Virus non détecté

Résolu/Fermé
morenas31 Messages postés 30 Date d'inscription jeudi 4 juin 2009 Statut Membre Dernière intervention 15 juin 2009 - 6 juin 2009 à 11:23
morenas31 Messages postés 30 Date d'inscription jeudi 4 juin 2009 Statut Membre Dernière intervention 15 juin 2009 - 15 juin 2009 à 19:35
Bonjour,
j'ai 2 partition C,D : un virus fait multiplier mes fichier en créant une sorte d'application ".exe" dans le disque C du coup la mémoire est toujours pleine même si j'en supprime tous mes dossier et fichier. un dossier n'arrête pas de se créer "winfiles".
aucun antivirus ne la détecté( avg, avira, avast)

30 réponses

Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
13 juin 2009 à 16:10
Bonjour,

Démarrer, Exécuter, tape
combofix /u
dans la zone de saisie puis clique sur OK.

* Télécharge ToolsCleaner par A.Rothstein & dj QUIOU sur ton Bureau.

http://pc-system.fr/
hxxp://a-rothstein.changelog.fr/TC/ToolsCleaner2.exe
hxxp://pagesperso-orange.fr/AceRothstein/ToolsCleaner2.exe

* Clique sur Recherche et laisse le scan se terminer.

* Clique, sur Suppression pour finaliser.

* Tu peux, si tu le souhaites, te servir des Options facultatives.

* Clique sur Quitter, pour que le rapport puisse se créer.

* Poste moi le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur( C:\).

===============

Telecharge et installe UsbFix de C_XX & Chiquitine29

Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d avoir été infectés sans les ouvrir

# Double clic sur le raccourci UsbFix présent sur ton bureau .

# Choisie l' option 1 ( Recherche )

# Laisse travailler l'outil.

# Ensuite poste le rapport UsbFix.txt qui apparaitra.

# Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )

( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )

# Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
0
morenas31 Messages postés 30 Date d'inscription jeudi 4 juin 2009 Statut Membre Dernière intervention 15 juin 2009
15 juin 2009 à 16:06
[ Rapport ToolsCleaner version 2.3.6 (par A.Rothstein & dj QUIOU) ]

--> Recherche:

C:\Combofix.txt: trouvé !
C:\avenger.txt: trouvé !
C:\UsbFix.exe: trouvé !
C:\Combofix: trouvé !
C:\Lop SD: trouvé !
C:\UsbFix: trouvé !
C:\Documents and Settings\Adel\Menu Démarrer\Programmes\UsbFix: trouvé !
C:\Documents and Settings\Ibtissem\Bureau\LopSD.exe: trouvé !
C:\Documents and Settings\Ibtissem\Bureau\UsbFix.exe: trouvé !
C:\Documents and Settings\Ibtissem\Menu Démarrer\Programmes\UsbFix: trouvé !

---------------------------------
--> Suppression:

C:\Documents and Settings\Ibtissem\Bureau\LopSD.exe: supprimé !
C:\Combofix.txt: supprimé !
C:\avenger.txt: supprimé !
C:\UsbFix.exe: supprimé !
C:\Documents and Settings\Ibtissem\Bureau\UsbFix.exe: supprimé !
C:\Combofix: supprimé !
C:\Lop SD: supprimé !
C:\UsbFix: supprimé !
C:\Documents and Settings\Adel\Menu Démarrer\Programmes\UsbFix: supprimé !
C:\Documents and Settings\Ibtissem\Menu Démarrer\Programmes\UsbFix: supprimé !
0
morenas31 Messages postés 30 Date d'inscription jeudi 4 juin 2009 Statut Membre Dernière intervention 15 juin 2009
15 juin 2009 à 16:08
############################## [ UsbFix V3.029 | Scan ]

# User : Ibtissem () # BOUSMAHA
# Update on 05/06/09 by Chiquitine29, C_XX & Chimay8
# WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html
# Start at: 15:01:14 | 15/06/2009

# Intel(R) Pentium(R) 4 CPU 3.00GHz
# Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 2
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Enabled

# A:\ # Lecteur de disquettes 3 ½ pouces
# C:\ # Disque fixe local # 29,29 Go (7,78 Go free) # NTFS
# D:\ # Disque fixe local # 45,19 Go (6,42 Go free) # FAT32
# E:\ # Disque CD-ROM
# F:\ # Disque amovible # 3,72 Go (3,56 Go free) [MILOUD REAL] # FAT32

############################## [ Processus actifs ]

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\msdtc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\wuauclt.exe

################## [ Registre Startup ]

HKCU_Main: "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
HKCU_Main: "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
HKCU_Main: "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
HKCU_Main: "Window Title"=""
HKLM_logon: "Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
HKLM_logon: "DefaultUserName"="Ibtissem"
HKLM_logon: "AltDefaultUserName"="Ibtissem"
HKLM_logon: "LegalNoticeCaption"=""
HKLM_logon: "LegalNoticeText"=""
HKLM_Run: windows drivers=C:\WINDOWS\system32\win drivers.exe
HKLM_Run: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
HKCU_Run: ctfmon.exe=C:\WINDOWS\system32\ctfmon.exe
HKCU_Run: swg=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

################## [ Fichiers # Dossiers infectieux ]


################## [ Registre # Clés Run infectieuses ]


################## [ Registre # Mountpoints2 ]


################## [ ! Fin du rapport # UsbFix V3.029 ! ]
0
Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
15 juin 2009 à 17:18
Bonjour,

Télécharge Lop S&D ici :

https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

Double-clique dessus pour lancer l'installation

Puis double-clique [b]sur le raccourci Lop S&D/b présent sur ton bureau

Séléctionne la langue souhaitée , puis choisis [b]l'Option 1/b ( Recherche )

Patiente jusqu'à la fin du scan

Poste le rapport généré ( C:lopR.txt )

0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
morenas31 Messages postés 30 Date d'inscription jeudi 4 juin 2009 Statut Membre Dernière intervention 15 juin 2009
15 juin 2009 à 17:57
--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.00GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 1.1.2
USER : Adel ( Administrator )
BOOT : Normal boot
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:29 Go (Free:7 Go)
D:\ (Local Disk) - FAT32 - Total:45 Go (Free:6 Go)
E:\ (CD or DVD)
F:\ (USB) - FAT32 - Total:3811 Mo (Free:3 Go)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 15/06/2009|16:52 )

