Svchost
Résolu/Fermé
A voir également:
- Svchost
- Svchost - Guide
- Svchost intempestif ✓ - Forum Windows 10
- Svchost dcomlaunch - Forum Virus
- Svchost netsvcs ✓ - Forum Virus
- Svchost c'est quoi - Forum Windows
47 réponses
Utilisateur anonyme
10 nov. 2009 à 21:18
10 nov. 2009 à 21:18
Salut,
Ces processus sont nombreux et c'est tout a fait normal, tout du moins, lorsqu'il sont placés au bon endroit dans ton systeme.
Télécharge ici :
http://images.malwareremoval.com/random/RSIT.exe
random's system information tool (RSIT) par random/random et sauvegarde-le sur le Bureau.
Double-clique sur RSIT.exe afin de lancer RSIT.
Lis le contenu de l'écran Disclaimer puis clique sur Continue (si tu acceptes les conditions).
Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront.
Poste le contenu de log.txt (<<qui sera affiché)
ainsi que de info.txt (<<qui sera réduit dans la Barre des Tâches).
NB : Les rapports sont sauvegardés dans le dossier C:\rsit
Ces processus sont nombreux et c'est tout a fait normal, tout du moins, lorsqu'il sont placés au bon endroit dans ton systeme.
Télécharge ici :
http://images.malwareremoval.com/random/RSIT.exe
random's system information tool (RSIT) par random/random et sauvegarde-le sur le Bureau.
Double-clique sur RSIT.exe afin de lancer RSIT.
Lis le contenu de l'écran Disclaimer puis clique sur Continue (si tu acceptes les conditions).
Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront.
Poste le contenu de log.txt (<<qui sera affiché)
ainsi que de info.txt (<<qui sera réduit dans la Barre des Tâches).
NB : Les rapports sont sauvegardés dans le dossier C:\rsit
merci voici le log.txt :
Logfile of random's system information tool 1.06 (written by random/random)
Run by DEMANGEOT Solène at 2009-11-10 21:30:41
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 175 GB (73%) free of 238 GB
Total RAM: 1023 MB (31% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:30:50, on 10/11/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16915)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Fichiers communs\alq.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Ahead\Nero StartSmart\NeroStartSmart.exe
C:\Program Files\Java\jre6\bin\jucheck.exe
C:\Program Files\Ahead\nero\nero.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\DEMANGEOT Solène\Mes documents\Téléchargements\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\DEMANGEOT Solène.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.shareware.pro/search-fr/?ctid=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: Shareware.Pro-FR Toolbar - {280b5d37-4a76-467a-b3d6-942fca90acde} - C:\Program Files\Shareware.Pro-FR\tbShar.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Shareware.Pro-FR Toolbar - {280b5d37-4a76-467a-b3d6-942fca90acde} - C:\Program Files\Shareware.Pro-FR\tbShar.dll
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {cd36797a-70f3-4acd-8825-623d3b896881} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Shareware.Pro-FR Toolbar - {280b5d37-4a76-467a-b3d6-942fca90acde} - C:\Program Files\Shareware.Pro-FR\tbShar.dll
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Application Layer Gateway] C:\Program Files\Fichiers communs\alq.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} -
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by115w.bay115.mail.live.com/mail/resources/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {935F9B04-0C7B-4454-A391-348C54AD7ADD} (Jolly Bear Games Player) - http://games.bigfishgames.com/fr_bigcityadventuresa/online/JBGamePlayer.cab
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} (Java Plug-in 1.6.0_01) -
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} -
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - Unknown owner - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - NetGroup - Politecnico di Torino - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
Logfile of random's system information tool 1.06 (written by random/random)
Run by DEMANGEOT Solène at 2009-11-10 21:30:41
