Malware Defender 2009
Résolu
Trapper
-
Ced_King Messages postés 3519 Date d'inscription Statut Contributeur Dernière intervention -
Ced_King Messages postés 3519 Date d'inscription Statut Contributeur Dernière intervention -
Bonjour,
Je vous écrit car je suis malheureusement infecté par ce Malware Defender 2009 !
La fenêtre de Sécurité Windows (la fausse) s'ouvre sans arrêt, il lance un scan tout seul...
Y a t il quelqu'un qui pourrait m'aider ? SVP !
Je vous écrit car je suis malheureusement infecté par ce Malware Defender 2009 !
La fenêtre de Sécurité Windows (la fausse) s'ouvre sans arrêt, il lance un scan tout seul...
Y a t il quelqu'un qui pourrait m'aider ? SVP !
A voir également:
- Malware Defender 2009
- Malwarebytes anti-malware - Télécharger - Antivirus & Antimalwares
- Windows defender windows 7 - Télécharger - Antivirus & Antimalwares
- Desactiver windows defender - Guide
- Telecharger splitcam ancienne version 2009 - Télécharger - Messagerie
- Télécharger encarta 2009 gratuit pour windows 10 ✓ - Forum Logiciels
32 réponses
Salut,
_Relances toolbar et choisis l'option2
- Laisses l'outil travailler et Patientes le temps de la suppression
- Un rapport TB.txt sera généré, postes son contenu
Note : le rapport est également à C:\TB.txt
........
_Relances toolbar et choisis l'option2
- Laisses l'outil travailler et Patientes le temps de la suppression
- Un rapport TB.txt sera généré, postes son contenu
Note : le rapport est également à C:\TB.txt
........
Salut Trapper,
Si tu es dans le coin, peux tu poster un nouveau rapport RSIT stp ?
----
Si tu es dans le coin, peux tu poster un nouveau rapport RSIT stp ?
----
Bonjour,
Okay, voici les deux rapports RSIT :
RAPPORT INFO :
info.txt logfile of random's system information tool 1.06 2009-04-15 17:28:16
======Uninstall list======
-->"C:\Program Files\InstallShield Installation Information\{3AD59E07-5D54-4142-8505-62889FEDFA59}\setup.exe" REMOVEALL
-->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FA7621DC-7144-4A24-973C-B9BC0E945628}\setup.exe" -l0x9
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
360desktop-->MsiExec.exe /X{21D15DED-F125-46C8-8017-CB9F1CEB5B4D}
Ad-Aware SE Personal-->C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9.1 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Adobe Shockwave Player 11.5-->C:\WINDOWS\system32\Adobe\uninstaller.exe
Alone in the Dark 4-->C:\Remote Programs\Alone in the Dark 4 - The New Nightmare\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=140854;name=Alone in the Dark 4;dir=C:\Remote Programs\Alone in the Dark 4 - The New Nightmare\;prvid=200;cmdid=1;prvdir=Default
Apple Mobile Device Support-->MsiExec.exe /I{D8AB8F0C-CEEB-4A29-8EF5-219B064813F4}
Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
a-squared Free 3.1-->"C:\Program Files\a-squared Free\unins000.exe"
Assistant de connexion Windows Live-->MsiExec.exe /I{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
AusLogics Disk Defrag-->"C:\Program Files\AusLogics Disk Defrag\unins000.exe"
AVG Anti-Spyware 7.5-->C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
AVS Audio Converter version 5.1-->"C:\Program Files\AVS4YOU\AVSAudioConverter\unins000.exe"
AVS Video Converter 6-->"C:\Program Files\AVS4YOU\AVSVideoConverter6\unins000.exe"
AVS4YOU Software Navigator 1.2-->"C:\Program Files\AVS4YOU\AVSSoftwareNavigator\unins000.exe"
Big Fish Games Client-->C:\Program Files\bfgclient\Uninstall.exe
Blitzkrieg-->C:\Remote Programs\Blitzkrieg\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=397954;name=Blitzkrieg;dir=C:\Remote Programs\Blitzkrieg\;prvid=200;cmdid=1;prvdir=Default
Bonjour-->MsiExec.exe /I{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
Commandos 2-->C:\Remote Programs\Commandos 2 - Men Of Courage\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=198554;name=Commandos 2;dir=C:\Remote Programs\Commandos 2 - Men Of Courage\;prvid=200;cmdid=1;prvdir=Default
Commandos 3-->C:\Remote Programs\Commandos 3 - Destination Berlin\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=253654;name=Commandos 3;dir=C:\Remote Programs\Commandos 3 - Destination Berlin\;prvid=200;cmdid=1;prvdir=Default
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Desert Siege-->C:\Remote Programs\Ghost Recon - Desert Siege\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=202054;name=Desert Siege;dir=C:\Remote Programs\Ghost Recon - Desert Siege\;prvid=200;cmdid=1;prvdir=Default
DJ Mix Pro-->C:\Program Files\DJ Mix Pro\uninstall.exe
DJ Pofessionnel 2008 7.3.2.4-->"C:\djp\unins000.exe"
DVD Decrypter (Remove Only)-->"C:\Program Files\DVD Decrypter\uninstall.exe"
Emoticon +++-->"C:\Program Files\Emoticon +++\unins000.exe"
Evil Genius-->C:\Remote Programs\Evil Genius\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=368254;name=Evil Genius;dir=C:\Remote Programs\Evil Genius\;prvid=200;cmdid=1;prvdir=Default
Fahrenheit-->C:\Remote Programs\Fahrenheit\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=433454;name=Fahrenheit;dir=C:\Remote Programs\Fahrenheit\;prvid=200;cmdid=1;prvdir=Default
Feeding Frenzy-->"C:\Program Files\Feeding Frenzy\ReflexiveArcade\unins000.exe"
FLV Player 1.3.3-->"C:\Program Files\FLVPlayer\uninstall.exe"
FLV Player-->"C:\WINDOWS\FLV Player\uninstall.exe" "/U:C:\Program Files\FLV Player\Uninstall\uninstall.xml"
Free Fire Screensaver-->C:\Program Files\Free Fire Screensaver\uninstall.exe
Free Mp3 Wma Converter V 1.7.3-->"C:\Program Files\Free Audio Pack\unins000.exe"
Full Spectrum W.-->C:\Remote Programs\Full Spectrum Warrior\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=338154;name=Full Spectrum W.;dir=C:\Remote Programs\Full Spectrum Warrior\;prvid=200;cmdid=1;prvdir=Default
Galerie de photos Windows Live-->MsiExec.exe /X{A70FA218-6598-4AC9-813D-63597C5DD068}
Game Andre Agassi Tennis (remove only)-->"C:\Program Files\Andre Agassi Tennis\uninst.exe"
Gestionnaire Internet-->C:\PROGRA~1\Wanadoo\uninstall.exe
Google Chrome-->"C:\Program Files\Google\Chrome\Application\1.0.154.53\Installer\setup.exe" --uninstall --system-level
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Earth-->MsiExec.exe /X{548EAC70-EE00-11DD-908C-005056806466}
HP Imaging Device Functions 7.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
HP Photosmart and Deskjet 7.0.A-->C:\Program Files\HP\Digital Imaging\{A9F5421F-DA70-4C77-BB97-8D77EC33ED5E}\setup\hpzscr01.exe -datfile hposcr09.dat
HP Photosmart Essential-->MsiExec.exe /X{EB21A812-671B-4D08-B974-2A347F0D8F70}
HP Product Assistant-->MsiExec.exe /I{36FDBE6E-6684-462B-AE98-9A39A1B200CC}
HP Solution Center 7.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
InterVideo MediaOne Gallery-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34F0D55F-C386-4195-9A5B-961D3F6ACD46}\setup.exe" REMOVEALL REMOVEALL
Iron Storm-->C:\Remote Programs\Iron Storm\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=206154;name=Iron Storm;dir=C:\Remote Programs\Iron Storm\;prvid=200;cmdid=1;prvdir=Default
Island Thunder-->C:\Remote Programs\Ghost Recon - Island Thunder\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=202154;name=Island Thunder;dir=C:\Remote Programs\Ghost Recon - Island Thunder\;prvid=200;cmdid=1;prvdir=Default
Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
Kaspersky Online Scanner-->C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe
Last.fm 1.5.4.24567-->"C:\Program Files\Last.fm\unins000.exe"
Le Temple du Mal...-->C:\Remote Programs\Temple of Elemental Evil\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=284154;name=Le Temple du Mal...;dir=C:\Remote Programs\Temple of Elemental Evil\;prvid=200;cmdid=1;prvdir=Default
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
l'Ile Au Trésor-->C:\Remote Programs\Cap Sur L ile Au Tresor\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=463754;name=l'Ile Au Trésor;dir=C:\Remote Programs\Cap Sur L ile Au Tresor\;prvid=200;cmdid=1;prvdir=Default
Magicbit 3GP Video Converter-->C:\Program Files\Magicbit\3GP Video Converter\Uninstall.exe
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
MedicWin-->C:\WINDOWS\unin040c.exe -fc:\MedicWin\DeIsL1.isu -cc:\MedicWin\_ISREG32.DLL
Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}
Messenger Plus! Live & Sponsor (CiD)-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Office Excel Viewer 2003-->MsiExec.exe /I{9084040C-6000-11D3-8CFE-0150048383C9}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Word 2002-->MsiExec.exe /I{911B040C-6000-11D3-8CFE-0050048383C9}
MIKSOFT Mobile 3GP converter-->"C:\Program Files\MIKSOFT\Mobile 3GP converter\unins000.exe"
Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
MP3 Player Utilities 3.57-->MsiExec.exe /I{7784A172-61F1-445E-8368-601607E0DD22}
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Naval Strike-->"C:\Program Files\Naval Strike\ReflexiveArcade\unins000.exe"
Navigateur Orange-->C:\PROGRA~1\Wanadoo\Shell.exe inst\uninst_FTBrowser.shl
OCR Software by I.R.I.S 7.0-->C:\Program Files\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat
OtsAV Free 1.77.001-->"C:\WINDOWS\OTS_UI.EXE" "C:\OtsLabs\OtsAVfre.osi"
Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
PCI Audio Driver-->cmuninst.exe
Player Metaboli-->"C:\Program Files\Player Metaboli\Uninstall.exe"
Pro Rugby 2-->C:\Remote Programs\Pro Rugby Manager 2005\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=398154;name=Pro Rugby 2;dir=C:\Remote Programs\Pro Rugby Manager 2005\;prvid=200;cmdid=1;prvdir=Default
QuickTime-->MsiExec.exe /I{BFD96B89-B769-4CD6-B11E-E79FFD46F067}
Radio Fr Solo 2.1-->C:\Program Files\Radio Fr Solo\Uninstall.exe
Rainbow 6 - Raven-->C:\Remote Programs\Rainbow Six 3 - Raven Shield\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=225254;name=Rainbow 6 - Raven;dir=C:\Remote Programs\Rainbow Six 3 - Raven Shield\;prvid=200;cmdid=1;prvdir=Default
Read Only Remover (désinstallation)-->"C:\Program Files\Read Only Remover\unins000.exe"
Realtek AC'97 Audio-->Alcrmv.exe -r -m
Recuva (remove only)-->"C:\Program Files\Recuva\uninst.exe"
Replay Converter 2.8-->C:\WINDOWS\iun6002.exe "C:\Program Files\Replay Converter\iruninRCV.ini"
Replay Media Catcher-->"C:\WINDOWS\Replay Media Catcher\uninstall.exe" "/U:C:\Program Files\Replay Media Catcher\Uninstall\uninstall.xml"
Runaway-->C:\Remote Programs\Runaway - A Road Adventure\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=213554;name=Runaway;dir=C:\Remote Programs\Runaway - A Road Adventure\;prvid=200;cmdid=1;prvdir=Default
SAMSUNG CDMA Modem Driver Set-->C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
SAMSUNG Mobile USB Modem ^^-->C:\WINDOWS\system32\Samsung_USB_Drivers\4\SSVDUninstall.exe
SAMSUNG Mobile USB Modem 1.0 Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
SAMSUNG Mobile USB Modem Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
Samsung PC Studio 3 USB Driver Installer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe" -l0x40c -removeonly
Samsung PC Studio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -l0x40c -removeonly
Samsung Samples Installer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AC15160-A49B-4A89-B181-D4619C025FFF}\setup.exe" -l0x40c -removeonly
Search Settings 1.2-->MsiExec.exe /X{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Shadow Company-->C:\Remote Programs\Shadow Company\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=183354;name=Shadow Company;dir=C:\Remote Programs\Shadow Company\;prvid=200;cmdid=1;prvdir=Default
ShiftCast Settings-->C:\PROGRA~1\SHIFTC~1\UNWISE.EXE C:\PROGRA~1\SHIFTC~1\INSTALL.LOG
ShiftCast-->C:\PROGRA~1\SHIFTC~1\UNWISE.EXE C:\PROGRA~1\SHIFTC~1\INSTALL.LOG
Shop for HP Supplies-->C:\Program Files\HP\Digital Imaging\HPSSupply\hpzscr01.exe -datfile hpqbud16.dat
Spyware Terminator-->"C:\Program Files\Spyware Terminator\unins000.exe"
TomCat Soft : Le Pendu-->"C:\Program Files\TomCat Soft\Le Pendu\unins000.exe"
TubeMaster-->"C:\Program Files\TubeMaster\uninstall.exe"
TVUPlayer 2.3.6.1-->C:\Program Files\TVUPlayer\uninst.exe
Universal Boxing Manager-->C:\Program Files\Universal Boxing Manager\Uninstal.exe
VIA Rhine-Family Fast Ethernet Adapter-->Rundll32.exe vuins32.dll,vuins32Ex $Rhine $VIA
VIA/S3G Display Driver-->VTsetvga.exe -s -rRundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\system32\uc03i.inf
ViewSonic Monitor Drivers-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B4FEA924-630D-11D4-B78E-005004566E4D}\Setup.exe" -l0x9
Vista Buttons Trial-->C:\Program Files\Vista Buttons Trial\uninstall.exe
WIDCOMM Bluetooth Software-->MsiExec.exe /X{3F4EC965-28EF-45C3-B063-04B25D4E9679}
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Writer-->MsiExec.exe /X{3DFF4274-EBB0-4356-9692-972965018954}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Winter Games 2007-->C:\Remote Programs\Winter Games 2007\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=471650;name=Winter Games 2007;dir=C:\Remote Programs\Winter Games 2007\;prvid=200;cmdid=1;prvdir=Default
XIII-->C:\Remote Programs\XIII\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=254954;name=XIII;dir=C:\Remote Programs\XIII\;prvid=200;cmdid=1;prvdir=Default
Xilisoft 3GP Video Converter-->C:\Program Files\Xilisoft\3GP Video Converter 3\Uninstall.exe
Xilisoft DVD to 3GP Converter-->C:\Program Files\Xilisoft\DVD to 3GP Converter 4\Uninstall.exe
X'nBeep 1.1-->"C:\Program Files\X'nBeep 1.1\unins000.exe"
======Security center information======
AV: Avira AntiVir PersonalEdition
FW: Norton Internet Worm Protection (disabled)
======System event log======
Computer Name: NOM-AA766E5D725
Event Code: 7036
Message: Le service Pml Driver HPZ12 est entré dans l'état : en cours d'exécution.
Record Number: 1205242
Source Name: Service Control Manager
Time Written: 20090415143345.000000+240
Event Type: Informations
User:
Computer Name: NOM-AA766E5D725
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Pml Driver HPZ12.
Record Number: 1205241
Source Name: Service Control Manager
Time Written: 20090415143345.000000+240
Event Type: Informations
User: NOM-AA766E5D725\Guillaume LAGOUE
Computer Name: NOM-AA766E5D725
Event Code: 7036
Message: Le service Pml Driver HPZ12 est entré dans l'état : arrêté.
