Sujet Précédent Sujet Suivant

Problem de virus

Fermé
Dragsteur[BW] - 9 mai 2009 à 18:18
Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 - 13 mai 2009 à 07:41
Bonjour,
j'ai un virus dans mon PC. quand j'ouvre mon ordi. sa me dit toujours que mon parre feux n'est pas activer.
j'ai aussi un Jumper [m'amène sur des sites pas rapport quand je fait une recherche avec google ou yahoo]

Comme anti-virus j'ai Eset Nod 32. j'avais aussi spybot S&D. mais aucun des 2 na trouver le virus. mon Je ne suis meme plus capable d'ouvrire mon spybot. j'ai donc été cherche mon spysweeper. je l'ai instaler mais je ne suis pas capable de faire les mise a jours, un de mes ami ma conseillier C-cleaner. mais il na rien donner luis non plus

j'ai essaillier de booter avec UBCD [ultimate boot CD] mais je n'ai pas trouver d'outils d'analyse
j'ai aussi kasperski boot CD mais je ne sais pas comment il marche

je sais qu'il y a un moyen de rechercher les virus a la main dans le registre ou quelque chose du genre.

Je ne veux vraiment pas avoir a formater. Ce PC ma dejas couter 300$ réssament je ne veux pas avoir a le reformater apres sa.

Merci d'avance

27 réponses

  • 1
  • 2
Réponse 1 / 27
joemontain Messages postés 1037 Date d'inscription mercredi 24 novembre 2004 Statut Membre Dernière intervention 23 avril 2024 186
9 mai 2009 à 18:35
Salut,

une manière simple si tu as la possibilité d'utiliser un autre ordinateur, ta famille, tes amis, il te suffira de débrancher ton disque dur puis de le brancher en tant que donner sur un autre, encore mieux un dock (sorte de boitier externe pour disque dur, vous lancez ensuite une analyse antivirus.
0
Réponse 2 / 27
Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
9 mai 2009 à 18:46
Bonjour,

fais ceci (pour savoir par quoi tu es infecté et ce qui est infecté) :

Télécharge OTList2 de OLDTimer ici :

http://oldtimer.geekstogo.com/OTListIt2.exe

et enregistre le sur ton Bureau.

Double clic sur OTListIt2.exe pour le lancer.

Coche les 2 cases Lop et Purity

Coche la case devant "scan all users"

Clic sur Run Scan.

A la fin du scan, le Bloc-Notes va s'ouvrir avec le rapport.

Copie le dans une nouvelle réponse
0
Réponse 3 / 27
Utilisateur anonyme
9 mai 2009 à 18:46
Bonjour,

pour suivre.

A++
0
Réponse 4 / 27
Dragsteur[BW]
10 mai 2009 à 21:50
Oui merci du conseil je vais essaillier, car aujourd'huis il est devenu vraiment lent, et mon lecteur CD ma fait peur car il ne fonctionais plus.

Je ne peus pas mettre le driver allieur car ses un portable :S desoler de ne pas l'avoir dit avant.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 27
Dragsteur[BW]
10 mai 2009 à 22:05
Pour t'envoyer la liste, on pourrais pas faire sa par msn ou par email? j'aimerais mieux sa
0
Réponse 6 / 27
Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
10 mai 2009 à 22:30
Re,

je ne travaille que sur forum, ni par MSN, ni par email.
0
Réponse 7 / 27
Dragsteur[BW]
10 mai 2009 à 22:41
on dirais que sa veux pas marcher
0
Réponse 8 / 27
Dragsteur[BW]
10 mai 2009 à 22:58
OTListIt logfile created on: 10-05-2009 15:55:48 - Run 2
OTListIt2 by OldTimer - Version 2.0.15.6 Folder = C:\Documents and Settings\Gabriel\Bureau\internet
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000C0C | Country: Canada | Language: FRC | Date Format: dd/MM/yyyy

1014,04 Mb Total Physical Memory | 297,99 Mb Available Physical Memory | 29,39% Memory free
2,39 Gb Paging File | 1,80 Gb Available in Paging File | 75,24% Paging File free
Paging file location(s): c:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111,78 Gb Total Space | 20,95 Gb Free Space | 18,74% Space Free | Partition Type: NTFS
Drive D: | 681,00 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: GABRIEL-PORTABL
Current User Name: Gabriel
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Output = Standard
File Age = 30 Days
Company Name Whitelist: On

[color=orange]========== Processes (SafeList) ==========/color

PRC - [2008-04-14 15:03:54 | 00,342,624 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\ASUS\Bluetooth Software\bin\btwdins.exe
PRC - [2008-10-16 12:05:38 | 00,905,216 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
PRC - [2005-10-24 11:40:52 | 01,314,816 | ---- | M] (Avocent Inc.) -- C:\Acer\Empowering Technology\admServ.exe
PRC - [2007-10-25 04:26:34 | 00,455,936 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2008-10-16 12:26:20 | 00,860,160 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe
PRC - [2009-03-09 05:19:15 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2008-12-16 16:59:50 | 00,150,040 | ---- | M] (Logitech Inc.) -- C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
PRC - [2001-02-23 10:07:30 | 00,270,336 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
PRC - [2008-12-05 17:11:54 | 00,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
PRC - [2007-06-05 14:20:32 | 00,177,704 | ---- | M] () -- C:\WINDOWS\system32\PSIService.exe
PRC - [2008-10-16 11:54:34 | 00,466,944 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Fichiers communs\Intel\WirelessCommon\RegSrvc.exe
PRC - [2009-03-02 22:55:48 | 00,603,904 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TUProgSt.exe
PRC - [2006-08-03 19:50:02 | 03,068,928 | ---- | M] (Webroot Software, Inc.) -- C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
PRC - [2008-04-13 22:34:03 | 01,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE
PRC - [2008-04-13 22:34:28 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2007-09-26 18:05:58 | 00,734,264 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe
PRC - [2005-07-20 12:05:52 | 00,729,177 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2006-08-03 19:50:16 | 03,871,744 | ---- | M] (Webroot Software, Inc.) -- C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe
PRC - [2006-01-11 12:23:34 | 15,961,088 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2008-02-15 12:46:18 | 00,131,072 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxpers.exe
PRC - [2008-12-20 02:50:34 | 02,656,528 | ---- | M] () -- C:\Program Files\Logitech\QuickCam\Quickcam.exe
PRC - [2008-02-15 12:46:06 | 00,249,856 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxsrvc.exe
PRC - [2006-01-09 15:23:22 | 00,589,824 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LManager.exe
PRC - [2008-10-16 12:14:56 | 01,368,064 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe
PRC - [2008-10-16 11:55:42 | 01,191,936 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Fichiers communs\Intel\WirelessCommon\iFrmewrk.exe
PRC - [2008-06-10 07:56:32 | 01,406,024 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft IntelliPoint\ipoint.exe
PRC - [2008-02-15 12:46:46 | 00,135,168 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxtray.exe
PRC - [2008-02-15 12:46:46 | 00,159,744 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\hkcmd.exe
PRC - [2007-10-25 04:26:24 | 01,410,304 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2005-10-19 04:30:16 | 00,069,632 | ---- | M] (HiTRUST) -- C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
PRC - [2005-10-24 11:45:32 | 02,462,208 | ---- | M] (Avocent Inc.) -- C:\Acer\Empowering Technology\admtray.exe
PRC - [2009-03-09 05:19:17 | 00,148,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2008-02-15 12:46:16 | 00,163,840 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxext.exe
PRC - [2009-02-06 18:51:28 | 03,885,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
PRC - [2008-04-13 22:34:13 | 01,695,232 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe
PRC - [2008-12-29 06:40:30 | 00,687,560 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\daemon.exe
PRC - [2006-03-02 08:00:00 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\unsecapp.exe
PRC - [2008-12-20 02:46:58 | 00,558,864 | ---- | M] () -- C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe
PRC - [2008-04-14 15:03:54 | 00,596,584 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\ASUS\Bluetooth Software\BTTray.exe
PRC - [2008-04-13 22:34:28 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2009-02-11 17:38:51 | 00,625,952 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\Hamachi\hamachi.exe
PRC - [2008-04-14 15:03:54 | 01,448,576 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\ASUS\Bluetooth Software\BTStackServer.exe
PRC - [2009-02-07 19:45:29 | 00,500,224 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Documents and Settings\Gabriel\Local Settings\Temp\RtkBtMnt.exe
PRC - [2006-08-03 19:50:08 | 00,164,864 | ---- | M] () -- C:\Program Files\Webroot\Spy Sweeper\SSU.EXE
PRC - [2008-04-13 22:34:29 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe
PRC - [2009-02-06 17:07:48 | 00,027,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Contacts\wlcomm.exe
PRC - [2009-04-29 07:14:32 | 00,307,704 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009-05-10 15:51:23 | 00,501,248 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Gabriel\Bureau\internet\OTListIt2.exe
0
Réponse 9 / 27
Dragsteur[BW]
10 mai 2009 à 22:59
[color=orange]========== Win32 Services (SafeList) ==========/color