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 175 GB (73%) free of 238 GB
Total RAM: 1023 MB (31% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:30:50, on 10/11/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16915)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Fichiers communs\alq.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Ahead\Nero StartSmart\NeroStartSmart.exe
C:\Program Files\Java\jre6\bin\jucheck.exe
C:\Program Files\Ahead\nero\nero.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\DEMANGEOT Solène\Mes documents\Téléchargements\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\DEMANGEOT Solène.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.shareware.pro/search-fr/?ctid=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: Shareware.Pro-FR Toolbar - {280b5d37-4a76-467a-b3d6-942fca90acde} - C:\Program Files\Shareware.Pro-FR\tbShar.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Shareware.Pro-FR Toolbar - {280b5d37-4a76-467a-b3d6-942fca90acde} - C:\Program Files\Shareware.Pro-FR\tbShar.dll
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {cd36797a-70f3-4acd-8825-623d3b896881} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Shareware.Pro-FR Toolbar - {280b5d37-4a76-467a-b3d6-942fca90acde} - C:\Program Files\Shareware.Pro-FR\tbShar.dll
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Application Layer Gateway] C:\Program Files\Fichiers communs\alq.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} -
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by115w.bay115.mail.live.com/mail/resources/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {935F9B04-0C7B-4454-A391-348C54AD7ADD} (Jolly Bear Games Player) - http://games.bigfishgames.com/fr_bigcityadventuresa/online/JBGamePlayer.cab
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} (Java Plug-in 1.6.0_01) -
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} -
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - Unknown owner - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (file missing)
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - NetGroup - Politecnico di Torino - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
geoffrey5
Messages postés
13732
Date d'inscription
dimanche 20 mai 2007
Statut
Contributeur sécurité
Dernière intervention
21 mai 2010
10
10 nov. 2009 à 21:58
10 nov. 2009 à 21:58
Bonsoir,
plusieurs infections dans ton PC...
Nous allons commencer par les infections par disques amovibles.. Tu as surement branché une clé usb infectée sur ton PC..
▶ Télécharge UsbFix et enregistre-le sur ton bureau
▶ tutoriel recherche
▶ Double-clique sur UsbFix présent sur ton bureau, l'installation se fera automatiquement
▶ Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) suceptible d avoir été infectés sans les ouvrir
▶ Choisi l'option 1 (recherche)
▶ Laisse travailler l'outil
▶ Ensuite post le rapport UsbFix.txt qui apparaîtra
* Note : le rapport UsbFix.txt est sauvegardé a la racine du disque
* Note : Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet "Fichier" , "Nouvelle tâche" , tapes explorer.exe et valides
* Note : "SniffC.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
plusieurs infections dans ton PC...
Nous allons commencer par les infections par disques amovibles.. Tu as surement branché une clé usb infectée sur ton PC..
▶ Télécharge UsbFix et enregistre-le sur ton bureau
▶ tutoriel recherche
▶ Double-clique sur UsbFix présent sur ton bureau, l'installation se fera automatiquement
▶ Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) suceptible d avoir été infectés sans les ouvrir
▶ Choisi l'option 1 (recherche)
▶ Laisse travailler l'outil
▶ Ensuite post le rapport UsbFix.txt qui apparaîtra
* Note : le rapport UsbFix.txt est sauvegardé a la racine du disque
* Note : Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet "Fichier" , "Nouvelle tâche" , tapes explorer.exe et valides
* Note : "SniffC.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
bonsoir,
Je n'ai pas répondu plus car j'avais perdu le message !!!!