Record Number: 1205240
Source Name: Service Control Manager
Time Written: 20090415143340.000000+240
Event Type: Informations
User:
Computer Name: NOM-AA766E5D725
Event Code: 7036
Message: Le service Pml Driver HPZ12 est entré dans l'état : en cours d'exécution.
Record Number: 1205239
Source Name: Service Control Manager
Time Written: 20090415143340.000000+240
Event Type: Informations
User:
Computer Name: NOM-AA766E5D725
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Pml Driver HPZ12.
Record Number: 1205238
Source Name: Service Control Manager
Time Written: 20090415143340.000000+240
Event Type: Informations
User: NOM-AA766E5D725\Guillaume LAGOUE
=====Application event log=====
Computer Name: NOM-AA766E5D725
Event Code: 1003
Message: Le service Recherche Windows a été démarré.
Record Number: 984
Source Name: Windows Search Service
Time Written: 20090309195407.000000+240
Event Type: Informations
User:
Computer Name: NOM-AA766E5D725
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.
Record Number: 983
Source Name: SecurityCenter
Time Written: 20090309195404.000000+240
Event Type: Informations
User:
Computer Name: NOM-AA766E5D725
Event Code: 32068
Message: La règle de routage de trafic sortant n'est pas valide car elle ne peut pas trouver de périphérique valide. Les télécopies sortantes qui utilisent cette règle ne peuvent pas être acheminées. Vérifiez que le ou les périphériques concernés (en cas de routage vers un groupe de périphériques) sont connectés et installés correctement et allumés. En cas de routage vers un groupe, vérifiez que le groupe est configuré correctement.
Code de pays/région : '*'
Indicatif régional : '*'
Record Number: 982
Source Name: Microsoft Fax
Time Written: 20090309195350.000000+240
Event Type: Avertissement
User:
Computer Name: NOM-AA766E5D725
Event Code: 32026
Message: Le service de télécopie n'a pas pu initialiser de périphériques de télécopies attribués (virtuel ou TAPI).
Aucune télécopie ne peut être envoyée ou reçue tant qu'un périphérique de télécopies n'a pas été installé.
Record Number: 981
Source Name: Microsoft Fax
Time Written: 20090309195350.000000+240
Event Type: Avertissement
User:
Computer Name: NOM-AA766E5D725
Event Code: 0
Message:
Record Number: 980
Source Name: btwdins
Time Written: 20090309195216.000000+240
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files;C:\Program Files\QuickTime\QTSystem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=2f02
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\QuickTime\QTSystem\QTJava.zip
"QTJAVA"=C:\Program Files\QuickTime\QTSystem\QTJava.zip
-----------------EOF-----------------
et LE RAPPORT LOG :
Logfile of random's system information tool 1.06 (written by random/random)
Run by Elodie LAGOUE at 2009-04-15 17:28:08
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 94 GB (62%) free of 153 GB
Total RAM: 447 MB (28% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Google Software Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachine.job
C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job
C:\WINDOWS\tasks\{F897AA24-BDC3-11D1-B85B-00C04FB93981}_NOM-AA766E5D725_Guillaume LAGOUE.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
Windows Live Call HoverToCall class - C:\Program Files\Windows Live\Messenger\HTC.DLL [2008-05-17 79208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-03-24 668656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-26 35840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-26 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"=C:\WINDOWS\system32\VTTimer.exe [2005-03-08 53248]
"VTTrayp"=C:\WINDOWS\system32\VTtrayp.exe [2006-03-23 176128]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-06-21 577536]
"WOOWATCH"=C:\PROGRA~1\Wanadoo\Watch.exe [2004-08-23 20480]
"WOOTASKBARICON"=C:\PROGRA~1\Wanadoo\GestMaj.exe [2008-05-17 32768]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-01-31 385024]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2008-05-01 1817600]
"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-07-20 266497]
"C-Media Mixer"=Mixer.exe /startup []
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-26 148888]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WOOKIT"=C:\PROGRA~1\Wanadoo\Shell.exe [2008-06-27 122880]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"360desktop"= []
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE
Windows Desktop Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2007-02-05 294400]
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"=C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll [2007-05-30 79408]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Driver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Driver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Guard]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=95000000
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Wanadoo\WOOBrowser\WOOBrowser.exe"="C:\Program Files\Wanadoo\WOOBrowser\WOOBrowser.exe:*:Enabled:Internet Explorer"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\Program Files\TVUPlayer\TVUPlayer.exe"="C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component"
"C:\Program Files\360desktop\360desktop.exe"="C:\Program Files\360desktop\360desktop.exe:*:Enabled:360desktop"
"C:\Program Files\360desktop\360manager.exe"="C:\Program Files\360desktop\360manager.exe:*:Enabled:360desktop manager"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{53ac41a6-db90-11dc-a990-001731bebe10}]
shell\AutoRun\command - RavMon.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{770f1216-c214-11dd-8ebf-000a3a7b0ef6}]
shell\AutoRun\command - RavMon.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{afeac522-f622-11db-a77a-001731bebe10}]
shell\AutoRun\command - RavMon.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b536e48a-a034-11dd-8e8a-001731bebe10}]
shell\AutoRun\command - RavMon.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{cf3cddc2-e65d-11db-a75c-001731bebe10}]
shell\AutoRun\command - RavMon.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d7838a16-b223-11dc-a948-001731bebe10}]
shell\AutoRun\command - G:\RavMon.exe
======List of files/folders created in the last 1 months======
2009-04-15 17:28:08 ----D---- C:\rsit
2009-04-15 10:21:08 ----D---- C:\WINDOWS\LastGood
2009-04-12 13:23:27 ----A---- C:\TB.txt
2009-04-12 13:20:59 ----D---- C:\ToolBar SD
2009-04-11 16:51:45 ----D---- C:\Program Files\Fichiers communs\Windows Live
2009-04-02 21:55:05 ----D---- C:\WINDOWS\Sun
2009-04-02 21:55:04 ----D---- C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Application Data\Sun
2009-03-29 19:36:25 ----D---- C:\WINDOWS\system32\Kaspersky Lab
2009-03-29 18:29:56 ----A---- C:\lopR.txt
2009-03-29 18:28:52 ----D---- C:\Lop SD
2009-03-26 18:27:09 ----A---- C:\WINDOWS\system32\javaws.exe
2009-03-26 18:27:09 ----A---- C:\WINDOWS\system32\javaw.exe
2009-03-26 18:27:09 ----A---- C:\WINDOWS\system32\java.exe
2009-03-26 18:27:09 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-03-26 18:26:38 ----D---- C:\Program Files\Java
2009-03-26 17:57:52 ----D---- C:\Documents and Settings\All Users\Application Data\NOS
2009-03-26 17:57:51 ----D---- C:\Program Files\NOS
2009-03-26 15:18:51 ----A---- C:\rapport.txt
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\WS2Fix.exe
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\VCCLSID.exe
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\swxcacls.exe
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\swreg.exe
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\SrchSTS.exe
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\Process.exe
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\dumphive.exe
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\Agent.OMZ.Fix.exe
2009-03-25 17:03:22 ----SHD---- C:\RECYCLER
2009-03-25 16:39:57 ----D---- C:\WINDOWS\temp
2009-03-25 14:38:00 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-03-25 14:38:00 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-03-25 13:28:27 ----A---- C:\Boot.bak
2009-03-25 13:28:22 ----RASHD---- C:\cmdcons
2009-03-25 13:23:20 ----D---- C:\WINDOWS\ERDNT
2009-03-25 10:10:32 ----D---- C:\Program Files\Enigma Software Group
2009-03-25 09:34:55 ----D---- C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Application Data\360desktop
2009-03-24 21:58:48 ----A---- C:\TCleaner.txt
2009-03-23 15:45:22 ----D---- C:\Program Files\360desktop
2009-03-23 15:25:54 ----D---- C:\Program Files\X'nBeep 1.1
2009-03-23 15:19:28 ----D---- C:\Program Files\Vista Buttons Trial
2009-03-21 22:18:47 ----D---- C:\Documents and Settings\All Users\Application Data\Mushroom Age
2009-03-20 22:11:23 ----A---- C:\WINDOWS\system32\Thawbrkr.dll
2009-03-20 22:11:19 ----A---- C:\WINDOWS\system32\c_iscii.dll
2009-03-20 22:11:16 ----A---- C:\WINDOWS\system32\kbdusa.dll
2009-03-20 22:11:05 ----A---- C:\WINDOWS\system32\ftlx041e.dll
======List of files/folders modified in the last 1 months======
2009-04-15 17:28:06 ----D---- C:\Program Files\Wanadoo
2009-04-15 17:27:16 ----D---- C:\WINDOWS\Prefetch
2009-04-15 13:25:58 ----SD---- C:\WINDOWS\Tasks
2009-04-15 13:25:49 ----D---- C:\Documents and Settings\All Users\Application Data\Google Updater
2009-04-15 10:34:25 ----HD---- C:\WINDOWS\inf
2009-04-15 10:26:54 ----HD---- C:\WINDOWS\$hf_mig$
2009-04-15 10:26:51 ----D---- C:\WINDOWS\system32\CatRoot2
2009-04-15 10:26:50 ----D---- C:\WINDOWS
2009-04-15 00:14:07 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-04-14 10:24:31 ----SHD---- C:\WINDOWS\Installer
2009-04-14 00:37:45 ----AD---- C:\Program Files
2009-04-13 23:42:31 ----A---- C:\WINDOWS\ModemLog_Modem Bluetooth.txt
2009-04-13 10:09:16 ----D---- C:\WINDOWS\system32\Macromed
2009-04-12 17:14:52 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-04-12 11:00:48 ----D---- C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Application Data\Spyware Terminator
2009-04-11 16:51:45 ----D---- C:\Program Files\Fichiers communs
2009-04-11 16:51:42 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-04-11 11:42:45 ----D---- C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Application Data\Image Zone Express
2009-04-11 11:40:45 ----D---- C:\WINDOWS\system32\FxsTmp
2009-04-11 08:47:54 ----D---- C:\Program Files\Spyware Terminator
2009-04-10 20:23:43 ----D---- C:\Documents and Settings\All Users\Application Data\Spyware Terminator
2009-04-10 17:08:35 ----AD---- C:\WINDOWS\system32
2009-04-09 21:41:39 ----D---- C:\Program Files\Google
2009-04-09 14:07:20 ----D---- C:\Program Files\TubeMaster
2009-04-07 20:00:21 ----A---- C:\WINDOWS\CMMIXER.INI
2009-04-03 18:43:14 ----D---- C:\WINDOWS\system32\Adobe
2009-04-01 23:44:23 ----D---- C:\WINDOWS\Help
2009-04-01 23:29:45 ----D---- C:\Program Files\Outlook Express
2009-03-31 18:29:29 ----D---- C:\Program Files\Pvm
2009-03-31 01:15:42 ----D---- C:\Documents inconnus
2009-03-29 19:34:32 ----D---- C:\Program Files\Gamenext
2009-03-29 19:33:48 ----D---- C:\Remote Programs
2009-03-29 00:01:04 ----SD---- C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Application Data\Microsoft
2009-03-27 23:04:45 ----D---- C:\Program Files\Last.fm
2009-03-27 09:04:30 ----D---- C:\Config.Msi
2009-03-26 18:10:43 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-03-26 18:10:11 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-03-26 18:09:13 ----D---- C:\Program Files\Adobe
2009-03-26 17:38:36 ----SHD---- C:\System Volume Information
2009-03-26 17:38:36 ----D---- C:\WINDOWS\system32\Restore
2009-03-26 17:04:22 ----A---- C:\WINDOWS\system32\tmp.txt
2009-03-26 17:00:49 ----D---- C:\Documents and Settings
2009-03-25 17:13:55 ----D---- C:\Program Files\Windows Media Connect 2
2009-03-25 17:13:55 ----D---- C:\Program Files\Windows Live Toolbar
2009-03-25 17:13:54 ----D---- C:\Program Files\TVUPlayer
2009-03-25 17:08:54 ----D---- C:\Program Files\Replay Converter
2009-03-25 17:08:44 ----D---- C:\Program Files\WinAVI MP4 Converter
2009-03-25 16:40:00 ----D---- C:\WINDOWS\system32\drivers
2009-03-25 16:29:34 ----A---- C:\WINDOWS\system.ini
2009-03-25 16:22:39 ----D---- C:\WINDOWS\AppPatch
2009-03-25 13:32:26 ----D---- C:\WINDOWS\system32\config
2009-03-25 13:28:27 ----RASH---- C:\boot.ini
2009-03-25 12:54:26 ----D---- C:\Program Files\CCleaner
2009-03-25 09:25:20 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-03-24 21:58:07 ----D---- C:\Program Files\Trend Micro
2009-03-24 20:35:25 ----D---- C:\Program Files\Naval Strike
2009-03-24 20:35:25 ----D---- C:\Program Files\Feeding Frenzy
2009-03-23 15:44:34 ----D---- C:\Program Files\Fichiers communs\Wise Installation Wizard
2009-03-22 20:08:23 ----D---- C:\Program Files\QuickTime
2009-03-22 20:07:57 ----D---- C:\Program Files\Messenger
2009-03-22 16:18:11 ----A---- C:\WINDOWS\Radio_Fr.ini
2009-03-22 16:09:14 ----D---- C:\Program Files\Radio Fr Solo
2009-03-22 12:54:38 ----D---- C:\WINDOWS\Debug
2009-03-21 23:07:39 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-03-21 21:56:53 ----D---- C:\Program Files\Oberon Media
2009-03-21 20:54:13 ----D---- C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Application Data\Flood Light Games
2009-03-21 20:54:13 ----D---- C:\Documents and Settings\All Users\Application Data\Flood Light Games
2009-03-20 22:11:21 ----RSD---- C:\WINDOWS\Fonts
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AmdK8;AMD-Prozessortreiber; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-19 43520]
R1 AVG Anti-Spyware Driver;AVG Anti-Spyware Driver; \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys []
R1 AvgAsCln;AVG Anti-Spyware Clean Driver; C:\WINDOWS\System32\DRIVERS\AvgAsCln.sys [2007-05-30 10872]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-11-26 75072]
R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]
R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [2005-11-21 16512]
R2 CdaC15BA;CdaC15BA; \??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS []
R2 X4HSX32Ex;X4HSX32Ex; \??\C:\Program Files\Player Metaboli\X4HSX32Ex.Sys []
R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
R3 btaudio;Périphérique audio Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys [2006-06-07 329901]
R3 BTKRNL;Enumérateur de bus Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2006-06-07 855018]
R3 cmpci;C-Media PCI Audio Driver (WDM); C:\WINDOWS\system32\drivers\cmaudio.sys [2002-11-18 377358]
R3 FETND5BV;VIA Rhine-Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2005-11-16 42496]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 Iviaspi;IVI ASPI Shell; C:\WINDOWS\system32\drivers\iviaspi.sys [2005-07-26 10368]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 StillCam;Pilote d'appareil photo numérique série; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-08-23 6912]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 viagfx;viagfx; C:\WINDOWS\system32\DRIVERS\vtmini.sys [2006-04-13 252416]
S2 X4HSX32;X4HSX32; \??\C:\Program Files\Player Metaboli\X4HSX32.Sys []
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-06-27 3972672]
S3 BTDriver;Pilote de communications virtuelles Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys [2006-06-07 30459]
