.dll 6.00.2900.5512
WP16 - ActiveX: {52A2AAAE-085D-4187-97EA-8C30DB990436} [HHCtrl Object] C:\WINDOWS\system32\hhctrl.ocx 5.2.3790.4110
WP16 - ActiveX: {58DA8D8A-9D6A-101B-AFC0-4210102A8DA7} [Microsoft ListView Control, version 5.0 (SP2)] C:\WINDOWS\system32\comctl32.ocx 6.00.8105
WP16 - ActiveX: {58DA8D8F-9D6A-101B-AFC0-4210102A8DA7} [Microsoft ImageList Control, version 5.0 (SP2)] C:\WINDOWS\system32\comctl32.ocx 6.00.8105
WP16 - ActiveX: {550C8FFB-4DC0-4756-828C-862E6D0AE74F} [Chain Class] C:\PROGRAM FILES\MICROSOFT CAPICOM 2.1.0.2\Lib\X86\capicom.dll 2, 1, 0, 2
WP16 - ActiveX: {6B7E638F-850A-101B-AFC0-4210102A8DA7} [Microsoft StatusBar Control, version 5.0 (SP2)] C:\WINDOWS\system32\comctl32.ocx 6.00.8105
WP16 - ActiveX: {91D221C4-0CD4-461C-A728-01D509321556} [Store Class] C:\PROGRAM FILES\MICROSOFT CAPICOM 2.1.0.2\Lib\X86\capicom.dll 2, 1, 0, 2
WP16 - ActiveX: {8856F961-340A-11D0-A96B-00C04FD705A2} [Microsoft Web Browser] C:\WINDOWS\system32\ieframe.dll 7.00.6000.16791
WP16 - ActiveX: {AE24FDAE-03C6-11D1-8B76-0080C744F389} [Microsoft Scriptlet Component] C:\WINDOWS\system32\mshtml.dll 7.00.6000.16809
WP16 - ActiveX: {CA8A9780-280D-11CF-A24D-444553540000} [Adobe PDF Reader] C:\PROGRAM FILES\FICHIERS COMMUNS\Adobe\Acrobat\ActiveX\AcroPDF.dll
WP16 - ActiveX: {CFCDAA03-8BE4-11cf-B84B-0020AFBBCCFA} [RealPlayer G2 Control] C:\WINDOWS\system32\rmoc3260.dll 6.0.9.2846
WP16 - ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} [Shockwave Flash Object] C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx 10,0,22,87
WP16 - ActiveX: {9171C115-7DD9-46BA-B1E5-0ED50AFFC1B8} [Certificate Class] C:\PROGRAM FILES\MICROSOFT CAPICOM 2.1.0.2\Lib\X86\capicom.dll 2, 1, 0, 2
WP16 - ActiveX: {E5DF9D10-3B52-11D1-83E8-00A0C90DC849} [WebViewFolderIcon Class] C:\WINDOWS\system32\webvw.dll 6.00.2900.5512
WP16 - ActiveX: {3605B612-C3CF-4ab4-A426-2D853391DB2E} [Certificates Class] C:\PROGRAM FILES\MICROSOFT CAPICOM 2.1.0.2\Lib\X86\capicom.dll 2, 1, 0, 2
WP32 - Hidden File: C:\2.bat
WP32 - Hidden File: C:\autorun.inf
WP32 - Hidden File: C:\boot.ini
WP32 - Hidden File: C:\Bootfont.bin
WP32 - Hidden File: C:\cb.exe
WP32 - Hidden File: C:\dbrxubcw.com
WP32 - Hidden File: C:\hiberfil.sys
WP32 - Hidden File: C:\i.com
WP32 - Hidden File: C:\IO.SYS
WP32 - Hidden File: C:\knupkb.com
WP32 - Hidden File: C:\MSDOS.SYS
WP32 - Hidden File: C:\NTDETECT.COM
WP32 - Hidden File: C:\ntldr
WP32 - Hidden File: C:\pagefile.sys
WP32 - Hidden File: C:\tyktjfww.exe
WP32 - Hidden File: C:\u.com
WP32 - Hidden File: C:\uis.com
WP32 - Hidden File: C:\uxkl0apt.bat
WP32 - Hidden File: C:\x0.cmd
WP32 - Hidden File: C:\xdw.com
WP32 - Hidden File: C:\WINDOWS\Thumbs.db
WP32 - Hidden File: C:\WINDOWS\WindowsShell.Manifest
WP32 - Hidden File: C:\WINDOWS\winnt.bmp
WP32 - Hidden File: C:\WINDOWS\winnt256.bmp
WP32 - Hidden File: C:\WINDOWS\system32\AD6507150E.sys
WP32 - Hidden File: C:\WINDOWS\system32\amvo.exe
WP32 - Hidden File: C:\WINDOWS\system32\amvo0.dll
WP32 - Hidden File: C:\WINDOWS\system32\amvo1.dll
WP32 - Hidden File: C:\WINDOWS\system32\cdplayer.exe.manifest
WP32 - Hidden File: C:\WINDOWS\system32\ckvo.exe
WP32 - Hidden File: C:\WINDOWS\system32\ckvo0.dll