Voila le rapport :
############################## | UsbFix V6.050 |
User : DEMANGEOT Solène (Administrateurs) # DEMANGEO-F101EC
Update on 09/11/2009 by Chiquitine29, C_XX & Chimay8
Start at: 19:05:51 | 11/11/2009
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com
Intel(R) Pentium(R) 4 CPU 3.06GHz
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 7.0.5730.11
Windows Firewall Status : Enabled
AV : AntiVir Desktop 9.0.1.32 [ Enabled | Updated ]
C:\ -> Disque fixe local # 232,88 Go (170,48 Go free) # NTFS
D:\ -> Disque CD-ROM
E:\ -> Disque CD-ROM
F:\ -> Disque amovible
G:\ -> Disque amovible
H:\ -> Disque amovible
I:\ -> Disque amovible
J:\ -> Disque fixe local # 465,64 Go (248,57 Go free) [My Book] # FAT32
K:\ -> Disque amovible
L:\ -> Disque fixe local # 967,2 Mo (408,86 Mo free) [USB_OUVERT] # FAT
Z:\ -> Disque virtuel # 0,04 Mo (0,04 Mo free) [MS-RAMDRIVE] # FAT
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe 680
C:\WINDOWS\system32\csrss.exe 772
C:\WINDOWS\system32\winlogon.exe 804
C:\WINDOWS\system32\services.exe 848
C:\WINDOWS\system32\lsass.exe 860
C:\WINDOWS\system32\Ati2evxx.exe 1056
C:\WINDOWS\system32\svchost.exe 1072
C:\WINDOWS\system32\svchost.exe 1148
C:\WINDOWS\System32\svchost.exe 1244
C:\WINDOWS\system32\svchost.exe 1284
C:\WINDOWS\system32\svchost.exe 1344
C:\WINDOWS\system32\svchost.exe 1476
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe 1520
C:\WINDOWS\system32\spoolsv.exe 1688
C:\Program Files\Avira\AntiVir Desktop\sched.exe 1756
C:\WINDOWS\system32\svchost.exe 1836
C:\WINDOWS\system32\Ati2evxx.exe 2020
C:\WINDOWS\Explorer.EXE 164
C:\Program Files\Avira\AntiVir Desktop\avguard.exe 380
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe 392
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe 444
C:\Program Files\Bonjour\mDNSResponder.exe 480
C:\WINDOWS\system32\drivers\CDAC11BA.EXE 500
C:\Program Files\Java\jre6\bin\jqs.exe 580
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe 660
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe 696
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe 732
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe 1092
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe 1104
C:\Program Files\Java\jre6\bin\jusched.exe 1184
C:\Program Files\Windows Live\Messenger\msnmsgr.exe 1196
C:\WINDOWS\system32\ctfmon.exe 1228
C:\Program Files\Messenger\msmsgs.exe 1268
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 1896
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe 1984
C:\WINDOWS\system32\svchost.exe 328
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe 1328
C:\WINDOWS\system32\wbem\unsecapp.exe 2680
C:\WINDOWS\system32\wbem\wmiprvse.exe 2692
C:\WINDOWS\system32\wbem\wmiapsrv.exe 2984
C:\WINDOWS\System32\alg.exe 3188
C:\Program Files\Java\jre6\bin\jucheck.exe 1920
C:\Program Files\Windows Live\Contacts\wlcomm.exe 3416
C:\Program Files\eMule\emule.exe 1624
C:\PROGRA~1\GRETECH\GOMPLA~1\GOM.exe 1992
C:\Program Files\bfgclient\bfggameservices.exe 3920
C:\Program Files\Mozilla Firefox\firefox.exe 2120
C:\WINDOWS\system32\wbem\wmiprvse.exe 2460
################## | Fichiers # Dossiers infectieux |
C:\SETUP.PIF
J:\autorun.inf
################## | Registre # Clés Run infectieuses |
[HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableTaskMgr"
################## | Registre # Mountpoints2 |
HKCU\..\..\Explorer\MountPoints2\{05885f7b-d66d-11dc-8211-0015f260c369}
Shell\Auto\command =cmd /C launch.bat
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL cmd /C launch.bat
HKCU\..\..\Explorer\MountPoints2\{3d89ffc5-9c4d-11de-8369-0015f260c369}
Shell\AutoRun\command =E:\InstallTomTomHOME.exe
HKCU\..\..\Explorer\MountPoints2\{5cc7dbc6-1e18-11de-82f3-0015f260c369}
Shell\Auto\command =infrom.exe
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL infrom.exe