S3 BthEnum;Service d'énumérateur Bluetooth; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Périphérique Bluetooth (réseau personnel); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Pilote de port Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272768]
S3 BTHUSB;Pilote USB radio Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 BTWDNDIS;Serveur d'accès au réseau local Bluetooth; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2006-06-07 149028]
S3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2006-06-07 47811]
S3 btwmodem;Modem Bluetooth; C:\WINDOWS\system32\DRIVERS\btwmodem.sys [2006-06-07 30285]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2006-06-07 67384]
S3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-18 27165]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-02-01 49664]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-02-01 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-02-01 21568]
S3 jfdcd;jfdcd; \??\C:\DOCUME~1\ELODIE~1.NOM\LOCALS~1\Temp\jfdcd.sys []
S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 a2free;a-squared Free Service; C:\Program Files\a-squared Free\a2service.exe [2008-07-12 380528]
R2 AntiVirScheduler;AntiVir PersonalEdition Classic Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-23 68865]
R2 AntiVirService;AntiVir PersonalEdition Classic Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-23 151297]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-01-15 110592]
R2 AVG Anti-Spyware Guard;AVG Anti-Spyware Guard; C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe [2007-05-30 312880]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2006-06-07 266295]
R2 FTRTSVC;France Telecom Routing Table Service; C:\WINDOWS\System32\FTRTSVC.exe [2004-08-23 40960]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-26 152984]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2008-05-01 606720]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R2 WSearch;Recherche Windows; C:\WINDOWS\system32\SearchIndexer.exe [2007-02-05 300032]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
S2 gupdate1c9a47fd27536ce;Service Google Update (gupdate1c9a47fd27536ce); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-03-14 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-24 183280]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
-----------------EOF-----------------
Okay, voici les deux rapports RSIT :
RAPPORT INFO :
info.txt logfile of random's system information tool 1.06 2009-04-15 17:28:16
======Uninstall list======
-->"C:\Program Files\InstallShield Installation Information\{3AD59E07-5D54-4142-8505-62889FEDFA59}\setup.exe" REMOVEALL
-->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FA7621DC-7144-4A24-973C-B9BC0E945628}\setup.exe" -l0x9
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
360desktop-->MsiExec.exe /X{21D15DED-F125-46C8-8017-CB9F1CEB5B4D}
Ad-Aware SE Personal-->C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9.1 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Adobe Shockwave Player 11.5-->C:\WINDOWS\system32\Adobe\uninstaller.exe
Alone in the Dark 4-->C:\Remote Programs\Alone in the Dark 4 - The New Nightmare\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=140854;name=Alone in the Dark 4;dir=C:\Remote Programs\Alone in the Dark 4 - The New Nightmare\;prvid=200;cmdid=1;prvdir=Default
Apple Mobile Device Support-->MsiExec.exe /I{D8AB8F0C-CEEB-4A29-8EF5-219B064813F4}
Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
a-squared Free 3.1-->"C:\Program Files\a-squared Free\unins000.exe"
Assistant de connexion Windows Live-->MsiExec.exe /I{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
AusLogics Disk Defrag-->"C:\Program Files\AusLogics Disk Defrag\unins000.exe"
AVG Anti-Spyware 7.5-->C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
AVS Audio Converter version 5.1-->"C:\Program Files\AVS4YOU\AVSAudioConverter\unins000.exe"
AVS Video Converter 6-->"C:\Program Files\AVS4YOU\AVSVideoConverter6\unins000.exe"
AVS4YOU Software Navigator 1.2-->"C:\Program Files\AVS4YOU\AVSSoftwareNavigator\unins000.exe"
Big Fish Games Client-->C:\Program Files\bfgclient\Uninstall.exe
Blitzkrieg-->C:\Remote Programs\Blitzkrieg\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=397954;name=Blitzkrieg;dir=C:\Remote Programs\Blitzkrieg\;prvid=200;cmdid=1;prvdir=Default
Bonjour-->MsiExec.exe /I{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
Commandos 2-->C:\Remote Programs\Commandos 2 - Men Of Courage\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=198554;name=Commandos 2;dir=C:\Remote Programs\Commandos 2 - Men Of Courage\;prvid=200;cmdid=1;prvdir=Default
Commandos 3-->C:\Remote Programs\Commandos 3 - Destination Berlin\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=253654;name=Commandos 3;dir=C:\Remote Programs\Commandos 3 - Destination Berlin\;prvid=200;cmdid=1;prvdir=Default
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Desert Siege-->C:\Remote Programs\Ghost Recon - Desert Siege\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=202054;name=Desert Siege;dir=C:\Remote Programs\Ghost Recon - Desert Siege\;prvid=200;cmdid=1;prvdir=Default
DJ Mix Pro-->C:\Program Files\DJ Mix Pro\uninstall.exe
DJ Pofessionnel 2008 7.3.2.4-->"C:\djp\unins000.exe"
DVD Decrypter (Remove Only)-->"C:\Program Files\DVD Decrypter\uninstall.exe"
Emoticon +++-->"C:\Program Files\Emoticon +++\unins000.exe"
Evil Genius-->C:\Remote Programs\Evil Genius\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=368254;name=Evil Genius;dir=C:\Remote Programs\Evil Genius\;prvid=200;cmdid=1;prvdir=Default
Fahrenheit-->C:\Remote Programs\Fahrenheit\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=433454;name=Fahrenheit;dir=C:\Remote Programs\Fahrenheit\;prvid=200;cmdid=1;prvdir=Default
Feeding Frenzy-->"C:\Program Files\Feeding Frenzy\ReflexiveArcade\unins000.exe"
FLV Player 1.3.3-->"C:\Program Files\FLVPlayer\uninstall.exe"
FLV Player-->"C:\WINDOWS\FLV Player\uninstall.exe" "/U:C:\Program Files\FLV Player\Uninstall\uninstall.xml"
Free Fire Screensaver-->C:\Program Files\Free Fire Screensaver\uninstall.exe
Free Mp3 Wma Converter V 1.7.3-->"C:\Program Files\Free Audio Pack\unins000.exe"
Full Spectrum W.-->C:\Remote Programs\Full Spectrum Warrior\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=338154;name=Full Spectrum W.;dir=C:\Remote Programs\Full Spectrum Warrior\;prvid=200;cmdid=1;prvdir=Default
Galerie de photos Windows Live-->MsiExec.exe /X{A70FA218-6598-4AC9-813D-63597C5DD068}
Game Andre Agassi Tennis (remove only)-->"C:\Program Files\Andre Agassi Tennis\uninst.exe"
Gestionnaire Internet-->C:\PROGRA~1\Wanadoo\uninstall.exe
Google Chrome-->"C:\Program Files\Google\Chrome\Application\1.0.154.53\Installer\setup.exe" --uninstall --system-level
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Earth-->MsiExec.exe /X{548EAC70-EE00-11DD-908C-005056806466}
HP Imaging Device Functions 7.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
HP Photosmart and Deskjet 7.0.A-->C:\Program Files\HP\Digital Imaging\{A9F5421F-DA70-4C77-BB97-8D77EC33ED5E}\setup\hpzscr01.exe -datfile hposcr09.dat
HP Photosmart Essential-->MsiExec.exe /X{EB21A812-671B-4D08-B974-2A347F0D8F70}
HP Product Assistant-->MsiExec.exe /I{36FDBE6E-6684-462B-AE98-9A39A1B200CC}
HP Solution Center 7.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
InterVideo MediaOne Gallery-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34F0D55F-C386-4195-9A5B-961D3F6ACD46}\setup.exe" REMOVEALL REMOVEALL
Iron Storm-->C:\Remote Programs\Iron Storm\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=206154;name=Iron Storm;dir=C:\Remote Programs\Iron Storm\;prvid=200;cmdid=1;prvdir=Default
Island Thunder-->C:\Remote Programs\Ghost Recon - Island Thunder\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=202154;name=Island Thunder;dir=C:\Remote Programs\Ghost Recon - Island Thunder\;prvid=200;cmdid=1;prvdir=Default
Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
Kaspersky Online Scanner-->C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe
Last.fm 1.5.4.24567-->"C:\Program Files\Last.fm\unins000.exe"
Le Temple du Mal...-->C:\Remote Programs\Temple of Elemental Evil\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=284154;name=Le Temple du Mal...;dir=C:\Remote Programs\Temple of Elemental Evil\;prvid=200;cmdid=1;prvdir=Default
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
l'Ile Au Trésor-->C:\Remote Programs\Cap Sur L ile Au Tresor\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=463754;name=l'Ile Au Trésor;dir=C:\Remote Programs\Cap Sur L ile Au Tresor\;prvid=200;cmdid=1;prvdir=Default
Magicbit 3GP Video Converter-->C:\Program Files\Magicbit\3GP Video Converter\Uninstall.exe
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
MedicWin-->C:\WINDOWS\unin040c.exe -fc:\MedicWin\DeIsL1.isu -cc:\MedicWin\_ISREG32.DLL
Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}
Messenger Plus! Live & Sponsor (CiD)-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Office Excel Viewer 2003-->MsiExec.exe /I{9084040C-6000-11D3-8CFE-0150048383C9}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Word 2002-->MsiExec.exe /I{911B040C-6000-11D3-8CFE-0050048383C9}
MIKSOFT Mobile 3GP converter-->"C:\Program Files\MIKSOFT\Mobile 3GP converter\unins000.exe"
Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
MP3 Player Utilities 3.57-->MsiExec.exe /I{7784A172-61F1-445E-8368-601607E0DD22}
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Naval Strike-->"C:\Program Files\Naval Strike\ReflexiveArcade\unins000.exe"
Navigateur Orange-->C:\PROGRA~1\Wanadoo\Shell.exe inst\uninst_FTBrowser.shl
OCR Software by I.R.I.S 7.0-->C:\Program Files\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat
OtsAV Free 1.77.001-->"C:\WINDOWS\OTS_UI.EXE" "C:\OtsLabs\OtsAVfre.osi"
Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
PCI Audio Driver-->cmuninst.exe
Player Metaboli-->"C:\Program Files\Player Metaboli\Uninstall.exe"
Pro Rugby 2-->C:\Remote Programs\Pro Rugby Manager 2005\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=398154;name=Pro Rugby 2;dir=C:\Remote Programs\Pro Rugby Manager 2005\;prvid=200;cmdid=1;prvdir=Default
QuickTime-->MsiExec.exe /I{BFD96B89-B769-4CD6-B11E-E79FFD46F067}
Radio Fr Solo 2.1-->C:\Program Files\Radio Fr Solo\Uninstall.exe
Rainbow 6 - Raven-->C:\Remote Programs\Rainbow Six 3 - Raven Shield\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=225254;name=Rainbow 6 - Raven;dir=C:\Remote Programs\Rainbow Six 3 - Raven Shield\;prvid=200;cmdid=1;prvdir=Default
Read Only Remover (désinstallation)-->"C:\Program Files\Read Only Remover\unins000.exe"
Realtek AC'97 Audio-->Alcrmv.exe -r -m
Recuva (remove only)-->"C:\Program Files\Recuva\uninst.exe"
Replay Converter 2.8-->C:\WINDOWS\iun6002.exe "C:\Program Files\Replay Converter\iruninRCV.ini"
Replay Media Catcher-->"C:\WINDOWS\Replay Media Catcher\uninstall.exe" "/U:C:\Program Files\Replay Media Catcher\Uninstall\uninstall.xml"
Runaway-->C:\Remote Programs\Runaway - A Road Adventure\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=213554;name=Runaway;dir=C:\Remote Programs\Runaway - A Road Adventure\;prvid=200;cmdid=1;prvdir=Default
SAMSUNG CDMA Modem Driver Set-->C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
SAMSUNG Mobile USB Modem ^^-->C:\WINDOWS\system32\Samsung_USB_Drivers\4\SSVDUninstall.exe
SAMSUNG Mobile USB Modem 1.0 Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
SAMSUNG Mobile USB Modem Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
Samsung PC Studio 3 USB Driver Installer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe" -l0x40c -removeonly
Samsung PC Studio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -l0x40c -removeonly
Samsung Samples Installer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AC15160-A49B-4A89-B181-D4619C025FFF}\setup.exe" -l0x40c -removeonly
Search Settings 1.2-->MsiExec.exe /X{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Shadow Company-->C:\Remote Programs\Shadow Company\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=183354;name=Shadow Company;dir=C:\Remote Programs\Shadow Company\;prvid=200;cmdid=1;prvdir=Default
ShiftCast Settings-->C:\PROGRA~1\SHIFTC~1\UNWISE.EXE C:\PROGRA~1\SHIFTC~1\INSTALL.LOG
ShiftCast-->C:\PROGRA~1\SHIFTC~1\UNWISE.EXE C:\PROGRA~1\SHIFTC~1\INSTALL.LOG
Shop for HP Supplies-->C:\Program Files\HP\Digital Imaging\HPSSupply\hpzscr01.exe -datfile hpqbud16.dat
Spyware Terminator-->"C:\Program Files\Spyware Terminator\unins000.exe"
TomCat Soft : Le Pendu-->"C:\Program Files\TomCat Soft\Le Pendu\unins000.exe"
TubeMaster-->"C:\Program Files\TubeMaster\uninstall.exe"
TVUPlayer 2.3.6.1-->C:\Program Files\TVUPlayer\uninst.exe
Universal Boxing Manager-->C:\Program Files\Universal Boxing Manager\Uninstal.exe
VIA Rhine-Family Fast Ethernet Adapter-->Rundll32.exe vuins32.dll,vuins32Ex $Rhine $VIA
VIA/S3G Display Driver-->VTsetvga.exe -s -rRundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\system32\uc03i.inf
ViewSonic Monitor Drivers-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B4FEA924-630D-11D4-B78E-005004566E4D}\Setup.exe" -l0x9
Vista Buttons Trial-->C:\Program Files\Vista Buttons Trial\uninstall.exe
WIDCOMM Bluetooth Software-->MsiExec.exe /X{3F4EC965-28EF-45C3-B063-04B25D4E9679}
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Writer-->MsiExec.exe /X{3DFF4274-EBB0-4356-9692-972965018954}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Winter Games 2007-->C:\Remote Programs\Winter Games 2007\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=471650;name=Winter Games 2007;dir=C:\Remote Programs\Winter Games 2007\;prvid=200;cmdid=1;prvdir=Default
XIII-->C:\Remote Programs\XIII\GPlrLanc.exe -LOpCode 2 /RemoveContent cid=254954;name=XIII;dir=C:\Remote Programs\XIII\;prvid=200;cmdid=1;prvdir=Default
Xilisoft 3GP Video Converter-->C:\Program Files\Xilisoft\3GP Video Converter 3\Uninstall.exe
Xilisoft DVD to 3GP Converter-->C:\Program Files\Xilisoft\DVD to 3GP Converter 4\Uninstall.exe
X'nBeep 1.1-->"C:\Program Files\X'nBeep 1.1\unins000.exe"
======Security center information======
AV: Avira AntiVir PersonalEdition
FW: Norton Internet Worm Protection (disabled)
======System event log======
Computer Name: NOM-AA766E5D725
Event Code: 7036
Message: Le service Pml Driver HPZ12 est entré dans l'état : en cours d'exécution.
Record Number: 1205242
Source Name: Service Control Manager
Time Written: 20090415143345.000000+240
Event Type: Informations
User:
Computer Name: NOM-AA766E5D725
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Pml Driver HPZ12.
Record Number: 1205241
Source Name: Service Control Manager
Time Written: 20090415143345.000000+240
Event Type: Informations
User: NOM-AA766E5D725\Guillaume LAGOUE
Computer Name: NOM-AA766E5D725
Event Code: 7036
Message: Le service Pml Driver HPZ12 est entré dans l'état : arrêté.
Record Number: 1205240
Source Name: Service Control Manager
Time Written: 20090415143340.000000+240
Event Type: Informations
User:
Computer Name: NOM-AA766E5D725
Event Code: 7036
Message: Le service Pml Driver HPZ12 est entré dans l'état : en cours d'exécution.
Record Number: 1205239
Source Name: Service Control Manager
Time Written: 20090415143340.000000+240
Event Type: Informations
User:
Computer Name: NOM-AA766E5D725
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Pml Driver HPZ12.
