PC INFECTION

Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention   -  
sKe69 Messages postés 21360 Date d'inscription   Statut Contributeur sécurité Dernière intervention   -
Bonjour,

Chers ami(e)s,

Ayant tenté de trouver des solutions à mon problème, je me retrouve à court d'idées.
Je poste donc pour la 1ère fois, espérant trouver une aide précieuse au sein de la communauté.

Voici le problème: Mon PC est infecté, Résultat:

- Les Applications ne se lancent plus ( du moins la plupart)

- Plus de Son ( j'ai réinstallé les pilotes audio, ca a marché sur le coup, mais plus rien au redémarrage)

- Plus d'Accès au Poste de Travail ( si ce n'est par le gestionnaire)

- Bonne Frustration garantie

Voici mon rapport HijackThis:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:17:13, on 16/06/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ps2.exe
C:\Program Files\Vista Drive Icon\DrvIcon.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Actual Window Minimizer\ActualWindowMinimizerCenter.exe
C:\WINDOWS\system32\agrsmsvc.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\system32\fsproflt.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Documents and Settings\HP_Propriétaire\Bureau\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q105&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - (no file)
O4 - HKLM\..\Run: [Recguard] "C:\WINDOWS\SMINST\RECGUARD.EXE"
O4 - HKLM\..\Run: [SiSPower] "C:\WINDOWS\system32\Rundll32.exe" SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [PS2] "C:\WINDOWS\system32\ps2.exe"
O4 - HKLM\..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe
O4 - HKLM\..\Run: [RTHDCPL] "C:\WINDOWS\RTHDCPL.EXE"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Actual Window Minimizer] "C:\Program Files\Actual Window Minimizer\ActualWindowMinimizerCenter.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Translate this web page with Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
O8 - Extra context menu item: Translate with Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O9 - Extra 'Tools' menuitem: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - https://sdlc-esd.oracle.com/ESD5/JSCDL/jre/6u10-b92-b/jinstall-6u10-windows-i586-jc.cab?GroupName=JSC&FilePath=/ESD5/JSCDL/jre/6u10-b92-b/jinstall-6u10-windows-i586-jc.cab&BHost=javadl.sun.com&File=jinstall-6u10-windows-i586-jc.cab&AuthParam=1580987764_a5235be86e79daca0cfb05ddc36bfbcd&ext=.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Kaspersky Lab\Kaspersky Internet Security 2009\kloehk.dll,C:\PROGRA~1\Kaspersky Lab\Kaspersky Internet Security 2009\mzvkbd.dll,C:\PROGRA~1\Kaspersky Lab\Kaspersky Internet Security 2009\adialhk.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\WINDOWS\system32\agrsmsvc.exe
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing)
O23 - Service: CachemanXP (CachemanXPService) - Unknown owner - C:\PROGRA~1\CACHEM~1\CachemanXP.exe (file missing)
O23 - Service: FSPro Filter Service (fsproflt) - FSPro Labs - C:\WINDOWS\system32\fsproflt.exe
O23 - Service: Service Google Update (gupdate1c9bc7fc11dcc16) (gupdate1c9bc7fc11dcc16) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
A voir également:

98 réponses

Précédent
Réponse 81 / 98
sKe69 Messages postés 21360 Date d'inscription   Statut Contributeur sécurité Dernière intervention   463
 
Bon ...

pour le son , tu as une carte PCI que tu as rajouté ou est-ce d'origine ...?


Fais un scan en ligne avec Kaspersky :

Suis les indications de ce tuto > http://www.commentcamarche.net/faq/sujet 17751 scanner en ligne avec kaspersky

Sauvegarde bien le rapport en ".txt" et poste son contenu dans ta prochaine réponse ...

0
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
Slt,

Pour la carte, elle est d'origine.

J'ai essayer l'analyse en ligne en faisant un scann sur les Zones Critiques, il n'a rien trouvé.
J'ai réessayer pour Poste de travail, et là ça galérait, prb de Java ou je ne sais quoi...
0
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention   > Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
Par contre j'ai réessayé un Scann complet avec A-squared, il est à 3% mais il a déja detecté 10 éléments ...
0
Réponse 82 / 98
sKe69 Messages postés 21360 Date d'inscription   Statut Contributeur sécurité Dernière intervention   463
 
re ,

tu me posteras le scan de A-squared ( surement que des coockies )...


ensuite tu fais le scan en ligne de Kas. stp ...

si tu avais lu le tuto correctement , tu aurais vu qu'il fallait installer la console Java avant !
Il y a le lien pour la télécharger et l'installer ... -_-

0
Réponse 83 / 98
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
Ok ça marche, je te tiens au courant
0
Réponse 84 / 98
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
Voilà le rapport A-Squared

Version - a-squared Free 4.5
Dernière mise à jour : 25/06/2009 15:17:20

Paramètres des balayages :

Type de numérisation : Scan Détail
Éléments : Mémoire, Traces, Cookies, C:\, D:\
Balaye dans les archives : Marche
Analyse heuristique : Arrêt
Balaye dans les ADS : Marche

Début du balayage : 25/06/2009 15:23:31

Value: HKEY_USERS\S-1-5-21-2112378725-2057309951-3520662138-1007\Software\NirSoft\pspv --> Columns Objets détectés : Trace.Registry.Protected Storage Pass View!A2
Value: HKEY_USERS\S-1-5-21-2112378725-2057309951-3520662138-1007\Software\NirSoft\pspv --> ShowAutoComplete Objets détectés : Trace.Registry.Protected Storage Pass View!A2
Value: HKEY_USERS\S-1-5-21-2112378725-2057309951-3520662138-1007\Software\NirSoft\pspv --> ShowAutoCompleteNoPass Objets détectés : Trace.Registry.Protected Storage Pass View!A2
Value: HKEY_USERS\S-1-5-21-2112378725-2057309951-3520662138-1007\Software\NirSoft\pspv --> ShowMsnExplorer Objets détectés : Trace.Registry.Protected Storage Pass View!A2
Value: HKEY_USERS\S-1-5-21-2112378725-2057309951-3520662138-1007\Software\NirSoft\pspv --> ShowOutlook Objets détectés : Trace.Registry.Protected Storage Pass View!A2
Value: HKEY_USERS\S-1-5-21-2112378725-2057309951-3520662138-1007\Software\NirSoft\pspv --> ShowPasswordProtected Objets détectés : Trace.Registry.Protected Storage Pass View!A2
Value: HKEY_USERS\S-1-5-21-2112378725-2057309951-3520662138-1007\Software\NirSoft\pspv --> ShowSubItems Objets détectés : Trace.Registry.Protected Storage Pass View!A2
Value: HKEY_USERS\S-1-5-21-2112378725-2057309951-3520662138-1007\Software\NirSoft\pspv --> WinPos Objets détectés : Trace.Registry.Protected Storage Pass View!A2
C:\Documents and Settings\HP_Propriétaire\Bureau\FFM.exe Objets détectés : Trojan-Downloader.Win32.Banload!IK
C:\Documents and Settings\HP_Propriétaire\Bureau\Téléchargement\CrackWepWiFi by kanoui\CrackWepWiFi by kanoui\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Updater.exe Objets détectés : Exploit.Win32.DVBBS!IK
C:\Documents and Settings\HP_Propriétaire\Mes documents\FL Studio 7-8\Image-Line\Downloader\ILDownloadManager.exe Objets détectés : Virus.Win32.Virut!IK
C:\Documents and Settings\HP_Propriétaire\Mes documents\FL Studio 7-8\Image-Line\FL Studio 7\Plugins\Fruity\Generators\Chrome\GraphicsTester.exe Objets détectés : Virus.Win32.Virut!IK
C:\Documents and Settings\HP_Propriétaire\Mes documents\FL Studio 7-8\Image-Line\FL Studio 8\Plugins\Fruity\Generators\Chrome\GraphicsTester.exe Objets détectés : Virus.Win32.Virut!IK
C:\Documents and Settings\HP_Propriétaire\Mes documents\Java\Fichiers jar\mumujudgem_tnyt3x5t.jar/e.class Objets détectés : Trojan-SMS!IK
C:\Documents and Settings\HP_Propriétaire\Mes documents\Programmes\AnyTV_Pro_v.4.25.rar/anyTV.exe Objets détectés : Backdoor.Win32.Bifrose!IK
C:\Documents and Settings\HP_Propriétaire\Mes documents\Programmes\Auslogics Registry Defrag 4.1.5.50.rar/Patch.Fr.exe Objets détectés : Trojan.StartPage!IK
C:\Documents and Settings\HP_Propriétaire\Mes documents\Programmes\cap_b2i.exe Objets détectés : Virus.Win32.Sality!IK
C:\Documents and Settings\HP_Propriétaire\Mes documents\Programmes\Speedupmypc 2009\Uniblue_Komplettpaket__Registry_Booster___Speed_Up_my_Pc___Spy_Eraser_.rar/UBVarRB.dll Objets détectés : Virus.Win32.Sality!IK
C:\Documents and Settings\HP_Propriétaire\Mes documents\Programmes\Tune Up 2009\Keygen.exe Objets détectés : Riskware.Keygen.TuneUP!IK
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\PsaProxy.exe Objets détectés : Virus.Win32.Sality!IK
C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe Objets détectés : Virus.Win32.Sality!IK
C:\Program Files\FL STUDIO\Image-Line\Downloader\ILDownloadManager.exe Objets détectés : Virus.Win32.Virut!IK
C:\Program Files\FL STUDIO\Image-Line\FL Studio 8\Data\Patches\Packs\MON STUDIO\Packs\FL Studio 7\Plugins\Fruity\Generators\Chrome\GraphicsTester.exe Objets détectés : Virus.Win32.Virut!IK
C:\Program Files\FL STUDIO\Image-Line\FL Studio 8\Plugins\Fruity\Generators\Chrome\GraphicsTester.exe Objets détectés : Virus.Win32.Virut!IK
C:\Program Files\Java Web Start\javaws.exe Objets détectés : Virus.Win32.Sality!IK
C:\WINDOWS\Installer\{05460044-64A6-4248-A026-9745C1E9E159}\ENCICO05.EXE Objets détectés : Virus.Win32.Sality!IK
D:\MiniNT\system32\FATFMT32.EXE Objets détectés : Backdoor.Win32.BO2K!IK
D:\MiniNT\system32\LogViewer.exe Objets détectés : Trojan-Downloader.Win32.PurityScan!IK
D:\I386\SYSTEM32\FATFMT32.EXE Objets détectés : Backdoor.Win32.BO2K!IK
D:\I386\SYSTEM32\LogViewer.exe Objets détectés : Trojan-Downloader.Win32.PurityScan!IK

Analysé

Fichiers : 426356
Traces : 660381
Cookies : 5
Processus : 38

Objets trouvés

Fichiers : 22
Traces : 8
Cookies : 0
Processus : 0
Clés de Registre : 0

Fin du balayage : 25/06/2009 19:06:55
Temps du balayage : 3:43:24
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 85 / 98
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
Pour Kaspersky, il en est à 75% il n'a rien trouvé pour le moment.

Je posterais le rapport, s'il trouve qqch.
0
Réponse 86 / 98
sKe69 Messages postés 21360 Date d'inscription   Statut Contributeur sécurité Dernière intervention   463
 
Je comprends mieux pourquoi ton PC est encore en galère !!!


Tu peux tout stopper ... ^^"


C:\Program Files\FL STUDIO\Image-Line\FL Studio 8\Plugins\Fruity\Generators\Chrome\GraphicsTester.exe Objets détectés : Virus.Win32.Virut!IK

C:\Documents and Settings\HP_Propriétaire\Mes documents\Programmes\cap_b2i.exe Objets détectés : Virus.Win32.Sality!IK


les pires saloperies qui soient ! ... tu peux dire merci au cracks sur réseau p2p ...