HKCU\..\..\Explorer\MountPoints2\{66ec75db-722c-11de-8333-0015f260c369}
Shell\AutoRun\command =setup.exe
HKCU\..\..\Explorer\MountPoints2\{71d3eda1-daa5-11dd-82b6-0015f260c369}
Shell\Auto\command =cmd /C launch.bat
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL cmd /C launch.bat
HKCU\..\..\Explorer\MountPoints2\{7428f1ef-954d-11dd-8292-0015f260c369}
Shell\Auto\command =AdobeR.exe e
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e
HKCU\..\..\Explorer\MountPoints2\{7541a31c-4de9-11dd-8261-0015f260c369}
Shell\Auto\command =cmd /C launch.bat
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL cmd /C launch.bat
HKCU\..\..\Explorer\MountPoints2\{83be5959-d10c-11dc-8210-0015f260c369}
Shell\Auto\command =cmd /C launch.bat
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL cmd /C launch.bat
################## | Suspect | https://www.virustotal.com/gui/ |
################## | Cracks / Keygens / Serials |
"C:\Program Files\Jeux Rico\Mystery P.I. - The Lottery Ticket\_keygen.exe"
18/09/2007 00:18 |Size 84480 |Crc32 68ae8829 |Md5 1ea6aae38bd310d3da24646dc55f25e7
"C:\Program Files\Jeux Rico\Mystery P.I. - The Lottery Ticket\Crack\chp.exe"
28/10/2007 19:25 |Size 7168 |Crc32 fcc98a67 |Md5 aea383d349b7d5ab52fe0b969849a545
"C:\Program Files\Jeux Rico\Mystery P.I. - The Lottery Ticket\Crack\crack.exe"
22/09/2008 08:33 |Size 107232 |Crc32 04ab31b7 |Md5 dbe6e2cdd3c4d1c3b66ce8f3b5f51a89
"C:\SWORDTMP\SOLENE\VUZE\So Blonde\SO BLONDE\Crack\SoBlonde.exe"
22/06/2008 14:24 |Size 1041024 |Crc32 62ad7a18 |Md5 f25cb232843f7c0e34e1b7ef2de0312b
################## | ! Fin du rapport # UsbFix V6.050 ! |
merci
Je n'ai pas répondu plus car j'avais perdu le message !!!!
Voila le rapport :
############################## | UsbFix V6.050 |
User : DEMANGEOT Solène (Administrateurs) # DEMANGEO-F101EC
Update on 09/11/2009 by Chiquitine29, C_XX & Chimay8
Start at: 19:05:51 | 11/11/2009
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com
Intel(R) Pentium(R) 4 CPU 3.06GHz
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 7.0.5730.11
Windows Firewall Status : Enabled
AV : AntiVir Desktop 9.0.1.32 [ Enabled | Updated ]
C:\ -> Disque fixe local # 232,88 Go (170,48 Go free) # NTFS
D:\ -> Disque CD-ROM
E:\ -> Disque CD-ROM
F:\ -> Disque amovible
G:\ -> Disque amovible
H:\ -> Disque amovible
I:\ -> Disque amovible
J:\ -> Disque fixe local # 465,64 Go (248,57 Go free) [My Book] # FAT32
K:\ -> Disque amovible
L:\ -> Disque fixe local # 967,2 Mo (408,86 Mo free) [USB_OUVERT] # FAT
Z:\ -> Disque virtuel # 0,04 Mo (0,04 Mo free) [MS-RAMDRIVE] # FAT
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe 680
C:\WINDOWS\system32\csrss.exe 772
C:\WINDOWS\system32\winlogon.exe 804
C:\WINDOWS\system32\services.exe 848
C:\WINDOWS\system32\lsass.exe 860
C:\WINDOWS\system32\Ati2evxx.exe 1056
C:\WINDOWS\system32\svchost.exe 1072
C:\WINDOWS\system32\svchost.exe 1148
C:\WINDOWS\System32\svchost.exe 1244
C:\WINDOWS\system32\svchost.exe 1284
C:\WINDOWS\system32\svchost.exe 1344
C:\WINDOWS\system32\svchost.exe 1476
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe 1520
C:\WINDOWS\system32\spoolsv.exe 1688
C:\Program Files\Avira\AntiVir Desktop\sched.exe 1756
C:\WINDOWS\system32\svchost.exe 1836
C:\WINDOWS\system32\Ati2evxx.exe 2020
C:\WINDOWS\Explorer.EXE 164
C:\Program Files\Avira\AntiVir Desktop\avguard.exe 380
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe 392
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe 444
C:\Program Files\Bonjour\mDNSResponder.exe 480
C:\WINDOWS\system32\drivers\CDAC11BA.EXE 500
C:\Program Files\Java\jre6\bin\jqs.exe 580
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe 660
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe 696
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe 732