SRV - [2004-07-14 20:49:26 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
SRV - [2005-10-24 11:40:52 | 01,314,816 | ---- | M] (Avocent Inc.) -- C:\Acer\Empowering Technology\admServ.exe -- (AWService [Auto | Running])
SRV - [2008-04-14 15:03:54 | 00,342,624 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\ASUS\Bluetooth Software\bin\btwdins.exe -- (btwdins [Auto | Running])
SRV - [2007-10-25 04:27:56 | 00,018,176 | ---- | M] () -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv [On_Demand | Stopped])
SRV - [2007-10-25 04:26:34 | 00,455,936 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn [Auto | Running])
SRV - [2008-10-16 12:26:20 | 00,860,160 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng [Auto | Running])
SRV - [2008-04-13 22:33:38 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])
SRV - [2009-03-09 05:19:15 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running])
SRV - [2008-12-16 16:59:50 | 00,150,040 | ---- | M] (Logitech Inc.) -- C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv [Auto | Running])
SRV - [2009-04-21 15:36:50 | 00,216,232 | ---- | M] (CybelSoft) -- C:\Program Files\ma-config.com\maconfservice.exe -- (maconfservice [On_Demand | Stopped])
SRV - [2001-02-23 10:07:30 | 00,270,336 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe -- (MDM [Auto | Running])
SRV - [2008-12-05 17:11:54 | 00,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0 [Auto | Running])
SRV - [2007-06-05 14:20:32 | 00,177,704 | ---- | M] () -- C:\WINDOWS\system32\PSIService.exe -- (ProtexisLicensing [Auto | Running])
SRV - [2008-10-16 11:54:34 | 00,466,944 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Fichiers communs\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc [Auto | Running])
SRV - [2008-10-16 12:05:38 | 00,905,216 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\S24EvMon.exe -- (S24EventMonitor [Auto | Running])
SRV - [2009-03-02 22:55:44 | 00,362,240 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TuneUpDefragService.exe -- (TuneUp.Defrag [On_Demand | Stopped])
SRV - [2009-03-02 22:55:48 | 00,603,904 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TUProgSt.exe -- (TuneUp.ProgramStatisticsSvc [Auto | Running])
SRV - [2008-11-12 17:44:18 | 00,027,904 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll -- (UxTuneUp [Auto | Running])
SRV - [2006-08-03 19:50:02 | 03,068,928 | ---- | M] (Webroot Software, Inc.) -- C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe -- (WebrootSpySweeperService [Auto | Running])
SRV - [2006-11-03 04:59:14 | 00,918,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])

[color=orange]========== Driver Services (SafeList) ==========/color

DRV - [2005-10-31 17:16:00 | 00,045,312 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys -- (bcm4sbxp [On_Demand | Running])
DRV - [2008-04-15 12:13:58 | 00,534,440 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio [On_Demand | Running])
DRV - [2008-02-04 18:57:44 | 00,037,160 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\DRIVERS\btport.sys -- (BTDriver [On_Demand | Running])
DRV - [2008-04-15 12:14:02 | 00,990,632 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\DRIVERS\btkrnl.sys -- (BTKRNL [On_Demand | Running])
DRV - [2007-09-20 12:59:14 | 00,156,392 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\DRIVERS\btwdndis.sys -- (BTWDNDIS [On_Demand | Running])
DRV - [2008-03-10 19:18:42 | 00,057,384 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\DRIVERS\btwhid.sys -- (btwhid [On_Demand | Running])
DRV - [2008-03-27 18:18:12 | 00,047,272 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\System32\Drivers\btwusb.sys -- (BTWUSB [On_Demand | Running])
DRV - [2004-12-08 11:10:00 | 00,016,896 | ---- | M] (Dritek System Inc.) -- C:\WINDOWS\system32\DRIVERS\DKbFltr.sys -- (DKbFltr [On_Demand | Running])
DRV - [2009-04-21 15:39:26 | 00,014,336 | ---- | M] (CybelSoft) -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys -- (driverhardwarev2 [On_Demand | Stopped])
DRV - [2007-10-25 04:25:14 | 00,033,800 | ---- | M] (Eset ) -- C:\WINDOWS\system32\DRIVERS\eamon.sys -- (eamon [Auto | Running])
DRV - [2007-10-25 04:25:32 | 00,027,144 | ---- | M] (ESET) -- C:\WINDOWS\system32\DRIVERS\easdrv.sys -- (easdrv [System | Running])
DRV - [2005-11-17 14:20:02 | 00,060,928 | ---- | M] (ENE Technology Inc.) -- C:\WINDOWS\system32\DRIVERS\EMS7SK.sys -- (EMSCR [On_Demand | Running])
DRV - [2007-10-25 04:27:08 | 00,030,728 | ---- | M] () -- C:\WINDOWS\system32\DRIVERS\epfwtdir.sys -- (epfwtdir [System | Running])
DRV - [2005-04-22 11:57:06 | 00,004,096 | ---- | M] (Acer Value Labs, USA) -- C:\WINDOWS\system32\drivers\epm-psd.sys -- (EpmPsd [Auto | Running])
DRV - [2005-04-22 11:57:06 | 00,078,208 | ---- | M] (Acer Value Labs, USA) -- C:\WINDOWS\system32\drivers\epm-shd.sys -- (EpmShd [Auto | Running])
DRV - [2005-11-17 14:20:12 | 00,037,888 | ---- | M] (ENE Technology Inc.) -- C:\WINDOWS\system32\DRIVERS\ESD7SK.sys -- (ESDCR [On_Demand | Running])
DRV - [2005-11-17 14:20:08 | 00,074,624 | ---- | M] (ENE Technology Inc.) -- C:\WINDOWS\system32\DRIVERS\ESM7SK.sys -- (ESMCR [On_Demand | Running])
DRV - [2009-02-11 17:38:53 | 00,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\system32\DRIVERS\hamachi.sys -- (hamachi [On_Demand | Running])
DRV - [2008-04-13 12:36:05 | 00,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\system32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])
DRV - [2008-02-15 13:12:06 | 05,854,752 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\DRIVERS\igxpmp32.sys -- (ialm [On_Demand | Running])
DRV - [2006-01-13 12:13:18 | 04,137,984 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService [On_Demand | Running])
DRV - [2008-12-16 16:58:54 | 00,025,624 | ---- | M] () -- C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys -- (LVPr2Mon [On_Demand | Running])
DRV - [2008-12-17 02:01:20 | 00,041,752 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta [On_Demand | Running])
DRV - [2005-09-13 10:34:40 | 00,004,392 | ---- | M] (OSA Technologies) -- C:\WINDOWS\System32\Drivers\NdisFilt.sys -- (NdisFilt [On_Demand | Running])
DRV - [2005-05-02 07:13:42 | 00,009,600 | ---- | M] () -- C:\WINDOWS\system32\DRIVERS\NETMNT.sys -- (NETMNT [On_Demand | Stopped])
DRV - [2008-11-17 02:23:16 | 03,636,864 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\DRIVERS\NETw5x32.sys -- (NETw5x32 [On_Demand | Running])
DRV - [2005-08-03 00:10:14 | 00,032,512 | ---- | M] (CACE Technologies) -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF [On_Demand | Stopped])
DRV - [2005-10-15 13:20:44 | 00,012,106 | ---- | M] (OSA Technologies) -- C:\WINDOWS\system32\drivers\OsaFsLoc.sys -- (OsaFsLoc [System | Running])
DRV - [2005-06-30 11:58:24 | 00,007,296 | ---- | M] (OSA Technologies, An Avocent Company) -- C:\WINDOWS\system32\drivers\osaio.sys -- (osaio [Auto | Running])
DRV - [2005-01-14 10:57:16 | 00,004,010 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\system32\drivers\osanbm.sys -- (osanbm [Auto | Running])
DRV - [2008-12-17 01:54:30 | 00,495,640 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\system32\DRIVERS\LV561AV.SYS -- (PID_0928 [On_Demand | Running])
DRV - [2008-12-04 06:34:32 | 00,027,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\point32.sys -- (Point32 [On_Demand | Running])
DRV - [2006-03-02 08:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
DRV - [2008-08-13 11:23:56 | 00,011,904 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\DRIVERS\s24trans.sys -- (s24trans [Auto | Running])
DRV - [2008-04-13 12:39:15 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])
DRV - [2005-08-10 08:44:04 | 00,050,688 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01 [Boot | Running])
DRV - [2005-05-16 09:20:39 | 00,006,656 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02 [Boot | Running])
DRV - [2004-12-03 06:20:41 | 00,020,544 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02 [Boot | Running])
DRV - [2005-12-12 15:12:01 | 00,049,664 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfsync04.sys -- (sfsync04 [Boot | Running])
DRV - [2009-04-21 23:10:49 | 00,717,296 | ---- | M] () -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [Boot | Running])
DRV - [2006-08-03 19:33:18 | 00,013,824 | ---- | M] (Webroot Software Inc (www.webroot.com)) -- C:\WINDOWS\SYSTEM32\Drivers\SSFS0509.SYS -- (SSFS0509 [Boot | Running])
DRV - [2006-08-03 19:33:22 | 00,015,360 | ---- | M] (Webroot Software Inc (www.webroot.com)) -- C:\WINDOWS\SYSTEM32\Drivers\SSHRMD.SYS -- (SSHRMD [Boot | Running])
DRV - [2006-08-03 19:33:14 | 00,117,248 | ---- | M] (Webroot Software Inc (www.webroot.com)) -- C:\WINDOWS\SYSTEM32\Drivers\SSIDRV.SYS -- (SSIDRV [Boot | Running])
DRV - [2006-08-03 19:33:20 | 00,014,848 | ---- | M] (Webroot Software Inc (www.webroot.com)) -- C:\WINDOWS\System32\Drivers\sskbfd.sys -- (SSKBFD [On_Demand | Running])
DRV - [2005-07-20 11:53:54 | 00,190,592 | ---- | M] (Synaptics, Inc.) -- C:\WINDOWS\system32\DRIVERS\SynTP.sys -- (SynTP [On_Demand | Running])
DRV - [2008-04-13 14:45:12 | 00,060,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio [On_Demand | Stopped])
DRV - [2005-12-04 19:55:30 | 01,428,096 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\system32\DRIVERS\w39n51.sys -- (w39n51 [On_Demand | Stopped])
DRV - [2006-10-13 18:48:24 | 00,050,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\xusb20.sys -- (xusb20 [On_Demand | Stopped])
DRV - [2007-02-26 17:15:22 | 00,061,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\xusb21.sys -- (xusb21 [On_Demand | Stopped])