Je suis navré pour toi mais là, c'est formatage obligatoire ! (de C et D )


sauve tes données perso styles photos , musics , films , doc administratif .
tu sauvegardes de préférence sur des supports style cd/dvd ( mais dans ton cas , cela risque d'être dure ).
Dépèche toi car d'ici quelque temps , ton PC plantera complètement avec aucune chance de récupérer quoi que se soit ...

/!\ -> ne sauvegarde aucun exécutable ( .exe , .bat , .cmd ) , ne sauvegarde aucune archive ( .rar et .zip ) , et ne sauvegarde aucun fichier en .scr , .html et .htm ... les infections Virut et Sallity se propagent à travers tout ces types de fichiers ... si il y en un qui passe , il réinfecte tout le systeme ...


Formate tes disques dures en utilisant cette astuce ( KillDisk )> http://www.commentcamarche.net/faq/sujet 16138 comment supprimer virut#formatage killdisk
( regarde aussi cette page en générale , des info intéressantes sur cette merde de Virut )


Bonne chance mais moi j'arrète là ... ( on risque de se casser les dents sur 300 postes pour arriver au mieux à un PC qui tourne carré ... ^^ )


tiens moi au courant si tu as réussit à t'en sortir ..


A+
0
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
Salut Ske69,

Me voilà de retour ...
Ne disposant d'aucun DD externe pour pouvoir sauvegarder mes données, j'ai tenté avec fatalité de trouver d'autres alternatives en décidant d'éradiquer manuellement Virut,et Sality, les pires saloperies du web, en parcourant les diverses astuces proposées sur la toile.

J'ai du avoir recours à "Dr.Web" & "Remove it" qui me l'ont pratiquement, je dis bien "pratiquement" désinfecté.

Un vrai western ...car apparemment ces 2 là sont de vrais coriaces.

Enfin voilà je pense être un grand rescapé de ce fléau , je n'ai heureusement pas subis trop de dégats au coeur des cellules-mères, ayant réagit à tant, et sachant que la connexion internet reste pour ces 2 hors-la-loi leur "Nourricière".

J'ai retrouvé l'usage de mes applications, le fameux Son tant attendu et le bureau en général.

Seule petite tâche au tableau: ma traitre corbeille se prénommant tjrs "Sebdou".

C'est pour cela qu'avant de me croire tiré d'affaire, je poste un dernier log Hijackthis à la recherche d'anomalies :
0
Réponse 87 / 98
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 01:18:02, on 08/07/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\a-squared Free\a2service.exe
C:\WINDOWS\system32\agrsmsvc.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\ps2.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Vista Drive Icon\DrvIcon.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\WINDOWS\ALCMTR.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\HP_Propriétaire\Bureau\Optimisation & Sécurité\HP_Propriétaire.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - (no file)
O4 - HKLM\..\Run: [Recguard] "C:\WINDOWS\SMINST\RECGUARD.EXE"
O4 - HKLM\..\Run: [SiSPower] "C:\WINDOWS\system32\Rundll32.exe" SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [PS2] "C:\WINDOWS\system32\ps2.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\WINDOWS\system32\agrsmsvc.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing)
O23 - Service: CachemanXP (CachemanXPService) - Unknown owner - C:\PROGRA~1\CACHEM~1\CachemanXP.exe (file missing)
O23 - Service: FSPro Filter Service (fsproflt) - Unknown owner - C:\WINDOWS\system32\fsproflt.exe (file missing)
O23 - Service: Service Google Update (gupdate1c9bc7fc11dcc16) (gupdate1c9bc7fc11dcc16) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe (file missing)
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
0
Réponse 88 / 98
sKe69 Messages postés 21360 Date d'inscription   Statut Contributeur sécurité Dernière intervention   463
 
re,

Enfin voilà je pense être un grand rescapé de ce fléau

> cela m'étonnerai .... ^^

Fais ceci histoire de voir, la manipe de AVPTool :
http://www.commentcamarche.net/faq/sujet 16138 comment supprimer virut#deuxieme methode avptool


Poste le rapport obtenu pour contrôle ...


0
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
A vrai dire, la dernière fois que je l'ai essayé, il m'a fait 13 longues heures de scann sans rien trouver, surtout que des fois il bloque sur un fichier sans raison...

Mais bon je retente le coup, au cas où, on verra ce que ça donne ....
0
sKe69 Messages postés 21360 Date d'inscription   Statut Contributeur sécurité Dernière intervention   463 > Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
Re,

si il bloque c'est pas bon signe non plus ....

refait aussi derrière un scan avec A-Squared et tu postera le rapport aussi ... ^^



si ces deux rapport sont clean , on fera une petite réparation de Windows ....

0
Réponse 89 / 98
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
Bon voilà apparemment, AVP m'a retrouvé 2 trojans grâce à la mise à jour ( j'ai mis seulement l'essentiel du log trop long) :

Scan
----
Scanned: 1149569
Detected: 2
Untreated: 0
Start time: 08/07/2009 02:46:41
Duration: 13:19:53
Finish time: 08/07/2009 16:06:34


Detected
--------
Status Object
------ ------
deleted: Trojan program Trojan.Win32.Swizzor.b File: C:\Program Files\BioWare Corp\Neverwinter Nights\utils\nwcontbuild.exe
deleted: Trojan program Trojan.Win32.Swizzor.b File: C:\System Volume Information\_restore{5864E199-E068-480D-BF55-3BCEB0D80CFD}\RP6\A0000433.exe

Statistics
----------
Object Scanned Detected Untreated Deleted Moved to Quarantine Archives Packed files Password protected Corrupted
------ ------- -------- --------- ------- ------------------- -------- ------------ ------------------ ---------
All objects 1149569 2 2 0 0 36946 5327 1560 4
System memory 1033 0 0 0 0 1 0 0 0
Startup objects 1018 0 0 0 0 5 186 0 0
Disk boot sectors 3 0 0 0 0 0 0 0 0
Mes documents 82621 0 0 0 0 1108 57 0 0
Mail databases 2 0 0 0 0 1 0 0 0
Poste de travail 531853 2 2 0 0 17893 2634 780 2
HP_PAVILION (C:) 451148 0 0 0 0 11562 2139 780 2
HP_RECOVERY (D:) 81891 0 0 0 0 6376 311 0 0
Lecteur CD (E:) 0 0 0 0 0 0 0 0 0
Lecteur CD (F:) 0 0 0 0 0 0 0 0 0
Disque amovible (I:) 0 0 0 0 0 0 0 0 0
Disque amovible (J:) 0 0 0 0 0 0 0 0 0
Disque amovible (K:) 0 0 0 0 0 0 0 0 0
Disque amovible (L:) 0 0 0 0 0 0 0 0 0


Settings
--------
Parameter Value
--------- -----
Security Level Recommended
Action Prompt for action when the scan is complete
Run mode Manually
File types Scan all files
Scan only new and changed files No
Scan archives All
Scan embedded OLE objects All
Skip if object is larger than No
Skip if scan takes longer than No
Parse email formats No
Scan password-protected archives No
Enable iChecker technology No
Enable iSwift technology No
Show detected threats on "Detected" tab Yes
Rootkits search Yes
Deep rootkits search No
Use heuristic analyzer Yes


Quarantine
----------
Status Object Size Added
------ ------ ---- -----


Backup
------
Status Object Size
------ ------ ----
Infected: Trojan program Trojan.Win32.Swizzor.b c:\program files\bioware corp\neverwinter nights\utils\nwcontbuild.exe 468 KB
Infected: Trojan program Trojan.Win32.Swizzor.b c:\system volume information\_restore{5864e199-e068-480d-bf55-3bceb0d80cfd}\rp6\a0000433.exe 468 KB
0
Réponse 90 / 98
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
Je poste le rapport A squared dans ma prochaine réponse
0
Réponse 91 / 98
sKe69 Messages postés 21360 Date d'inscription   Statut Contributeur sécurité Dernière intervention   463
 
Pour l'instant , cela sens plutôt bon ... ;)



poste le rapport A-Squared dès que possible ....

j'y jetterai un cil demain et te dirai quoi faire ... ^^


0
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
A squared n'a rien trouvé ... Tant mieux

Pour ce qui est de l' étrange corbeille "Sebdou", le problème a été réglé en effaçant l'entrée Sebdou du registre...
0
Réponse 92 / 98
Profil bloqué
 
telecharge "eset nod 32 anti-virus" tu vas sur google tu mais le nom se le meilleur si ont peut dire le plus inteligent des anti-virus &spyware avant desseyer de formater ton system se un bon antivirus & anti'spyware javais un problem similaire a la tienne mais contrairement a toi mon virus attak les pheriperique usb
0
Réponse 93 / 98
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
Pense-tu qu'il soit plus efficace qu' Antivir qui est assez réputé comme étant le meilleur des antivirus gratuits?
0
Réponse 94 / 98
Profil bloqué
 
ESET NOD32 ANTI-VIRUS est le meilleur sans doute mais il n'est pas gratuit il a une version d'éssey de 30 jours
fait une search sur google et tu veras par toi même
0
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
Ok merci pour l'info, je vais en attendant suivre les indications de Ske, il connait bien mon problème, mais c'est noté .
0
sKe69 Messages postés 21360 Date d'inscription   Statut Contributeur sécurité Dernière intervention   463 > Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
yop ,


la suite c'est ici > http://www.commentcamarche.net/forum/affich 12904841 pc infection?page=5#140


^^
0
Réponse 95 / 98
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.20GHz )
BIOS : BIOS Date: 12/14/04 19:30:48 Ver: 08.00.10
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : AntiVir Desktop 9.0.1.26 (Activated)
Firewall : ZoneAlarm Firewall 7.0.483.000 (Activated)
C:\ (Local Disk) - NTFS - Total:228 Go (Free:57 Go)
D:\ (Local Disk) - FAT32 - Total:4 Go (Free:0 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
I:\ (USB)
J:\ (USB)
K:\ (USB)
L:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 10/07/2009| 0:00 )