--------------------\\ Listing des dossiers dans APPLIC~1

[04/12/2006|01:55] C:\DOCUME~1\Adel\APPLIC~1\Adobe
[31/05/2009|00:07] C:\DOCUME~1\Adel\APPLIC~1\Apple Computer
[14/12/2008|01:00] C:\DOCUME~1\Adel\APPLIC~1\ATI
[27/05/2009|17:30] C:\DOCUME~1\Adel\APPLIC~1\BearShare
[07/11/2008|16:04] C:\DOCUME~1\Adel\APPLIC~1\COWON
[21/05/2009|10:34] C:\DOCUME~1\Adel\APPLIC~1\DMCache
[24/02/2009|01:22] C:\DOCUME~1\Adel\APPLIC~1\Free Spider TreeCardGames
[05/11/2008|19:57] C:\DOCUME~1\Adel\APPLIC~1\Google
[14/12/2008|20:44] C:\DOCUME~1\Adel\APPLIC~1\Hamachi
[04/01/2009|14:07] C:\DOCUME~1\Adel\APPLIC~1\Help
[25/12/2008|16:39] C:\DOCUME~1\Adel\APPLIC~1\HiYo
[04/11/2008|14:17] C:\DOCUME~1\Adel\APPLIC~1\Identities
[31/03/2009|16:14] C:\DOCUME~1\Adel\APPLIC~1\Macromedia
[08/06/2009|15:53] C:\DOCUME~1\Adel\APPLIC~1\Malwarebytes
[18/11/2008|13:59] C:\DOCUME~1\Adel\APPLIC~1\Media Player Classic
[04/12/2006|03:16] C:\DOCUME~1\Adel\APPLIC~1\Microsoft
[23/05/2009|13:13] C:\DOCUME~1\Adel\APPLIC~1\Real
[07/12/2008|23:14] C:\DOCUME~1\Adel\APPLIC~1\SecuROM
[24/05/2009|12:21] C:\DOCUME~1\Adel\APPLIC~1\skypePM
[05/11/2008|20:20] C:\DOCUME~1\Adel\APPLIC~1\Sun

[04/12/2006|01:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\HiYo
[04/12/2006|01:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[26/05/2009|11:29] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[07/11/2008|01:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[13/02/2009|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[13/02/2009|19:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[27/03/2009|14:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Autodesk
[20/11/2008|18:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[22/05/2009|01:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site
[23/11/2008|19:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HiYo
[04/12/2006|01:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[04/12/2006|01:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
[29/01/2009|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[08/06/2009|15:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[04/12/2006|01:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[08/11/2008|21:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[04/12/2006|01:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/06/2009|03:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[30/03/2009|16:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[29/05/2009|19:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs
[04/12/2006|01:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SiteAdvisor
[21/05/2009|13:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[04/12/2006|03:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[07/11/2008|12:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[04/12/2007|21:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[04/11/2008|20:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[11/02/2009|21:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[12/02/2009|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion



[06/05/2008|00:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft


[26/05/2009|11:29] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[07/06/2009|18:40] C:\DOCUME~1\MISSCU~1\APPLIC~1\Adobe
[07/06/2009|18:26] C:\DOCUME~1\MISSCU~1\APPLIC~1\Identities
[07/06/2009|18:37] C:\DOCUME~1\MISSCU~1\APPLIC~1\Microsoft