Record Number: 1205238
Source Name: Service Control Manager
Time Written: 20090415143340.000000+240
Event Type: Informations
User: NOM-AA766E5D725\Guillaume LAGOUE
=====Application event log=====
Computer Name: NOM-AA766E5D725
Event Code: 1003
Message: Le service Recherche Windows a été démarré.
Record Number: 984
Source Name: Windows Search Service
Time Written: 20090309195407.000000+240
Event Type: Informations
User:
Computer Name: NOM-AA766E5D725
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.
Record Number: 983
Source Name: SecurityCenter
Time Written: 20090309195404.000000+240
Event Type: Informations
User:
Computer Name: NOM-AA766E5D725
Event Code: 32068
Message: La règle de routage de trafic sortant n'est pas valide car elle ne peut pas trouver de périphérique valide. Les télécopies sortantes qui utilisent cette règle ne peuvent pas être acheminées. Vérifiez que le ou les périphériques concernés (en cas de routage vers un groupe de périphériques) sont connectés et installés correctement et allumés. En cas de routage vers un groupe, vérifiez que le groupe est configuré correctement.
Code de pays/région : '*'
Indicatif régional : '*'
Record Number: 982
Source Name: Microsoft Fax
Time Written: 20090309195350.000000+240
Event Type: Avertissement
User:
Computer Name: NOM-AA766E5D725
Event Code: 32026
Message: Le service de télécopie n'a pas pu initialiser de périphériques de télécopies attribués (virtuel ou TAPI).
Aucune télécopie ne peut être envoyée ou reçue tant qu'un périphérique de télécopies n'a pas été installé.
Record Number: 981
Source Name: Microsoft Fax
Time Written: 20090309195350.000000+240
Event Type: Avertissement
User:
Computer Name: NOM-AA766E5D725
Event Code: 0
Message:
Record Number: 980
Source Name: btwdins
Time Written: 20090309195216.000000+240
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files;C:\Program Files\QuickTime\QTSystem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=2f02
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\QuickTime\QTSystem\QTJava.zip
"QTJAVA"=C:\Program Files\QuickTime\QTSystem\QTJava.zip
-----------------EOF-----------------
et LE RAPPORT LOG :
Logfile of random's system information tool 1.06 (written by random/random)
Run by Elodie LAGOUE at 2009-04-15 17:28:08
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 94 GB (62%) free of 153 GB
Total RAM: 447 MB (28% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Google Software Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachine.job
C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job
C:\WINDOWS\tasks\{F897AA24-BDC3-11D1-B85B-00C04FB93981}_NOM-AA766E5D725_Guillaume LAGOUE.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
Windows Live Call HoverToCall class - C:\Program Files\Windows Live\Messenger\HTC.DLL [2008-05-17 79208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-03-24 668656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-26 35840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-26 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"=C:\WINDOWS\system32\VTTimer.exe [2005-03-08 53248]
"VTTrayp"=C:\WINDOWS\system32\VTtrayp.exe [2006-03-23 176128]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-06-21 577536]
"WOOWATCH"=C:\PROGRA~1\Wanadoo\Watch.exe [2004-08-23 20480]
"WOOTASKBARICON"=C:\PROGRA~1\Wanadoo\GestMaj.exe [2008-05-17 32768]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-01-31 385024]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2008-05-01 1817600]
"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-07-20 266497]
"C-Media Mixer"=Mixer.exe /startup []
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-26 148888]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WOOKIT"=C:\PROGRA~1\Wanadoo\Shell.exe [2008-06-27 122880]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"360desktop"= []
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE
Windows Desktop Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2007-02-05 294400]
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"=C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll [2007-05-30 79408]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Driver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Driver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Guard]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=95000000
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Wanadoo\WOOBrowser\WOOBrowser.exe"="C:\Program Files\Wanadoo\WOOBrowser\WOOBrowser.exe:*:Enabled:Internet Explorer"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\Program Files\TVUPlayer\TVUPlayer.exe"="C:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component"
"C:\Program Files\360desktop\360desktop.exe"="C:\Program Files\360desktop\360desktop.exe:*:Enabled:360desktop"
"C:\Program Files\360desktop\360manager.exe"="C:\Program Files\360desktop\360manager.exe:*:Enabled:360desktop manager"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{53ac41a6-db90-11dc-a990-001731bebe10}]
shell\AutoRun\command - RavMon.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{770f1216-c214-11dd-8ebf-000a3a7b0ef6}]
shell\AutoRun\command - RavMon.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{afeac522-f622-11db-a77a-001731bebe10}]
shell\AutoRun\command - RavMon.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b536e48a-a034-11dd-8e8a-001731bebe10}]
shell\AutoRun\command - RavMon.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{cf3cddc2-e65d-11db-a75c-001731bebe10}]
shell\AutoRun\command - RavMon.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d7838a16-b223-11dc-a948-001731bebe10}]
shell\AutoRun\command - G:\RavMon.exe
======List of files/folders created in the last 1 months======
2009-04-15 17:28:08 ----D---- C:\rsit
2009-04-15 10:21:08 ----D---- C:\WINDOWS\LastGood
2009-04-12 13:23:27 ----A---- C:\TB.txt
2009-04-12 13:20:59 ----D---- C:\ToolBar SD
2009-04-11 16:51:45 ----D---- C:\Program Files\Fichiers communs\Windows Live
2009-04-02 21:55:05 ----D---- C:\WINDOWS\Sun
2009-04-02 21:55:04 ----D---- C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Application Data\Sun
2009-03-29 19:36:25 ----D---- C:\WINDOWS\system32\Kaspersky Lab
2009-03-29 18:29:56 ----A---- C:\lopR.txt
2009-03-29 18:28:52 ----D---- C:\Lop SD
2009-03-26 18:27:09 ----A---- C:\WINDOWS\system32\javaws.exe
2009-03-26 18:27:09 ----A---- C:\WINDOWS\system32\javaw.exe
2009-03-26 18:27:09 ----A---- C:\WINDOWS\system32\java.exe
2009-03-26 18:27:09 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-03-26 18:26:38 ----D---- C:\Program Files\Java
2009-03-26 17:57:52 ----D---- C:\Documents and Settings\All Users\Application Data\NOS
2009-03-26 17:57:51 ----D---- C:\Program Files\NOS
2009-03-26 15:18:51 ----A---- C:\rapport.txt
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\WS2Fix.exe
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\VCCLSID.exe
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\swxcacls.exe
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\swreg.exe
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\SrchSTS.exe
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\Process.exe
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\dumphive.exe
2009-03-26 15:17:13 ----A---- C:\WINDOWS\system32\Agent.OMZ.Fix.exe
2009-03-25 17:03:22 ----SHD---- C:\RECYCLER
2009-03-25 16:39:57 ----D---- C:\WINDOWS\temp
2009-03-25 14:38:00 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-03-25 14:38:00 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-03-25 13:28:27 ----A---- C:\Boot.bak
2009-03-25 13:28:22 ----RASHD---- C:\cmdcons
2009-03-25 13:23:20 ----D---- C:\WINDOWS\ERDNT
2009-03-25 10:10:32 ----D---- C:\Program Files\Enigma Software Group
2009-03-25 09:34:55 ----D---- C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Application Data\360desktop
2009-03-24 21:58:48 ----A---- C:\TCleaner.txt
2009-03-23 15:45:22 ----D---- C:\Program Files\360desktop
2009-03-23 15:25:54 ----D---- C:\Program Files\X'nBeep 1.1
2009-03-23 15:19:28 ----D---- C:\Program Files\Vista Buttons Trial
2009-03-21 22:18:47 ----D---- C:\Documents and Settings\All Users\Application Data\Mushroom Age
2009-03-20 22:11:23 ----A---- C:\WINDOWS\system32\Thawbrkr.dll
2009-03-20 22:11:19 ----A---- C:\WINDOWS\system32\c_iscii.dll
2009-03-20 22:11:16 ----A---- C:\WINDOWS\system32\kbdusa.dll
2009-03-20 22:11:05 ----A---- C:\WINDOWS\system32\ftlx041e.dll
======List of files/folders modified in the last 1 months======
2009-04-15 17:28:06 ----D---- C:\Program Files\Wanadoo
2009-04-15 17:27:16 ----D---- C:\WINDOWS\Prefetch
2009-04-15 13:25:58 ----SD---- C:\WINDOWS\Tasks
2009-04-15 13:25:49 ----D---- C:\Documents and Settings\All Users\Application Data\Google Updater
2009-04-15 10:34:25 ----HD---- C:\WINDOWS\inf
2009-04-15 10:26:54 ----HD---- C:\WINDOWS\$hf_mig$
2009-04-15 10:26:51 ----D---- C:\WINDOWS\system32\CatRoot2
2009-04-15 10:26:50 ----D---- C:\WINDOWS
2009-04-15 00:14:07 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-04-14 10:24:31 ----SHD---- C:\WINDOWS\Installer
2009-04-14 00:37:45 ----AD---- C:\Program Files
2009-04-13 23:42:31 ----A---- C:\WINDOWS\ModemLog_Modem Bluetooth.txt
2009-04-13 10:09:16 ----D---- C:\WINDOWS\system32\Macromed
2009-04-12 17:14:52 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-04-12 11:00:48 ----D---- C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Application Data\Spyware Terminator
2009-04-11 16:51:45 ----D---- C:\Program Files\Fichiers communs
2009-04-11 16:51:42 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-04-11 11:42:45 ----D---- C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Application Data\Image Zone Express
2009-04-11 11:40:45 ----D---- C:\WINDOWS\system32\FxsTmp
2009-04-11 08:47:54 ----D---- C:\Program Files\Spyware Terminator
2009-04-10 20:23:43 ----D---- C:\Documents and Settings\All Users\Application Data\Spyware Terminator
2009-04-10 17:08:35 ----AD---- C:\WINDOWS\system32
2009-04-09 21:41:39 ----D---- C:\Program Files\Google
2009-04-09 14:07:20 ----D---- C:\Program Files\TubeMaster
2009-04-07 20:00:21 ----A---- C:\WINDOWS\CMMIXER.INI
2009-04-03 18:43:14 ----D---- C:\WINDOWS\system32\Adobe
2009-04-01 23:44:23 ----D---- C:\WINDOWS\Help
2009-04-01 23:29:45 ----D---- C:\Program Files\Outlook Express
2009-03-31 18:29:29 ----D---- C:\Program Files\Pvm
2009-03-31 01:15:42 ----D---- C:\Documents inconnus
2009-03-29 19:34:32 ----D---- C:\Program Files\Gamenext
2009-03-29 19:33:48 ----D---- C:\Remote Programs
2009-03-29 00:01:04 ----SD---- C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Application Data\Microsoft
2009-03-27 23:04:45 ----D---- C:\Program Files\Last.fm
2009-03-27 09:04:30 ----D---- C:\Config.Msi
2009-03-26 18:10:43 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-03-26 18:10:11 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-03-26 18:09:13 ----D---- C:\Program Files\Adobe
2009-03-26 17:38:36 ----SHD---- C:\System Volume Information
2009-03-26 17:38:36 ----D---- C:\WINDOWS\system32\Restore
2009-03-26 17:04:22 ----A---- C:\WINDOWS\system32\tmp.txt
2009-03-26 17:00:49 ----D---- C:\Documents and Settings
2009-03-25 17:13:55 ----D---- C:\Program Files\Windows Media Connect 2
2009-03-25 17:13:55 ----D---- C:\Program Files\Windows Live Toolbar
2009-03-25 17:13:54 ----D---- C:\Program Files\TVUPlayer
2009-03-25 17:08:54 ----D---- C:\Program Files\Replay Converter
2009-03-25 17:08:44 ----D---- C:\Program Files\WinAVI MP4 Converter
2009-03-25 16:40:00 ----D---- C:\WINDOWS\system32\drivers
2009-03-25 16:29:34 ----A---- C:\WINDOWS\system.ini
2009-03-25 16:22:39 ----D---- C:\WINDOWS\AppPatch
2009-03-25 13:32:26 ----D---- C:\WINDOWS\system32\config
2009-03-25 13:28:27 ----RASH---- C:\boot.ini
2009-03-25 12:54:26 ----D---- C:\Program Files\CCleaner
2009-03-25 09:25:20 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-03-24 21:58:07 ----D---- C:\Program Files\Trend Micro
2009-03-24 20:35:25 ----D---- C:\Program Files\Naval Strike
2009-03-24 20:35:25 ----D---- C:\Program Files\Feeding Frenzy
2009-03-23 15:44:34 ----D---- C:\Program Files\Fichiers communs\Wise Installation Wizard
2009-03-22 20:08:23 ----D---- C:\Program Files\QuickTime
2009-03-22 20:07:57 ----D---- C:\Program Files\Messenger
2009-03-22 16:18:11 ----A---- C:\WINDOWS\Radio_Fr.ini
2009-03-22 16:09:14 ----D---- C:\Program Files\Radio Fr Solo
2009-03-22 12:54:38 ----D---- C:\WINDOWS\Debug
2009-03-21 23:07:39 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-03-21 21:56:53 ----D---- C:\Program Files\Oberon Media
2009-03-21 20:54:13 ----D---- C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Application Data\Flood Light Games
2009-03-21 20:54:13 ----D---- C:\Documents and Settings\All Users\Application Data\Flood Light Games
2009-03-20 22:11:21 ----RSD---- C:\WINDOWS\Fonts
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AmdK8;AMD-Prozessortreiber; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-19 43520]
R1 AVG Anti-Spyware Driver;AVG Anti-Spyware Driver; \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys []
R1 AvgAsCln;AVG Anti-Spyware Clean Driver; C:\WINDOWS\System32\DRIVERS\AvgAsCln.sys [2007-05-30 10872]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-11-26 75072]
R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]
R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [2005-11-21 16512]
R2 CdaC15BA;CdaC15BA; \??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS []
R2 X4HSX32Ex;X4HSX32Ex; \??\C:\Program Files\Player Metaboli\X4HSX32Ex.Sys []
R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
R3 btaudio;Périphérique audio Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys [2006-06-07 329901]
R3 BTKRNL;Enumérateur de bus Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2006-06-07 855018]
R3 cmpci;C-Media PCI Audio Driver (WDM); C:\WINDOWS\system32\drivers\cmaudio.sys [2002-11-18 377358]
R3 FETND5BV;VIA Rhine-Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2005-11-16 42496]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 Iviaspi;IVI ASPI Shell; C:\WINDOWS\system32\drivers\iviaspi.sys [2005-07-26 10368]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 StillCam;Pilote d'appareil photo numérique série; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-08-23 6912]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 viagfx;viagfx; C:\WINDOWS\system32\DRIVERS\vtmini.sys [2006-04-13 252416]
S2 X4HSX32;X4HSX32; \??\C:\Program Files\Player Metaboli\X4HSX32.Sys []
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-06-27 3972672]
S3 BTDriver;Pilote de communications virtuelles Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys [2006-06-07 30459]
S3 BthEnum;Service d'énumérateur Bluetooth; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Périphérique Bluetooth (réseau personnel); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Pilote de port Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272768]
S3 BTHUSB;Pilote USB radio Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 BTWDNDIS;Serveur d'accès au réseau local Bluetooth; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2006-06-07 149028]
S3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2006-06-07 47811]
S3 btwmodem;Modem Bluetooth; C:\WINDOWS\system32\DRIVERS\btwmodem.sys [2006-06-07 30285]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2006-06-07 67384]
S3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-18 27165]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-02-01 49664]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-02-01 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-02-01 21568]
S3 jfdcd;jfdcd; \??\C:\DOCUME~1\ELODIE~1.NOM\LOCALS~1\Temp\jfdcd.sys []
S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 a2free;a-squared Free Service; C:\Program Files\a-squared Free\a2service.exe [2008-07-12 380528]
R2 AntiVirScheduler;AntiVir PersonalEdition Classic Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-23 68865]
R2 AntiVirService;AntiVir PersonalEdition Classic Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-23 151297]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-01-15 110592]
R2 AVG Anti-Spyware Guard;AVG Anti-Spyware Guard; C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe [2007-05-30 312880]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2006-06-07 266295]
R2 FTRTSVC;France Telecom Routing Table Service; C:\WINDOWS\System32\FTRTSVC.exe [2004-08-23 40960]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-26 152984]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2008-05-01 606720]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R2 WSearch;Recherche Windows; C:\WINDOWS\system32\SearchIndexer.exe [2007-02-05 300032]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
S2 gupdate1c9a47fd27536ce;Service Google Update (gupdate1c9a47fd27536ce); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-03-14 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-24 183280]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
-----------------EOF-----------------
Telecharges et installes UsbFix de C_XX & Chiquitine29
Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) sans les ouvrir
# Double clic sur le raccourci UsbFix présent sur ton bureau .
# Choisi l'option 1 ( Recherche )
# Laisse travailler l outil.
# Ensuite postes le rapport UsbFix.txt qui apparaitra.
# Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )
# Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...)