--------------------\\ Listing des dossiers dans APPLIC~1

[07/07/2009|03:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{55A29068-F2CE-456C-9148-C869879E2357}
[11/06/2009|23:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[04/06/2009|15:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{A613CA96-150A-4A1D-90CE-67F81379DF8C}
[13/06/2009|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{B46E1EF5-0B37-4DB4-A4E2-9F2B41036185}
[03/06/2009|16:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{D5ABFFAD-D592-4F98-B02B-587125B4801F}
[07/07/2009|03:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[29/04/2008|02:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[19/06/2009|02:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AntiVir PersonalEdition Classic
[05/12/2008|11:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[01/01/2005|12:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[20/06/2009|03:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[19/08/2008|19:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[11/08/2008|02:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[04/06/2009|19:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DriverScanner
[02/06/2009|20:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[09/07/2009|23:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[03/05/2009|16:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
[01/01/2005|12:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[09/07/2009|09:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[15/06/2009|10:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[07/07/2009|02:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[10/06/2009|06:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[30/03/2009|22:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Micro Application
[21/02/2009|01:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[08/11/2007|11:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Corporation
[01/01/2005|17:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
[28/05/2009|21:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mushroom Age
[06/03/2007|22:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[30/12/2006|07:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Phenomedia
[17/03/2008|18:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[01/01/2005|12:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[01/03/2008|00:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
[09/07/2009|01:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[05/07/2009|23:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
[24/04/2009|21:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SystemExplorer
[09/07/2009|07:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[20/03/2007|11:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[15/02/2007|08:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[30/03/2009|17:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ubisoft
[02/01/2007|19:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[15/02/2007|08:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[29/12/2006|07:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[01/01/2005|12:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[01/01/2005|10:45] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[01/01/2005|12:12] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Intervideo
[22/05/2009|22:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[01/01/2005|17:16] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[01/01/2005|15:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[01/01/2005|11:09] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[01/01/2005|14:07] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[19/05/2009|03:45] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Actual Tools
[07/07/2009|07:09] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Adobe
[02/12/2007|20:40] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AdobeUM
[07/07/2009|03:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Any Video Converter
[25/06/2009|21:59] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Any Video Converter Professional
[27/03/2009|00:32] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Apple Computer
[03/06/2009|17:38] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ArcticLine
[24/06/2009|23:15] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ATI
[07/07/2009|03:23] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Auslogics
[27/06/2008|00:58] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AVS4YOU
[19/08/2008|19:56] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AVSMedia
[19/05/2009|16:39] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Bump Technologies, Inc
[16/04/2009|19:52] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Canneverbe_Limited
[19/05/2009|05:28] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Change Folder Icons
[07/07/2009|09:47] C:\DOCUME~1\HP_PRO~1\APPLIC~1\cspa
[19/05/2009|17:08] C:\DOCUME~1\HP_PRO~1\APPLIC~1\CursorArts
[19/11/2007|17:02] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Datalayer
[10/06/2009|04:44] C:\DOCUME~1\HP_PRO~1\APPLIC~1\DMV Technologies
[07/07/2009|10:41] C:\DOCUME~1\HP_PRO~1\APPLIC~1\dvdcss
[03/06/2009|22:06] C:\DOCUME~1\HP_PRO~1\APPLIC~1\FDRLab
[07/07/2009|07:09] C:\DOCUME~1\HP_PRO~1\APPLIC~1\GetRight Pro
[13/04/2009|23:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Google
[14/11/2007|15:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Help
[01/01/2005|10:45] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Identities
[25/05/2009|00:54] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ImTOO Software Studio
[18/11/2007|15:40] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InstallShield
[28/11/2007|07:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Intervideo
[25/06/2009|22:48] C:\DOCUME~1\HP_PRO~1\APPLIC~1\IObit
[01/03/2008|01:06] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Jasc Software Inc
[16/11/2007|16:47] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Lavasoft
[10/11/2007|22:13] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Leadertech
[08/03/2008|01:44] C:\DOCUME~1\HP_PRO~1\APPLIC~1\LogoMaker
[18/03/2008|14:01] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Macromedia
[10/06/2009|06:41] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Malwarebytes
[06/06/2009|17:40] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Microsoft
[10/11/2007|22:14] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Motive
[05/07/2009|20:51] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mozilla
[18/05/2009|00:08] C:\DOCUME~1\HP_PRO~1\APPLIC~1\MSNInstaller
[01/03/2008|01:19] C:\DOCUME~1\HP_PRO~1\APPLIC~1\NetMedia Providers
[14/11/2007|15:01] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Nokia
[25/05/2009|01:06] C:\DOCUME~1\HP_PRO~1\APPLIC~1\OpenCandy
[14/11/2007|01:01] C:\DOCUME~1\HP_PRO~1\APPLIC~1\PC Suite
[28/11/2008|16:10] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Pense-bete
[18/03/2008|14:01] C:\DOCUME~1\HP_PRO~1\APPLIC~1\PlayFirst
[10/06/2009|04:28] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Pouchin TV Mod
[01/03/2008|01:19] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Publish Providers
[18/06/2009|11:51] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Real
[07/06/2009|02:19] C:\DOCUME~1\HP_PRO~1\APPLIC~1\RobinsonCrusoe
[01/01/2005|15:41] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SampleView
[04/12/2008|13:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SecuROM
[05/10/2008|16:24] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Smart PC Solutions
[18/06/2009|13:15] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sonic
[01/03/2008|01:18] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sony
[21/03/2008|15:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Steinberg
[01/01/2005|11:09] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sun
[05/07/2009|23:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SUPERAntiSpyware.com
[28/11/2007|13:39] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Symantec
[06/07/2009|04:30] C:\DOCUME~1\HP_PRO~1\APPLIC~1\TrojanHunter
[13/11/2007|11:50] C:\DOCUME~1\HP_PRO~1\APPLIC~1\TuneUp Software
[29/07/2008|23:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\U3
[04/06/2009|15:07] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Uniblue
[09/07/2009|06:32] C:\DOCUME~1\HP_PRO~1\APPLIC~1\uTorrent
[17/05/2009|05:23] C:\DOCUME~1\HP_PRO~1\APPLIC~1\vlc
[05/05/2009|06:21] C:\DOCUME~1\HP_PRO~1\APPLIC~1\WinRAR

[16/04/2009|19:26] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
[13/04/2009|18:21] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[04/06/2009|15:32] C:\DOCUME~1\NETWOR~1\APPLIC~1\Adobe
[13/04/2009|18:21] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[09/07/2009 23:09][--a------] C:\WINDOWS\tasks\Google Software Updater.job
[02/07/2009 17:27][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[10/06/2009 17:38][--a------] C:\WINDOWS\tasks\SCHEDLGU.TXT
[18/05/2009 14:00][--a------] C:\WINDOWS\tasks\shutdown.job
[09/07/2009 23:53][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{8E7D7EBD-2C95-4A23-92C0-EC4AA0CC55B6}.job
[05/08/2004 12:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
[09/07/2009 17:57][--ah-----] C:\WINDOWS\tasks\SA.DAT

--------------------\\ Listing des dossiers dans C:\Program Files

[14/06/2008|03:10] C:\Program Files\3DO
[07/07/2009|03:00] C:\Program Files\AbiSuite2
[07/07/2009|03:02] C:\Program Files\AbiWord
[30/06/2009|04:54] C:\Program Files\ActivIcons
[17/06/2009|16:42] C:\Program Files\Actual Window Minimizer
[07/07/2009|03:58] C:\Program Files\Adobe
[05/05/2009|01:02] C:\Program Files\AGI
[15/02/2007|07:58] C:\Program Files\AnglaisFacile.com
[07/07/2009|03:03] C:\Program Files\Any Video Converter
[25/05/2009|04:51] C:\Program Files\Any Video Converter Professional
[13/06/2009|18:39] C:\Program Files\Apple Software Update
[08/07/2009|19:34] C:\Program Files\a-squared Free
[07/11/2007|02:02] C:\Program Files\ATI
[01/07/2009|14:19] C:\Program Files\ATI Technologies
[05/05/2009|06:53] C:\Program Files\AtomixMP3
[07/07/2009|03:03] C:\Program Files\AusLogics Disk Defrag
[07/07/2009|03:04] C:\Program Files\AusLogics Registry Defrag
[20/06/2009|03:03] C:\Program Files\Avira
[25/05/2009|01:31] C:\Program Files\AviSynth 2.5
[21/06/2009|14:24] C:\Program Files\AVS4YOU
[15/02/2007|07:11] C:\Program Files\Axon Data
[21/06/2009|14:22] C:\Program Files\Babylon
[09/07/2009|01:15] C:\Program Files\BioWare Corp
[07/05/2009|15:05] C:\Program Files\CachemanXP
[17/06/2009|19:13] C:\Program Files\CCleaner
[18/06/2009|01:27] C:\Program Files\DAP
[07/07/2009|04:09] C:\Program Files\Defraggler
[11/11/2007|23:03] C:\Program Files\DIFX
[13/12/2007|14:14] C:\Program Files\Disc2Phone
[25/06/2009|21:59] C:\Program Files\Falco Chess
[09/07/2009|11:21] C:\Program Files\Fichiers communs
[05/07/2009|22:19] C:\Program Files\filehippo.com
[05/07/2009|07:53] C:\Program Files\FL STUDIO
[02/06/2009|20:12] C:\Program Files\Google
[05/05/2009|06:53] C:\Program Files\Help and Support Additions
[03/05/2009|16:57] C:\Program Files\HP
[06/07/2009|06:24] C:\Program Files\InCode Solutions
[09/07/2009|01:10] C:\Program Files\InstallShield Installation Information
[24/06/2009|23:20] C:\Program Files\Intel
[10/06/2009|09:45] C:\Program Files\Internet Explorer
[10/06/2009|08:19] C:\Program Files\IObit
[13/06/2009|18:40] C:\Program Files\iPod
[10/06/2009|04:48] C:\Program Files\IRS
[13/06/2009|18:40] C:\Program Files\iTunes
[05/07/2009|20:47] C:\Program Files\Java
[30/06/2009|04:54] C:\Program Files\Java Web Start
[11/08/2008|02:54] C:\Program Files\JeffProd
[07/07/2009|06:27] C:\Program Files\JkDefrag
[10/06/2009|04:11] C:\Program Files\JlgSolera
[19/06/2009|01:01] C:\Program Files\JoWooD
[19/02/2007|20:00] C:\Program Files\La Super Profette Anglais 2050
[09/07/2009|09:50] C:\Program Files\Lavasoft
[05/06/2009|20:30] C:\Program Files\Les Aventures de Robinson Crusoe
[05/07/2009|07:53] C:\Program Files\LimeWire
[06/06/2009|20:49] C:\Program Files\LocalCooling
[06/06/2009|20:58] C:\Program Files\LSI SoftModem
[15/06/2009|10:57] C:\Program Files\ma-config.com
[05/07/2009|22:25] C:\Program Files\Malwarebytes' Anti-Malware
[01/05/2009|22:30] C:\Program Files\Micro Application
[03/05/2009|17:44] C:\Program Files\Microsoft
[19/12/2008|21:05] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[01/01/2005|10:45] C:\Program Files\microsoft frontpage
[17/11/2007|14:28] C:\Program Files\Microsoft Office
[17/03/2009|00:52] C:\Program Files\Microsoft Silverlight
[18/12/2008|22:09] C:\Program Files\Microsoft SQL Server Compact Edition
[18/12/2008|22:10] C:\Program Files\Microsoft Sync Framework
[03/05/2009|18:20] C:\Program Files\Motherboard Monitor 5
[25/05/2009|22:38] C:\Program Files\Movie Maker
[07/06/2009|19:52] C:\Program Files\MozBackup
[09/07/2009|23:34] C:\Program Files\Mozilla Firefox
[17/03/2009|22:11] C:\Program Files\MSBuild
[18/06/2009|11:55] C:\Program Files\MSECACHE
[18/05/2009|19:14] C:\Program Files\msn gaming zone
[02/12/2008|19:16] C:\Program Files\NetMeeting
[15/11/2007|15:26] C:\Program Files\Nokia
[25/05/2009|22:38] C:\Program Files\Outlook Express
[11/11/2008|15:30] C:\Program Files\Outsim
[15/06/2009|10:35] C:\Program Files\Panda Security
[05/07/2009|07:53] C:\Program Files\PC-Doctor for Windows
[05/07/2009|07:53] C:\Program Files\Picture It! Premium 10
[18/06/2009|11:55] C:\Program Files\Quicksys
[18/06/2009|01:27] C:\Program Files\QuickTime
[04/06/2009|17:12] C:\Program Files\Radio Fr Solo
[08/06/2009|09:01] C:\Program Files\Real
[07/07/2009|23:31] C:\Program Files\Realtek
[17/03/2009|22:11] C:\Program Files\Reference Assemblies
[21/05/2009|04:03] C:\Program Files\RocketDock
[12/07/2008|03:28] C:\Program Files\SilverStyle
[02/01/2005|01:27] C:\Program Files\SiS VGA Utilities V3.63
[01/03/2008|01:16] C:\Program Files\Sony Setup
[26/06/2009|01:13] C:\Program Files\SpeedFan
[25/06/2009|23:34] C:\Program Files\Spybot - Search & Destroy
[07/07/2009|05:47] C:\Program Files\SpywareBlaster
[21/05/2009|02:52] C:\Program Files\Stardock
[08/11/2007|11:19] C:\Program Files\StartupStar
[12/06/2009|01:55] C:\Program Files\Super Internet TV
[13/04/2009|19:57] C:\Program Files\System Explorer
[18/06/2009|11:51] C:\Program Files\The Koran
[20/06/2009|01:05] C:\Program Files\THQ
[06/07/2009|04:30] C:\Program Files\TrojanHunter 5.0
[07/07/2009|03:17] C:\Program Files\TuneUp Utilities 2009
[09/07/2009|08:53] C:\Program Files\Uniblue
[27/11/2008|17:12] C:\Program Files\Uninstall Information
[16/04/2009|21:42] C:\Program Files\Unlocker
[05/07/2009|21:45] C:\Program Files\Update Notifier
[18/05/2009|23:38] C:\Program Files\uTorrent
[18/11/2007|15:47] C:\Program Files\VideoLAN
[03/05/2009|16:59] C:\Program Files\Vista Drive Icon
[18/06/2009|13:07] C:\Program Files\VS Revo Group
[25/06/2009|21:08] C:\Program Files\VstPlugins
[09/07/2009|07:38] C:\Program Files\wAw
[05/07/2009|21:29] C:\Program Files\Windows Live
[06/07/2009|05:17] C:\Program Files\Windows Media Connect 2
[05/07/2009|04:33] C:\Program Files\Windows Media Player
[02/12/2008|19:16] C:\Program Files\Windows NT
[25/06/2009|23:34] C:\Program Files\WinRAR
[09/07/2009|08:31] C:\Program Files\xerox
[24/05/2009|19:49] C:\Program Files\XNouveau dossier
[13/06/2009|18:36] C:\Program Files\Zeb-Utility
[08/07/2009|19:38] C:\Program Files\Zone Labs