[26/05/2009|11:29] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[21/05/2009 17:39][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[15/06/2009 16:23][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
[15/06/2009 14:58][--ah-c---] C:\WINDOWS\tasks\SA.DAT
[02/10/2001 20:18][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[04/12/2006|02:28] C:\Program Files\Adobe
[04/11/2008|14:50] C:\Program Files\Ahead
[04/12/2006|01:08] C:\Program Files\Alwil Software
[04/11/2008|14:38] C:\Program Files\Analog Devices
[27/03/2009|14:56] C:\Program Files\AnswerWorks 4.0
[13/02/2009|19:37] C:\Program Files\Apple Software Update
[11/02/2009|23:34] C:\Program Files\ATI Technologies
[27/03/2009|14:58] C:\Program Files\AutoCAD 2006
[27/03/2009|14:16] C:\Program Files\Autodesk
[04/04/2009|22:57] C:\Program Files\Broadcom
[16/04/2009|11:39] C:\Program Files\Canon
[12/02/2009|00:29] C:\Program Files\CCleaner
[08/11/2008|01:06] C:\Program Files\Circle Developement
[19/02/2009|13:46] C:\Program Files\Dell
[16/12/2008|12:20] C:\Program Files\directx
[27/03/2009|16:10] C:\Program Files\EPSON
[12/06/2009|23:47] C:\Program Files\Fichiers communs
[12/12/2008|00:04] C:\Program Files\Fighter Ace 3.5 Ftv
[04/12/2008|19:23] C:\Program Files\GMG
[02/12/2008|19:08] C:\Program Files\Google
[16/05/2009|22:13] C:\Program Files\Graphisoft
[23/11/2008|19:08] C:\Program Files\HiYo
[17/04/2009|18:59] C:\Program Files\hp LaserJet 1000
[04/12/2006|09:00] C:\Program Files\InstallShield Installation Information
[21/11/2008|14:29] C:\Program Files\Internet Explorer
[10/01/2009|00:17] C:\Program Files\IVT Corporation
[19/02/2009|13:51] C:\Program Files\Java
[02/04/2009|20:08] C:\Program Files\JetAudio
[22/05/2009|01:26] C:\Program Files\Lies Ref Iso
[15/02/2009|14:57] C:\Program Files\Logitech
[28/11/2008|20:43] C:\Program Files\Messenger
[21/05/2009|19:18] C:\Program Files\Messenger Plus! Live
[13/12/2008|21:13] C:\Program Files\MessengerDiscovery
[27/03/2009|15:06] C:\Program Files\Microsoft Encarta
[04/11/2008|14:12] C:\Program Files\microsoft frontpage
[27/03/2009|14:56] C:\Program Files\Microsoft Office
[04/12/2006|09:00] C:\Program Files\Microsoft Reader
[20/02/2009|11:57] C:\Program Files\Microsoft R‚f‚rence
[04/11/2008|15:08] C:\Program Files\Microsoft Visual Studio
[04/11/2008|15:09] C:\Program Files\Microsoft Works
[05/12/2008|00:24] C:\Program Files\Movie Maker
[04/11/2008|15:08] C:\Program Files\MSBuild
[04/11/2008|14:07] C:\Program Files\MSN
[04/11/2008|14:08] C:\Program Files\MSN Gaming Zone
[04/12/2006|06:03] C:\Program Files\MSN Messenger
[04/12/2006|00:13] C:\Program Files\Namtuk
[04/11/2008|14:09] C:\Program Files\NetMeeting
[04/11/2008|14:56] C:\Program Files\Outlook Express
[13/02/2009|19:38] C:\Program Files\QuickTime
[06/11/2008|15:02] C:\Program Files\Ringz Studio
[04/11/2008|14:10] C:\Program Files\Services en ligne
[19/02/2009|21:41] C:\Program Files\Spider
[27/05/2009|14:48] C:\Program Files\SuperCopier2
[06/06/2009|21:22] C:\Program Files\trend micro
[04/11/2008|14:16] C:\Program Files\Uninstall Information
[24/05/2009|01:43] C:\Program Files\UNO Freeware
[18/02/2009|22:58] C:\Program Files\uTorrent
[16/05/2009|22:21] C:\Program Files\WIBU-SYSTEMS
[04/11/2008|23:12] C:\Program Files\Windows Live
[28/11/2008|20:43] C:\Program Files\Windows Live Toolbar
[04/04/2009|19:46] C:\Program Files\Windows Media Player
[31/03/2009|11:13] C:\Program Files\Windows NT
[04/11/2008|14:10] C:\Program Files\WindowsUpdate
[02/04/2009|11:49] C:\Program Files\WinRAR
[04/11/2008|14:12] C:\Program Files\xerox
[04/12/2009|23:45] C:\Program Files\Xilisoft
[12/02/2009|00:24] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[04/12/2006|02:28] C:\Program Files\Fichiers communs\Adobe
[06/11/2008|15:14] C:\Program Files\Fichiers communs\Adobe Systems Shared
[04/11/2008|14:50] C:\Program Files\Fichiers communs\Ahead
[05/06/2009|22:10] C:\Program Files\Fichiers communs\Autodesk Shared
[06/11/2008|17:24] C:\Program Files\Fichiers communs\COWON
[27/03/2009|14:56] C:\Program Files\Fichiers communs\DESIGNER
[07/11/2008|12:54] C:\Program Files\Fichiers communs\InstallShield
[19/02/2009|13:51] C:\Program Files\Fichiers communs\Java
[15/02/2009|13:05] C:\Program Files\Fichiers communs\Logitech
[04/12/2006|09:00] C:\Program Files\Fichiers communs\Microsoft Shared
[02/10/2001|20:18] C:\Program Files\Fichiers communs\Mozilla Shared
[04/11/2008|14:09] C:\Program Files\Fichiers communs\MSSoap
[01/04/2009|15:34] C:\Program Files\Fichiers communs\Nero
[04/11/2008|15:02] C:\Program Files\Fichiers communs\ODBC
[24/05/2009|00:11] C:\Program Files\Fichiers communs\Real
[04/11/2008|14:09] C:\Program Files\Fichiers communs\Services
[04/11/2008|15:02] C:\Program Files\Fichiers communs\SpeechEngines
[04/11/2008|15:06] C:\Program Files\Fichiers communs\System
[04/11/2008|22:46] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 31 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site
C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs
C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs\title real.dat
C:\Program Files\Circle Developement

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-06-15 16:53:10
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 9

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\Adel\Mes documents\logiciel\Download Accelerator Plus 8.5\Crack
C:\DOCUME~1\Adel\Mes documents\logiciel\Download Accelerator Plus 8.5\Crack\a lire.txt
C:\DOCUME~1\Adel\Mes documents\logiciel\Download Accelerator Plus 8.5\Crack\DAP.exe
C:\DOCUME~1\Adel\Mes documents\logiciel\Download Accelerator Plus 8.5\Crack\zlib.dll


[F:1][D:0]-> C:\DOCUME~1\Adel\LOCALS~1\Temp
[F:1][D:0]-> C:\DOCUME~1\Adel\Cookies
[F:6][D:4]-> C:\DOCUME~1\Adel\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 15/06/2009|16:53 - Option : [1]

--------------------\\ Fin du rapport a 16:53:42
0
Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
15 juin 2009 à 18:12
Re,

Relance Lop S&D

Choisis cette fois ci l'Option 2 ( Suppression )

Ne ferme pas la fenêtre lors de la suppression !

Poste le rapport généré ( C:\lopR.txt )

( Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr, Onglet Fichier,

Nouvelle tâche, tape explorer.exe et valide )
0
morenas31 Messages postés 30 Date d'inscription jeudi 4 juin 2009 Statut Membre Dernière intervention 15 juin 2009
15 juin 2009 à 18:30
--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.00GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 1.1.2
USER : Ibtissem ( Administrator )
BOOT : Normal boot
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:29 Go (Free:7 Go)
D:\ (Local Disk) - FAT32 - Total:45 Go (Free:6 Go)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 15/06/2009|17:18 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs\title real.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs
Supprime! - C:\Program Files\Circle Developement

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[04/12/2006|01:55] C:\DOCUME~1\Adel\APPLIC~1\Adobe
[31/05/2009|00:07] C:\DOCUME~1\Adel\APPLIC~1\Apple Computer
[14/12/2008|01:00] C:\DOCUME~1\Adel\APPLIC~1\ATI
[27/05/2009|17:30] C:\DOCUME~1\Adel\APPLIC~1\BearShare
[07/11/2008|16:04] C:\DOCUME~1\Adel\APPLIC~1\COWON
[21/05/2009|10:34] C:\DOCUME~1\Adel\APPLIC~1\DMCache
[24/02/2009|01:22] C:\DOCUME~1\Adel\APPLIC~1\Free Spider TreeCardGames
[05/11/2008|19:57] C:\DOCUME~1\Adel\APPLIC~1\Google
[14/12/2008|20:44] C:\DOCUME~1\Adel\APPLIC~1\Hamachi
[04/01/2009|14:07] C:\DOCUME~1\Adel\APPLIC~1\Help
[25/12/2008|16:39] C:\DOCUME~1\Adel\APPLIC~1\HiYo
[04/11/2008|14:17] C:\DOCUME~1\Adel\APPLIC~1\Identities
[31/03/2009|16:14] C:\DOCUME~1\Adel\APPLIC~1\Macromedia
[08/06/2009|15:53] C:\DOCUME~1\Adel\APPLIC~1\Malwarebytes
[18/11/2008|13:59] C:\DOCUME~1\Adel\APPLIC~1\Media Player Classic
[04/12/2006|03:16] C:\DOCUME~1\Adel\APPLIC~1\Microsoft
[23/05/2009|13:13] C:\DOCUME~1\Adel\APPLIC~1\Real
[07/12/2008|23:14] C:\DOCUME~1\Adel\APPLIC~1\SecuROM
[24/05/2009|12:21] C:\DOCUME~1\Adel\APPLIC~1\skypePM
[05/11/2008|20:20] C:\DOCUME~1\Adel\APPLIC~1\Sun