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe 1092
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe 1104
C:\Program Files\Java\jre6\bin\jusched.exe 1184
C:\Program Files\Windows Live\Messenger\msnmsgr.exe 1196
C:\WINDOWS\system32\ctfmon.exe 1228
C:\Program Files\Messenger\msmsgs.exe 1268
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 1896
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe 1984
C:\WINDOWS\system32\svchost.exe 328
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe 1328
C:\WINDOWS\system32\wbem\unsecapp.exe 2680
C:\WINDOWS\system32\wbem\wmiprvse.exe 2692
C:\WINDOWS\system32\wbem\wmiapsrv.exe 2984
C:\WINDOWS\System32\alg.exe 3188
C:\Program Files\Java\jre6\bin\jucheck.exe 1920
C:\Program Files\Windows Live\Contacts\wlcomm.exe 3416
C:\Program Files\eMule\emule.exe 1624
C:\PROGRA~1\GRETECH\GOMPLA~1\GOM.exe 1992
C:\Program Files\bfgclient\bfggameservices.exe 3920
C:\Program Files\Mozilla Firefox\firefox.exe 2120
C:\WINDOWS\system32\wbem\wmiprvse.exe 2460
################## | Fichiers # Dossiers infectieux |
C:\SETUP.PIF
J:\autorun.inf
################## | Registre # Clés Run infectieuses |
[HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableTaskMgr"
################## | Registre # Mountpoints2 |
HKCU\..\..\Explorer\MountPoints2\{05885f7b-d66d-11dc-8211-0015f260c369}
Shell\Auto\command =cmd /C launch.bat
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL cmd /C launch.bat
HKCU\..\..\Explorer\MountPoints2\{3d89ffc5-9c4d-11de-8369-0015f260c369}
Shell\AutoRun\command =E:\InstallTomTomHOME.exe
HKCU\..\..\Explorer\MountPoints2\{5cc7dbc6-1e18-11de-82f3-0015f260c369}
Shell\Auto\command =infrom.exe
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL infrom.exe
HKCU\..\..\Explorer\MountPoints2\{66ec75db-722c-11de-8333-0015f260c369}
Shell\AutoRun\command =setup.exe
HKCU\..\..\Explorer\MountPoints2\{71d3eda1-daa5-11dd-82b6-0015f260c369}
Shell\Auto\command =cmd /C launch.bat
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL cmd /C launch.bat
HKCU\..\..\Explorer\MountPoints2\{7428f1ef-954d-11dd-8292-0015f260c369}
Shell\Auto\command =AdobeR.exe e
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e
HKCU\..\..\Explorer\MountPoints2\{7541a31c-4de9-11dd-8261-0015f260c369}
Shell\Auto\command =cmd /C launch.bat
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL cmd /C launch.bat
HKCU\..\..\Explorer\MountPoints2\{83be5959-d10c-11dc-8210-0015f260c369}
Shell\Auto\command =cmd /C launch.bat
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL cmd /C launch.bat
################## | Suspect | https://www.virustotal.com/gui/ |
################## | Cracks / Keygens / Serials |
"C:\Program Files\Jeux Rico\Mystery P.I. - The Lottery Ticket\_keygen.exe"
18/09/2007 00:18 |Size 84480 |Crc32 68ae8829 |Md5 1ea6aae38bd310d3da24646dc55f25e7
"C:\Program Files\Jeux Rico\Mystery P.I. - The Lottery Ticket\Crack\chp.exe"
28/10/2007 19:25 |Size 7168 |Crc32 fcc98a67 |Md5 aea383d349b7d5ab52fe0b969849a545
"C:\Program Files\Jeux Rico\Mystery P.I. - The Lottery Ticket\Crack\crack.exe"
22/09/2008 08:33 |Size 107232 |Crc32 04ab31b7 |Md5 dbe6e2cdd3c4d1c3b66ce8f3b5f51a89
"C:\SWORDTMP\SOLENE\VUZE\So Blonde\SO BLONDE\Crack\SoBlonde.exe"
22/06/2008 14:24 |Size 1041024 |Crc32 62ad7a18 |Md5 f25cb232843f7c0e34e1b7ef2de0312b
################## | ! Fin du rapport # UsbFix V6.050 ! |
merci
geoffrey5
Messages postés
13732
Date d'inscription
dimanche 20 mai 2007
Statut
Contributeur sécurité
Dernière intervention
21 mai 2010
10
12 nov. 2009 à 11:44
12 nov. 2009 à 11:44
Bonjour,
▶ tutoriel nettoyage
▶ Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d avoir été infectés sans les ouvrir
▶ Double clic sur le raccourci UsbFix présent sur ton bureau
▶ choisi l'option 2 ( Suppression )
▶ Ton bureau disparaîtra et le pc redémarrera .