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[08/11/2007|11:35] C:\Program Files\Fichiers communs\3DO Shared
[07/07/2009|03:55] C:\Program Files\Fichiers communs\Adobe
[28/04/2008|03:34] C:\Program Files\Fichiers communs\Adobe Systems Shared
[13/06/2009|18:40] C:\Program Files\Fichiers communs\Apple
[11/09/2008|09:05] C:\Program Files\Fichiers communs\AVSMedia
[13/02/2007|09:50] C:\Program Files\Fichiers communs\Designer
[18/11/2007|16:46] C:\Program Files\Fichiers communs\DirectX
[01/01/2005|11:54] C:\Program Files\Fichiers communs\Hewlett-Packard
[01/01/2005|12:19] C:\Program Files\Fichiers communs\InstallShield
[14/02/2007|16:06] C:\Program Files\Fichiers communs\Jasc Software Inc
[27/11/2007|23:12] C:\Program Files\Fichiers communs\LightScribe
[03/05/2009|16:20] C:\Program Files\Fichiers communs\Microsoft Shared
[01/01/2005|10:43] C:\Program Files\Fichiers communs\MSSoap
[01/01/2005|11:38] C:\Program Files\Fichiers communs\ODBC
[19/06/2008|04:15] C:\Program Files\Fichiers communs\PC Tools
[29/05/2007|23:53] C:\Program Files\Fichiers communs\PCSuite
[25/06/2009|21:59] C:\Program Files\Fichiers communs\Services
[01/01/2005|11:38] C:\Program Files\Fichiers communs\SpeechEngines
[19/02/2007|18:21] C:\Program Files\Fichiers communs\Stardock
[01/01/2005|12:09] C:\Program Files\Fichiers communs\SureThing Shared
[02/12/2008|19:16] C:\Program Files\Fichiers communs\System
[18/12/2008|20:07] C:\Program Files\Fichiers communs\Windows Live

--------------------\\ Process

( 34 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-07-10 00:04:12
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 4

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\AsianDynasties
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\CD1
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\CD2
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\CD3
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\Crack and keys Age Of Empires III + Warchiefs & Asian Expansion
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\Lisez-Moi.txt
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\WarChiefs
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\AsianDynasties\AsianDinasties.iso
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\CD1\AOE III DISC 1.iso
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\CD2\AOE III DISC 2.bin
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\CD2\AOE III DISC 2.cue
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\CD3\AOE III DISC 3.bin
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\CD3\AOE III DISC 3.cue
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\Crack and keys Age Of Empires III + Warchiefs & Asian Expansion\AgeOfEmpiresIII_NoCD
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\Crack and keys Age Of Empires III + Warchiefs & Asian Expansion\AoE III Cd Keys.txt
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\Crack and keys Age Of Empires III + Warchiefs & Asian Expansion\AgeOfEmpiresIII_NoCD\age3.exe v4.105.919.3236
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\Crack and keys Age Of Empires III + Warchiefs & Asian Expansion\AgeOfEmpiresIII_NoCD\age3.exe v4.107.803.3365
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\Crack and keys Age Of Empires III + Warchiefs & Asian Expansion\AgeOfEmpiresIII_NoCD\age3.exe v4.105.919.3236\Lisez-moi.txt
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\Crack and keys Age Of Empires III + Warchiefs & Asian Expansion\AgeOfEmpiresIII_NoCD\age3.exe v4.107.803.3365\Lisez-moi.txt
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\WarChiefs\WarChiefs.bin
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\AGE.OF.EMPIRES.III.FRENCH+Warchieps+AsianDynasties+Crack+Keys\WarChiefs\WarChiefs.cue
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\Spellforce 2 Shadow Wars ISO\CRACK
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\Spellforce 2 Shadow Wars ISO\CRACK\Instructions.txt
C:\DOCUME~1\HP_PRO~1\Bureau\Applications\Jeux\Spellforce 2 Shadow Wars ISO\CRACK\spellforce2_update_v102.exe
C:\DOCUME~1\HP_PRO~1\Bureau\Mes eBooks\Informatik\Attention Vous Etes Suveillez Sur Emule ! C Est En Place !Crack Patch Starwars Divx Fr Ps2 Xbox Matrix Shrek Iso Jeu Jeux Gc Windows Win Xp Office.txt
C:\DOCUME~1\HP_PRO~1\Bureau\Mes eBooks\Informatik\crack_clef_wep_sous_windows.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Mes eBooks\Informatik\Pirater Le Mot De Passe D'Une Boite Mail Hotmail & MSN (hacker,crack,piratage) [dvdrip,divx,sexe,mp3,2004,pc,x,ps2,xbox,news,1 2 3 4 5 6 7 8 9 0,no-cd.doc
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Calife … la place du Calife [Brasiil]\WindowsKey_winxp_Pass_crack
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Calife … la place du Calife [Brasiil]\WindowsKey_winxp_Pass_crack\A LIRE AVANT.txt
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Calife … la place du Calife [Brasiil]\WindowsKey_winxp_Pass_crack\Ghost-Ro@d.rar
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking\3.dll
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking\Cours de cracking le‡on 1 alex.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking\Cours de cracking le‡on 10 alex.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking\Cours de cracking le‡on 11 alex.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking\Cours de cracking le‡on 12 alex.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking\Cours de cracking le‡on 13 alex.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking\Cours de cracking le‡on 14 alex.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking\Cours de cracking le‡on 2 alex.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking\Cours de cracking le‡on 4 alex.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking\Cours de cracking le‡on 6 alex.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking\Cours de cracking le‡on 7 alex.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking\Cours de cracking le‡on 8 alex.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking\Cours de cracking le‡on 9 alex.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking\Ecrire en Turbo Pascal son premier crack - Cours de cracking le‡on 5 alex.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Cours de cracking\Le‡on 3 de cracking _ ‚chec de l'enregistrement alex.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\!!!A LIRE!!!.txt
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Guide de piratage d'un reseau WIFI domestique (ou commentexploserune clef WEP) sous Windows.pdf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\etherchange.exe
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\ethereal-setup-0.99.0.exe
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\iperf.exe
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\WildPacket
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\WlanDrv
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\WildPacket\atheros30112
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\WildPacket\atheros421
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\WildPacket\ModŠle.txt
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\WildPacket\atheros30112\ar5211.sys
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\WildPacket\atheros30112\net5211.inf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\WildPacket\atheros30112\readme.htm
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\WildPacket\atheros421\ar5211.sys
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\WildPacket\atheros421\net5211.inf
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\WildPacket\atheros421\readme.htm
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\airdecap.exe
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\airodump.exe
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\cygwin1.dll
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Lang
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\logo.jpg
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\MSVCR70.DLL
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\PEEK.DLL
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\PEEK5.SYS
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\README.txt
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Temp
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Updater
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Updater.ini
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\WinAircrack.exe
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\WinAircrack.ini
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\wzcook.exe
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Lang\english.ini
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Lang\francais.ini
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Lang\spanish.ini
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Lang\system.ini.txt
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Updater\Data.upd
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\CrackWep\Tools\WlanDrv\WlanDrv.exe
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Titan Quest\Crack
C:\DOCUME~1\HP_PRO~1\Bureau\Temporaires\Titan Quest\Crack\Titan Quest.exe
C:\DOCUME~1\HP_PRO~1\DoctorWeb\Quarantine\WIFIWinaircrack .doc
C:\DOCUME~1\HP_PRO~1\Favoris\Favoris import‚s d'IE\Hack\crack wpa neufbox avec crack-wpa.fr.URL
C:\DOCUME~1\HP_PRO~1\Favoris\Favoris import‚s d'IE\Hack\Crack-wpa.fr d‚couvrez nos packs exclusifs crack wpa.URL
C:\DOCUME~1\HP_PRO~1\Favoris\Favoris import‚s d'IE\Hack\Games ¯ Flmsdown Free Full Downloads, Rapidshare, Warez Download, Megaupload with Crack, Serial, Keygen, Game, Movie.URL
C:\DOCUME~1\HP_PRO~1\Favoris\Favoris import‚s d'IE\Hack\YouTube - WPA cracking in ONE second!.URL
C:\DOCUME~1\HP_PRO~1\Favoris\Hack\crack wpa neufbox avec crack-wpa.fr.url
C:\DOCUME~1\HP_PRO~1\Favoris\Hack\Crack-wpa.fr d‚couvrez nos packs exclusifs crack wpa.url
C:\DOCUME~1\HP_PRO~1\Favoris\Hack\Games ¯ Flmsdown Free Full Downloads, Rapidshare, Warez Download, Megaupload with Crack, Serial, Keygen, Game, Movie.url
C:\DOCUME~1\HP_PRO~1\Favoris\Hack\YouTube - WPA cracking in ONE second!.url
C:\DOCUME~1\HP_PRO~1\Mes documents\Downloads\Titan Quest\Serial & Crack
C:\DOCUME~1\HP_PRO~1\Mes documents\Downloads\Titan Quest\Serial & Crack\Serial.txt.!ut
C:\DOCUME~1\HP_PRO~1\Mes documents\Downloads\Titan Quest\Serial & Crack\Titan Quest.exe.!ut
C:\DOCUME~1\HP_PRO~1\Mes documents\Java\Fichiers jar\Crack And Bonky.jar
C:\DOCUME~1\HP_PRO~1\Mes documents\Ma musique\iTunes\iTunes Music\Alpha 5.20 feat. Iron Sy & Lino\Vivre Et Mourir A Dakar\16 Mon crack.mp3
C:\DOCUME~1\HP_PRO~1\Mes documents\Programmes\Optimisation\Advanced SystemCare Pro v3.0+patch\ASC.Pro v3.0 Patch & Keygen.exe
C:\DOCUME~1\HP_PRO~1\Mes documents\Programmes\Speedupmypc 2009\keygen.exe
C:\DOCUME~1\HP_PRO~1\Mes documents\Programmes\Tune Up 2009\Keygen.exe