[04/12/2006|01:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\HiYo
[04/12/2006|01:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[26/05/2009|11:29] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[07/11/2008|01:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[13/02/2009|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[13/02/2009|19:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[27/03/2009|14:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Autodesk
[20/11/2008|18:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[23/11/2008|19:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HiYo
[04/12/2006|01:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[04/12/2006|01:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
[29/01/2009|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[08/06/2009|15:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[04/12/2006|01:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[08/11/2008|21:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[04/12/2006|01:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/06/2009|03:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[30/03/2009|16:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[04/12/2006|01:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SiteAdvisor
[21/05/2009|13:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[04/12/2006|03:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[07/11/2008|12:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[04/12/2007|21:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[04/11/2008|20:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[11/02/2009|21:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[12/02/2009|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion



[06/05/2008|00:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[10/02/2009|16:53] C:\DOCUME~1\Ibtissem\APPLIC~1\Adobe
[13/02/2009|19:41] C:\DOCUME~1\Ibtissem\APPLIC~1\Apple Computer
[21/11/2008|14:42] C:\DOCUME~1\Ibtissem\APPLIC~1\ATI
[25/03/2009|20:58] C:\DOCUME~1\Ibtissem\APPLIC~1\Autodesk
[24/05/2009|02:44] C:\DOCUME~1\Ibtissem\APPLIC~1\BearShare
[15/11/2008|04:41] C:\DOCUME~1\Ibtissem\APPLIC~1\COWON
[07/11/2008|13:01] C:\DOCUME~1\Ibtissem\APPLIC~1\EPSON
[04/12/2006|09:52] C:\DOCUME~1\Ibtissem\APPLIC~1\Free Spider TreeCardGames
[06/11/2008|15:37] C:\DOCUME~1\Ibtissem\APPLIC~1\Google
[16/05/2009|22:35] C:\DOCUME~1\Ibtissem\APPLIC~1\Graphisoft
[07/11/2008|14:20] C:\DOCUME~1\Ibtissem\APPLIC~1\Help
[23/11/2008|19:09] C:\DOCUME~1\Ibtissem\APPLIC~1\HiYo
[04/11/2008|14:43] C:\DOCUME~1\Ibtissem\APPLIC~1\Identities
[05/06/2009|12:13] C:\DOCUME~1\Ibtissem\APPLIC~1\Lies Ref Iso
[24/05/2009|03:22] C:\DOCUME~1\Ibtissem\APPLIC~1\LimeWire
[27/03/2009|15:16] C:\DOCUME~1\Ibtissem\APPLIC~1\Macromedia
[26/05/2009|01:01] C:\DOCUME~1\Ibtissem\APPLIC~1\Malwarebytes
[06/11/2008|15:03] C:\DOCUME~1\Ibtissem\APPLIC~1\Media Player Classic
[26/05/2009|11:29] C:\DOCUME~1\Ibtissem\APPLIC~1\Microsoft
[24/05/2009|00:10] C:\DOCUME~1\Ibtissem\APPLIC~1\Real
[11/01/2009|23:25] C:\DOCUME~1\Ibtissem\APPLIC~1\SecuROM
[23/05/2009|21:53] C:\DOCUME~1\Ibtissem\APPLIC~1\Skype
[23/05/2009|21:18] C:\DOCUME~1\Ibtissem\APPLIC~1\skypePM
[09/11/2008|21:28] C:\DOCUME~1\Ibtissem\APPLIC~1\Sun
[15/05/2009|23:56] C:\DOCUME~1\Ibtissem\APPLIC~1\uTorrent

[26/05/2009|11:29] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[07/06/2009|18:40] C:\DOCUME~1\MISSCU~1\APPLIC~1\Adobe
[07/06/2009|18:26] C:\DOCUME~1\MISSCU~1\APPLIC~1\Identities
[07/06/2009|18:37] C:\DOCUME~1\MISSCU~1\APPLIC~1\Microsoft