▶ Au redémarrage , UsbFix scannera ton pc , laisse travailler l'outil.
▶ Ensuite post le rapport UsbFix.txt qui apparaîtra avec le bureau .
▶ Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque.( C:\UsbFix.txt )
( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
▶ /!\ UsbFix te proposera d'uploader un dossier compressé à cette adresse : https://www.androidworld.fr/
▶ Ce dossier a été créé par UsbFix et est enregistré sur ton bureau.
▶ Merci de l'envoyer à l'adresse indiquée afin d'aider l'auteur de UsbFix dans ses recherches.
▶ Merci d'avance pour ta contribution !!
▶ tutoriel nettoyage
▶ Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d avoir été infectés sans les ouvrir
▶ Double clic sur le raccourci UsbFix présent sur ton bureau
▶ choisi l'option 2 ( Suppression )
▶ Ton bureau disparaîtra et le pc redémarrera .
▶ Au redémarrage , UsbFix scannera ton pc , laisse travailler l'outil.
▶ Ensuite post le rapport UsbFix.txt qui apparaîtra avec le bureau .
▶ Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque.( C:\UsbFix.txt )
( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
▶ /!\ UsbFix te proposera d'uploader un dossier compressé à cette adresse : https://www.androidworld.fr/
▶ Ce dossier a été créé par UsbFix et est enregistré sur ton bureau.
▶ Merci de l'envoyer à l'adresse indiquée afin d'aider l'auteur de UsbFix dans ses recherches.
▶ Merci d'avance pour ta contribution !!
bonjour,
voila le rapport :
############################## | UsbFix V6.050 |
User : DEMANGEOT Solène (Administrateurs) # DEMANGEO-F101EC
Update on 09/11/2009 by Chiquitine29, C_XX & Chimay8
Start at: 11:55:38 | 12/11/2009
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com
Intel(R) Pentium(R) 4 CPU 3.06GHz
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 7.0.5730.11
Windows Firewall Status : Enabled
AV : AntiVir Desktop 9.0.1.32 [ Enabled | Updated ]
C:\ -> Disque fixe local # 232,88 Go (141,66 Go free) # NTFS
D:\ -> Disque CD-ROM
E:\ -> Disque CD-ROM
F:\ -> Disque amovible
G:\ -> Disque amovible
H:\ -> Disque amovible
I:\ -> Disque amovible
J:\ -> Disque fixe local # 465,64 Go (248,28 Go free) [My Book] # FAT32
K:\ -> Disque amovible
L:\ -> Disque fixe local # 967,2 Mo (408,86 Mo free) [USB_OUVERT] # FAT
Z:\ -> Disque virtuel # 0,04 Mo (0,04 Mo free) [MS-RAMDRIVE] # FAT
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe 680
C:\WINDOWS\system32\csrss.exe 772
C:\WINDOWS\system32\winlogon.exe 804
C:\WINDOWS\system32\services.exe 848
C:\WINDOWS\system32\lsass.exe 860
C:\WINDOWS\system32\Ati2evxx.exe 1056
C:\WINDOWS\system32\svchost.exe 1072
C:\WINDOWS\system32\svchost.exe 1148
C:\WINDOWS\System32\svchost.exe 1244
C:\WINDOWS\system32\svchost.exe 1284
C:\WINDOWS\system32\svchost.exe 1344
C:\WINDOWS\system32\svchost.exe 1476
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe 1520
C:\WINDOWS\system32\spoolsv.exe 1688
C:\Program Files\Avira\AntiVir Desktop\sched.exe 1756
C:\WINDOWS\system32\svchost.exe 1836
C:\WINDOWS\system32\Ati2evxx.exe 2020
C:\WINDOWS\Explorer.EXE 164
C:\Program Files\Avira\AntiVir Desktop\avguard.exe 380
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe 392
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe 444
C:\Program Files\Bonjour\mDNSResponder.exe 480
C:\WINDOWS\system32\drivers\CDAC11BA.EXE 500