[F:57][D:7]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp
[F:1][D:0]-> C:\DOCUME~1\HP_PRO~1\Cookies
[F:9][D:5]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 10/07/2009| 0:09 - Option : [1]

--------------------\\ Fin du rapport a 0:09:11
0
Réponse 96 / 98
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
Logfile of random's system information tool 1.06 (written by random/random)
Run by HP_Propriétaire at 2009-07-10 02:12:01
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 59 GB (25%) free of 234 GB
Total RAM: 2047 MB (73% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\Google Software Updater.job
C:\WINDOWS\tasks\shutdown.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{8E7D7EBD-2C95-4A23-92C0-EC4AA0CC55B6}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Recguard"=C:\WINDOWS\SMINST\RECGUARD.EXE [2004-04-14 233472]
"SiSPower"=SiSPower.dll,ModeAgent []
"PS2"=C:\WINDOWS\system32\ps2.exe [2004-10-25 90112]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"DrvIcon"=C:\Program Files\Vista Drive Icon\DrvIcon.exe [2008-04-13 49152]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-04-06 90112]
"AlcWzrd"=C:\WINDOWS\ALCWZRD.EXE [2005-04-06 2805248]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-04-12 65536]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2008-07-09 919016]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
C:\WINDOWS\ALCMTR.EXE [2005-04-12 65536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FFM.exe]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv]
c:\windows\system\hpsysdrv.exe [1998-05-07 52736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2009-05-30 292136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegDefRun]
C:\Program Files\AusLogics Registry Defrag\RdInfo.exe [2007-10-04 112128]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RocketDock]
C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-12-04 68856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^HP_Propriétaire^Menu Démarrer^Programmes^Démarrage^is-ENCH6.lnk]
C:\DOCUME~1\HP_PRO~1\Bureau\Virus Removal Tool\is-ENCH6\startup.exe []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-02-25 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2004-08-20 344064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"legalnoticecaption"=
"legalnoticetext"=

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoResolveSearch"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\InCode Solutions\RemoveIT Pro v4 - SE\removeit.exe"="C:\Program Files\InCode Solutions\RemoveIT Pro v4 - SE\removeit.exe:*:Enabled:removeit"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%ProgramFiles%\iTunes\iTunes.exe"="%ProgramFiles%\iTunes\iTunes.exe:*:enabled:iTunes"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