[26/05/2009|11:29] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[21/05/2009 17:39][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[15/06/2009 16:23][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
[04/12/2006 00:00][--ah-c---] C:\WINDOWS\tasks\SA.DAT
[02/10/2001 20:18][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[04/12/2006|02:28] C:\Program Files\Adobe
[04/11/2008|14:50] C:\Program Files\Ahead
[04/12/2006|01:08] C:\Program Files\Alwil Software
[04/11/2008|14:38] C:\Program Files\Analog Devices
[27/03/2009|14:56] C:\Program Files\AnswerWorks 4.0
[13/02/2009|19:37] C:\Program Files\Apple Software Update
[11/02/2009|23:34] C:\Program Files\ATI Technologies
[27/03/2009|14:58] C:\Program Files\AutoCAD 2006
[27/03/2009|14:16] C:\Program Files\Autodesk
[04/04/2009|22:57] C:\Program Files\Broadcom
[16/04/2009|11:39] C:\Program Files\Canon
[12/02/2009|00:29] C:\Program Files\CCleaner
[19/02/2009|13:46] C:\Program Files\Dell
[16/12/2008|12:20] C:\Program Files\directx
[27/03/2009|16:10] C:\Program Files\EPSON
[12/06/2009|23:47] C:\Program Files\Fichiers communs
[12/12/2008|00:04] C:\Program Files\Fighter Ace 3.5 Ftv
[04/12/2008|19:23] C:\Program Files\GMG
[02/12/2008|19:08] C:\Program Files\Google
[16/05/2009|22:13] C:\Program Files\Graphisoft
[23/11/2008|19:08] C:\Program Files\HiYo
[17/04/2009|18:59] C:\Program Files\hp LaserJet 1000
[04/12/2006|09:00] C:\Program Files\InstallShield Installation Information
[21/11/2008|14:29] C:\Program Files\Internet Explorer
[10/01/2009|00:17] C:\Program Files\IVT Corporation
[19/02/2009|13:51] C:\Program Files\Java
[02/04/2009|20:08] C:\Program Files\JetAudio
[22/05/2009|01:26] C:\Program Files\Lies Ref Iso
[15/02/2009|14:57] C:\Program Files\Logitech
[28/11/2008|20:43] C:\Program Files\Messenger
[21/05/2009|19:18] C:\Program Files\Messenger Plus! Live
[13/12/2008|21:13] C:\Program Files\MessengerDiscovery
[27/03/2009|15:06] C:\Program Files\Microsoft Encarta
[04/11/2008|14:12] C:\Program Files\microsoft frontpage
[27/03/2009|14:56] C:\Program Files\Microsoft Office
[04/12/2006|09:00] C:\Program Files\Microsoft Reader
[20/02/2009|11:57] C:\Program Files\Microsoft R‚f‚rence
[04/11/2008|15:08] C:\Program Files\Microsoft Visual Studio
[04/11/2008|15:09] C:\Program Files\Microsoft Works
[05/12/2008|00:24] C:\Program Files\Movie Maker
[04/11/2008|15:08] C:\Program Files\MSBuild
[04/11/2008|14:07] C:\Program Files\MSN
[04/11/2008|14:08] C:\Program Files\MSN Gaming Zone
[04/12/2006|06:03] C:\Program Files\MSN Messenger
[04/12/2006|00:13] C:\Program Files\Namtuk
[04/11/2008|14:09] C:\Program Files\NetMeeting
[04/11/2008|14:56] C:\Program Files\Outlook Express
[13/02/2009|19:38] C:\Program Files\QuickTime
[06/11/2008|15:02] C:\Program Files\Ringz Studio
[04/11/2008|14:10] C:\Program Files\Services en ligne
[19/02/2009|21:41] C:\Program Files\Spider
[27/05/2009|14:48] C:\Program Files\SuperCopier2
[06/06/2009|21:22] C:\Program Files\trend micro
[04/11/2008|14:16] C:\Program Files\Uninstall Information
[24/05/2009|01:43] C:\Program Files\UNO Freeware
[18/02/2009|22:58] C:\Program Files\uTorrent
[16/05/2009|22:21] C:\Program Files\WIBU-SYSTEMS
[04/11/2008|23:12] C:\Program Files\Windows Live
[28/11/2008|20:43] C:\Program Files\Windows Live Toolbar
[04/04/2009|19:46] C:\Program Files\Windows Media Player
[31/03/2009|11:13] C:\Program Files\Windows NT
[04/11/2008|14:10] C:\Program Files\WindowsUpdate
[02/04/2009|11:49] C:\Program Files\WinRAR
[04/11/2008|14:12] C:\Program Files\xerox
[04/12/2009|23:45] C:\Program Files\Xilisoft
[12/02/2009|00:24] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[04/12/2006|02:28] C:\Program Files\Fichiers communs\Adobe
[06/11/2008|15:14] C:\Program Files\Fichiers communs\Adobe Systems Shared
[04/11/2008|14:50] C:\Program Files\Fichiers communs\Ahead
[05/06/2009|22:10] C:\Program Files\Fichiers communs\Autodesk Shared
[06/11/2008|17:24] C:\Program Files\Fichiers communs\COWON
[27/03/2009|14:56] C:\Program Files\Fichiers communs\DESIGNER
[07/11/2008|12:54] C:\Program Files\Fichiers communs\InstallShield
[19/02/2009|13:51] C:\Program Files\Fichiers communs\Java
[15/02/2009|13:05] C:\Program Files\Fichiers communs\Logitech
[04/12/2006|09:00] C:\Program Files\Fichiers communs\Microsoft Shared
[02/10/2001|20:18] C:\Program Files\Fichiers communs\Mozilla Shared
[04/11/2008|14:09] C:\Program Files\Fichiers communs\MSSoap
[01/04/2009|15:34] C:\Program Files\Fichiers communs\Nero
[04/11/2008|15:02] C:\Program Files\Fichiers communs\ODBC
[24/05/2009|00:11] C:\Program Files\Fichiers communs\Real
[04/11/2008|14:09] C:\Program Files\Fichiers communs\Services
[04/11/2008|15:02] C:\Program Files\Fichiers communs\SpeechEngines
[04/11/2008|15:06] C:\Program Files\Fichiers communs\System
[04/11/2008|22:46] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 31 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-06-15 17:19:32
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 276

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:1][D:0]-> C:\DOCUME~1\Ibtissem\Cookies
[F:6][D:9]-> C:\DOCUME~1\Ibtissem\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 15/06/2009|16:53 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 15/06/2009|17:20 - Option : [2]

--------------------\\ Fin du rapport a 17:20:18
0
Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
15 juin 2009 à 19:17
Re,

comment va l'ordi ?

===

Refais tourner RSIT (télécharge Hijackthis si il veut bien).