C:\Program Files\Java\jre6\bin\jqs.exe 580
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe 660
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe 696
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe 732
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe 1092
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe 1104
C:\Program Files\Java\jre6\bin\jusched.exe 1184
C:\Program Files\Windows Live\Messenger\msnmsgr.exe 1196
C:\WINDOWS\system32\ctfmon.exe 1228
C:\Program Files\Messenger\msmsgs.exe 1268
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 1896
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe 1984
C:\WINDOWS\system32\svchost.exe 328
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe 1328
C:\WINDOWS\system32\wbem\unsecapp.exe 2680
C:\WINDOWS\system32\wbem\wmiprvse.exe 2692
C:\WINDOWS\system32\wbem\wmiapsrv.exe 2984
C:\WINDOWS\System32\alg.exe 3188
C:\Program Files\Java\jre6\bin\jucheck.exe 1920
C:\Program Files\Windows Live\Contacts\wlcomm.exe 3416
C:\Program Files\eMule\emule.exe 12204
C:\Program Files\bfgclient\bfgclient.exe 13276
C:\Program Files\Mozilla Firefox\firefox.exe 14232
C:\WINDOWS\system32\wbem\wmiprvse.exe 2768
################## | Fichiers # Dossiers infectieux |
Supprimé ! C:\SETUP.PIF
Supprimé ! J:\autorun.inf
################## | Registre # Clés Run infectieuses |
Supprimé ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableTaskMgr"
################## | Registre # Mountpoints2 |
Supprimé ! HKCU\...\Explorer\MountPoints2\{05885f7b-d66d-11dc-8211-0015f260c369}\Shell\Auto\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{3d89ffc5-9c4d-11de-8369-0015f260c369}\Shell\AutoRun\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{5cc7dbc6-1e18-11de-82f3-0015f260c369}\Shell\Auto\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{66ec75db-722c-11de-8333-0015f260c369}\Shell\AutoRun\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{71d3eda1-daa5-11dd-82b6-0015f260c369}\Shell\Auto\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{7428f1ef-954d-11dd-8292-0015f260c369}\Shell\Auto\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{7541a31c-4de9-11dd-8261-0015f260c369}\Shell\Auto\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{83be5959-d10c-11dc-8210-0015f260c369}\Shell\Auto\Command
################## | Listing des fichiers présent |
[14/04/2008 13:00|--a------|263504] C:\$LDR$
[11/11/2009 05:20|--a------|22562] C:\aaw7boot.log
[07/07/2008 22:30|--a------|92216] C:\bass.dll
[08/10/2008 13:31|--a------|198] C:\BOOT.BAK
[30/08/2009 19:37|-rahs----|239] C:\boot.ini
[14/04/2008 13:00|-rahs----|4952] C:\Bootfont.bin
[12/05/2007 17:22|--a------|68096] C:\diff.exe
[08/04/2008 18:37|--a------|103680] C:\grep.exe
[12/06/2006 16:37|-rahs----|0] C:\IO.SYS
[27/12/2007 13:41|--a------|125] C:\ioSpecial.ini
[02/04/2009 22:40|--a------|63454843] C:\main.pak
[12/06/2006 16:37|-rahs----|0] C:\MSDOS.SYS
[14/04/2008 13:00|-rahs----|47564] C:\NTDETECT.COM
[14/04/2008 13:00|-rahs----|252240] C:\ntldr
[?|?|?] C:\pagefile.sys
[09/12/2007 15:22|--a------|4937] C:\PERF.LOG
[26/11/2007 22:47|--a------|67448] C:\playground.log
[21/01/2008 21:12|--a------|0] C:\plx_proxy.log
[13/12/1994 06:02|--a------|25980] C:\PRSANSR.TTF
[12/05/2007 17:22|--a------|853] C:\reboot.cmd
[14/04/2008 13:00|--a------|459151] C:\txtsetup.sif