======File associations======

.scr - config - "%1" /S

======List of files/folders created in the last 2 months======

2009-07-10 02:12:01 ----DC---- C:\rsit
2009-07-10 02:12:01 ----D---- C:\Program Files\trend micro
2009-07-09 23:58:57 ----AC---- C:\lopR.txt
2009-07-09 23:33:32 ----DC---- C:\Lop SD
2009-07-09 09:50:03 ----SHDC---- C:\Config.Msi
2009-07-09 08:31:07 ----D---- C:\Program Files\xerox
2009-07-09 07:30:03 ----A---- C:\WINDOWS\EurekaLog.ini
2009-07-08 19:39:13 ----A---- C:\WINDOWS\zllsputility.exe
2009-07-08 19:38:43 ----A---- C:\WINDOWS\system32\vsregexp.dll
2009-07-08 19:38:43 ----A---- C:\WINDOWS\system32\libeay32_0.9.6l.dll
2009-07-08 19:38:41 ----A---- C:\WINDOWS\system32\zlcommdb.dll
2009-07-08 19:38:41 ----A---- C:\WINDOWS\system32\zlcomm.dll
2009-07-08 19:38:38 ----A---- C:\WINDOWS\system32\vswmi.dll
2009-07-08 19:38:37 ----A---- C:\WINDOWS\system32\zpeng24.dll
2009-07-08 19:38:37 ----A---- C:\WINDOWS\system32\vsxml.dll
2009-07-08 19:38:36 ----D---- C:\Program Files\Zone Labs
2009-07-08 19:38:36 ----A---- C:\WINDOWS\system32\vspubapi.dll
2009-07-08 19:38:36 ----A---- C:\WINDOWS\system32\vsmonapi.dll
2009-07-08 19:35:53 ----A---- C:\WINDOWS\system32\vsutil.dll
2009-07-08 19:35:53 ----A---- C:\WINDOWS\system32\vsinit.dll
2009-07-08 19:35:53 ----A---- C:\WINDOWS\system32\vsdata.dll
2009-07-08 19:34:10 ----A---- C:\WINDOWS\ALCFDRTM.EXE
2009-07-07 07:54:47 ----D---- C:\Program Files\wAw
2009-07-07 07:30:27 ----A---- C:\WINDOWS\Alcmtr.exe
2009-07-07 05:47:43 ----D---- C:\Program Files\SpywareBlaster
2009-07-07 05:36:13 ----D---- C:\Program Files\JkDefrag
2009-07-07 05:36:13 ----A---- C:\WINDOWS\system32\JkDefragScreenSaver.exe
2009-07-07 04:57:24 ----A---- C:\WINDOWS\OODCNT.INI
2009-07-07 04:45:13 ----D---- C:\WINDOWS\system32\oodag
2009-07-07 04:09:41 ----D---- C:\Program Files\Defraggler
2009-07-07 03:58:28 ----DC---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-07-07 03:23:32 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\Auslogics
2009-07-07 03:16:46 ----D---- C:\Program Files\TuneUp Utilities 2009
2009-07-07 03:03:13 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\Any Video Converter
2009-07-07 03:03:08 ----D---- C:\Program Files\Any Video Converter
2009-07-07 03:02:09 ----D---- C:\Program Files\AbiWord
2009-07-07 02:24:26 ----A---- C:\WINDOWS\system32\RTLCPAPI.dll
2009-07-07 02:11:19 ----DC---- C:\Documents and Settings\All Users\Application Data\MailFrontier
2009-07-07 02:10:53 ----A---- C:\WINDOWS\zllsputility_loc040c.dll
2009-07-07 02:10:53 ----A---- C:\WINDOWS\system32\vsutil_loc040c.dll
2009-07-07 02:10:53 ----A---- C:\WINDOWS\system32\imslsp_install_loc040c.dll
2009-07-07 02:10:53 ----A---- C:\WINDOWS\system32\imsinstall_loc040c.dll
2009-07-07 02:10:48 ----A---- C:\WINDOWS\system32\SpOrder.dll
2009-07-07 02:10:11 ----D---- C:\WINDOWS\system32\ZoneLabs
2009-07-07 02:09:35 ----D---- C:\WINDOWS\Internet Logs
2009-07-06 23:39:11 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-07-06 06:24:27 ----D---- C:\Program Files\InCode Solutions
2009-07-06 01:38:08 ----A---- C:\WINDOWS\system32\setup_XP.ini
2009-07-05 23:12:17 ----DC---- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2009-07-05 23:12:05 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\SUPERAntiSpyware.com
2009-07-05 22:28:05 ----N---- C:\WINDOWS\system32\ChCfg.exe
2009-07-05 22:19:08 ----D---- C:\Program Files\filehippo.com
2009-07-05 21:45:24 ----D---- C:\Program Files\Update Notifier
2009-07-05 21:45:12 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\cspa
2009-06-30 03:05:11 ----HDC---- C:\RD4B335D2AF9F44185AFC417F8D8D4B473DR
2009-06-26 03:00:06 ----D---- C:\Program Files\BioWare Corp
2009-06-25 23:35:09 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\TrojanHunter
2009-06-25 21:39:53 ----R---- C:\WINDOWS\system32\streamhlp.dll
2009-06-25 21:39:52 ----D---- C:\Program Files\TrojanHunter 5.0
2009-06-25 15:13:59 ----D---- C:\Program Files\a-squared Free
2009-06-24 23:20:02 ----D---- C:\Program Files\Intel
2009-06-24 23:20:02 ----A---- C:\WINDOWS\system32\CSVer.dll
2009-06-24 23:19:33 ----DC---- C:\Intel
2009-06-24 23:16:43 ----DC---- C:\Pilotes-pciv92v4v4l
2009-06-24 23:12:19 ----A---- C:\WINDOWS\ATICIM.INI
2009-06-24 23:11:26 ----DC---- C:\ATI
2009-06-24 23:11:01 ----A---- C:\WINDOWS\system32\TvRatings.dll
2009-06-24 23:11:01 ----A---- C:\WINDOWS\system32\Macrovision.dll
2009-06-24 23:11:01 ----A---- C:\WINDOWS\system32\34CoInstaller.dll
2009-06-20 03:03:14 ----DC---- C:\Documents and Settings\All Users\Application Data\Avira
2009-06-20 03:03:14 ----D---- C:\Program Files\Avira
2009-06-20 02:27:55 ----A---- C:\WINDOWS\system32\BASSMOD.dll
2009-06-20 01:11:11 ----A---- C:\WINDOWS\system32\MSVCP71.dll
2009-06-20 01:11:10 ----A---- C:\WINDOWS\system32\psfind.dll
2009-06-19 16:26:11 ----D---- C:\Program Files\THQ
2009-06-19 02:04:53 ----DC---- C:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic
2009-06-19 01:01:15 ----D---- C:\Program Files\JoWooD
2009-06-18 13:07:56 ----D---- C:\Program Files\VS Revo Group
2009-06-18 11:55:49 ----D---- C:\Program Files\Quicksys
2009-06-18 11:55:16 ----D---- C:\Program Files\MSECACHE
2009-06-17 19:29:39 ----SHDC---- C:\RECYCLER
2009-06-17 19:13:32 ----D---- C:\Program Files\CCleaner
2009-06-17 16:36:53 ----A---- C:\WINDOWS\zip.exe
2009-06-17 16:36:53 ----A---- C:\WINDOWS\SWXCACLS.exe
2009-06-17 16:36:53 ----A---- C:\WINDOWS\SWSC.exe
2009-06-17 16:36:53 ----A---- C:\WINDOWS\SWREG.exe
2009-06-17 16:36:53 ----A---- C:\WINDOWS\sed.exe
2009-06-17 16:36:53 ----A---- C:\WINDOWS\NIRCMD.exe
2009-06-17 16:36:53 ----A---- C:\WINDOWS\grep.exe
2009-06-17 16:34:54 ----D---- C:\WINDOWS\ERDNT
2009-06-17 12:54:40 ----A---- C:\WINDOWS\SoundMan.exe
2009-06-17 12:54:39 ----A---- C:\WINDOWS\RtlUpd.exe
2009-06-17 12:54:39 ----A---- C:\WINDOWS\RTLCPL.EXE
2009-06-17 12:54:37 ----A---- C:\WINDOWS\RTHDCPL.EXE
2009-06-17 12:54:37 ----A---- C:\WINDOWS\MicCal.exe
2009-06-17 12:54:35 ----A---- C:\WINDOWS\ALCWZRD.EXE
2009-06-17 01:56:33 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-06-16 20:03:18 ----RASHDC---- C:\autorun.inf
2009-06-15 12:30:15 ----DC---- C:\Binaries
2009-06-15 12:11:03 ----D---- C:\WINDOWS\system32\RTCOM
2009-06-15 12:10:42 ----D---- C:\Program Files\Realtek
2009-06-15 12:10:33 ----A---- C:\WINDOWS\RtlExUpd.dll
2009-06-15 10:35:44 ----D---- C:\Program Files\Panda Security
2009-06-13 18:37:21 ----D---- C:\Downloads
2009-06-13 11:18:18 ----A---- C:\WINDOWS\explorer.exe
2009-06-12 02:07:58 ----HDC---- C:\Documents and Settings\All Users\Application Data\{B46E1EF5-0B37-4DB4-A4E2-9F2B41036185}
2009-06-11 23:57:19 ----D---- C:\Program Files\iPod
2009-06-11 23:57:15 ----DC---- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-06-10 16:55:55 ----HDC---- C:\RD4B335D2AF9F44185AFC417F8D8D4B473DR(2)
2009-06-10 10:44:11 ----A---- C:\WINDOWS\system32\uxtuneup.dll
2009-06-10 08:19:30 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\IObit
2009-06-10 08:19:28 ----D---- C:\Program Files\IObit
2009-06-10 06:41:42 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\Malwarebytes
2009-06-10 06:41:35 ----DC---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-06-10 04:44:16 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\DMV Technologies
2009-06-10 04:28:18 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\Pouchin TV Mod
2009-06-10 04:11:42 ----D---- C:\Program Files\JlgSolera
2009-06-08 10:06:49 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\GetRight Pro
2009-06-08 09:01:35 ----D---- C:\Program Files\Real
2009-06-08 09:00:35 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\Real
2009-06-07 19:13:08 ----D---- C:\Program Files\MozBackup
2009-06-07 06:52:44 ----D---- C:\Program Files\Babylon
2009-06-07 03:47:49 ----D---- C:\Program Files\IRS
2009-06-06 20:58:33 ----D---- C:\Program Files\LSI SoftModem
2009-06-05 20:30:31 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\RobinsonCrusoe
2009-06-05 20:06:05 ----D---- C:\Program Files\Les Aventures de Robinson Crusoe
2009-06-05 19:30:44 ----A---- C:\WINDOWS\system32\javaws.exe
2009-06-05 19:30:43 ----A---- C:\WINDOWS\system32\javaw.exe
2009-06-05 19:30:43 ----A---- C:\WINDOWS\system32\java.exe
2009-06-05 18:18:42 ----DC---- C:\Documents and Settings\All Users\Application Data\ma-config.com
2009-06-05 18:18:42 ----D---- C:\Program Files\ma-config.com
2009-06-04 21:23:26 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\ATI
2009-06-04 20:42:17 ----AC---- C:\WINDOWS\system32\agrscoin.dll
2009-06-04 20:42:17 ----A---- C:\WINDOWS\system32\agrsmsvc.exe
2009-06-04 20:37:58 ----N---- C:\WINDOWS\system32\ati2sgag.exe
2009-06-04 19:36:13 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2009-06-04 19:36:13 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2009-06-04 19:36:12 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2009-06-04 19:36:11 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2009-06-04 19:36:11 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2009-06-04 19:36:11 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2009-06-04 19:36:10 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2009-06-04 19:36:10 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2009-06-04 19:36:10 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2009-06-04 19:36:09 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2009-06-04 19:36:08 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2009-06-04 19:36:08 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2009-06-04 19:36:08 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2009-06-04 19:36:08 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2009-06-04 19:36:07 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2009-06-04 19:36:07 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2009-06-04 19:36:07 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2009-06-04 19:36:06 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2009-06-04 19:36:06 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2009-06-04 19:36:05 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2009-06-04 19:36:05 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2009-06-04 19:36:05 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2009-06-04 19:36:04 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2009-06-04 19:36:04 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2009-06-04 19:36:03 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2009-06-04 19:36:03 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2009-06-04 19:36:02 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2009-06-04 19:36:01 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2009-06-04 19:36:01 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2009-06-04 19:36:00 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2009-06-04 19:35:59 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2009-06-04 19:35:59 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2009-06-04 19:35:59 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2009-06-04 19:35:58 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2009-06-04 19:35:57 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2009-06-04 19:35:57 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2009-06-04 19:35:56 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2009-06-04 19:34:53 ----D---- C:\WINDOWS\Logs
2009-06-04 17:00:43 ----D---- C:\Program Files\Radio Fr Solo
2009-06-04 15:02:00 ----HDC---- C:\Documents and Settings\All Users\Application Data\{A613CA96-150A-4A1D-90CE-67F81379DF8C}
2009-06-04 13:37:58 ----A---- C:\WINDOWS\system32\msvcr71.dll
2009-06-03 22:06:33 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\FDRLab
2009-06-03 19:34:57 ----D---- C:\Program Files\Super Internet TV
2009-06-03 17:38:38 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\ArcticLine
2009-06-03 16:48:26 ----DC---- C:\Documents and Settings\All Users\Application Data\DriverScanner
2009-06-03 16:47:05 ----HDC---- C:\Documents and Settings\All Users\Application Data\{D5ABFFAD-D592-4F98-B02B-587125B4801F}
2009-06-03 16:36:16 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\Uniblue
2009-06-03 16:36:02 ----D---- C:\Program Files\Uniblue
2009-06-03 16:08:59 ----D---- C:\Program Files\AusLogics Registry Defrag
2009-06-03 15:36:40 ----A---- C:\WINDOWS\system32\TuneUpDefragService.exe
2009-05-30 18:26:09 ----A---- C:\WINDOWS\system32\TUProgSt.exe
2009-05-29 02:36:32 ----SHDC---- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}
2009-05-28 21:42:48 ----A---- C:\WINDOWS\Radio_Fr.ini
2009-05-28 21:27:27 ----DC---- C:\Documents and Settings\All Users\Application Data\Mushroom Age
2009-05-26 23:05:29 ----D---- C:\Program Files\LocalCooling
2009-05-26 20:43:16 ----D---- C:\Program Files\DAP
2009-05-26 20:17:39 ----A---- C:\WINDOWS\MegaManager.INI
2009-05-25 20:17:33 ----A---- C:\WINDOWS\BricoPackFoldersDelete.cmd
2009-05-25 04:48:25 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\Any Video Converter Professional
2009-05-25 04:46:55 ----D---- C:\Program Files\Any Video Converter Professional
2009-05-25 04:25:54 ----A---- C:\WINDOWS\hlp-fastvid.dll
2009-05-25 03:53:41 ----A---- C:\WINDOWS\system32\Smab.dll
2009-05-25 03:53:40 ----A---- C:\WINDOWS\system32\devil.dll
2009-05-25 03:53:39 ----A---- C:\WINDOWS\system32\avisynth.dll
2009-05-25 03:53:37 ----A---- C:\WINDOWS\system32\AVSredirect.dll
2009-05-25 03:53:37 ----A---- C:\WINDOWS\MOTA113.exe
2009-05-25 03:53:36 ----A---- C:\WINDOWS\system32\yv12vfw.dll
2009-05-25 03:53:36 ----A---- C:\WINDOWS\system32\x.264.exe
2009-05-25 03:53:36 ----A---- C:\WINDOWS\system32\i420vfw.dll
2009-05-25 03:53:35 ----A---- C:\WINDOWS\x2.64.exe
2009-05-25 03:53:35 ----A---- C:\WINDOWS\meta4.exe
2009-05-25 01:06:48 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\OpenCandy
2009-05-25 01:06:03 ----D---- C:\Program Files\AviSynth 2.5
2009-05-25 00:59:52 ----DC---- C:\Temp
2009-05-25 00:54:55 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\ImTOO Software Studio
2009-05-21 02:52:31 ----D---- C:\Program Files\Stardock
2009-05-19 18:09:59 ----D---- C:\Program Files\RocketDock
2009-05-19 17:08:50 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\CursorArts
2009-05-19 17:08:39 ----D---- C:\Program Files\ActivIcons
2009-05-19 16:39:23 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\Bump Technologies, Inc
2009-05-19 05:28:19 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\Change Folder Icons
2009-05-19 03:45:21 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\Actual Tools
2009-05-19 03:45:18 ----D---- C:\Program Files\Actual Window Minimizer
2009-05-19 02:01:26 ----D---- C:\Program Files\Zeb-Utility
2009-05-18 19:47:35 ----DC---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2009-05-18 19:47:35 ----D---- C:\Program Files\Lavasoft
2009-05-18 19:14:58 ----D---- C:\Program Files\msn gaming zone
2009-05-18 02:40:14 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla
2009-05-18 02:02:30 ----D---- C:\Program Files\Mozilla Firefox
2009-05-18 00:08:40 ----D---- C:\WINDOWS\system32\appmgmt
2009-05-18 00:08:11 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\MSNInstaller
2009-05-16 21:40:12 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\vlc
2009-05-16 03:00:48 ----N---- C:\WINDOWS\system32\spmsg.dll
0
Réponse 97 / 98
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
======List of files/folders modified in the last 2 months======