[color=orange]========== Standard Registry (SafeList) ==========/color


[color=orange]========== Internet Explorer ==========/color

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm


IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2052111302-162531612-682003330-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKU\S-1-5-21-2052111302-162531612-682003330-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKU\S-1-5-21-2052111302-162531612-682003330-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
IE - HKU\S-1-5-21-2052111302-162531612-682003330-1005\S-1-5-21-2052111302-162531612-682003330-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
0
Réponse 10 / 27
Dragsteur[BW]
10 mai 2009 à 23:01
[color=orange]========== FireFox ==========/color

FF - prefs.js..browser.startup.homepage: "http://www.youtube.com/my_favorites?pi=0&ps=20&sf=none&sa=0&sq=&dm=1|http://beast-warrior.tk/|https://app.photobucket.com/|https://accounts.google.com/ServiceLogin?service=mail&passive=true&rm=false&continue=https://mail.google.com/mail/&ss=1&scc=1<mpl=default<mplcache=2&emr=1&osid=1#inbox"
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.0.7.0088
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {bb628310-0ab7-11db-9cd8-0800200c9a66}:3.1.2.1
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.5.200812101546
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.10


FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2009-02-08 15:58:18 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Components: C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS [2009-04-29 07:14:35 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Plugins: C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS [2009-04-29 07:14:35 | 00,000,000 | ---D | M]

[2009-02-11 22:28:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Gabriel\Application Data\mozilla\Extensions
[2009-02-08 15:54:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Gabriel\Application Data\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009-02-11 22:28:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Gabriel\Application Data\mozilla\Extensions\mozswing@mozswing.org
[2009-05-10 13:11:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Gabriel\Application Data\mozilla\Firefox\Profiles\q62k8jw0.default\extensions
[2009-03-31 11:16:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Gabriel\Application Data\mozilla\Firefox\Profiles\q62k8jw0.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2009-04-22 23:51:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Gabriel\Application Data\mozilla\Firefox\Profiles\q62k8jw0.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2009-04-22 23:51:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Gabriel\Application Data\mozilla\Firefox\Profiles\q62k8jw0.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}
[2009-04-21 23:14:58 | 00,000,523 | ---- | M] () -- C:\Documents and Settings\Gabriel\Application Data\Mozilla\FireFox\Profiles\q62k8jw0.default\searchplugins\daemon-search.xml
[2009-05-10 13:11:04 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009-04-29 07:14:32 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009-02-08 15:58:26 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
[2009-05-02 18:57:33 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
[2009-04-29 07:14:32 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009-04-29 07:14:32 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2006-09-10 07:35:08 | 00,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2008-09-28 03:10:26 | 00,000,757 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2008-04-16 00:08:20 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2006-09-10 07:35:08 | 00,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDICO-fr.xml
[2008-03-29 09:59:44 | 00,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2006-09-12 14:49:04 | 00,000,652 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

O1 HOSTS File: (292194 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 10060 more lines...
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx ()
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-2052111302-162531612-682003330-1005\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O4 - HKLM..\Run: [ADMTray.exe] "C:\Acer\Empowering Technology\admtray.exe" (Avocent Inc.)
O4 - HKLM..\Run: [Alcmtr] ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AzMixerSel] "C:\Program Files\Realtek\InstallShield\AzMixerSel.exe" (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [eDataSecurity Loader] "C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe" (HiTRUST)
O4 - HKLM..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice (ESET)
O4 - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [IntelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe" (Microsoft Corporation)
O4 - HKLM..\Run: [IntelWireless] "C:\Program Files\Fichiers communs\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray (Intel(R) Corporation)
O4 - HKLM..\Run: [IntelZeroConfig] "C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe" (Intel(R) Corporation)
O4 - HKLM..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide ()
O4 - HKLM..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [RTHDCPL] RTHDCPL.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe" /startintray (Webroot Software, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPEnh] "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" (Synaptics, Inc.)
O4 - HKLM..\Run: [XboxStat] "c:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun (Microsoft Corporation)
O4 - HKU\S-1-5-21-2052111302-162531612-682003330-1005..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun (DT Soft Ltd)
O4 - HKU\S-1-5-21-2052111302-162531612-682003330-1005..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (Microsoft Corporation)
O4 - HKU\S-1-5-21-2052111302-162531612-682003330-1005..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\BTTray.lnk = C:\Program Files\ASUS\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\Gabriel\Menu Démarrer\Programmes\Démarrage\hamachi.lnk = C:\Program Files\Hamachi\hamachi.exe (LogMeIn Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2052111302-162531612-682003330-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office10\EXCEL.EXE/3000 (Microsoft Corporation)
O8 - Extra context menu item: Envoyer à Bluetooth - C:\Program Files\ASUS\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\ASUS\Bluetooth Software\btsendto_ie_ctx.htm ()
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ASUS\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ASUS\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll (Intertrust Technologies, Inc.)
O15 - HKLM\..Trusted Domains: 49 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\.DEFAULT\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-18\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-21-2052111302-162531612-682003330-1005\..Trusted Domains: 50 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} http://fichiers.touslesdrivers.com/maconfig/MaConfig_3_1_2_1.cab (HardwareDetection Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.112.229,85.255.112.140
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Interfaces\{C51CCF61-1331-4E83-A4EF-93DDFC308FAF}\\NameServer = 85.255.112.229,85.255.112.140
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Interfaces\{D5CE36DB-F081-4C6B-982D-DB61DD3601C9}\\NameServer = 85.255.112.229,85.255.112.140
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Interfaces\{ECE5208A-C8D8-4194-8185-9DA28AC728BA}\\NameServer = 85.255.112.229,85.255.112.140
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Interfaces\{F9AFE323-0FD3-48A8-870D-5D4A50E2C062}\\NameServer = 85.255.112.229,85.255.112.140
O18 - Protocol\Handler\cdo {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (C:\Documents) - File not found
O20 - HKLM Winlogon: UIHost - (and) - File not found
O20 - HKLM Winlogon: UIHost - (Settings\All) - File not found
O20 - HKLM Winlogon: UIHost - (Users\Application) - File not found
O20 - HKLM Winlogon: UIHost - (Data\TuneUp) - File not found
O20 - HKLM Winlogon: UIHost - (Software\TuneUp) - File not found
O20 - HKLM Winlogon: UIHost - (Utilities\WinStyler\tu_logonui.exe) - File not found
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\WRNotifier: DllName - WRLogonNTF.dll - C:\WINDOWS\system32\WRLogonNTF.dll (Webroot Software, Inc.)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-02-07 17:30:47 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006-02-21 08:55:02 | 00,225,280 | R--- | M] () - D:\Autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2006-03-01 04:40:58 | 00,000,046 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
0
Réponse 11 / 27
Dragsteur[BW]
10 mai 2009 à 23:07
[color=orange]========== Files/Folders - Created Within (All) ==========/color