Poste le rapport.
0
morenas31 Messages postés 30 Date d'inscription jeudi 4 juin 2009 Statut Membre Dernière intervention 15 juin 2009
15 juin 2009 à 19:24
Logfile of random's system information tool 1.06 (written by random/random)
Run by Ibtissem at 2009-06-15 18:23:20
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 8 GB (27%) free of 30 GB
Total RAM: 990 MB (65% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Documents and Settings\Ibtissem\Mes documents\rpbrowserrecordplugin.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2008-11-05 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-05-20 259696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-05-20 668656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2006-07-07 493856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll [2009-05-20 470512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-11-05 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-11-05 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2006-07-07 493856]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar avec bloqueur de fenêtres pop-up - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL []
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-05-20 259696]
{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - BearShare MediaBar - C:\Program Files\BearShare Applications\BearShare MediaBar\BSMediaBar.dll []
{0BF43445-2F28-4351-9252-17FE6E806AA0}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"windows drivers"=C:\WINDOWS\system32\win drivers [2009-06-15 3564891]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-11-05 68856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdslTaskBar]
stmctrl.dll,TaskBar []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Amok Eggs Four Web]
C:\Documents and Settings\All Users\Application Data\part dead amok eggs\title real.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt]
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe /min []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BearShare]
C:\Program Files\BearShare\BearShare.exe /pause []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent]
bthprops.cpl,,BluetoothAuthenticationAgent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPSON Stylus D78 Series]
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBGE.EXE [2006-02-23 131072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Documents and Settings\Ibtissem\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-05-22 133104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HiYo]
C:\Program Files\HiYo\bin\HiYo.exe [2009-01-11 300336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hp 1000 firmware]
C:\Program Files\hp LaserJet 1000\fwdl.exe [2001-04-18 36864]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1]
C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-03 208952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]
C:\WINDOWS\system32\LVCOMSX.EXE [2005-07-19 221184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\memo site kind that]
C:\Documents and Settings\All Users\Application Data\Grid Blue Memo Site\about bird.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsmqIntCert]
regsvr32 /s mqrt.dll []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\MSN Messenger\MsnMsgr.Exe [2007-01-19 5674352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSPY2002]
C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [2004-08-03 59392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyWebSearch Plugin]
rundll32 C:\PROGRA~1\MYWEBS~1\bar\1.bin\M3PLUGIN.DLL,UPF []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A]
C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-03 455168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002ASync]
C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-03 455168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2007-06-29 286720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RocketDock]
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe [2007-03-19 630784]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2006-05-01 843776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StormCodec_Helper]
C:\Program Files\Ringz Studio\Storm Codec\StormSet.exe [2005-03-24 94770]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre6\bin\jusched.exe [2008-11-05 136600]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuperCopier2.exe]
C:\Program Files\SuperCopier2\SuperCopier2.exe [2006-07-07 1052672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM]
C:\Program Files\SweetIM\Messenger\SweetIM.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-11-05 68856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Thsys]
D:\WINDOWS\system32\winrun.sys.pif []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ToniArts EasyCleaner]
C:\Documents and Settings\Adel\Mes documents\moh\ToniArts\EasyCleaner\EasyClea.exe [2003-12-02 1994240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UIUCU]
C:\DOCUME~1\Adel\LOCALS~1\Temp\UIUCU.EXE -CLEAN_UP -S []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UserFaultCheck]
C:\WINDOWS\system32\dumprep 0 -u []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Vga Copy]
C:\DOCUME~1\Ibtissem\APPLIC~1\LIESRE~1\Plan Program.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Yahoo Messengger]
C:\WINDOWS\system32\winfiles.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Adel^Menu Démarrer^Programmes^Démarrage^RocketDock.lnk]
C:\WINDOWS\BRICOP~1\VISTAI~1\ROCKET~1\ROCKET~1.EXE [2007-03-19 630784]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Adel^Menu Démarrer^Programmes^Démarrage^TransBar.lnk]
C:\WINDOWS\BRICOP~1\VISTAI~1\TransBar\TransBar.exe [2005-06-01 65536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Adel^Menu Démarrer^Programmes^Démarrage^UberIcon.lnk]
C:\WINDOWS\BRICOP~1\VISTAI~1\UberIcon\UBERIC~1.EXE [2006-05-21 180224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Adel^Menu Démarrer^Programmes^Démarrage^Y'z Shadow.lnk]
C:\WINDOWS\BRICOP~1\VISTAI~1\YzShadow\YzShadow.exe [2006-05-21 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Accélérateur de démarrage AutoCAD.lnk]
C:\PROGRA~1\FICHIE~1\AUTODE~1\ACSTAR~1.EXE [2005-03-05 10872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^BlueSoleil.lnk]
C:\PROGRA~1\IVTCOR~1\BLUESO~1\BLUESO~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^RocketDock.lnk]
C:\WINDOWS\BRICOP~1\VISTAI~1\ROCKET~1\ROCKET~1.EXE [2007-03-19 630784]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^TransBar.lnk]
C:\WINDOWS\BRICOP~1\VISTAI~1\TransBar\TransBar.exe [2005-06-01 65536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^UberIcon.lnk]
C:\WINDOWS\BRICOP~1\VISTAI~1\UberIcon\UBERIC~1.EXE [2006-05-21 180224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Y'z Shadow.lnk]
C:\WINDOWS\BRICOP~1\VISTAI~1\YzShadow\YzShadow.exe [2006-05-21 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Ibtissem^Menu Démarrer^Programmes^Démarrage^Adobe Gamma.lnk]
C:\PROGRA~1\FICHIE~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2005-03-16 113664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Ibtissem^Menu Démarrer^Programmes^Démarrage^RocketDock.lnk]
C:\WINDOWS\BRICOP~1\VISTAI~1\ROCKET~1\ROCKET~1.EXE [2007-03-19 630784]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Ibtissem^Menu Démarrer^Programmes^Démarrage^TransBar.lnk]
C:\WINDOWS\BRICOP~1\VISTAI~1\TransBar\TransBar.exe [2005-06-01 65536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Ibtissem^Menu Démarrer^Programmes^Démarrage^UberIcon.lnk]
C:\WINDOWS\BRICOP~1\VISTAI~1\UberIcon\UBERIC~1.EXE [2006-05-21 180224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Ibtissem^Menu Démarrer^Programmes^Démarrage^Y'z Shadow.lnk]
C:\WINDOWS\BRICOP~1\VISTAI~1\YzShadow\YzShadow.exe [2006-05-21 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-12-17 110592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2004-08-04 240128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDriveAutoRun"=FFFFFFFF
"NoDrives"=0
"NoFind"=0
"NoFolderOptions"=0
"NoRun"=0
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"D:\LimeWire\LimeWire.exe"="D:\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"D:\asmaa\uTorrent.exe"="D:\asmaa\uTorrent.exe:*:Enabled:µTorrent"
"C:\WINDOWS\system32\mqsvc.exe"="C:\WINDOWS\system32\mqsvc.exe:*:Enabled:Message Queuing"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\WINDOWS\system32\mqsvc.exe"="C:\WINDOWS\system32\mqsvc.exe:*:Enabled:Message Queuing"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

======File associations======

.scr - open - "C:\WINDOWS\system32\notepad.exe" "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 2 months======