WP32 - Hidden File: C:\WINDOWS\system32\ckvo1.dll
WP32 - Hidden File: C:\WINDOWS\system32\config\default.LOG
WP32 - Hidden File: C:\WINDOWS\system32\config\SAM.LOG
WP32 - Hidden File: C:\WINDOWS\system32\config\SECURITY.LOG
WP32 - Hidden File: C:\WINDOWS\system32\config\software.LOG
WP32 - Hidden File: C:\WINDOWS\system32\config\system.LOG
WP32 - Hidden File: C:\WINDOWS\system32\config\TempKey.LOG
WP32 - Hidden File: C:\WINDOWS\system32\config\userdiff.LOG
WP32 - Hidden File: C:\WINDOWS\system32\drivers\fidbox.dat
WP32 - Hidden File: C:\WINDOWS\system32\drivers\fidbox.idx
WP33 - File Type .AVI: [Vidéo AVI]C:\Program Files\Real\RealPlayer\RealPlay.exe %1
WP33 - File Type .BAT: [Fichier de commande MS-DOS]%1 %*
WP33 - File Type .CAB: [WinRAR archive]C:\Program Files\WinRAR\WinRAR.exe %1
WP33 - File Type .CAT: [Catalogue de sécurité]rundll32.exe cryptext.dll,CryptExtOpenCAT %1
WP33 - File Type .CHM: [Fichier HTML compilé]C:\WINDOWS\hh.exe %1
WP33 - File Type .COM: [Application MS-DOS]%1 %*
WP33 - File Type .CMD: [Script de commande Windows NT]%1 %*
WP33 - File Type .DOC: [Document WordPad]C:\Program Files\Windows NT\Accessoires\WORDPAD.EXE %1
WP33 - File Type .EML: [Message de Outlook Express Mail]C:\Program Files\Outlook Express\msimn.exe /eml:%1
WP33 - File Type .EXE: [Application]%1 %*
WP33 - File Type .INF: [Informations de configuration]C:\WINDOWS\System32\NOTEPAD.EXE %1
WP33 - File Type .JS: [Fichier script JScript]C:\WINDOWS\System32\WScript.exe %1 %*
WP33 - File Type .LOG: [Document texte]C:\WINDOWS\system32\NOTEPAD.EXE %1
WP33 - File Type .MSI: [Windows Installer Package]C:\WINDOWS\System32\msiexec.exe /i %1 %*
WP33 - File Type .MID: [MIDI Audio]C:\Program Files\Real\RealPlayer\RealPlay.exe %1
WP33 - File Type .MP3: [Fichier audio MP3]C:\Program Files\Real\RealPlayer\RealPlay.exe %1
WP33 - File Type .PIF: [Raccourci pour le programme MS-DOS]%1 %*
WP33 - File Type .RAM: [Présentation RealPlayer]C:\Program Files\Real\RealPlayer\RealPlay.exe %1
WP33 - File Type .REG: [Inscription dans le Registre]regedit.exe %1
WP33 - File Type .RTF: [Document au format RTF]C:\Program Files\Windows NT\Accessoires\WORDPAD.EXE %1
WP33 - File Type .SCR: [Écran de veille]%1 /S
WP33 - File Type .TXT: [Document texte]C:\WINDOWS\system32\NOTEPAD.EXE %1
WP33 - File Type .URL: [Raccourci Internet]rundll32.exe ieframe.dll,OpenURL %l
WP33 - File Type .VBS: [Fichier script VBScript]C:\WINDOWS\System32\WScript.exe %1 %*
WP33 - File Type .VBE: [Fichier script crypté VBScript]C:\WINDOWS\System32\WScript.exe %1 %*
WP33 - File Type .WSF: [Fichier script Windows]C:\WINDOWS\System32\WScript.exe %1 %*
WP33 - File Type .WSH: [Fichier de configuration de l'environnement d'exécution de scripts Windows]C:\WINDOWS\System32\WScript.exe %1 %*
Memory currently in use: 46%
Physical Memory Free: 558,072 KB
Paging File Free: 1,215,448 KB
Virtual Memory Free: 2,052,272 KB
A voir également:
- Est ce que jais un virus
- Virus mcafee - Accueil - Piratage
- Virus facebook demande d'amis - Accueil - Facebook
- Virus informatique - Guide
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Undisclosed-recipients virus - Guide