[15 C:\WINDOWS\System32\*.tmp files]
[13 C:\WINDOWS\*.tmp files]
[2009-05-08 11:21:55 | 00,129,024 | ---- | C] () -- C:\Documents and Settings\All Users\Documents\Annexe Cg.xls
[2009-05-08 11:21:43 | 09,049,600 | ---- | C] () -- C:\Documents and Settings\All Users\Documents\Relevé gabriel.doc
[2009-05-08 11:21:40 | 00,208,468 | ---- | C] () -- C:\Documents and Settings\All Users\Documents\Gabriel 08h.pdf
[2009-05-05 10:25:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Trymedia
[2009-05-05 10:24:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\InstallShield
[2009-05-05 10:19:27 | 00,073,728 | ---- | C] (Macrovision Corporation) -- C:\WINDOWS\System32\ISUSPM.cpl
[2009-05-04 23:35:39 | 00,000,000 | ---D | C] -- C:\Program Files\Monte Cristo
[2009-05-04 20:32:41 | 00,000,000 | ---D | C] -- C:\Program Files\Kudosoft
[2009-05-02 18:57:10 | 00,148,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2009-05-02 18:57:10 | 00,144,792 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2009-05-02 18:57:10 | 00,144,792 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2009-04-30 14:25:08 | 00,000,471 | ---- | C] () -- C:\Documents and Settings\Gabriel\Bureau\Ma musique.lnk
[2009-04-28 23:23:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\drole
[2009-04-28 12:05:53 | 00,000,490 | ---- | C] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2009-04-26 20:51:47 | 00,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009-04-26 20:50:40 | 00,001,740 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk
[2009-04-26 20:50:14 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2009-04-26 20:50:14 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Designer
[2009-04-26 20:49:09 | 00,000,000 | ---D | C] -- C:\WINDOWS\ShellNew
[2009-04-26 20:49:05 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2009-04-22 12:36:34 | 00,035,328 | ---- | C] () -- C:\Documents and Settings\All Users\Documents\Gaby.doc
[2009-04-21 23:16:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\DAEMON Tools Pro
[2009-04-21 23:16:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\DAEMON Tools
[2009-04-21 23:15:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2009-04-21 23:14:59 | 00,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Toolbar
[2009-04-21 23:14:52 | 00,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\DAEMON Tools Lite.lnk
[2009-04-21 23:14:38 | 00,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2009-04-21 23:10:48 | 00,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009-04-21 23:10:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\DAEMON Tools Lite
[2009-04-21 22:20:28 | 00,000,000 | ---D | C] -- C:\Program Files\Konami
[2009-04-21 16:16:51 | 00,000,000 | ---D | C] -- C:\Program Files\3D Maze ScreenSaver
[2009-04-20 12:00:39 | 00,000,000 | ---D | C] -- C:\Logs
[2009-04-20 10:46:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Bureau\internet
[2009-04-19 23:30:36 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Blizzard Entertainment
[2009-04-19 23:30:31 | 00,000,000 | ---D | C] -- C:\Program Files\World of Warcraft
[2009-04-17 22:50:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Nouveau dossier
[2009-04-16 11:27:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\Empire Earth II The Art of Supremacy
[2009-04-16 11:27:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Sierra
[2009-04-16 10:29:05 | 00,000,000 | ---D | C] -- C:\Program Files\Sierra
[2009-04-16 09:12:00 | 00,000,715 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\BTTray.lnk
[2009-04-16 09:12:00 | 00,000,644 | ---- | C] () -- C:\Documents and Settings\Gabriel\Menu Démarrer\Programmes\Démarrage\hamachi.lnk
[2009-04-16 09:07:21 | 00,000,000 | ---D | C] -- C:\WINDOWS\pss
[2009-04-13 22:03:23 | 00,719,872 | ---- | C] (Abysmal Software) -- C:\WINDOWS\System32\devil.dll
[2009-04-13 22:03:23 | 00,318,976 | ---- | C] (The Public) -- C:\WINDOWS\System32\avisynth.dll
[2009-04-13 22:03:23 | 00,070,656 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\i420vfw.dll
[2009-04-13 22:03:23 | 00,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2009-04-13 22:03:23 | 00,000,000 | ---D | C] -- C:\Program Files\AviSynth 2.5
[2009-04-13 22:02:37 | 00,227,328 | RHS- | C] () -- C:\WINDOWS\System32\ac3DX.ax
[2009-04-13 22:02:37 | 00,216,064 | RHS- | C] (MONOGRAM Multimedia, s.r.o.) -- C:\WINDOWS\System32\nbDX.dll
[2009-04-13 22:02:37 | 00,186,880 | RHS- | C] (RadLight) -- C:\WINDOWS\System32\RLOgg.ax
[2009-04-13 22:02:37 | 00,179,200 | RHS- | C] (Gabest) -- C:\WINDOWS\System32\DiracSplitter.ax
[2009-04-13 22:02:37 | 00,175,104 | RHS- | C] () -- C:\WINDOWS\System32\CoreAAC.ax
[2009-04-13 22:02:37 | 00,169,472 | RHS- | C] (Gabest) -- C:\WINDOWS\System32\MatroskaDX.ax
[2009-04-13 22:02:37 | 00,163,328 | RHS- | C] (Gabest) -- C:\WINDOWS\System32\flvDX.dll
[2009-04-13 22:02:37 | 00,161,792 | RHS- | C] (Gabest) -- C:\WINDOWS\System32\RealMediaDX.ax
[2009-04-13 22:02:37 | 00,123,904 | RHS- | C] (CoreCodec) -- C:\WINDOWS\System32\AVCDX.ax
[2009-04-13 22:02:37 | 00,092,672 | RHS- | C] (RadLight) -- C:\WINDOWS\System32\RLVorbisDec.ax
[2009-04-13 22:02:37 | 00,081,920 | RHS- | C] () -- C:\WINDOWS\System32\aac_parser.ax
[2009-04-13 22:02:37 | 00,067,584 | RHS- | C] (RadLight, LLC) -- C:\WINDOWS\System32\RLTheoraDec.ax
[2009-04-13 22:02:37 | 00,054,784 | RHS- | C] (RadLight) -- C:\WINDOWS\System32\RLAPEDec.ax
[2009-04-13 22:02:37 | 00,051,712 | RHS- | C] () -- C:\WINDOWS\System32\RLSpeexDec.ax
[2009-04-13 22:02:37 | 00,037,888 | RHS- | C] (RadLight) -- C:\WINDOWS\System32\RLMPCDec.ax
[2009-04-13 22:02:37 | 00,031,232 | RHS- | C] (Hans Mayerl) -- C:\WINDOWS\System32\msfDX.dll
[2009-04-13 22:02:33 | 00,000,000 | ---D | C] -- C:\Program Files\eRightSoft
[2009-04-12 17:12:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\EA Games
[2009-04-12 16:58:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\EA Games
[2009-04-12 16:22:27 | 00,000,000 | ---D | C] -- C:\Program Files\EA GAMES
[2009-04-09 23:11:20 | 00,000,000 | ---D | C] -- C:\Program Files\Incomplete
[2009-04-08 18:42:31 | 00,000,749 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Spy Sweeper.lnk
[2009-04-08 18:42:24 | 00,020,992 | ---- | C] () -- C:\WINDOWS\System32\wrlzma.dll
[2009-04-08 18:42:22 | 00,008,704 | ---- | C] (Webroot Software Inc (www.webroot.com)) -- C:\WINDOWS\System32\ssiefr.EXE
[2009-04-08 18:42:22 | 00,000,000 | ---D | C] -- C:\Program Files\Webroot
[2009-04-08 18:42:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Webroot
[2009-04-08 18:41:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Webroot
[2009-04-07 12:09:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Hagel Technologies
[2009-04-06 19:56:49 | 00,000,000 | ---D | C] -- C:\Program Files\LucasArts
[2009-03-25 19:34:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Nintendulator
[2009-03-25 17:55:13 | 00,000,000 | ---D | C] -- C:\Program Files\Project64 1.6
[2009-03-25 13:02:38 | 00,000,000 | ---D | C] -- C:\Program Files\StepMania
[2009-03-23 21:33:47 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2009-03-23 21:33:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\microsoft
[2009-03-23 21:33:25 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2009-03-23 21:30:41 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Windows Live
[2009-03-17 21:28:11 | 00,001,588 | ---- | C] () -- C:\Documents and Settings\Gabriel\Bureau\LimeWire PRO 4.12.6.lnk
[2009-03-17 21:28:08 | 00,000,000 | ---D | C] -- C:\Program Files\LimeWire
[2009-03-17 13:41:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\GARMIN
[2009-03-17 13:40:48 | 00,000,000 | ---D | C] -- C:\Program Files\Garmin GPS Plugin
[2009-03-17 13:40:43 | 00,000,000 | ---D | C] -- C:\Program Files\Garmin
[2009-03-15 19:41:09 | 00,720,896 | ---- | C] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002ev.exe
[2009-03-13 20:12:35 | 00,000,000 | ---D | C] -- C:\Program Files\GTASAConsole
[2009-03-13 19:58:06 | 00,000,000 | ---D | C] -- C:\Program Files\San Andreas Mod Installer
[2009-03-11 21:27:53 | 00,000,000 | ---D | C] -- C:\Program Files\HappyIcon
[2009-03-08 19:22:43 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_xusb21_01001.Wdf
[2009-03-08 19:20:41 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_xusb20_01001.Wdf
[2009-03-08 19:20:39 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01001_Coinstaller_Critical.Wdf
[2009-03-08 19:04:50 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Xbox 360 Accessories
[2009-03-08 18:33:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\GTA San Andreas User Files
[2009-03-08 18:03:56 | 00,000,000 | ---D | C] -- C:\Program Files\Rockstar Games