2009-12-04 23:45:52 ----D---- C:\Program Files\Xilisoft
2009-06-15 18:23:20 ----D---- C:\rsit
2009-06-15 16:52:15 ----A---- C:\lopR.txt
2009-06-15 16:51:49 ----D---- C:\Lop SD
2009-06-15 14:59:56 ----RASHD---- C:\autorun.inf
2009-06-15 14:54:49 ----D---- C:\UsbFix
2009-06-15 14:50:05 ----A---- C:\TCleaner.txt
2009-06-12 23:58:28 ----SHD---- C:\RECYCLER
2009-06-12 22:46:31 ----A---- C:\Nouveau Document texte.txt
2009-06-12 22:46:07 ----A---- C:\RHosts.exe
2009-06-12 22:46:02 ----A---- C:\ZHPDiag.exe
2009-06-09 16:57:43 ----ASH---- C:\BOOT.BAK
2009-06-09 16:57:25 ----RSHD---- C:\cmdcons
2009-06-09 16:57:25 ----A---- C:\WINDOWS\UPGRADE.TXT
2009-06-09 16:57:22 ----D---- C:\WINDOWS\setup.pss
2009-06-08 15:53:49 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-06-06 23:36:11 ----D---- C:\WINDOWS\ERDNT
2009-06-06 21:22:43 ----D---- C:\Program Files\trend micro
2009-05-28 18:58:05 ----D---- C:\Documents and Settings\All Users\Application Data\SiteAdvisor
2009-05-28 18:44:54 ----D---- C:\Documents and Settings\All Users\Application Data\McAfee
2009-05-26 01:01:27 ----D---- C:\Documents and Settings\Ibtissem\Application Data\Malwarebytes
2009-05-26 01:00:09 ----A---- C:\mbam-setup.exe
2009-05-24 01:43:31 ----D---- C:\Program Files\UNO Freeware
2009-05-24 01:43:17 ----A---- C:\WINDOWS\GPInstall.exe
2009-05-23 12:56:15 ----D---- C:\My Downloads
2009-05-23 02:27:51 ----D---- C:\Documents and Settings\Ibtissem\Application Data\Real
2009-05-23 00:08:37 ----D---- C:\Documents and Settings\Ibtissem\Application Data\BearShare
2009-05-22 01:26:54 ----D---- C:\Program Files\Lies Ref Iso
2009-05-21 18:51:27 ----D---- C:\Program Files\Messenger Plus! Live
2009-05-21 13:22:55 ----D---- C:\Documents and Settings\Ibtissem\Application Data\skypePM
2009-05-21 13:19:23 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2009-05-20 12:46:32 ----A---- C:\WINDOWS\IDMan.INI
2009-05-19 23:02:55 ----D---- C:\save2pc
2009-05-16 22:35:28 ----D---- C:\Documents and Settings\Ibtissem\Application Data\Graphisoft
2009-05-16 22:21:34 ----D---- C:\Program Files\WIBU-SYSTEMS
2009-05-16 22:13:58 ----D---- C:\Program Files\Graphisoft
2009-05-15 23:56:28 ----D---- C:\Documents and Settings\Ibtissem\Application Data\uTorrent
2009-04-17 19:00:00 ----C---- C:\WINDOWS\system32\isutil.dll
2009-04-17 18:59:57 ----A---- C:\WINDOWS\system32\zstatus.exe
2009-04-17 18:59:57 ----A---- C:\WINDOWS\system32\ZSHP1000.dll
2009-04-17 18:59:57 ----A---- C:\WINDOWS\apptune.ini
2009-04-17 18:59:57 ----A---- C:\WINDOWS\apptune.exe
2009-04-17 18:59:56 ----A---- C:\WINDOWS\system32\hpflash1.exe
2009-04-17 18:59:55 ----A---- C:\WINDOWS\system32\ZUNINST.EXE
2009-04-17 18:59:55 ----A---- C:\WINDOWS\system32\ZTAG32.DLL
2009-04-17 18:59:55 ----A---- C:\WINDOWS\system32\ZSPOOL.DLL
2009-04-17 18:59:55 ----A---- C:\WINDOWS\system32\ZPP.DLL
2009-04-17 18:59:55 ----A---- C:\WINDOWS\system32\zPJL.dll
2009-04-17 18:59:55 ----A---- C:\WINDOWS\system32\zlmhp1.dll
2009-04-17 18:59:55 ----A---- C:\WINDOWS\system32\zlm.dll
2009-04-17 18:59:55 ----A---- C:\WINDOWS\system32\ZLANG.DLL
2009-04-17 18:59:55 ----A---- C:\WINDOWS\system32\ZGDI32.DLL
2009-04-17 18:59:55 ----A---- C:\WINDOWS\system32\VSETUP.DLL
2009-04-17 18:59:55 ----A---- C:\WINDOWS\system32\SDhp1000.DLL
2009-04-17 18:59:55 ----A---- C:\WINDOWS\system32\IMF32.DLL
2009-04-17 18:59:54 ----A---- C:\WINDOWS\system32\zpppcl.dll
2009-04-17 18:59:54 ----A---- C:\WINDOWS\system32\PCLDLL6L.DLL
2009-04-17 18:59:53 ----D---- C:\Program Files\hp LaserJet 1000
2009-04-17 15:51:41 ----D---- C:\Config.Msi
2009-04-16 11:39:22 ----D---- C:\Program Files\Canon