.....
Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) sans les ouvrir
# Double clic sur le raccourci UsbFix présent sur ton bureau .
# Choisi l'option 1 ( Recherche )
# Laisse travailler l outil.
# Ensuite postes le rapport UsbFix.txt qui apparaitra.
# Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )
# Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...)
.....
Bonjour,
Voici maintenant le rapport UsbFix :
############################## [ UsbFix V3.008 ]
# User : Elodie LAGOUE (Administrateurs) # NOM-AA766E5D725
# Update on 13/04/09 by C_XX & Chiquitine29
# Start at: 13:22:38 | 16/04/2009
# AMD Sempron(tm) Processor 3000+
# Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Enabled
# AV : Avira AntiVir PersonalEdition 8.0.1.30 [ (!) Disabled | Updated ]
# FW : Norton Internet Worm Protection[ (!) Disabled ]2006
# C:\ # Disque fixe local # 149,05 Go (91,5 Go free) [462040] # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
# F:\ # Disque amovible # 499,21 Mo (187,76 Mo free) # FAT
############################## [ Processus actifs ]
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\VTtrayp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\Mixer.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
################## [ Registre # Startup ]
HKCU_Main: "Local Page"="C:\\windows\\system32\\blank.htm"
HKCU_Main: "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
HKCU_Main: "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
HKCU_Main: "Window Title"="Orange"
HKLM_logon: "Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
HKLM_logon: "DefaultUserName"="Elodie LAGOUE"
HKLM_logon: "AltDefaultUserName"="Elodie LAGOUE"
HKLM_logon: "LegalNoticeCaption"=""
HKLM_logon: "LegalNoticeText"=""
HKCU_Run: WOOKIT=C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
HKCU_Run: ctfmon.exe=C:\WINDOWS\system32\ctfmon.exe
HKCU_Run: 360desktop=
HKLM_Run: VTTimer=VTTimer.exe
HKLM_Run: VTTrayp=VTtrayp.exe
HKLM_Run: SoundMan=SOUNDMAN.EXE
HKLM_Run: WOOWATCH=C:\PROGRA~1\Wanadoo\Watch.exe
HKLM_Run: WOOTASKBARICON=C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
HKLM_Run: BluetoothAuthenticationAgent=rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
HKLM_Run: HP Software Update=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
HKLM_Run: QuickTime Task="C:\Program Files\QuickTime\qttask.exe" -atboottime
HKLM_Run: SpywareTerminator="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
HKLM_Run: avgnt="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
HKLM_Run: C-Media Mixer=Mixer.exe /startup
HKLM_Run: Adobe Reader Speed Launcher="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
HKLM_Run: SunJavaUpdateSched="C:\Program Files\Java\jre6\bin\jusched.exe"
HKLM_Run: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
################## [ Informations ]
# Contenu de l'autorun F:\autorun.inf
[Autorun]
open=RavMon.exe
# -> ( Value | Good = 0x0 Bad = 0x1 )
# HKCU\SOFTWARE\...\Policies\System "DisableRegedit" = (0x0)
# HKCU\SOFTWARE\...\Policies\System "DisableRegistryTools" = (0x0)
# HKCU\SOFTWARE\...\Policies\System "DisableTaskMgr" = (0x0)
# HKLM\SOFTWARE\...\Policies\System "DisableRegedit" = (0x0)
# HKLM\SOFTWARE\...\Policies\System "DisableRegistryTools" = (0x0)
# HKLM\SOFTWARE\...\Policies\System "DisableTaskMgr" = (0x0)
################## [ Fichiers # Dossiers infectieux ]
Found ! C:\WINDOWS\system32\tmp.reg
Found ! C:\WINDOWS\system32\tmp.txt
Found ! F:\autorun.inf
################## [ Registre # Clés Run infectieuses ]
# -> Not Found !
################## [ Registre # Mountpoints2 ]
HKCU\Software\Microsoft\....\MountPoints2\{53ac41a6-db90-11dc-a990-001731bebe10}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{770f1216-c214-11dd-8ebf-000a3a7b0ef6}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{afeac522-f622-11db-a77a-001731bebe10}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{b536e48a-a034-11dd-8e8a-001731bebe10}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{cf3cddc2-e65d-11db-a75c-001731bebe10}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{d7838a16-b223-11dc-a948-001731bebe10}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{f20531a2-7933-11db-a5a8-001731bebe10}\Shell\AutoRun\command
################## [ ! Fin du rapport # UsbFix V3.008 ! ]
Voici maintenant le rapport UsbFix :
############################## [ UsbFix V3.008 ]
# User : Elodie LAGOUE (Administrateurs) # NOM-AA766E5D725
# Update on 13/04/09 by C_XX & Chiquitine29
# Start at: 13:22:38 | 16/04/2009
# AMD Sempron(tm) Processor 3000+
# Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Enabled
# AV : Avira AntiVir PersonalEdition 8.0.1.30 [ (!) Disabled | Updated ]
# FW : Norton Internet Worm Protection[ (!) Disabled ]2006
# C:\ # Disque fixe local # 149,05 Go (91,5 Go free) [462040] # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
# F:\ # Disque amovible # 499,21 Mo (187,76 Mo free) # FAT
############################## [ Processus actifs ]
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\VTtrayp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\Mixer.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
################## [ Registre # Startup ]
HKCU_Main: "Local Page"="C:\\windows\\system32\\blank.htm"
HKCU_Main: "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
HKCU_Main: "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
HKCU_Main: "Window Title"="Orange"
HKLM_logon: "Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
HKLM_logon: "DefaultUserName"="Elodie LAGOUE"
HKLM_logon: "AltDefaultUserName"="Elodie LAGOUE"
HKLM_logon: "LegalNoticeCaption"=""
HKLM_logon: "LegalNoticeText"=""
HKCU_Run: WOOKIT=C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
HKCU_Run: ctfmon.exe=C:\WINDOWS\system32\ctfmon.exe
HKCU_Run: 360desktop=
HKLM_Run: VTTimer=VTTimer.exe
HKLM_Run: VTTrayp=VTtrayp.exe
HKLM_Run: SoundMan=SOUNDMAN.EXE
HKLM_Run: WOOWATCH=C:\PROGRA~1\Wanadoo\Watch.exe
HKLM_Run: WOOTASKBARICON=C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
HKLM_Run: BluetoothAuthenticationAgent=rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
HKLM_Run: HP Software Update=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
HKLM_Run: QuickTime Task="C:\Program Files\QuickTime\qttask.exe" -atboottime
HKLM_Run: SpywareTerminator="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
HKLM_Run: avgnt="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
HKLM_Run: C-Media Mixer=Mixer.exe /startup
HKLM_Run: Adobe Reader Speed Launcher="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
HKLM_Run: SunJavaUpdateSched="C:\Program Files\Java\jre6\bin\jusched.exe"
HKLM_Run: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
################## [ Informations ]
# Contenu de l'autorun F:\autorun.inf
[Autorun]
open=RavMon.exe
# -> ( Value | Good = 0x0 Bad = 0x1 )
# HKCU\SOFTWARE\...\Policies\System "DisableRegedit" = (0x0)
# HKCU\SOFTWARE\...\Policies\System "DisableRegistryTools" = (0x0)
# HKCU\SOFTWARE\...\Policies\System "DisableTaskMgr" = (0x0)
# HKLM\SOFTWARE\...\Policies\System "DisableRegedit" = (0x0)
# HKLM\SOFTWARE\...\Policies\System "DisableRegistryTools" = (0x0)
# HKLM\SOFTWARE\...\Policies\System "DisableTaskMgr" = (0x0)
################## [ Fichiers # Dossiers infectieux ]
Found ! C:\WINDOWS\system32\tmp.reg
Found ! C:\WINDOWS\system32\tmp.txt
Found ! F:\autorun.inf
################## [ Registre # Clés Run infectieuses ]
# -> Not Found !
################## [ Registre # Mountpoints2 ]
HKCU\Software\Microsoft\....\MountPoints2\{53ac41a6-db90-11dc-a990-001731bebe10}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{770f1216-c214-11dd-8ebf-000a3a7b0ef6}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{afeac522-f622-11db-a77a-001731bebe10}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{b536e48a-a034-11dd-8e8a-001731bebe10}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{cf3cddc2-e65d-11db-a75c-001731bebe10}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{d7838a16-b223-11dc-a948-001731bebe10}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{f20531a2-7933-11db-a5a8-001731bebe10}\Shell\AutoRun\command
################## [ ! Fin du rapport # UsbFix V3.008 ! ]
Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) sans les ouvrir
- Double cliques sur le raccourci UsbFix présent sur ton bureau
- choisi l'option 2 ( Suppression )
- Ton bureau disparaitra et le pc redémarrera .
- Au redémarrage , UsbFix scannera ton pc , laisse l'outil travailler
- Ensuite postes le rapport UsbFix.txt qui apparaitra avec le bureau .
- Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque.( C:\UsbFix.txt )
....
- Double cliques sur le raccourci UsbFix présent sur ton bureau
- choisi l'option 2 ( Suppression )
- Ton bureau disparaitra et le pc redémarrera .
- Au redémarrage , UsbFix scannera ton pc , laisse l'outil travailler
- Ensuite postes le rapport UsbFix.txt qui apparaitra avec le bureau .
- Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque.( C:\UsbFix.txt )
....
Bonjour,
Voici le rapport de UsbFix avec l'option 2 :
############################## [ UsbFix V3.008 ]
# User : Elodie LAGOUE (Administrateurs) # NOM-AA766E5D725
# Update on 13/04/09 by C_XX & Chiquitine29
# Start at: 09:02:33 | 17/04/2009
# AMD Sempron(tm) Processor 3000+
# Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Enabled
# AV : Avira AntiVir PersonalEdition 8.0.1.30 [ Enabled | Updated ]
# FW : Norton Internet Worm Protection[ (!) Disabled ]2006
# C:\ # Disque fixe local # 149,05 Go (90,97 Go free) [462040] # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
############################## [ Processus actifs ]
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
################## [ Fichiers # Dossiers infectieux ]
Deleted ! C:\WINDOWS\system32\tmp.reg
Deleted ! C:\WINDOWS\system32\tmp.txt
################## [ Registre # Clés Run infectieuses ]
# -> Not Found !
################## [ Registre # Mountpoints2 ]
Deleted ! HKCU\Software\Microsoft\....\MountPoints2\{53ac41a6-db90-11dc-a990-001731bebe10}\Shell\AutoRun\command
Deleted ! HKCU\Software\Microsoft\....\MountPoints2\{770f1216-c214-11dd-8ebf-000a3a7b0ef6}\Shell\AutoRun\command
Deleted ! HKCU\Software\Microsoft\....\MountPoints2\{afeac522-f622-11db-a77a-001731bebe10}\Shell\AutoRun\command
Deleted ! HKCU\Software\Microsoft\....\MountPoints2\{b536e48a-a034-11dd-8e8a-001731bebe10}\Shell\AutoRun\command
Deleted ! HKCU\Software\Microsoft\....\MountPoints2\{cf3cddc2-e65d-11db-a75c-001731bebe10}\Shell\AutoRun\command
Deleted ! HKCU\Software\Microsoft\....\MountPoints2\{d7838a16-b223-11dc-a948-001731bebe10}\Shell\AutoRun\command
Deleted ! HKCU\Software\Microsoft\....\MountPoints2\{f20531a2-7933-11db-a5a8-001731bebe10}\Shell\AutoRun\command
################## [ Listing des fichiers présent ]
C:\AUTOEXEC.BAT
C:\NTDETECT.COM
C:\boot.ini
C:\desktop.ini
################## [ Vaccination ]
# C:\autorun.inf -> Folder created by UsbFix.
################## [ ! Fin du rapport # UsbFix V3.008 ! ]
Voici le rapport de UsbFix avec l'option 2 :
############################## [ UsbFix V3.008 ]
# User : Elodie LAGOUE (Administrateurs) # NOM-AA766E5D725
# Update on 13/04/09 by C_XX & Chiquitine29
# Start at: 09:02:33 | 17/04/2009
# AMD Sempron(tm) Processor 3000+
# Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Enabled
# AV : Avira AntiVir PersonalEdition 8.0.1.30 [ Enabled | Updated ]
# FW : Norton Internet Worm Protection[ (!) Disabled ]2006
# C:\ # Disque fixe local # 149,05 Go (90,97 Go free) [462040] # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
############################## [ Processus actifs ]
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
################## [ Fichiers # Dossiers infectieux ]
Deleted ! C:\WINDOWS\system32\tmp.reg
Deleted ! C:\WINDOWS\system32\tmp.txt
################## [ Registre # Clés Run infectieuses ]
# -> Not Found !
################## [ Registre # Mountpoints2 ]
Deleted ! HKCU\Software\Microsoft\....\MountPoints2\{53ac41a6-db90-11dc-a990-001731bebe10}\Shell\AutoRun\command
Deleted ! HKCU\Software\Microsoft\....\MountPoints2\{770f1216-c214-11dd-8ebf-000a3a7b0ef6}\Shell\AutoRun\command
Deleted ! HKCU\Software\Microsoft\....\MountPoints2\{afeac522-f622-11db-a77a-001731bebe10}\Shell\AutoRun\command
Deleted ! HKCU\Software\Microsoft\....\MountPoints2\{b536e48a-a034-11dd-8e8a-001731bebe10}\Shell\AutoRun\command
Deleted ! HKCU\Software\Microsoft\....\MountPoints2\{cf3cddc2-e65d-11db-a75c-001731bebe10}\Shell\AutoRun\command
Deleted ! HKCU\Software\Microsoft\....\MountPoints2\{d7838a16-b223-11dc-a948-001731bebe10}\Shell\AutoRun\command
Deleted ! HKCU\Software\Microsoft\....\MountPoints2\{f20531a2-7933-11db-a5a8-001731bebe10}\Shell\AutoRun\command
################## [ Listing des fichiers présent ]
C:\AUTOEXEC.BAT
C:\NTDETECT.COM
C:\boot.ini
C:\desktop.ini
################## [ Vaccination ]
# C:\autorun.inf -> Folder created by UsbFix.
################## [ ! Fin du rapport # UsbFix V3.008 ! ]
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) sans les ouvrir
- Double cliques sur le raccourci UsbFix présent sur ton bureau
- choisis l'option 3 ( vaccination).
- Laisse travailler l'outil.
- Ensuite postes le rapport UsbFix.txt qui apparaitra.
- Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )
----------------------------------
- Double cliques sur le raccourci UsbFix présent sur ton bureau
- choisis l'option 3 ( vaccination).
- Laisse travailler l'outil.
- Ensuite postes le rapport UsbFix.txt qui apparaitra.
- Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )
----------------------------------
Et voici le rapport UsbFix avec l'option 3 :
############################## [ UsbFix V3.008 ]
# User : Elodie LAGOUE (Administrateurs) # NOM-AA766E5D725
# Update on 13/04/09 by C_XX & Chiquitine29
# Start at: 12:07:25 | 17/04/2009
# AMD Sempron(tm) Processor 3000+
# Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Enabled
# AV : Avira AntiVir PersonalEdition 8.0.1.30 [ (!) Disabled | Updated ]
# FW : Norton Internet Worm Protection[ (!) Disabled ]2006
# C:\ # Disque fixe local # 149,05 Go (90,95 Go free) [462040] # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
# F:\ # Disque amovible # 499,21 Mo (187,76 Mo free) # FAT
################## [ Vaccination ]
# C:\autorun.inf -> Folder created by UsbFix.
################## [ ! Fin du rapport # UsbFix V3.008 ! ]
############################## [ UsbFix V3.008 ]
# User : Elodie LAGOUE (Administrateurs) # NOM-AA766E5D725
# Update on 13/04/09 by C_XX & Chiquitine29
# Start at: 12:07:25 | 17/04/2009
# AMD Sempron(tm) Processor 3000+
# Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Enabled
# AV : Avira AntiVir PersonalEdition 8.0.1.30 [ (!) Disabled | Updated ]
# FW : Norton Internet Worm Protection[ (!) Disabled ]2006
# C:\ # Disque fixe local # 149,05 Go (90,95 Go free) [462040] # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
# F:\ # Disque amovible # 499,21 Mo (187,76 Mo free) # FAT
################## [ Vaccination ]
# C:\autorun.inf -> Folder created by UsbFix.
################## [ ! Fin du rapport # UsbFix V3.008 ! ]
Ok,
- Executes l'option4 d'USBfix ( desinstallation) --> pas la peine de laisser tes disques amovibles...
-----------------
- Comme cela fait déjà un bout de temps que l'on a commencé, j'aimerais vérifier...
- Telecharges LopSD et enregistres le sur ton bureau:
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
- Desactives la garde de ton antivirus et antispyware
-double cliques sur l'icone de ton bureau pour lancer l'install
- Une fois installé, fermes toutes les applications en cours
- double-cliques sur lopsd.exe et choisis la langue puis valides par "Entrée "
- Au menu, choisis l'option1 et patientes jusqu'à la fin du scan
- Un rapport sera généré, postes son contenu
-----------------------------
- Executes l'option4 d'USBfix ( desinstallation) --> pas la peine de laisser tes disques amovibles...
-----------------
- Comme cela fait déjà un bout de temps que l'on a commencé, j'aimerais vérifier...
- Telecharges LopSD et enregistres le sur ton bureau:
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
- Desactives la garde de ton antivirus et antispyware
-double cliques sur l'icone de ton bureau pour lancer l'install
- Une fois installé, fermes toutes les applications en cours
- double-cliques sur lopsd.exe et choisis la langue puis valides par "Entrée "
- Au menu, choisis l'option1 et patientes jusqu'à la fin du scan
- Un rapport sera généré, postes son contenu
-----------------------------
Je t'envoie le rapport Lop S&D :
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 3000+ )
BIOS : BIOS Date: 06/15/06 14:45:47 Ver: 08.00.12
USER : Elodie LAGOUE ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Not Activated)
Firewall : Norton Internet Worm Protection 2006 (Not Activated)
C:\ (Local Disk) - NTFS - Total:149 Go (Free:90 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 17/04/2009|12:40 )
--------------------\\ Listing des dossiers dans APPLIC~1
[14/09/2006|09:15] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[14/09/2006|10:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[14/09/2006|10:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[26/03/2009|18:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[12/05/2007|23:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[15/02/2008|00:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[11/08/2008|18:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[27/02/2008|22:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[26/07/2008|15:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[23/12/2008|20:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishGamesCache
[12/02/2009|22:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EscapeTheMuseum
[02/01/2008|00:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Exetender
[21/03/2009|20:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Flood Light Games
[11/11/2008|23:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GameHouse
[15/04/2009|13:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[27/02/2008|15:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[15/06/2007|11:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[02/01/2009|21:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP Product Assistant
[06/02/2008|18:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Laconic Software
[28/01/2009|23:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Last.fm
[25/03/2009|14:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[27/09/2007|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[11/04/2009|16:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[21/03/2009|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mushroom Age
[26/03/2009|20:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
[20/06/2008|13:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Player Metaboli
[12/11/2008|14:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[22/12/2008|13:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayPond
[20/11/2006|17:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[25/10/2008|21:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[14/09/2006|10:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[05/03/2009|19:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpinTop Games
[22/02/2008|12:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[17/04/2009|12:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spyware Terminator
[21/03/2009|23:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[13/07/2008|01:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TVU Networks
[26/12/2006|23:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[14/09/2006|09:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[09/06/2007|23:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[24/03/2008|20:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[20/11/2008|15:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[01/03/2008|00:31] C:\DOCUME~1\ANYSEF~1\APPLIC~1\Grisoft
[11/07/2007|14:48] C:\DOCUME~1\ANYSEF~1\APPLIC~1\HP
[26/12/2006|23:47] C:\DOCUME~1\ANYSEF~1\APPLIC~1\Identities
[26/01/2007|19:58] C:\DOCUME~1\ANYSEF~1\APPLIC~1\InterVideo
[14/09/2006|10:07] C:\DOCUME~1\ANYSEF~1\APPLIC~1\Macromedia
[03/10/2008|13:52] C:\DOCUME~1\ANYSEF~1\APPLIC~1\Microsoft
[22/01/2009|13:39] C:\DOCUME~1\ANYSEF~1\APPLIC~1\Spyware Terminator
[29/09/2007|15:04] C:\DOCUME~1\ANYSEF~1\APPLIC~1\Windows Desktop Search
[14/09/2006|09:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[14/09/2006|10:07] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[14/09/2006|10:21] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[20/11/2006|17:45] C:\DOCUME~1\ELODIE~1\APPLIC~1\Adobe
[20/11/2006|21:50] C:\DOCUME~1\ELODIE~1\APPLIC~1\AOL
[20/11/2006|18:27] C:\DOCUME~1\ELODIE~1\APPLIC~1\InterVideo
[14/09/2006|10:07] C:\DOCUME~1\ELODIE~1\APPLIC~1\Macromedia
[26/12/2006|23:45] C:\DOCUME~1\ELODIE~1\APPLIC~1\Microsoft
[25/03/2009|09:34] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\360desktop
[05/03/2009|20:33] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Adobe
[12/05/2007|23:35] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\AOL
[24/02/2008|02:23] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Apple Computer
[12/11/2008|17:51] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\BeachPartyCraze
[23/12/2008|21:29] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Boomzap
[11/12/2008|23:14] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Dragon Altar Games
[21/03/2009|20:54] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Flood Light Games
[02/03/2007|09:19] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\fltk.org
[11/12/2008|21:25] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Friday's games
[10/02/2009|00:29] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Games
[14/03/2009|12:37] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Google
[27/02/2008|15:02] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Grisoft
[30/01/2007|19:01] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Help
[25/09/2007|17:22] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\HP
[10/02/2007|17:03] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Hulabee
[24/09/2007|22:00] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Identities
[11/04/2009|11:42] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Image Zone Express
[26/12/2006|23:34] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\InterVideo
[24/02/2008|22:35] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\iWin
[22/12/2008|12:44] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\JoyBits
[06/02/2008|18:51] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Lavasoft
[24/11/2006|09:56] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Leadertech
[01/02/2009|20:56] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Little Worlds Online
[06/02/2008|18:32] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Macromedia
[29/03/2009|00:01] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Microsoft
[22/02/2008|12:53] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Mozilla
[09/06/2007|16:13] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\MSNInstaller
[19/12/2008|17:38] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\PlayFirst
[07/09/2008|13:32] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Printer Info Cache
[17/04/2009|12:04] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Spyware Terminator
[02/04/2009|21:55] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Sun
[25/02/2008|08:12] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\URSE Games
[24/09/2007|23:50] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Windows Desktop Search
[21/07/2007|22:17] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Yahoo! Messenger
[01/03/2008|00:28] C:\DOCUME~1\ERICKA~1\APPLIC~1\Grisoft
[27/10/2007|16:50] C:\DOCUME~1\ERICKA~1\APPLIC~1\HP
[26/12/2006|23:45] C:\DOCUME~1\ERICKA~1\APPLIC~1\Identities
[14/09/2006|10:07] C:\DOCUME~1\ERICKA~1\APPLIC~1\Macromedia
[27/10/2007|16:50] C:\DOCUME~1\ERICKA~1\APPLIC~1\Microsoft
[25/10/2008|13:28] C:\DOCUME~1\ERICKA~1\APPLIC~1\Spyware Terminator
[27/10/2007|16:49] C:\DOCUME~1\ERICKA~1\APPLIC~1\Windows Desktop Search
[25/10/2008|20:50] C:\DOCUME~1\GUILLA~1\APPLIC~1\AlterLab
[14/09/2006|10:07] C:\DOCUME~1\GUILLA~1\APPLIC~1\Macromedia
[26/12/2006|23:45] C:\DOCUME~1\GUILLA~1\APPLIC~1\Microsoft
[26/12/2006|23:47] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[14/09/2006|10:07] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
[26/12/2006|23:47] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[24/03/2008|11:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
[07/01/2008|19:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[23/03/2009|19:12] C:\DOCUME~1\NETWOR~1\APPLIC~1\Adobe
[23/03/2009|20:55] C:\DOCUME~1\NETWOR~1\APPLIC~1\Macromedia
[24/03/2009|21:34] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[17/04/2009 12:24][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachine.job
[17/04/2009 12:19][--a------] C:\WINDOWS\tasks\Google Software Updater.job
[13/04/2009 12:24][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[17/04/2009 12:29][--ah-----] C:\WINDOWS\tasks\{F897AA24-BDC3-11D1-B85B-00C04FB93981}_NOM-AA766E5D725_Guillaume LAGOUE.job
[17/04/2009 10:48][--a------] C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job
[17/04/2009 09:01][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 16:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[15/10/2008|22:17] C:\Program Files\$NtUninstallKB957095$
[25/03/2009|17:08] C:\Program Files\360desktop
[26/03/2009|18:09] C:\Program Files\Adobe
[15/02/2009|22:00] C:\Program Files\Andre Agassi Tennis
[26/12/2006|23:45] C:\Program Files\AOL 9.0
[27/02/2008|01:18] C:\Program Files\AOL 9.0a
[15/02/2009|22:00] C:\Program Files\AOL 9.0b
[25/02/2008|08:40] C:\Program Files\AOL Toolbar
[18/08/2008|00:47] C:\Program Files\Apple Software Update
[06/09/2008|23:07] C:\Program Files\a-squared Free
[27/02/2008|17:32] C:\Program Files\AusLogics Disk Defrag
[27/02/2008|22:37] C:\Program Files\Avira
[08/08/2008|15:09] C:\Program Files\AviSynth 2.5
[07/08/2008|10:04] C:\Program Files\AVS4YOU
[11/12/2008|21:10] C:\Program Files\bfgclient
[15/02/2008|00:15] C:\Program Files\Bonjour
[14/11/2007|16:44] C:\Program Files\Borland
[25/03/2009|12:54] C:\Program Files\CCleaner
[18/08/2008|00:47] C:\Program Files\CDex_170b2
[06/12/2007|20:45] C:\Program Files\Club-Internet
[22/01/2009|13:48] C:\Program Files\C-Media
[04/11/2007|00:53] C:\Program Files\Compil Games
[14/09/2006|09:10] C:\Program Files\ComPlus Applications
[21/11/2008|10:55] C:\Program Files\Dame de Piques
[24/10/2007|18:11] C:\Program Files\DJ
[25/03/2008|15:35] C:\Program Files\DJ Mix Pro
[31/10/2008|22:36] C:\Program Files\DVD Decrypter
[06/02/2008|18:50] C:\Program Files\Emoticon +++
[25/03/2009|10:10] C:\Program Files\Enigma Software Group
[08/08/2008|15:08] C:\Program Files\eRightSoft
[24/03/2009|20:35] C:\Program Files\Feeding Frenzy
[11/04/2009|16:51] C:\Program Files\Fichiers communs
[06/02/2008|18:50] C:\Program Files\FLV Player
[06/02/2008|18:50] C:\Program Files\FLVPlayer
[21/11/2008|10:22] C:\Program Files\Free Audio Pack
[06/02/2008|18:51] C:\Program Files\Free Fire Screensaver
[29/03/2009|19:34] C:\Program Files\Gamenext
[09/04/2009|21:41] C:\Program Files\Google
[27/02/2008|15:01] C:\Program Files\Grisoft
[27/09/2007|18:49] C:\Program Files\Hewlett-Packard
[02/01/2009|21:04] C:\Program Files\HP
[31/10/2007|10:47] C:\Program Files\Ihsv
[20/06/2008|13:53] C:\Program Files\InstallShield Installation Information
[16/04/2009|13:06] C:\Program Files\Internet Explorer
[31/12/2006|19:54] C:\Program Files\InterVideo
[20/06/2008|14:24] C:\Program Files\iTunes
[26/03/2009|18:26] C:\Program Files\Java
[27/03/2009|23:04] C:\Program Files\Last.fm
[06/02/2008|18:51] C:\Program Files\Lavasoft
[26/07/2008|14:31] C:\Program Files\Magicbit
[25/03/2009|14:38] C:\Program Files\Malwarebytes' Anti-Malware
[10/07/2008|18:50] C:\Program Files\Mes Jeux Téléchargés
[22/03/2009|20:07] C:\Program Files\Messenger
[27/09/2008|12:39] C:\Program Files\Messenger Plus! Live
[10/06/2007|18:23] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[14/09/2006|09:12] C:\Program Files\microsoft frontpage
[02/12/2008|14:53] C:\Program Files\Microsoft Office
[24/09/2007|22:00] C:\Program Files\Microsoft SQL Server Compact Edition
[08/08/2008|14:36] C:\Program Files\MIKSOFT
[18/07/2008|10:47] C:\Program Files\Movie Maker
[17/10/2008|18:03] C:\Program Files\Mozilla Firefox
[15/02/2008|18:17] C:\Program Files\MP3 Player Utilities 3.57
[26/08/2007|20:45] C:\Program Files\MSN
[14/09/2006|09:09] C:\Program Files\MSN Gaming Zone
[15/06/2007|11:41] C:\Program Files\MSXML 4.0
[24/03/2009|20:35] C:\Program Files\Naval Strike
[18/07/2008|10:42] C:\Program Files\NetMeeting
[26/03/2009|20:11] C:\Program Files\NOS
[21/03/2009|21:56] C:\Program Files\Oberon Media
[14/09/2006|09:09] C:\Program Files\Online Services
[10/02/2007|16:37] C:\Program Files\orange
[01/04/2009|23:29] C:\Program Files\Outlook Express