[2009-03-08 12:27:06 | 00,000,000 | ---D | C] -- C:\Program Files\DU Meter
[2009-03-08 12:22:55 | 00,000,000 | ---D | C] -- C:\Program Files\StatnPerf
[2009-03-08 00:13:11 | 00,085,820 | ---- | C] () -- C:\WINDOWS\War3Unin.dat
[2009-03-08 00:13:10 | 00,139,264 | ---- | C] (Blizzard Entertainment) -- C:\WINDOWS\War3Unin.exe
[2009-03-08 00:13:10 | 00,002,829 | ---- | C] () -- C:\WINDOWS\War3Unin.pif
[2009-03-08 00:11:15 | 00,000,000 | ---D | C] -- C:\Program Files\Warcraft III
[2009-03-06 18:05:20 | 00,292,194 | R--- | C] () -- C:\WINDOWS\System32\drivers\etc\hosts.msn
[2009-03-03 13:39:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Bureau\100MSDCF
[2009-03-03 00:29:35 | 00,192,512 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc
[2009-03-03 00:29:35 | 00,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc
[2009-03-03 00:29:35 | 00,176,128 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc
[2009-03-03 00:29:35 | 00,172,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc
[2009-03-03 00:29:35 | 00,172,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc
[2009-03-03 00:29:35 | 00,163,840 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc
[2009-03-03 00:29:35 | 00,163,840 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxext.exe
[2009-03-03 00:29:34 | 00,188,416 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc
[2009-03-03 00:29:34 | 00,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc
[2009-03-03 00:29:34 | 00,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc
[2009-03-03 00:29:34 | 00,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc
[2009-03-03 00:29:34 | 00,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc
[2009-03-03 00:29:34 | 00,176,128 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc
[2009-03-03 00:29:34 | 00,126,976 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc
[2009-03-03 00:29:33 | 00,188,416 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc
[2009-03-03 00:29:33 | 00,188,416 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc
[2009-03-03 00:29:33 | 00,184,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc
[2009-03-03 00:29:33 | 00,176,128 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc
[2009-03-03 00:29:33 | 00,172,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc
[2009-03-03 00:29:33 | 00,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc
[2009-03-03 00:29:33 | 00,131,072 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc
[2009-03-03 00:29:32 | 00,192,512 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc
[2009-03-03 00:29:32 | 00,172,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc
[2009-03-03 00:29:32 | 00,159,744 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc
[2009-03-03 00:29:32 | 00,131,072 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpers.exe
[2009-03-03 00:29:32 | 00,110,592 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc
[2009-03-03 00:29:32 | 00,110,592 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc
[2009-03-03 00:29:31 | 00,159,744 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hkcmd.exe
[2009-03-03 00:29:30 | 00,163,840 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxzoom.exe
[2009-03-03 00:29:30 | 00,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxtray.exe
[2009-03-03 00:29:29 | 00,524,288 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe
[2009-03-03 00:29:29 | 00,122,880 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl
[2009-03-03 00:29:26 | 00,249,856 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.exe
[2009-03-03 00:29:24 | 00,027,024 | ---- | C] () -- C:\WINDOWS\System32\igxpxs32.vp
[2009-03-03 00:29:19 | 00,524,850 | R--- | C] () -- C:\WINDOWS\System32\igxpxa32.cpa
[2009-03-03 00:29:19 | 00,002,096 | ---- | C] () -- C:\WINDOWS\System32\igxpxk32.vp
[2009-03-03 00:29:19 | 00,000,929 | R--- | C] () -- C:\WINDOWS\System32\igxpxa32.vp
[2009-03-03 00:23:32 | 00,000,000 | -H-D | C] -- C:\WINDOWS\Icons
[2009-03-03 00:16:29 | 02,287,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TUKernel.exe
[2009-03-02 22:55:48 | 00,603,904 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TUProgSt.exe
[2009-03-02 22:55:44 | 00,362,240 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TuneUpDefragService.exe
[2009-03-02 22:55:35 | 00,001,617 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\TuneUp 1-Click Maintenance.lnk
[2009-03-02 22:55:34 | 00,001,545 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\TuneUp Utilities 2009.lnk
[2009-03-02 22:55:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software
[2009-03-02 22:55:14 | 00,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2009
[2009-03-02 22:54:59 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}
[2009-03-02 19:31:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\TuneUp Software
[2009-03-02 00:34:46 | 00,000,000 | ---D | C] -- C:\Program Files\ASUS
[2009-03-02 00:21:52 | 00,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2009-03-01 23:17:59 | 00,000,000 | ---D | C] -- C:\Program Files\VUGames
[2009-03-01 22:45:08 | 00,000,280 | ---- | C] () -- C:\WINDOWS\game.ini
[2009-03-01 22:36:32 | 00,000,000 | ---D | C] -- C:\Program Files\Activision
[2009-03-01 22:31:38 | 00,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache
[2009-02-28 03:02:34 | 00,000,372 | ---- | C] () -- C:\Documents and Settings\Gabriel\Bureau\Centre de sécurité.lnk
[2009-02-26 22:38:34 | 00,000,000 | ---D | C] -- C:\Program Files\Yu-Gi-Oh Virtual Battle 5
[2009-02-25 13:58:42 | 00,001,486 | ---- | C] () -- C:\Documents and Settings\Gabriel\Bureau\MagicISO.lnk
[2009-02-25 11:56:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Nero
[2009-02-25 11:20:00 | 00,004,767 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2009-02-25 11:17:17 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar
[2009-02-25 11:02:05 | 00,000,000 | ---D | C] -- C:\Program Files\Nero
[2009-02-25 11:01:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nero
[2009-02-25 11:01:31 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Nero
[2009-02-24 20:51:31 | 00,000,000 | ---D | C] -- C:\Program Files\MagicISO
[2009-02-23 17:16:43 | 00,000,000 | ---D | C] -- C:\Program Files\Eye On Network
[2009-02-23 15:15:02 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData
[2009-02-23 14:02:17 | 00,001,376 | ---- | C] () -- C:\Documents and Settings\Gabriel\Bureau\FreeYouTubeToMP3Converter.lnk
[2009-02-23 13:02:58 | 00,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2009-02-22 15:40:10 | 00,000,888 | ---- | C] () -- C:\Documents and Settings\Gabriel\Bureau\Acrobat Reader 5.0.lnk
[2009-02-22 15:37:06 | 00,000,000 | ---D | C] -- C:\Program Files\Serif
[2009-02-22 15:31:47 | 00,066,536 | ---- | C] () -- C:\WINDOWS\System32\Presws__.ttf
[2009-02-22 15:31:47 | 00,058,732 | ---- | C] () -- C:\WINDOWS\System32\Tt0939m_.ttf
[2009-02-22 15:31:47 | 00,050,100 | ---- | C] () -- C:\WINDOWS\System32\Tt0017m_.ttf
[2009-02-22 15:31:47 | 00,049,988 | ---- | C] () -- C:\WINDOWS\System32\Tt0015m_.ttf
[2009-02-22 15:31:47 | 00,048,340 | ---- | C] () -- C:\WINDOWS\System32\Tt0016m_.ttf
[2009-02-22 15:31:47 | 00,047,868 | ---- | C] () -- C:\WINDOWS\System32\Unicorn.ttf
[2009-02-22 15:31:47 | 00,047,448 | ---- | C] () -- C:\WINDOWS\System32\Teletype.ttf
[2009-02-22 15:31:47 | 00,045,252 | ---- | C] () -- C:\WINDOWS\System32\Tristan.ttf
[2009-02-22 15:31:47 | 00,045,196 | ---- | C] () -- C:\WINDOWS\System32\Vagabond.ttf
[2009-02-22 15:31:47 | 00,040,312 | ---- | C] () -- C:\WINDOWS\System32\Tubular.ttf
[2009-02-22 15:31:46 | 00,053,996 | ---- | C] () -- C:\WINDOWS\System32\Market.ttf
[2009-02-22 15:31:46 | 00,050,920 | ---- | C] () -- C:\WINDOWS\System32\Storyboo.ttf
[2009-02-22 15:31:46 | 00,047,468 | ---- | C] () -- C:\WINDOWS\System32\Tt0843m_.ttf
[2009-02-22 15:31:46 | 00,047,100 | ---- | C] () -- C:\WINDOWS\System32\Tt0841m_.ttf
[2009-02-22 15:31:46 | 00,046,852 | ---- | C] () -- C:\WINDOWS\System32\Tt0842m_.ttf
[2009-02-22 15:31:46 | 00,046,644 | ---- | C] () -- C:\WINDOWS\System32\Steamer.ttf
[2009-02-22 15:31:46 | 00,046,268 | ---- | C] () -- C:\WINDOWS\System32\Tt0844m_.ttf
[2009-02-22 15:31:46 | 00,045,812 | ---- | C] () -- C:\WINDOWS\System32\Subway.ttf
[2009-02-22 15:31:46 | 00,045,048 | ---- | C] () -- C:\WINDOWS\System32\Sherwood.ttf
[2009-02-22 15:31:46 | 00,043,748 | ---- | C] () -- C:\WINDOWS\System32\Oldcentu.ttf
[2009-02-22 15:31:46 | 00,039,472 | ---- | C] () -- C:\WINDOWS\System32\Poster.ttf
[2009-02-22 15:31:46 | 00,038,820 | ---- | C] () -- C:\WINDOWS\System32\Pickwick.ttf
[2009-02-22 15:31:46 | 00,038,780 | ---- | C] () -- C:\WINDOWS\System32\Sceptre.ttf
[2009-02-22 15:31:46 | 00,038,220 | ---- | C] () -- C:\WINDOWS\System32\Pegasus.ttf