2009-07-10 02:12:06 ----D---- C:\WINDOWS\Prefetch
2009-07-10 02:12:01 ----D---- C:\Program Files
2009-07-10 00:02:08 ----D---- C:\WINDOWS\Temp
2009-07-09 23:09:48 ----SD---- C:\WINDOWS\Tasks
2009-07-09 23:09:39 ----DC---- C:\Documents and Settings\All Users\Application Data\Google Updater
2009-07-09 17:57:41 ----D---- C:\WINDOWS
2009-07-09 17:57:28 ----D---- C:\WINDOWS\system32\CatRoot2
2009-07-09 11:28:03 ----D---- C:\WINDOWS\system32\drivers
2009-07-09 11:21:38 ----SHD---- C:\WINDOWS\Installer
2009-07-09 11:21:38 ----D---- C:\Program Files\Fichiers communs
2009-07-09 09:49:51 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-07-09 09:49:49 ----D---- C:\WINDOWS\system32
2009-07-09 08:42:08 ----HD---- C:\WINDOWS\inf
2009-07-09 08:37:15 ----ASHC---- C:\boot.ini
2009-07-09 08:37:15 ----A---- C:\WINDOWS\win.ini
2009-07-09 08:37:15 ----A---- C:\WINDOWS\SYSTEM.INI
2009-07-09 07:47:21 ----ADC---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-07-09 07:31:31 ----DC---- C:\Documents and Settings
2009-07-09 06:32:12 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\uTorrent
2009-07-09 06:03:20 ----SHD---- C:\System Volume Information
2009-07-09 06:03:20 ----D---- C:\WINDOWS\system32\Restore
2009-07-09 01:17:08 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-07-09 01:10:49 ----HD---- C:\Program Files\InstallShield Installation Information
2009-07-08 19:39:11 ----D---- C:\WINDOWS\system32\CatRoot
2009-07-07 23:32:01 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-07-07 10:41:36 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\dvdcss
2009-07-07 07:47:17 ----AC---- C:\WINDOWS\wininit.ini
2009-07-07 07:09:23 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\Adobe
2009-07-07 06:40:29 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-07-07 05:55:18 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2009-07-07 05:55:18 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2009-07-07 05:55:18 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2009-07-07 05:55:07 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2009-07-07 04:12:24 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-07-07 03:58:17 ----D---- C:\Program Files\Adobe
2009-07-07 03:55:43 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-07-07 03:32:02 ----D---- C:\WINDOWS\system32\config
2009-07-07 03:08:13 ----D---- C:\WINDOWS\WinSxS
2009-07-07 03:03:42 ----D---- C:\Program Files\AusLogics Disk Defrag
2009-07-07 03:00:33 ----D---- C:\Program Files\AbiSuite2
2009-07-07 01:37:41 ----D---- C:\WINDOWS\system
2009-07-07 00:02:09 ----D---- C:\WINDOWS\pss
2009-07-06 07:15:56 ----HDC---- C:\WINDOWS\ie8
2009-07-06 05:17:41 ----D---- C:\Program Files\Windows Media Connect 2
2009-07-05 21:29:47 ----D---- C:\Program Files\Windows Live
2009-07-05 21:19:19 ----D---- C:\WINDOWS\system32\Adobe
2009-07-05 21:19:19 ----D---- C:\WINDOWS\Profiles
2009-07-05 21:13:52 ----D---- C:\WINDOWS\twain_32
2009-07-05 20:47:18 ----D---- C:\Program Files\Java
2009-07-05 07:53:29 ----D---- C:\Program Files\FL STUDIO
2009-07-05 07:53:25 ----D---- C:\Program Files\Picture It! Premium 10
2009-07-05 07:53:25 ----D---- C:\Program Files\PC-Doctor for Windows
2009-07-05 07:53:24 ----D---- C:\Program Files\LimeWire
2009-07-05 04:33:38 ----D---- C:\Program Files\Windows Media Player
2009-07-05 04:30:31 ----D---- C:\WINDOWS\Help
2009-07-01 14:19:20 ----D---- C:\Program Files\ATI Technologies
2009-06-30 21:31:36 ----D---- C:\WINDOWS\system32\DirectX
2009-06-30 21:31:35 ----RSD---- C:\WINDOWS\assembly
2009-06-30 04:54:32 ----D---- C:\Program Files\Java Web Start
2009-06-30 02:39:56 ----D---- C:\WINDOWS\I386
2009-06-26 01:13:30 ----D---- C:\Program Files\SpeedFan
2009-06-25 23:34:46 ----D---- C:\Program Files\WinRAR
2009-06-25 23:34:46 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-06-25 21:59:28 ----D---- C:\WINDOWS\system32\MsDtc
2009-06-25 21:59:28 ----D---- C:\WINDOWS\repair
2009-06-25 21:59:27 ----D---- C:\Program Files\Fichiers communs\Services
2009-06-25 21:59:26 ----D---- C:\Program Files\Falco Chess
2009-06-25 21:08:37 ----D---- C:\Program Files\VstPlugins
2009-06-25 00:00:03 ----D---- C:\WINDOWS\Microsoft.NET
2009-06-24 23:18:33 ----D---- C:\WINDOWS\Driver Cache
2009-06-24 01:59:01 ----HD---- C:\WINDOWS\msdownld.tmp
2009-06-21 14:24:49 ----D---- C:\Program Files\AVS4YOU
2009-06-18 13:15:54 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\Sonic
2009-06-18 12:54:39 ----D---- C:\Menu
2009-06-18 11:51:25 ----D---- C:\Program Files\The Koran
2009-06-18 01:27:15 ----D---- C:\WINDOWS\system32\trayres
2009-06-18 01:27:15 ----D---- C:\Program Files\QuickTime
2009-06-17 16:40:01 ----D---- C:\WINDOWS\AppPatch
2009-06-16 11:44:48 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-06-13 18:40:53 ----D---- C:\Program Files\iTunes
2009-06-13 18:40:28 ----D---- C:\Program Files\Fichiers communs\Apple
2009-06-13 18:39:04 ----D---- C:\Program Files\Apple Software Update
2009-06-13 18:38:07 ----RSD---- C:\WINDOWS\Fonts
2009-06-13 00:51:55 ----D---- C:\WINDOWS\Registration
2009-06-11 14:27:20 ----D---- C:\WINDOWS\system32\wbem
2009-06-10 10:39:04 ----D---- C:\WINDOWS\Debug
2009-06-10 09:45:18 ----D---- C:\Program Files\Internet Explorer
2009-06-10 09:45:12 ----D---- C:\WINDOWS\ie8updates
2009-06-10 09:45:08 ----HD---- C:\WINDOWS\$hf_mig$
2009-06-06 18:48:10 ----AC---- C:\WINDOWS\softapdiagnostics.txt
2009-06-06 17:40:26 ----SD---- C:\Documents and Settings\HP_Propriétaire\Application Data\Microsoft
2009-06-05 19:30:29 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-06-02 20:12:19 ----DC---- C:\Documents and Settings\All Users\Application Data\Google
2009-06-02 20:12:19 ----D---- C:\Program Files\Google
2009-06-02 18:44:14 ----D---- C:\WINDOWS\Minidump
2009-06-01 18:51:12 ----A---- C:\WINDOWS\system32\MRT.exe
2009-05-25 22:38:47 ----D---- C:\Program Files\Outlook Express
2009-05-25 22:38:47 ----D---- C:\Program Files\Movie Maker
2009-05-25 22:38:46 ----D---- C:\WINDOWS\system32\usmt
2009-05-25 20:21:40 ----AC---- C:\WINDOWS\BricoPackUninst.txt
2009-05-25 20:21:40 ----AC---- C:\WINDOWS\BricoPackUninst.cmd
2009-05-25 20:21:39 ----A---- C:\WINDOWS\system32\uxtheme.dll
2009-05-25 20:19:40 ----D---- C:\WINDOWS\Cursors
2009-05-25 20:16:17 ----D---- C:\WINDOWS\BricoPacks
2009-05-24 19:49:07 ----D---- C:\Program Files\XNouveau dossier
2009-05-21 03:41:32 ----AC---- C:\WINDOWS\_MSRSTRT.EXE
2009-05-19 02:48:48 ----D---- C:\WINDOWS\system32\ShellExt
2009-05-18 23:38:04 ----D---- C:\Program Files\uTorrent
2009-05-13 07:04:17 ----A---- C:\WINDOWS\system32\wininet.dll
2009-05-13 07:04:17 ----A---- C:\WINDOWS\system32\mshtml.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 cpuidlep;CpuIdle Pro System Driver; C:\WINDOWS\system32\drivers\cpuidlep.sys [2009-05-26 4484]
R1 Dev_UNIDRV;Dev_UNIDRV; \??\C:\WINDOWS\system32\Drivers\UNIDRV.SYS []
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 is-ENCH6drv;is-ENCH6drv; C:\WINDOWS\system32\DRIVERS\67537351.sys [2008-07-08 148496]
R1 KLIF;KLIF; C:\WINDOWS\system32\DRIVERS\klif.sys [2007-07-19 127768]
R1 SiSkp;SiSkp; C:\WINDOWS\system32\DRIVERS\srvkp.sys [2004-09-24 12928]
R1 SYMTDI;SYMTDI; C:\WINDOWS\System32\Drivers\SYMTDI.SYS [2007-03-28 266552]
R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2008-07-09 394952]
R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-05 12032]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-03-24 55640]
R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-02-06 55152]
R2 Nsynas32;Nsynas32; C:\WINDOWS\system32\drivers\Nsynas32.sys [2001-04-09 17784]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2008-10-29 1204128]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-02-26 3565568]
R3 Cap7134;ASUS TV7134 WDM Video Capture; C:\WINDOWS\system32\DRIVERS\Cap7134.sys [2004-10-27 335360]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\SYSTEM32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2005-04-15 2564032]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 PhTVTune;ASUS WDM TV Tuner; C:\WINDOWS\system32\DRIVERS\PhTVTune.sys [2004-10-24 24544]
R3 Ps2;PS2; C:\WINDOWS\system32\DRIVERS\PS2.sys [2001-06-04 14112]
R3 rtl8139;Realtek RTL8139/810x Family Fast Ethernet NIC NT Driver; C:\WINDOWS\system32\DRIVERS\R8139n51.SYS [2002-10-04 46976]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41856]
S1 AvgAsCln;AVG Anti-Spyware Clean Driver; C:\WINDOWS\system32\drivers\AvgAsCln.sys []
S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
S3 3xHybrid;3xHybrid service; C:\WINDOWS\system32\drivers\3xHybrid.sys []
S3 Arcadyan;Arcadyan NDIS Protocol Driver; \??\C:\PROGRA~1\PC-DOC~1\DIAGNO~1\Arcadyan.SYS []
S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 catchme;catchme; \??\C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2004-08-21 737874]
S3 Iviaspi;IVI ASPI Shell; C:\WINDOWS\system32\drivers\iviaspi.sys [2003-09-11 21060]
S3 MPE;BDA MPE Filter; C:\WINDOWS\system32\DRIVERS\MPE.sys [2004-07-09 15104]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 nm;Pilote du Moniteur réseau; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 PCASp50;PCASp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\PCASp50.sys [2005-11-19 20096]
S3 PCTINDIS5;PCTINDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCTINDIS5.SYS []
S3 Pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys []
S3 PRISM_A00;Intersil PRISM 802.11a/g Driver; C:\WINDOWS\system32\DRIVERS\PCTELSAP.SYS [2004-01-29 350282]
S3 SiS315;SiS315; C:\WINDOWS\system32\DRIVERS\sisgrp.sys [2004-09-29 229888]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 SYMDNS;SYMDNS; C:\WINDOWS\System32\Drivers\SYMDNS.SYS [2007-03-28 11480]
S3 SymEvent;SymEvent; \??\C:\Program Files\Symantec\SYMEVENT.SYS []
S3 SYMFW;SYMFW; C:\WINDOWS\System32\Drivers\SYMFW.SYS [2007-03-28 171928]
S3 SYMIDS;SYMIDS; C:\WINDOWS\System32\Drivers\SYMIDS.SYS [2007-03-28 37016]
S3 SYMIDSCO;SYMIDSCO; \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\SymcData\IDS-DI~1\20071220.001\symidsco.sys []
S3 SYMNDIS;SYMNDIS; C:\WINDOWS\System32\Drivers\SYMNDIS.SYS [2007-03-28 47192]
S3 SYMREDRV;SYMREDRV; C:\WINDOWS\System32\Drivers\SYMREDRV.SYS [2007-03-28 18904]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
S3 viagfx;viagfx; C:\WINDOWS\system32\DRIVERS\vtmini.sys [2004-09-23 173312]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 dwshd;dwshd; C:\WINDOWS\System32\drivers\dwshd.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 a2free;a-squared Free Service; C:\Program Files\a-squared Free\a2service.exe [2009-07-07 718880]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\WINDOWS\system32\agrsmsvc.exe [2008-03-18 13312]
R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-04-01 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-03-02 185089]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-02-25 602112]
R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe [2003-06-20 322120]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; C:\WINDOWS\System32\TUProgSt.exe [2009-07-07 603904]
R2 UxTuneUp;TuneUp Extension de thème; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2008-07-09 75304]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-02-25 593920]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-13 183280]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-04-28 72704]
S3 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-05-29 144712]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 fsssvc;Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S3 gupdate1c9bc7fc11dcc16;Service Google Update (gupdate1c9bc7fc11dcc16); C:\Program Files\Google\Update\GoogleUpdate.exe /svc []
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe []
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-05-30 541992]
S3 LPDSVC;Serveur d'impression TCP/IP; C:\WINDOWS\system32\tcpsvcs.exe [2004-08-05 19456]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-05-29 234864]
S3 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
S3 SNMPTRAP;Service d'interruption SNMP; C:\WINDOWS\System32\snmptrap.exe [2008-04-14 8704]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2009-07-07 362240]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
S4 LightScribeService;LightScribeService Direct Disc Labeling Service; c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [2004-09-23 38912]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2008-04-16 66872]
S4 ServiceLayer;ServiceLayer; C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe [2007-11-12 176640]
S4 SNDSrvc;Symantec Network Drivers Service; c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe []
S4 SNMP;Service SNMP; C:\WINDOWS\System32\snmp.exe [2008-04-14 33280]