[08/08/2008|22:59] C:\Program Files\Player Metaboli
[19/12/2008|13:01] C:\Program Files\PlayFirst
[31/03/2009|18:29] C:\Program Files\Pvm
[22/03/2009|20:08] C:\Program Files\QuickTime
[20/11/2006|15:59] C:\Program Files\Raccourcis de programmes
[22/03/2009|16:09] C:\Program Files\Radio Fr Solo
[17/10/2008|18:39] C:\Program Files\Read Only Remover
[12/05/2007|23:32] C:\Program Files\Real
[29/12/2008|22:13] C:\Program Files\RealArcade
[24/08/2008|23:19] C:\Program Files\Recuva
[23/04/2008|20:43] C:\Program Files\ReflexiveArcade
[25/03/2009|17:08] C:\Program Files\Replay Converter
[06/02/2008|18:50] C:\Program Files\Replay Media Catcher
[22/11/2007|12:08] C:\Program Files\Samsung
[06/02/2007|13:03] C:\Program Files\Securitoo
[14/09/2006|09:10] C:\Program Files\Services en ligne
[06/02/2008|18:50] C:\Program Files\ShiftCast
[11/04/2009|08:47] C:\Program Files\Spyware Terminator
[28/09/2008|16:53] C:\Program Files\TomCat Soft
[24/03/2009|21:58] C:\Program Files\Trend Micro
[09/04/2009|14:07] C:\Program Files\TubeMaster
[25/03/2009|17:13] C:\Program Files\TVUPlayer
[14/09/2006|09:15] C:\Program Files\Uninstall Information
[21/08/2008|20:02] C:\Program Files\Universal Boxing Manager
[25/02/2008|10:22] C:\Program Files\Valusoft
[26/12/2006|23:34] C:\Program Files\viewsonic
[23/03/2009|15:19] C:\Program Files\Vista Buttons Trial
[17/04/2009|12:40] C:\Program Files\Wanadoo
[19/07/2008|17:36] C:\Program Files\WIDCOMM
[25/03/2009|17:08] C:\Program Files\WinAVI MP4 Converter
[24/09/2007|21:59] C:\Program Files\Windows Desktop Search
[27/02/2008|19:48] C:\Program Files\Windows Live
[25/03/2009|17:13] C:\Program Files\Windows Live Toolbar
[25/03/2009|17:13] C:\Program Files\Windows Media Connect 2
[28/01/2009|23:02] C:\Program Files\Windows Media Player
[18/07/2008|10:42] C:\Program Files\Windows NT
[14/09/2006|09:10] C:\Program Files\WindowsUpdate
[14/09/2006|09:12] C:\Program Files\xerox
[08/11/2008|11:44] C:\Program Files\Xilisoft
[23/03/2009|15:25] C:\Program Files\X'nBeep 1.1
[14/09/2006|10:07] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[26/03/2009|18:10] C:\Program Files\Fichiers communs\Adobe
[12/05/2007|23:42] C:\Program Files\Fichiers communs\AOL
[12/05/2007|23:42] C:\Program Files\Fichiers communs\aolshare
[15/02/2008|00:12] C:\Program Files\Fichiers communs\Apple
[26/07/2008|15:05] C:\Program Files\Fichiers communs\AVSMedia
[25/06/2008|19:07] C:\Program Files\Fichiers communs\BOONTY Shared
[20/06/2007|15:24] C:\Program Files\Fichiers communs\Designer
[27/02/2008|01:20] C:\Program Files\Fichiers communs\DirectX
[12/06/2007|12:39] C:\Program Files\Fichiers communs\Hewlett-Packard
[02/10/2007|14:33] C:\Program Files\Fichiers communs\HP
[26/12/2006|23:45] C:\Program Files\Fichiers communs\InstallShield
[26/12/2006|23:46] C:\Program Files\Fichiers communs\InterVideo
[05/03/2009|18:35] C:\Program Files\Fichiers communs\Microsoft Shared
[14/09/2006|09:10] C:\Program Files\Fichiers communs\MSSoap
[20/04/2008|18:42] C:\Program Files\Fichiers communs\Oberon Media
[14/09/2006|11:06] C:\Program Files\Fichiers communs\ODBC
[12/05/2007|23:42] C:\Program Files\Fichiers communs\Real
[27/02/2008|01:20] C:\Program Files\Fichiers communs\Sandlot Shared
[21/11/2008|08:37] C:\Program Files\Fichiers communs\Services
[14/09/2006|11:06] C:\Program Files\Fichiers communs\SpeechEngines
[26/12/2006|23:46] C:\Program Files\Fichiers communs\Symantec Shared
[18/07/2008|10:58] C:\Program Files\Fichiers communs\System
[20/11/2006|17:16] C:\Program Files\Fichiers communs\Ulead Systems
[11/04/2009|16:51] C:\Program Files\Fichiers communs\Windows Live
[24/03/2008|20:12] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[23/03/2009|15:44] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 54 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-17 12:42:08
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 3
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\ELODIE~1.NOM\Mes documents\Ma musique\kpop\Tae_Yang_-_Cracks_Of_My_Broken_Heart.avi
C:\DOCUME~1\ELODIE~1.NOM\Mes documents\Mes vidéos\Tae_Yang_-_Cracks_Of_My_Broken_Heart.avi
[F:456][D:69]-> C:\DOCUME~1\ELODIE~1.NOM\LOCALS~1\Temp
[F:10][D:0]-> C:\DOCUME~1\ELODIE~1.NOM\Cookies
[F:324][D:4]-> C:\DOCUME~1\ELODIE~1.NOM\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 29/03/2009|18:34 - Option : [2]
2 - "C:\Lop SD\LopR_2.txt" - 17/04/2009|12:44 - Option : [1]
--------------------\\ Fin du rapport a 12:44:10
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 3000+ )
BIOS : BIOS Date: 06/15/06 14:45:47 Ver: 08.00.12
USER : Elodie LAGOUE ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Not Activated)
Firewall : Norton Internet Worm Protection 2006 (Not Activated)
C:\ (Local Disk) - NTFS - Total:149 Go (Free:90 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 17/04/2009|12:40 )
--------------------\\ Listing des dossiers dans APPLIC~1
[14/09/2006|09:15] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[14/09/2006|10:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[14/09/2006|10:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[26/03/2009|18:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[12/05/2007|23:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[15/02/2008|00:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[11/08/2008|18:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[27/02/2008|22:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[26/07/2008|15:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[23/12/2008|20:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishGamesCache
[12/02/2009|22:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EscapeTheMuseum
[02/01/2008|00:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Exetender
[21/03/2009|20:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Flood Light Games
[11/11/2008|23:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GameHouse
[15/04/2009|13:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[27/02/2008|15:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[15/06/2007|11:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[02/01/2009|21:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP Product Assistant
[06/02/2008|18:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Laconic Software
[28/01/2009|23:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Last.fm
[25/03/2009|14:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[27/09/2007|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[11/04/2009|16:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[21/03/2009|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mushroom Age
[26/03/2009|20:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
[20/06/2008|13:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Player Metaboli
[12/11/2008|14:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[22/12/2008|13:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayPond
[20/11/2006|17:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[25/10/2008|21:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[14/09/2006|10:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[05/03/2009|19:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpinTop Games
[22/02/2008|12:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[17/04/2009|12:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spyware Terminator
[21/03/2009|23:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[13/07/2008|01:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TVU Networks
[26/12/2006|23:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[14/09/2006|09:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[09/06/2007|23:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[24/03/2008|20:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[20/11/2008|15:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[01/03/2008|00:31] C:\DOCUME~1\ANYSEF~1\APPLIC~1\Grisoft
[11/07/2007|14:48] C:\DOCUME~1\ANYSEF~1\APPLIC~1\HP
[26/12/2006|23:47] C:\DOCUME~1\ANYSEF~1\APPLIC~1\Identities
[26/01/2007|19:58] C:\DOCUME~1\ANYSEF~1\APPLIC~1\InterVideo
[14/09/2006|10:07] C:\DOCUME~1\ANYSEF~1\APPLIC~1\Macromedia
[03/10/2008|13:52] C:\DOCUME~1\ANYSEF~1\APPLIC~1\Microsoft
[22/01/2009|13:39] C:\DOCUME~1\ANYSEF~1\APPLIC~1\Spyware Terminator
[29/09/2007|15:04] C:\DOCUME~1\ANYSEF~1\APPLIC~1\Windows Desktop Search
[14/09/2006|09:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[14/09/2006|10:07] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[14/09/2006|10:21] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[20/11/2006|17:45] C:\DOCUME~1\ELODIE~1\APPLIC~1\Adobe
[20/11/2006|21:50] C:\DOCUME~1\ELODIE~1\APPLIC~1\AOL
[20/11/2006|18:27] C:\DOCUME~1\ELODIE~1\APPLIC~1\InterVideo
[14/09/2006|10:07] C:\DOCUME~1\ELODIE~1\APPLIC~1\Macromedia
[26/12/2006|23:45] C:\DOCUME~1\ELODIE~1\APPLIC~1\Microsoft
[25/03/2009|09:34] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\360desktop
[05/03/2009|20:33] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Adobe
[12/05/2007|23:35] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\AOL
[24/02/2008|02:23] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Apple Computer
[12/11/2008|17:51] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\BeachPartyCraze
[23/12/2008|21:29] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Boomzap
[11/12/2008|23:14] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Dragon Altar Games
[21/03/2009|20:54] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Flood Light Games
[02/03/2007|09:19] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\fltk.org
[11/12/2008|21:25] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Friday's games
[10/02/2009|00:29] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Games
[14/03/2009|12:37] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Google
[27/02/2008|15:02] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Grisoft
[30/01/2007|19:01] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Help
[25/09/2007|17:22] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\HP
[10/02/2007|17:03] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Hulabee
[24/09/2007|22:00] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Identities
[11/04/2009|11:42] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Image Zone Express
[26/12/2006|23:34] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\InterVideo
[24/02/2008|22:35] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\iWin
[22/12/2008|12:44] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\JoyBits
[06/02/2008|18:51] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Lavasoft
[24/11/2006|09:56] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Leadertech
[01/02/2009|20:56] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Little Worlds Online
[06/02/2008|18:32] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Macromedia
[29/03/2009|00:01] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Microsoft
[22/02/2008|12:53] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Mozilla
[09/06/2007|16:13] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\MSNInstaller
[19/12/2008|17:38] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\PlayFirst
[07/09/2008|13:32] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Printer Info Cache
[17/04/2009|12:04] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Spyware Terminator
[02/04/2009|21:55] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Sun
[25/02/2008|08:12] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\URSE Games
[24/09/2007|23:50] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Windows Desktop Search
[21/07/2007|22:17] C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Yahoo! Messenger
[01/03/2008|00:28] C:\DOCUME~1\ERICKA~1\APPLIC~1\Grisoft
[27/10/2007|16:50] C:\DOCUME~1\ERICKA~1\APPLIC~1\HP
[26/12/2006|23:45] C:\DOCUME~1\ERICKA~1\APPLIC~1\Identities
[14/09/2006|10:07] C:\DOCUME~1\ERICKA~1\APPLIC~1\Macromedia
[27/10/2007|16:50] C:\DOCUME~1\ERICKA~1\APPLIC~1\Microsoft
[25/10/2008|13:28] C:\DOCUME~1\ERICKA~1\APPLIC~1\Spyware Terminator
[27/10/2007|16:49] C:\DOCUME~1\ERICKA~1\APPLIC~1\Windows Desktop Search
[25/10/2008|20:50] C:\DOCUME~1\GUILLA~1\APPLIC~1\AlterLab
[14/09/2006|10:07] C:\DOCUME~1\GUILLA~1\APPLIC~1\Macromedia
[26/12/2006|23:45] C:\DOCUME~1\GUILLA~1\APPLIC~1\Microsoft
[26/12/2006|23:47] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[14/09/2006|10:07] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
[26/12/2006|23:47] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[24/03/2008|11:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
[07/01/2008|19:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[23/03/2009|19:12] C:\DOCUME~1\NETWOR~1\APPLIC~1\Adobe
[23/03/2009|20:55] C:\DOCUME~1\NETWOR~1\APPLIC~1\Macromedia
[24/03/2009|21:34] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[17/04/2009 12:24][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachine.job
[17/04/2009 12:19][--a------] C:\WINDOWS\tasks\Google Software Updater.job
[13/04/2009 12:24][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[17/04/2009 12:29][--ah-----] C:\WINDOWS\tasks\{F897AA24-BDC3-11D1-B85B-00C04FB93981}_NOM-AA766E5D725_Guillaume LAGOUE.job
[17/04/2009 10:48][--a------] C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job
[17/04/2009 09:01][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 16:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[15/10/2008|22:17] C:\Program Files\$NtUninstallKB957095$
[25/03/2009|17:08] C:\Program Files\360desktop
[26/03/2009|18:09] C:\Program Files\Adobe
[15/02/2009|22:00] C:\Program Files\Andre Agassi Tennis
[26/12/2006|23:45] C:\Program Files\AOL 9.0
[27/02/2008|01:18] C:\Program Files\AOL 9.0a
[15/02/2009|22:00] C:\Program Files\AOL 9.0b
[25/02/2008|08:40] C:\Program Files\AOL Toolbar
[18/08/2008|00:47] C:\Program Files\Apple Software Update
[06/09/2008|23:07] C:\Program Files\a-squared Free
[27/02/2008|17:32] C:\Program Files\AusLogics Disk Defrag
[27/02/2008|22:37] C:\Program Files\Avira
[08/08/2008|15:09] C:\Program Files\AviSynth 2.5
[07/08/2008|10:04] C:\Program Files\AVS4YOU
[11/12/2008|21:10] C:\Program Files\bfgclient
[15/02/2008|00:15] C:\Program Files\Bonjour
[14/11/2007|16:44] C:\Program Files\Borland
[25/03/2009|12:54] C:\Program Files\CCleaner
[18/08/2008|00:47] C:\Program Files\CDex_170b2
[06/12/2007|20:45] C:\Program Files\Club-Internet
[22/01/2009|13:48] C:\Program Files\C-Media
[04/11/2007|00:53] C:\Program Files\Compil Games
[14/09/2006|09:10] C:\Program Files\ComPlus Applications
[21/11/2008|10:55] C:\Program Files\Dame de Piques
[24/10/2007|18:11] C:\Program Files\DJ
[25/03/2008|15:35] C:\Program Files\DJ Mix Pro
[31/10/2008|22:36] C:\Program Files\DVD Decrypter
[06/02/2008|18:50] C:\Program Files\Emoticon +++
[25/03/2009|10:10] C:\Program Files\Enigma Software Group
[08/08/2008|15:08] C:\Program Files\eRightSoft
[24/03/2009|20:35] C:\Program Files\Feeding Frenzy
[11/04/2009|16:51] C:\Program Files\Fichiers communs
[06/02/2008|18:50] C:\Program Files\FLV Player
[06/02/2008|18:50] C:\Program Files\FLVPlayer
[21/11/2008|10:22] C:\Program Files\Free Audio Pack
[06/02/2008|18:51] C:\Program Files\Free Fire Screensaver
[29/03/2009|19:34] C:\Program Files\Gamenext
[09/04/2009|21:41] C:\Program Files\Google
[27/02/2008|15:01] C:\Program Files\Grisoft
[27/09/2007|18:49] C:\Program Files\Hewlett-Packard
[02/01/2009|21:04] C:\Program Files\HP
[31/10/2007|10:47] C:\Program Files\Ihsv
[20/06/2008|13:53] C:\Program Files\InstallShield Installation Information
[16/04/2009|13:06] C:\Program Files\Internet Explorer
[31/12/2006|19:54] C:\Program Files\InterVideo
[20/06/2008|14:24] C:\Program Files\iTunes