[2009-02-22 15:31:46 | 00,037,664 | ---- | C] () -- C:\WINDOWS\System32\Signboar.ttf
[2009-02-22 15:31:46 | 00,033,988 | ---- | C] () -- C:\WINDOWS\System32\Socket.ttf
[2009-02-22 15:31:46 | 00,032,640 | ---- | C] () -- C:\WINDOWS\System32\Pythagor.ttf
[2009-02-22 15:31:45 | 00,056,688 | ---- | C] () -- C:\WINDOWS\System32\Jester.ttf
[2009-02-22 15:31:45 | 00,043,608 | ---- | C] () -- C:\WINDOWS\System32\Longisle.ttf
[2009-02-22 15:31:45 | 00,041,844 | ---- | C] () -- C:\WINDOWS\System32\Tt1115m_.ttf
[2009-02-22 15:31:45 | 00,040,792 | ---- | C] () -- C:\WINDOWS\System32\Heather.ttf
[2009-02-22 15:31:45 | 00,039,944 | ---- | C] () -- C:\WINDOWS\System32\Tt0307m_.ttf
[2009-02-22 15:31:45 | 00,039,796 | ---- | C] () -- C:\WINDOWS\System32\Tt0390m_.ttf
[2009-02-22 15:31:45 | 00,039,336 | ---- | C] () -- C:\WINDOWS\System32\Tt0391m_.ttf
[2009-02-22 15:31:45 | 00,038,888 | ---- | C] () -- C:\WINDOWS\System32\Tt0388m_.ttf
[2009-02-22 15:31:45 | 00,038,812 | ---- | C] () -- C:\WINDOWS\System32\Tt0306m_.ttf
[2009-02-22 15:31:45 | 00,038,360 | ---- | C] () -- C:\WINDOWS\System32\Tt0389m_.ttf
[2009-02-22 15:31:45 | 00,036,360 | ---- | C] () -- C:\WINDOWS\System32\Tt0387m_.ttf
[2009-02-22 15:31:45 | 00,031,344 | ---- | C] () -- C:\WINDOWS\System32\Herald.ttf
[2009-02-22 15:31:44 | 00,060,256 | ---- | C] () -- C:\WINDOWS\System32\Tt1001m_.ttf
[2009-02-22 15:31:44 | 00,039,800 | ---- | C] () -- C:\WINDOWS\System32\Tt0312m_.ttf
[2009-02-22 15:31:44 | 00,039,620 | ---- | C] () -- C:\WINDOWS\System32\Tt1128m_.ttf
[2009-02-22 15:31:44 | 00,038,712 | ---- | C] () -- C:\WINDOWS\System32\Francisc.ttf
[2009-02-22 15:31:44 | 00,037,804 | ---- | C] () -- C:\WINDOWS\System32\Tt1126m_.ttf
[2009-02-22 15:31:44 | 00,037,620 | ---- | C] () -- C:\WINDOWS\System32\Tt1127m_.ttf
[2009-02-22 15:31:44 | 00,036,920 | ---- | C] () -- C:\WINDOWS\System32\Tt1129m_.ttf
[2009-02-22 15:31:44 | 00,034,940 | ---- | C] () -- C:\WINDOWS\System32\Tt0628m_.ttf
[2009-02-22 15:31:44 | 00,033,524 | ---- | C] () -- C:\WINDOWS\System32\Denmark.ttf
[2009-02-22 15:31:44 | 00,031,008 | ---- | C] () -- C:\WINDOWS\System32\Cuckoo.ttf
[2009-02-22 15:31:43 | 00,064,488 | ---- | C] () -- C:\WINDOWS\System32\Tt1040m_.ttf
[2009-02-22 15:31:43 | 00,053,340 | ---- | C] () -- C:\WINDOWS\System32\Chaucer.ttf
[2009-02-22 15:31:43 | 00,053,008 | ---- | C] () -- C:\WINDOWS\System32\Tt0757m_.ttf
[2009-02-22 15:31:43 | 00,046,064 | ---- | C] () -- C:\WINDOWS\System32\Bazooka.ttf
[2009-02-22 15:31:43 | 00,040,120 | ---- | C] () -- C:\WINDOWS\System32\Calligra.ttf
[2009-02-22 15:31:43 | 00,038,944 | ---- | C] () -- C:\WINDOWS\System32\Cezanne.ttf
[2009-02-22 15:31:43 | 00,037,652 | ---- | C] () -- C:\WINDOWS\System32\Tt1027m_.ttf
[2009-02-22 15:31:43 | 00,034,176 | ---- | C] () -- C:\WINDOWS\System32\Cornerst.ttf
[2009-02-22 15:31:43 | 00,032,032 | ---- | C] () -- C:\WINDOWS\System32\Boulder.ttf
[2009-02-22 15:31:41 | 00,029,184 | ---- | C] (Blue Sky Software) -- C:\WINDOWS\System32\Popup.ocx
[2009-02-22 15:31:39 | 00,081,920 | ---- | C] (The Learning Company.) -- C:\WINDOWS\System32\CONNMGR.OCX
[2009-02-22 15:27:07 | 00,000,000 | ---D | C] -- C:\Program Files\Broderbund
[2009-02-22 15:26:51 | 00,284,160 | ---- | C] () -- C:\WINDOWS\unin040c.exe
[2009-02-22 15:23:42 | 00,000,882 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Acrobat Reader 5.0.lnk
[2009-02-22 15:23:36 | 00,000,000 | ---D | C] -- C:\WINDOWS\Profiles
[2009-02-22 15:23:34 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2009-02-22 15:23:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\My eBooks
[2009-02-22 15:23:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\InterTrust
[2009-02-22 15:23:24 | 00,306,688 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\IsUninst.exe
[2009-02-22 15:22:01 | 00,000,895 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Adobe Photoshop Elements 2.0.lnk
[2009-02-22 15:21:13 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Adobe
[2009-02-22 15:21:11 | 00,000,000 | ---D | C] -- C:\Program Files\Adobe
[2009-02-22 15:19:07 | 00,327,168 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\IsUn040c.exe
[2009-02-19 16:33:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\Dossier Bluetooth Exchange
[2009-02-18 22:23:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\Clan
[2009-02-18 18:14:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009-02-18 18:14:28 | 00,000,000 | ---D | C] -- C:\Program Files\LSoft Technologies
[2009-02-18 13:30:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Haihaisoft
[2009-02-18 13:30:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Haihaisoft Universal Player
[2009-02-18 13:29:39 | 00,000,803 | ---- | C] () -- C:\Documents and Settings\Gabriel\Bureau\Haihaisoft Universal Player.lnk
[2009-02-18 13:29:35 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Real
[2009-02-18 13:29:26 | 00,000,000 | ---D | C] -- C:\Program Files\Haihaisoft Universal Player
[2009-02-17 10:58:09 | 00,016,528 | ---- | C] () -- C:\Documents and Settings\Gabriel\Mes documents\config.bin
[2009-02-16 21:57:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\Mes diaporamas Corel
[2009-02-16 21:56:34 | 00,003,140 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2009-02-16 21:56:34 | 00,000,088 | RHS- | C] () -- C:\WINDOWS\System32\410779812F.sys
[2009-02-16 21:55:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\My PSP Files
[2009-02-16 21:55:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Corel
[2009-02-16 21:55:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Corel
[2009-02-16 21:53:38 | 00,002,075 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Corel Paint Shop Pro Photo X2.lnk
[2009-02-16 21:52:05 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Corel
[2009-02-16 21:52:05 | 00,000,000 | ---D | C] -- C:\Program Files\Corel
[2009-02-16 21:15:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\Downloads
[2009-02-16 21:01:08 | 00,000,630 | ---- | C] () -- C:\Documents and Settings\Gabriel\Bureau\µTorrent.lnk
[2009-02-16 21:01:05 | 00,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2009-02-16 21:00:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\uTorrent
[2009-02-15 17:05:39 | 00,005,937 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
[2009-02-15 17:05:39 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\MAGIX
[2009-02-15 14:06:13 | 00,000,618 | ---- | C] () -- C:\Documents and Settings\Gabriel\Bureau\HyperCam 2.lnk
[2009-02-15 14:03:56 | 00,000,000 | ---D | C] -- C:\Program Files\HyCam2
[2009-02-13 01:20:21 | 00,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2009-02-13 01:18:49 | 00,001,753 | ---- | C] () -- C:\Documents and Settings\Gabriel\Bureau\Tâches planifiées.lnk
[2009-02-13 00:50:51 | 00,000,715 | ---- | C] () -- C:\Documents and Settings\Gabriel\Bureau\X'nStop.lnk
[2009-02-13 00:50:51 | 00,000,000 | ---D | C] -- C:\Program Files\X'nStop 2.5
[2009-02-12 18:48:12 | 00,000,000 | R-SD | C] -- C:\Documents and Settings\Gabriel\Mes documents\My Stationery
[2009-02-12 01:54:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\BitTorrent
[2009-02-12 01:54:07 | 00,000,000 | ---D | C] -- C:\Program Files\DNA
[2009-02-12 01:54:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\DNA
[2009-02-12 01:41:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Media Player Classic
[2009-02-11 22:36:58 | 00,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2009-02-11 22:36:51 | 01,294,336 | ---- | C] (HMS http://hp.vector.co.jp/authors/VA012897/) -- C:\WINDOWS\System32\vorbis.acm
[2009-02-11 22:36:51 | 00,839,680 | ---- | C] (http://www.mp3dev.org/ -- C:\WINDOWS\System32\lameACM.acm
[2009-02-11 22:36:51 | 00,287,744 | ---- | C] (Kristal StudioDFileDescription) -- C:\WINDOWS\System32\divxa32.acm
[2009-02-11 22:36:51 | 00,232,448 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\mp3fhg.acm
[2009-02-11 22:36:51 | 00,118,784 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm
[2009-02-11 22:36:51 | 00,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml
[2009-02-11 22:36:50 | 02,330,643 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll
[2009-02-11 22:36:50 | 00,795,648 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009-02-11 22:36:50 | 00,130,048 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009-02-11 22:36:49 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2009-02-11 22:36:42 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009-02-11 22:36:41 | 00,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009-02-11 22:36:39 | 00,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2009-02-11 22:28:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\LimeWire