-----------------EOF-----------------
0
Réponse 98 / 98
Ramses VII Messages postés 136 Date d'inscription   Statut Membre Dernière intervention  
 
info.txt logfile of random's system information tool 1.06 2009-07-10 02:14:04

======Uninstall list======

-->"C:\Program Files\InstallShield Installation Information\{1A91D1FA-B9B3-4556-9878-5C61059A19B2}\setup.exe" REMOVEALL
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{89AD2814-AFA2-46AF-AE53-C27196D9FBE6}\setup.exe" REMOVEALL
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AAA4CCCE-78DB-47B0-A651-68270D838BD4}\setup.exe" REMOVEALL
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E06E4F4E-72D6-4497-BFFD-BCB43077C2F4}\setup.exe" -l0x40c -uninst
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
AbiWord 2.7.6-->C:\Program Files\AbiWord\UninstallAbiWord2.exe
Actual Window Minimizer 5.3-->"C:\Program Files\Actual Window Minimizer\unins000.exe"
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9.1.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Adobe Shockwave Player 11.5-->"C:\WINDOWS\system32\Adobe\Shockwave 11\uninstaller.exe"
Advanced SystemCare 3-->"C:\Program Files\IObit\Advanced SystemCare 3\unins000.exe"
AnglaisFacile.com - Planet English-->"C:\Program Files\AnglaisFacile.com\Planet English\uninstall.exe"
Any Video Converter 2.7.5-->"C:\Program Files\Any Video Converter\unins000.exe"
Any Video Converter Professional 2.7.3-->"C:\Program Files\Any Video Converter Professional\unins000.exe"
Apple Mobile Device Support-->MsiExec.exe /I{659B48CD-0608-4ED5-94C0-0B6C87114F10}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
a-squared Free 4.5-->"C:\Program Files\a-squared Free\unins000.exe"
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center-->MsiExec.exe /I{B8981722-D963-4D2C-86AD-3EC4BF241C33}
ATI Control Panel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
AusLogics Disk Defrag-->"C:\Program Files\AusLogics Disk Defrag\unins000.exe"
AusLogics Registry Defrag-->"C:\Program Files\AusLogics Registry Defrag\unins000.exe"
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
AxCrypt (Désinstaller uniquement)-->"C:\Program Files\Axon Data\AxCrypt\AxCryptU.exe"
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Code de la Route Pratic-->MsiExec.exe /X{D374F8CD-E0F3-4810-A48F-3C96E86AF6B4}
Connexion Facile à Internet-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{8105684D-8CA6-440D-8F58-7E5FD67A499D} /l1036
Defraggler (remove only)-->"C:\Program Files\Defraggler\uninst.exe"
Falco Chess 1.5-->"C:\Program Files\Falco Chess\unins000.exe"
filehippo.com Update Checker-->"C:\Program Files\filehippo.com\uninstall.exe"
Galerie de photos Windows Live-->MsiExec.exe /X{44E54A81-9D91-4AA1-9417-80AFF134F5FF}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
HP Software Update-->MsiExec.exe /X{457791C5-D702-4143-A7B2-2744BE9573F2}
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
iTunes-->MsiExec.exe /I{C26B06A9-27BB-45B0-9873-9C623EC2BA38}
iTunes-->MsiExec.exe /I{CC5702D7-86E2-45A8-99D7-E8B976ADCC56}
Java(TM) 6 Update 14-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}
JkDefrag 3.36-->"C:\Program Files\JkDefrag\unins000.exe"
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Les Aventures de Robinson Crusoé-->"C:\Program Files\Les Aventures de Robinson Crusoe\Uninstall.exe"
LimeWire PRO 4.12.3-->"C:\Program Files\LimeWire\uninstall.exe"
LocalCooling 1.04-->"C:\Program Files\LocalCooling\unins000.exe"
Ma-Config.com-->MsiExec.exe /X{6C4D4FC0-467B-4BD7-8D11-50E49B2770D2}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Search Enhancement Pack-->MsiExec.exe /X{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB969897)-->"C:\WINDOWS\ie8updates\KB969897-IE8\spuninst\spuninst.exe"
Mise à jour pour Windows Internet Explorer 8 (KB968220)-->"C:\WINDOWS\ie8updates\KB968220-IE8\spuninst\spuninst.exe"
MozBackup 1.4.9-->C:\Program Files\MozBackup\Uninstall.exe
Mozilla Firefox (3.0.10)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 and SOAP Toolkit 3.0-->MsiExec.exe /I{32343DB6-9A52-40C9-87E4-5E7C79791C87}
Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Panda ActiveScan 2.0-->C:\Program Files\Panda Security\ActiveScan 2.0\as2uninst.exe
PC-Doctor for Windows-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{0C66761E-497A-4BE3-AE0D-8EC30FC9A9AA} /l1036
PS2-->C:\WINDOWS\system32\ps2.exe uninstall
Python 2.2 combined Win32 extensions-->C:\Python22\Lib\SITE-P~1\UNWISE~1.EXE C:\Python22\Lib\SITE-P~1\w32inst.log
Quicksys RegDefrag 2.3-->"C:\Program Files\Quicksys\RegDefrag\unins000.exe"
QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
QuickTime-->MsiExec.exe /I{C78EAC6F-7A73-452E-8134-DBB2165C5A68}
Radio Fr Solo 2.1-->C:\Program Files\Radio Fr Solo\Uninstall.exe
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
RemoveIT Pro v4 - SE-->C:\PROGRA~1\InCode Solutions\RemoveIT Pro v4 - SE\UNWISE.EXE C:\PROGRA~1\InCode Solutions\RemoveIT Pro v4 - SE\INSTALL.LOG
Revo Uninstaller 1.83-->C:\Program Files\VS Revo Group\Revo Uninstaller\uninst.exe
RocketDock 1.3.5-->"C:\Program Files\RocketDock\unins000.exe"
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Sonic Express Labeler-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
SpeedFan (remove only)-->"C:\Program Files\SpeedFan\uninstall.exe"
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins001.exe"
SpywareBlaster 4.2-->"C:\Program Files\SpywareBlaster\unins000.exe"
Super Internet TV v7.4-->"C:\Program Files\Super Internet TV\unins000.exe"
Supprimer cible dans le clic droit-->RunDll32.exe syssetup.dll,SetupInfObjectInstallAction Target_remove 4 C:\WINDOWS\system32\ShellExt\target.inf
System Explorer 1.5-->"C:\Program Files\System Explorer\unins000.exe"
Titan Quest-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{412B69AF-C352-4F6F-A318-B92B3CB9ACC6}\setup.exe" -l0x40c -removeonly
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
Uniblue DriverScanner 2009-->"C:\Documents and Settings\All Users\Application Data\{D5ABFFAD-D592-4F98-B02B-587125B4801F}\DriverScanner_Setup.exe" REMOVE=TRUE MODIFY=FALSE
Uniblue DriverScanner 2009-->C:\Documents and Settings\All Users\Application Data\{D5ABFFAD-D592-4F98-B02B-587125B4801F}\DriverScanner_Setup.exe
Uniblue ProcessScanner-->"C:\Program Files\Uniblue\ProcessScanner\unins000.exe"
Uniblue RegistryBooster 2009-->"C:\Documents and Settings\All Users\Application Data\{B46E1EF5-0B37-4DB4-A4E2-9F2B41036185}\Uniblue RegistryBooster.exe" REMOVE=TRUE MODIFY=FALSE
Uniblue RegistryBooster 2009-->C:\Documents and Settings\All Users\Application Data\{B46E1EF5-0B37-4DB4-A4E2-9F2B41036185}\Uniblue RegistryBooster.exe
Uniblue SpeedUpMyPC 2009-->"C:\Documents and Settings\All Users\Application Data\{A613CA96-150A-4A1D-90CE-67F81379DF8C}\speedupmypc2009.exe" REMOVE=TRUE MODIFY=FALSE
Uniblue SpeedUpMyPC 2009-->C:\Documents and Settings\All Users\Application Data\{A613CA96-150A-4A1D-90CE-67F81379DF8C}\speedupmypc2009.exe
Unlocker 1.8.7-->C:\Program Files\Unlocker\uninst.exe
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update Notifier-->"C:\Program Files\Update Notifier\updatenotifier.exe" --uninstall
UsbFix-->E:\UsbFix\Uninstal.exe
VC 9.0 Runtime-->MsiExec.exe /I{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}
Vista Drive Icon 1.4-->C:\Program Files\Vista Drive Icon\uninst.exe
Visual C++ 2008 x86 Runtime - (v9.0.30729)-->MsiExec.exe /X{F333A33D-125C-32A2-8DCE-5C5D14231E27}
Visual C++ 2008 x86 Runtime - v9.0.30729.01-->C:\WINDOWS\system32\msiexec.exe /x {F333A33D-125C-32A2-8DCE-5C5D14231E27} /qb+ REBOOTPROMPT=""
VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe
wAw 1.0-->"C:\Program Files\wAw\unins000.exe"
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Contrôle parental-->MsiExec.exe /X{D6A2DDE3-9D7C-412C-932A-756580D29919}
Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Writer-->MsiExec.exe /X{2231CE39-B963-4B9D-823A-F412ECA637B1}
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
Zeb-Utility 1.2-->C:\Program Files\Zeb-Utility\Uninstal.exe
ZoneAlarm-->C:\Program Files\Zone Labs\ZoneAlarm\zauninst.exe

======Hosts File======

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com

======Security center information======

AV: AntiVir Desktop
FW: ZoneAlarm Firewall

======System event log======

Computer Name: RAMSES
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Carte de performance WMI.

Record Number: 184233
Source Name: Service Control Manager
Time Written: 20090620171151.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: RAMSES
Event Code: 7036
Message: Le service Service de la passerelle de la couche Application est entré dans l'état : en cours d'exécution.

Record Number: 184232
Source Name: Service Control Manager
Time Written: 20090620171143.000000+120
Event Type: Informations
User:

Computer Name: RAMSES
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Service de la passerelle de la couche Application.

Record Number: 184231
Source Name: Service Control Manager
Time Written: 20090620171143.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: RAMSES
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service NLA (Network Location Awareness).

Record Number: 184230
Source Name: Service Control Manager
Time Written: 20090620171142.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: RAMSES
Event Code: 7036
Message: Le service NLA (Network Location Awareness) est entré dans l'état : en cours d'exécution.

Record Number: 184229
Source Name: Service Control Manager
Time Written: 20090620171142.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: RAMSES
Event Code: 101
Message:
Record Number: 79351
Source Name: Automatic LiveUpdate Scheduler
Time Written: 20090503083945.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: RAMSES
Event Code: 101
Message:
Record Number: 79350
Source Name: Automatic LiveUpdate Scheduler
Time Written: 20090503083935.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: RAMSES
Event Code: 101
Message:
Record Number: 79349
Source Name: Automatic LiveUpdate Scheduler
Time Written: 20090503043546.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: RAMSES
Event Code: 101
Message:
Record Number: 79348
Source Name: Automatic LiveUpdate Scheduler
Time Written: 20090503043546.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: RAMSES
Event Code: 101
Message:
Record Number: 79347
Source Name: Automatic LiveUpdate Scheduler
Time Written: 20090503043530.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;c:\Python22;C:\Program Files\ATI Technologies\ATI Control Panel;C:\Program Files\Microsoft SQL Server\80\Tools\Binn;C:\Program Files\QuickTime\QTSystem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 4 Stepping 1, GenuineIntel
"PROCESSOR_REVISION"=0401
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"tvdumpflags"=8

-----------------EOF-----------------
0