[26/03/2009|18:26] C:\Program Files\Java
[27/03/2009|23:04] C:\Program Files\Last.fm
[06/02/2008|18:51] C:\Program Files\Lavasoft
[26/07/2008|14:31] C:\Program Files\Magicbit
[25/03/2009|14:38] C:\Program Files\Malwarebytes' Anti-Malware
[10/07/2008|18:50] C:\Program Files\Mes Jeux Téléchargés
[22/03/2009|20:07] C:\Program Files\Messenger
[27/09/2008|12:39] C:\Program Files\Messenger Plus! Live
[10/06/2007|18:23] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[14/09/2006|09:12] C:\Program Files\microsoft frontpage
[02/12/2008|14:53] C:\Program Files\Microsoft Office
[24/09/2007|22:00] C:\Program Files\Microsoft SQL Server Compact Edition
[08/08/2008|14:36] C:\Program Files\MIKSOFT
[18/07/2008|10:47] C:\Program Files\Movie Maker
[17/10/2008|18:03] C:\Program Files\Mozilla Firefox
[15/02/2008|18:17] C:\Program Files\MP3 Player Utilities 3.57
[26/08/2007|20:45] C:\Program Files\MSN
[14/09/2006|09:09] C:\Program Files\MSN Gaming Zone
[15/06/2007|11:41] C:\Program Files\MSXML 4.0
[24/03/2009|20:35] C:\Program Files\Naval Strike
[18/07/2008|10:42] C:\Program Files\NetMeeting
[26/03/2009|20:11] C:\Program Files\NOS
[21/03/2009|21:56] C:\Program Files\Oberon Media
[14/09/2006|09:09] C:\Program Files\Online Services
[10/02/2007|16:37] C:\Program Files\orange
[01/04/2009|23:29] C:\Program Files\Outlook Express
[08/08/2008|22:59] C:\Program Files\Player Metaboli
[19/12/2008|13:01] C:\Program Files\PlayFirst
[31/03/2009|18:29] C:\Program Files\Pvm
[22/03/2009|20:08] C:\Program Files\QuickTime
[20/11/2006|15:59] C:\Program Files\Raccourcis de programmes
[22/03/2009|16:09] C:\Program Files\Radio Fr Solo
[17/10/2008|18:39] C:\Program Files\Read Only Remover
[12/05/2007|23:32] C:\Program Files\Real
[29/12/2008|22:13] C:\Program Files\RealArcade
[24/08/2008|23:19] C:\Program Files\Recuva
[23/04/2008|20:43] C:\Program Files\ReflexiveArcade
[25/03/2009|17:08] C:\Program Files\Replay Converter
[06/02/2008|18:50] C:\Program Files\Replay Media Catcher
[22/11/2007|12:08] C:\Program Files\Samsung
[06/02/2007|13:03] C:\Program Files\Securitoo
[14/09/2006|09:10] C:\Program Files\Services en ligne
[06/02/2008|18:50] C:\Program Files\ShiftCast
[11/04/2009|08:47] C:\Program Files\Spyware Terminator
[28/09/2008|16:53] C:\Program Files\TomCat Soft
[24/03/2009|21:58] C:\Program Files\Trend Micro
[09/04/2009|14:07] C:\Program Files\TubeMaster
[25/03/2009|17:13] C:\Program Files\TVUPlayer
[14/09/2006|09:15] C:\Program Files\Uninstall Information
[21/08/2008|20:02] C:\Program Files\Universal Boxing Manager
[25/02/2008|10:22] C:\Program Files\Valusoft
[26/12/2006|23:34] C:\Program Files\viewsonic
[23/03/2009|15:19] C:\Program Files\Vista Buttons Trial
[17/04/2009|12:40] C:\Program Files\Wanadoo
[19/07/2008|17:36] C:\Program Files\WIDCOMM
[25/03/2009|17:08] C:\Program Files\WinAVI MP4 Converter
[24/09/2007|21:59] C:\Program Files\Windows Desktop Search
[27/02/2008|19:48] C:\Program Files\Windows Live
[25/03/2009|17:13] C:\Program Files\Windows Live Toolbar
[25/03/2009|17:13] C:\Program Files\Windows Media Connect 2
[28/01/2009|23:02] C:\Program Files\Windows Media Player
[18/07/2008|10:42] C:\Program Files\Windows NT
[14/09/2006|09:10] C:\Program Files\WindowsUpdate
[14/09/2006|09:12] C:\Program Files\xerox
[08/11/2008|11:44] C:\Program Files\Xilisoft
[23/03/2009|15:25] C:\Program Files\X'nBeep 1.1
[14/09/2006|10:07] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[26/03/2009|18:10] C:\Program Files\Fichiers communs\Adobe
[12/05/2007|23:42] C:\Program Files\Fichiers communs\AOL
[12/05/2007|23:42] C:\Program Files\Fichiers communs\aolshare
[15/02/2008|00:12] C:\Program Files\Fichiers communs\Apple
[26/07/2008|15:05] C:\Program Files\Fichiers communs\AVSMedia
[25/06/2008|19:07] C:\Program Files\Fichiers communs\BOONTY Shared
[20/06/2007|15:24] C:\Program Files\Fichiers communs\Designer
[27/02/2008|01:20] C:\Program Files\Fichiers communs\DirectX
[12/06/2007|12:39] C:\Program Files\Fichiers communs\Hewlett-Packard
[02/10/2007|14:33] C:\Program Files\Fichiers communs\HP
[26/12/2006|23:45] C:\Program Files\Fichiers communs\InstallShield
[26/12/2006|23:46] C:\Program Files\Fichiers communs\InterVideo
[05/03/2009|18:35] C:\Program Files\Fichiers communs\Microsoft Shared
[14/09/2006|09:10] C:\Program Files\Fichiers communs\MSSoap
[20/04/2008|18:42] C:\Program Files\Fichiers communs\Oberon Media
[14/09/2006|11:06] C:\Program Files\Fichiers communs\ODBC
[12/05/2007|23:42] C:\Program Files\Fichiers communs\Real
[27/02/2008|01:20] C:\Program Files\Fichiers communs\Sandlot Shared
[21/11/2008|08:37] C:\Program Files\Fichiers communs\Services
[14/09/2006|11:06] C:\Program Files\Fichiers communs\SpeechEngines
[26/12/2006|23:46] C:\Program Files\Fichiers communs\Symantec Shared
[18/07/2008|10:58] C:\Program Files\Fichiers communs\System
[20/11/2006|17:16] C:\Program Files\Fichiers communs\Ulead Systems
[11/04/2009|16:51] C:\Program Files\Fichiers communs\Windows Live
[24/03/2008|20:12] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[23/03/2009|15:44] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 54 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-17 12:42:08
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 3
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\ELODIE~1.NOM\Mes documents\Ma musique\kpop\Tae_Yang_-_Cracks_Of_My_Broken_Heart.avi
C:\DOCUME~1\ELODIE~1.NOM\Mes documents\Mes vidéos\Tae_Yang_-_Cracks_Of_My_Broken_Heart.avi
[F:456][D:69]-> C:\DOCUME~1\ELODIE~1.NOM\LOCALS~1\Temp
[F:10][D:0]-> C:\DOCUME~1\ELODIE~1.NOM\Cookies
[F:324][D:4]-> C:\DOCUME~1\ELODIE~1.NOM\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 29/03/2009|18:34 - Option : [2]
2 - "C:\Lop SD\LopR_2.txt" - 17/04/2009|12:44 - Option : [1]
--------------------\\ Fin du rapport a 12:44:10
Telecharges Toolscleaner2 sur ton bureau :
http://pc-system.fr/
- Cliques sur " Recherche " et patientes
- Ciques ensuites sur" supprimer " pour finaliser
- Clic sur exit >> un rapport sera généré, postes son contenu
Note : le rapport TC.txt se trouve également à la racine du disque C
-----------------------
http://pc-system.fr/
- Cliques sur " Recherche " et patientes
- Ciques ensuites sur" supprimer " pour finaliser
- Clic sur exit >> un rapport sera généré, postes son contenu
Note : le rapport TC.txt se trouve également à la racine du disque C
-----------------------
Je fermes ce topic et je demanderais aux moderateurs d'en faire autant, à chaque fois que je te demandes de passer toolscleaner, soit il n'y a pas de rapports, soit tu disparais...
- Débrouilles toi pour le reste...
- J'aimerais quand meme bien savoir ce que tu peux faire de ces outils, si ce n'est mettre en danger ton pc !
[Closed]
--------
- Débrouilles toi pour le reste...
- J'aimerais quand meme bien savoir ce que tu peux faire de ces outils, si ce n'est mettre en danger ton pc !
[Closed]
--------
Mon topic est il vraiment fermé ? :
Je poste le rapport toolscleaner2 au cas où :
[ Rapport ToolsCleaner version 2.3.5 (par A.Rothstein & dj QUIOU) ]
--> Recherche:
C:\lopR.txt: trouvé !
C:\TB.txt: trouvé !
C:\Lop SD: trouvé !
C:\Toolbar SD: trouvé !
C:\Rsit: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Bureau\lopR.txt: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\LopSD.exe: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\HJTInstall.exe: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\ToolBarSD.exe: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\UsbFix.exe: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\Rsit.exe: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\SmitFraudfix: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\Rapport\cleannavi.txt: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Recent\UsbFix.lnk: trouvé !
---------------------------------
--> Suppression:
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\LopSD.exe: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\HJTInstall.exe: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\ToolBarSD.exe: supprimé !
C:\lopR.txt: supprimé !
C:\TB.txt: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Bureau\lopR.txt: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\UsbFix.exe: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\Rsit.exe: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\Rapport\cleannavi.txt: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Recent\UsbFix.lnk: supprimé !
C:\Lop SD: supprimé !
C:\Toolbar SD: supprimé !
C:\Rsit: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\SmitFraudfix: supprimé !
Je poste le rapport toolscleaner2 au cas où :
[ Rapport ToolsCleaner version 2.3.5 (par A.Rothstein & dj QUIOU) ]
--> Recherche:
C:\lopR.txt: trouvé !
C:\TB.txt: trouvé !
C:\Lop SD: trouvé !
C:\Toolbar SD: trouvé !
C:\Rsit: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Bureau\lopR.txt: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\LopSD.exe: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\HJTInstall.exe: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\ToolBarSD.exe: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\UsbFix.exe: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\Rsit.exe: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\SmitFraudfix: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\Rapport\cleannavi.txt: trouvé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Recent\UsbFix.lnk: trouvé !
---------------------------------
--> Suppression:
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\LopSD.exe: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\HJTInstall.exe: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\ToolBarSD.exe: supprimé !
C:\lopR.txt: supprimé !
C:\TB.txt: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Bureau\lopR.txt: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\UsbFix.exe: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\Rsit.exe: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\Rapport\cleannavi.txt: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Recent\UsbFix.lnk: supprimé !
C:\Lop SD: supprimé !
C:\Toolbar SD: supprimé !
C:\Rsit: supprimé !
C:\Documents and Settings\Elodie LAGOUE.NOM-AA766E5D725\Mes documents\Philippe LAGOUE\SmitFraudfix: supprimé !
Pour clore ce débat sur Toolscleaner : Petit Souvenir
---------------------/
---------------------/
okay,
~dommage que ça soit parti en live comme ça~; j'avais demandé si c'était pas grave pour le tools (okay on clot le débat, mais j'avais demandé); bon ben ça sera ma leçon d'aujourd'hui ; je ferais plus gaffe la prochaine fois ;
encore une fois je ne cherchais pas à te facher ... surtout que tu m'as bien aidé...
~dommage que ça soit parti en live comme ça~; j'avais demandé si c'était pas grave pour le tools (okay on clot le débat, mais j'avais demandé); bon ben ça sera ma leçon d'aujourd'hui ; je ferais plus gaffe la prochaine fois ;
encore une fois je ne cherchais pas à te facher ... surtout que tu m'as bien aidé...
Ok, et pour ne pas te laisser dans le desarroi... Tu peux scanner ton Pc avec Malwarebytes en ayant pris soin de faire la mise à jour du programme avant... ( si tu ne l'as jamais fais, il est conseillé de faire au moins 1 fois un scan complet...)
- Puis passer Ccleaner --> Cliquer sur " Nettoyeur " puis sur Analyse et Nettoyage
--> Cliquer sur " Registre " --> Chercher des erreurs --> puis réparer les erreurs ( répeter l'operation jusqu'à ce qu'il n'y ai plus d'erreurs...) sauvegarder le registre et de le supprimer si tu penses que le pc va bien ( d'ici 2 à 3 jours par exemple...)
- Lancer un scan en mode sans echec avec Avira Antivir : sers toi de ceTuto afin de le parametrer correctement ( detections de Rootkits au démarrage, etc...)
- Eviter de telecharger tout et n'importe quoi sur le net, on réflechit puis on clique aprés...
- Verifier régulièrement les mises à jours de tes applications ( java, Adobe etc...) ainsi que tes programmes car lorsqu'ils ne sont pas à jour, ils représentent une faille de sécurité dont les vers, trojans, virus de tous genre raffolent...
--> pour cela, il existe ce programme Filehippo Updatechecker, il te suffit de l'installer et il t'indiquera ce qui n'est pas à jour sur ton pc...
- Et enfin, mettre le topic en " Résolu " en cliquant sur le /!\ jaune puisque tu n'es pas membre et demander a ce que le topic soit mis en " résolu " afin de permettre aux internautes ayant un problème similaire de trouver une solution à leurs problèmes...
- Sans aucunes rancunes, je te souhaite bonne continuation et bon surf ! Salut
- Puis passer Ccleaner --> Cliquer sur " Nettoyeur " puis sur Analyse et Nettoyage
--> Cliquer sur " Registre " --> Chercher des erreurs --> puis réparer les erreurs ( répeter l'operation jusqu'à ce qu'il n'y ai plus d'erreurs...) sauvegarder le registre et de le supprimer si tu penses que le pc va bien ( d'ici 2 à 3 jours par exemple...)
- Lancer un scan en mode sans echec avec Avira Antivir : sers toi de ceTuto afin de le parametrer correctement ( detections de Rootkits au démarrage, etc...)
- Eviter de telecharger tout et n'importe quoi sur le net, on réflechit puis on clique aprés...
- Verifier régulièrement les mises à jours de tes applications ( java, Adobe etc...) ainsi que tes programmes car lorsqu'ils ne sont pas à jour, ils représentent une faille de sécurité dont les vers, trojans, virus de tous genre raffolent...
--> pour cela, il existe ce programme Filehippo Updatechecker, il te suffit de l'installer et il t'indiquera ce qui n'est pas à jour sur ton pc...
- Et enfin, mettre le topic en " Résolu " en cliquant sur le /!\ jaune puisque tu n'es pas membre et demander a ce que le topic soit mis en " résolu " afin de permettre aux internautes ayant un problème similaire de trouver une solution à leurs problèmes...
- Sans aucunes rancunes, je te souhaite bonne continuation et bon surf ! Salut
Voici le rapport toolsbar avec l'option 2 :
-----------\\ ToolBar S&D 1.2.8 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 3000+ )
BIOS : BIOS Date: 06/15/06 14:45:47 Ver: 08.00.12
USER : Elodie LAGOUE ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Not Activated)
Firewall : Norton Internet Worm Protection 2006 (Not Activated)
C:\ (Local Disk) - NTFS - Total:149 Go (Free:92 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( 14/04/2009| 0:36 )
-----------\\ SUPPRESSION
Supprime! - C:\Program Files\GamesBar\Localization-French.ini
Supprime! - C:\Program Files\GamesBar\Localization2-French.ini
Supprime! - C:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com
Supprime! - C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Search Settings\kb127
Supprime! - C:\Program Files\Search Settings\kb127
Supprime! - C:\WINDOWS\iun6002.exe
Supprime! - C:\Program Files\GamesBar
Supprime! - C:\DOCUME~1\ELODIE~1.NOM\APPLIC~1\Search Settings
Supprime! - C:\Program Files\Search Settings
-----------\\ Recherche de Fichiers / Dossiers ...
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\windows\\system32\\blank.htm"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"SearchMigratedDefaultURL"="https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&src={referrer:source?}"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Local Page"="C:\\windows\\system32\\blank.htm"
"Start Page"="https://www.msn.com/fr-fr/"
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\ELODIE~1.NOM\Mes documents\Ma musique\kpop\Tae_Yang_-_Cracks_Of_My_Broken_Heart.avi
C:\DOCUME~1\ELODIE~1.NOM\Mes documents\Mes vid‚os\Tae_Yang_-_Cracks_Of_My_Broken_Heart.avi
1 - "C:\ToolBar SD\TB_1.txt" - 12/04/2009|13:24 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 14/04/2009| 0:39 - Option : [2]
-----------\\ Fin du rapport a 0:39:09,71