[2009-02-11 22:28:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\LimeWire
[2009-02-11 20:47:55 | 00,000,772 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\DriveImage XML.lnk
[2009-02-11 20:47:43 | 00,000,000 | ---D | C] -- C:\Program Files\Runtime Software
[2009-02-11 19:51:50 | 00,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2009-02-11 19:51:50 | 00,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2009-02-11 19:51:48 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp
[2009-02-11 19:33:12 | 00,000,000 | ---D | C] -- C:\Program Files\Auran
[2009-02-11 17:53:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\TeamViewer
[2009-02-11 17:53:48 | 00,000,889 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\TeamViewer 4.lnk
[2009-02-11 17:53:46 | 00,000,000 | ---D | C] -- C:\Program Files\TeamViewer
[2009-02-11 17:39:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Hamachi
[2009-02-11 17:38:51 | 00,000,000 | ---D | C] -- C:\Program Files\Hamachi
[2009-02-11 12:46:09 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\DirectX
[2009-02-11 12:46:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\HospitalTycoon
[2009-02-11 12:43:21 | 00,000,000 | ---D | C] -- C:\Program Files\Codemasters
[2009-02-10 15:27:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Nvu
[2009-02-10 15:27:29 | 00,000,568 | ---- | C] () -- C:\Documents and Settings\Gabriel\Bureau\Nvu.lnk
[2009-02-10 15:27:24 | 00,000,000 | ---D | C] -- C:\Program Files\Nvu
[2009-02-09 16:29:26 | 00,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2009-02-09 16:19:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\Mes Créations
[2009-02-09 16:18:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\SPORE
[2009-02-09 16:18:37 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Gabriel\Application Data\SecuROM
[2009-02-09 16:01:13 | 00,000,000 | ---D | C] -- C:\Program Files\Electronic Arts
[2009-02-09 15:49:44 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\Mes vidéos
[2009-02-09 02:36:02 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2009-02-08 21:53:13 | 00,000,000 | ---D | C] -- C:\Program Files\eGames
[2009-02-08 21:29:04 | 00,000,000 | ---D | C] -- C:\Scenario
[2009-02-08 18:26:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\My Games
[2009-02-08 18:25:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Microsoft Games
[2009-02-08 18:02:36 | 00,000,683 | ---- | C] () -- C:\Documents and Settings\Gabriel\Bureau\GameSpy Arcade.lnk
[2009-02-08 18:02:29 | 00,000,000 | ---D | C] -- C:\Program Files\GameSpy Arcade
[2009-02-08 17:41:07 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Games
[2009-02-08 17:38:16 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Gabriel\Bureau\Jeux
[2009-02-08 16:28:34 | 00,000,907 | ---- | C] () -- C:\Documents and Settings\Gabriel\Mes documents\Mes dossiers de partage.lnk
[2009-02-08 16:26:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Ventrilo
[2009-02-08 16:22:40 | 00,000,000 | ---D | C] -- C:\Program Files\ESET
[2009-02-08 16:22:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ESET
[2009-02-08 16:20:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Macromedia
[2009-02-08 16:20:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Adobe
[2009-02-08 16:17:53 | 00,000,640 | ---- | C] () -- C:\Documents and Settings\Gabriel\Bureau\Virtual DJ.lnk
[2009-02-08 16:17:50 | 00,000,000 | ---D | C] -- C:\Program Files\VirtualDJ
[2009-02-08 16:17:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\VirtualDJ
[2009-02-08 16:17:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\WinRAR
[2009-02-08 16:17:23 | 00,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2009-02-08 16:16:44 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2009-02-08 16:15:40 | 00,000,000 | ---D | C] -- C:\48481c90c65be6583a
[2009-02-08 16:15:39 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2009-02-08 16:15:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2009-02-08 16:15:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2009-02-08 16:09:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\Mes fichiers reçus
[2009-02-08 16:05:30 | 00,000,000 | -HSD | C] -- C:\Program Files\Fichiers communs\WindowsLiveInstaller
[2009-02-08 16:05:00 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2009-02-08 16:04:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\WLInstaller
[2009-02-08 16:04:03 | 00,000,790 | ---- | C] () -- C:\WINDOWS\System32\drivers\etc\hosts.20090208-210403.backup
[2009-02-08 16:00:35 | 00,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2009-02-08 16:00:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2009-02-08 15:58:24 | 00,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2009-02-08 15:58:14 | 00,000,000 | ---D | C] -- C:\Program Files\Java
[2009-02-08 15:56:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Sun
[2009-02-08 15:55:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Mes documents\DVDVideoSoft
[2009-02-08 15:55:33 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\DVDVideoSoft
[2009-02-08 15:55:33 | 00,000,000 | ---D | C] -- C:\Program Files\DVDVideoSoft
[2009-02-08 15:54:27 | 00,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009-02-08 15:54:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Mozilla
[2009-02-08 15:54:04 | 00,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk
[2009-02-08 15:54:01 | 00,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2009-02-08 15:53:30 | 00,000,000 | ---D | C] -- C:\Program Files\Lavalys
[2009-02-08 15:53:08 | 00,000,000 | ---D | C] -- C:\Program Files\Audacity
[2009-02-08 15:52:44 | 00,000,751 | ---- | C] () -- C:\Documents and Settings\Gabriel\Bureau\Ventrilo 2.3.0.lnk
[2009-02-08 15:33:40 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Gabriel\Bureau\Utulitaire
[2009-02-08 15:32:00 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidserv.dll
[2009-02-08 15:31:50 | 00,014,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhid.sys
[2009-02-08 14:34:52 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys
[2009-02-08 14:34:45 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys
[2009-02-08 14:34:43 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Gabriel\Mes documents\Mes vidéos
[2009-02-08 14:34:38 | 00,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys
[2009-02-08 14:34:37 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax
[2009-02-08 14:34:37 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax
[2009-02-08 14:34:32 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys
[2009-02-08 14:34:22 | 00,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys
[2009-02-08 14:34:09 | 00,085,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys
[2009-02-08 14:33:59 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys
[2009-02-08 14:33:45 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll
[2009-02-08 14:33:44 | 00,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2009-02-08 14:33:44 | 00,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax
[2009-02-08 14:33:44 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2009-02-08 14:33:44 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax
[2009-02-08 14:33:43 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2009-02-08 14:33:43 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax
[2009-02-08 14:33:32 | 00,081,110 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2009-02-08 14:33:04 | 00,001,795 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Logitech QuickCam.lnk
[2009-02-08 14:33:01 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\LogiShrd
[2009-02-08 14:33:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\LogiShrd
[2009-02-08 14:32:59 | 00,000,000 | ---D | C] -- C:\Program Files\Logitech
[2009-02-08 14:27:55 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft IntelliPoint
[2009-02-08 14:22:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Gabriel\Application Data\Intel
[2009-02-08 14:21:24 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Intel
[2009-02-08 14:21:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Intel
[2009-02-08 13:55:26 | 00,176,128 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsky.lrc
[2009-02-08 13:55:26 | 00,172,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrslv.lrc
[2009-02-08 13:55:26 | 00,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2009-02-08 13:55:25 | 00,920,088 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\igxpun.exe
[2009-02-08 13:52:19 | 00,000,000 | ---D | C] -- C:\Intel
0
Réponse 12 / 27
Dragsteur[BW]
10 mai 2009 à 23:10
[color=orange]========== Purity Check ==========[/color]