======List of files/folders modified in the last 2 months======

2009-06-15 17:44:37 ----D---- C:\WINDOWS\Prefetch
2009-06-15 17:22:37 ----D---- C:\WINDOWS\Temp
2009-06-15 17:20:48 ----D---- C:\WINDOWS\system32
2009-06-15 17:20:48 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-06-15 17:18:38 ----D---- C:\Program Files
2009-06-15 17:06:24 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-06-15 16:50:39 ----AC---- C:\WINDOWS\NeroDigital.ini
2009-06-15 15:00:01 ----D---- C:\WINDOWS
2009-06-15 14:47:16 ----SHD---- C:\System Volume Information
2009-06-15 14:47:16 ----D---- C:\WINDOWS\system32\Restore
2009-06-15 14:44:43 ----A---- C:\WINDOWS\system32\win drivers.exe
2009-06-14 03:10:59 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-06-14 03:10:40 ----SHD---- C:\WINDOWS\Installer
2009-06-12 23:53:30 ----D---- C:\WINDOWS\system32\drivers
2009-06-12 23:52:07 ----D---- C:\WINDOWS\system32\CatRoot2
2009-06-12 23:51:12 ----A---- C:\WINDOWS\system.ini
2009-06-12 23:48:13 ----D---- C:\WINDOWS\system32\config
2009-06-12 23:47:07 ----D---- C:\WINDOWS\AppPatch
2009-06-12 23:47:06 ----D---- C:\Program Files\Fichiers communs
2009-06-09 16:57:44 ----RASH---- C:\boot.ini
2009-06-09 03:26:12 ----A---- C:\jacombo.exe
2009-06-08 14:02:42 ----AC---- C:\WINDOWS\WININIT.INI
2009-06-07 18:26:06 ----D---- C:\Documents and Settings
2009-06-05 22:10:42 ----D---- C:\Program Files\Fichiers communs\Autodesk Shared
2009-06-05 22:08:26 ----D---- C:\WINDOWS\system32\DirectX
2009-06-05 22:08:25 ----RSD---- C:\WINDOWS\assembly
2009-06-05 12:13:35 ----D---- C:\Documents and Settings\Ibtissem\Application Data\Lies Ref Iso
2009-05-31 13:11:33 ----A---- C:\WINDOWS\win.ini
2009-05-31 13:11:32 ----D---- C:\WINDOWS\pss
2009-05-28 18:51:52 ----D---- C:\WINDOWS\system32\CatRoot
2009-05-27 14:48:35 ----D---- C:\Program Files\SuperCopier2
2009-05-26 11:29:49 ----SD---- C:\Documents and Settings\Ibtissem\Application Data\Microsoft
2009-05-24 03:22:43 ----D---- C:\Documents and Settings\Ibtissem\Application Data\LimeWire
2009-05-24 00:11:18 ----D---- C:\Program Files\Fichiers communs\Real
2009-05-23 21:53:52 ----D---- C:\Documents and Settings\Ibtissem\Application Data\Skype
2009-05-23 02:31:58 ----A---- C:\WINDOWS\system32\msvcr71.dll
2009-05-20 20:09:39 ----A---- C:\WINDOWS\ModemLog_Bluetooth Fax Modem.txt
2009-05-20 20:09:39 ----A---- C:\WINDOWS\ModemLog_Bluetooth DUN Modem.txt
2009-05-20 12:50:33 ----D---- C:\WINDOWS\Debug
2009-05-13 19:27:16 ----RSD---- C:\WINDOWS\Fonts
2009-05-10 16:26:11 ----D---- C:\WINDOWS\system32\NtmsData
2009-04-26 23:20:58 ----A---- C:\WINDOWS\system32\Read Me.txt
2009-04-26 23:20:48 ----D---- C:\WINDOWS\system32\Death Note
2009-04-17 15:52:21 ----D---- C:\WINDOWS\system32\wbem
2009-04-17 15:52:20 ----D---- C:\WINDOWS\Registration

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-04 40320]
R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-03-22 278728]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-03-22 25416]
R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2004-08-04 88448]
R2 NwlnkNb;NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-10-02 63232]
R2 NwlnkSpx;Protocole NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-10-02 55936]
R2 Sentinel;Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [1997-05-30 64512]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2006-05-22 230400]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-12-17 1918464]
R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys [2006-05-17 44544]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-08-12 137728]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-10-02 9600]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-02 12288]
R3 MQAC;Message Queuing access control; \??\C:\WINDOWS\system32\drivers\mqac.sys []
R3 RMCAST;Reliable Multicast Protocol driver; \??\C:\WINDOWS\system32\drivers\RMCast.sys []
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-02 5888]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2006-03-17 392960]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-04 26624]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-04 57600]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-04 17024]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2005-05-31 20480]
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2005-04-30 10804]
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [2005-05-31 23000]
S3 BthEnum;Pilote de bloc de demande Bluetooth; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2004-08-04 17024]
S3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys [2005-04-30 11860]
S3 BthPan;Périphérique Bluetooth (réseau personnel); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2004-08-03 100992]
S3 BTHPORT;Pilote de port Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2004-08-04 274944]
S3 BTHUSB;Pilote USB radio Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2004-08-04 18944]
S3 BTNetFilter;Bluetooth Network Filter; \??\C:\WINDOWS\system32\drivers\BTNetFilter.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-04 17024]
S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys [2005-01-31 22016]
S3 Msfotlk;Msfotlk; C:\WINDOWS\system32\drivers\rdbss.sys [2004-08-04 176512]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-04 10880]
S3 PID_0928;Logitech QuickCam Express(PID_0928); C:\WINDOWS\system32\DRIVERS\LV561AV.SYS [2005-01-31 211712]
S3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2004-08-04 59648]
S3 sermouse;Pilote pour souris sur port série; C:\WINDOWS\system32\DRIVERS\sermouse.sys [2001-08-23 18432]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-04 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-04 15360]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-04 31616]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [2004-10-19 61312]
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2005-03-25 82148]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-04 19328]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sr;Pilote de filtre de restauration système; C:\WINDOWS\system32\DRIVERS\sr.sys [2004-08-04 73600]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-12-17 434176]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2008-11-05 152984]
R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 NwSapAgent;Agent SAP; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-12-20 520192]
S2 IISADMIN;Administration IIS; C:\WINDOWS\system32\inetsrv\inetinfo.exe []
S2 MSMQ;Message Queuing; C:\WINDOWS\system32\mqsvc.exe [2004-08-04 4608]
S2 MSMQTriggers;Message Queuing Triggers; C:\WINDOWS\system32\mqtgsvc.exe [2004-08-04 117248]
S2 SMTPSVC;Simple Mail Transfer Protocol (SMTP); C:\WINDOWS\system32\inetsrv\inetinfo.exe []
S2 SNMP;Service SNMP; C:\WINDOWS\System32\snmp.exe []
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-11-06 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe [2009-01-30 77944]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-05-20 182768]
S3 LPDSVC;Serveur d'impression TCP/IP; C:\WINDOWS\system32\tcpsvcs.exe [2001-10-02 19456]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SNMPTRAP;Service d'interruption SNMP; C:\WINDOWS\System32\snmptrap.exe []
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]

-----------------EOF-----------------
0
morenas31 Messages postés 30 Date d'inscription jeudi 4 juin 2009 Statut Membre Dernière intervention 15 juin 2009
15 juin 2009 à 19:35
il marche mieux qu'avant le dossier winefiles.exe n'apparait plus, vraiment merci
juste une question es-que le dois faire les même procédures pour mes autres PC.
encore merci
0