[color=orange]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9638A27E
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C4F2F39
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:24051EFF
< End of report >


je comprend rien de ce qu'il y a la dedan :P
0
Réponse 13 / 27
Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
10 mai 2009 à 23:26
Re,

moi je comprends.

1) Imprime ces instructions car il faudra fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.

2) Télécharge Malwarebytes' Anti-Malware (MBAM) et enregistre le sur ton Bureau à partir de ce lien :

https://download.cnet.com/Malwarebytes/3000-8022_4-10804572.html

3) A la fin du téléchargement, ferme toutes les fenêtres et programmes, y compris celui-ci.

4) Double-clique sur l'icône Download_mbam-setup.exe sur ton bureau pour démarrer le programme d'installation.

5) Pendant l'installation, suis les indications (en particulier le choix de la langue et l'autorisation d'accession à Internet). N'apporte aucune modification aux réglages par défaut et, en fin d'installation, vérifie que les options Update Malwarebytes' Anti-Malware et Launch Malwarebytes' Anti-Malware sont cochées.

6) MBAM démarrera automatiquement et enverra un message demandant à mettre à jour le programme avant de lancer une analyse. Comme MBAM se met automatiquement à jour en fin d'installation, clique sur OK pour fermer la boîte de dialogue. La fenêtre principale de MBAM s'affiche :

7) Dans l'onglet analyse, vérifie que "Exécuter une analyse rapide" est coché et clique sur le bouton Rechercher pour démarrer l'analyse.

8) MBAM analyse ton ordinateur. L'analyse peut prendre un certain temps. Il suffit de vérifier de temps en temps son avancement.

9) A la fin de l'analyse, un message s'affiche indiquant la fin de l'analyse. Clique sur OK pour poursuivre.

10) Si des malwares ont été détectés, leur liste s'affiche.
En cliquant sur Suppression (?) , MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.

11) MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Ferme le Bloc-notes. (Le rapport peut être retrouvé sous l'onglet Rapports/logs)

12) Ferme MBAM en cliquant sur Quitter.

13) Poste le rapport dans ta réponse
0
Réponse 14 / 27
Dragsteur[BW]
10 mai 2009 à 23:39
tout comme Spybot S&D le programe ne veux meme pas démarer
0
Réponse 15 / 27
Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
10 mai 2009 à 23:41
Re,

et en mode sans échec ?
0
Réponse 16 / 27
Dragsteur[BW]
11 mai 2009 à 00:00
non pas plus
0
Réponse 17 / 27
Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
11 mai 2009 à 00:08
Re,

on va changer d'outil.

Télécharge AVZ ici :http://www.z-oleg.com/avz4.zip et enregistre le sur ton Bureau.

Dézippe par un clic droit et Choisis "Extraire tout". Suis les instructions.

Lance l'outil par un double clic (sous Vista par un clic droit et "Exécuter en tant qu'administrateur") sur AVZ.exe.

La fenêtre principale s'ouvre. Clique sur File puis sur Custom Scripts.

Copy les lignes suivantes dans la fenêtre de saisie : 

begin
ExecuteStdScr(3);
RebootWindows(true);
end.


Clic sur Run pour exécuter le script. L'ordi va redémarrer. Dans le répertoire où est AVZ.exe, un sous-répertoire LOG a été créé. Tu vas y trouver le fichier virusinfo_syscure.zip inside.

CCM ne permet pas d'attacher un fichier. Pour me le transmettre, clique sur ce lien :

http://www.cijoint.fr/

Clique sur Parcourir et cherche le fichier ci-dessus.

Clique sur Ouvrir.

Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt

est ajouté dans la page.

Copie ce lien dans ta réponse.
0
Réponse 18 / 27
Dragsteur[BW]
11 mai 2009 à 00:12
ton lien marche pas
0
Réponse 19 / 27
Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
11 mai 2009 à 00:26
Re,

le lien fonctionne.

Réessaye. Sinon, as tu les moyens de le télécharger sur un autre ordi et de le graver sur un CD réinscriptible ?
0
Réponse 20 / 27
Dragsteur[BW]
11 mai 2009 à 01:49
yé suposer faire quoi ton affair? j'ai fait ce que tu as dit et il fou rien depuis 30 min
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
Comment savoir si j'ai attrapé un virus sur mon téléphone ?
Infolock -
bell -

66 réponses
Virus Altruistic
Mael03250 -
MisteryBean -

11 réponses
problême Opéra est ce un virus??
sand2504 -
sand2504 -

85 réponses