[12/11/2009 12:08|--a------|5494] C:\UsbFix.txt
[03/04/2009 17:47|--a------|3298639] C:\Wonderburg.exe
[20/06/2009 23:48|--a------|3833034] L:\2009_0628andalousie06090001.JPG
[21/06/2009 00:39|--a------|4244770] L:\2009_0628andalousie06090002.JPG
[21/06/2009 00:39|--a------|4129795] L:\2009_0628andalousie06090003.JPG
[21/06/2009 00:39|--a------|4040730] L:\2009_0628andalousie06090004.JPG
[21/06/2009 01:47|--a------|3766237] L:\2009_0628andalousie06090005.JPG
[21/06/2009 01:47|--a------|3806852] L:\2009_0628andalousie06090006.JPG
[21/06/2009 01:50|--a------|4008901] L:\2009_0628andalousie06090007.JPG
[22/06/2009 01:08|--a------|4136131] L:\2009_0628andalousie06090008.JPG
[22/06/2009 01:09|--a------|3705182] L:\2009_0628andalousie06090009.JPG
[22/06/2009 02:23|--a------|3759428] L:\2009_0628andalousie06090010.JPG
[22/06/2009 02:23|--a------|4246576] L:\2009_0628andalousie06090011.JPG
[22/06/2009 02:24|--a------|3943018] L:\2009_0628andalousie06090012.JPG
[28/06/2009 20:42|--a------|3832463] L:\2009_0628andalousie06090013.JPG
[28/06/2009 19:30|--a------|30] L:\2009_0628andalousie06090013.jpx
[22/06/2009 05:34|--a------|4095456] L:\2009_0628andalousie06090014.JPG
[22/06/2009 05:34|--a------|3902839] L:\2009_0628andalousie06090015.JPG
[22/06/2009 05:56|--a------|3886364] L:\2009_0628andalousie06090016.JPG
[22/06/2009 05:56|--a------|4303490] L:\2009_0628andalousie06090017.JPG
[22/06/2009 05:59|--a------|4024029] L:\2009_0628andalousie06090018.JPG
[22/06/2009 06:00|--a------|3950707] L:\2009_0628andalousie06090019.JPG
[22/06/2009 06:23|--a------|4276383] L:\2009_0628andalousie06090020.JPG
[22/06/2009 06:24|--a------|4603594] L:\2009_0628andalousie06090021.JPG
[22/06/2009 21:21|--a------|4409723] L:\2009_0628andalousie06090022.JPG
[23/06/2009 01:27|--a------|3932724] L:\2009_0628andalousie06090023.JPG
[23/06/2009 01:27|--a------|3969431] L:\2009_0628andalousie06090024.JPG
[23/06/2009 01:27|--a------|4265808] L:\2009_0628andalousie06090025.JPG
[23/06/2009 01:28|--a------|4125797] L:\2009_0628andalousie06090026.JPG
[28/06/2009 19:30|--a------|4004369] L:\andalousie 0609 077.jpg
[28/06/2009 19:24|--a------|4051049] L:\andalousie 0609 001.jpg
[28/06/2009 19:24|--a------|4609644] L:\andalousie 0609 002.jpg
[28/06/2009 19:24|--a------|3867099] L:\andalousie 0609 003.jpg
[28/06/2009 19:24|--a------|3869784] L:\andalousie 0609 004.jpg
[28/06/2009 19:25|--a------|3985429] L:\andalousie 0609 005.jpg
[28/06/2009 19:25|--a------|3755345] L:\andalousie 0609 006.jpg
[28/06/2009 19:25|--a------|3921136] L:\andalousie 0609 007.jpg
[28/06/2009 19:25|--a------|3159499] L:\andalousie 0609 008.jpg
[28/06/2009 19:25|--a------|3885560] L:\andalousie 0609 009.jpg
[28/06/2009 19:25|--a------|4492348] L:\andalousie 0609 010.jpg
[28/06/2009 19:25|--a------|4121788] L:\andalousie 0609 011.jpg
[28/06/2009 19:25|--a------|4098514] L:\andalousie 0609 012.jpg
[28/06/2009 19:25|--a------|4063465] L:\andalousie 0609 013.jpg
[28/06/2009 19:25|--a------|4053866] L:\andalousie 0609 014.jpg
[28/06/2009 19:25|--a------|3112873] L:\andalousie 0609 015.jpg
[28/06/2009 19:25|--a------|4036255] L:\andalousie 0609 016.jpg
[28/06/2009 19:25|--a------|4819285] L:\andalousie 0609 017.jpg
[28/06/2009 19:26|--a------|4271789] L:\andalousie 0609 018.jpg
[28/06/2009 19:26|--a------|4272127] L:\andalousie 0609 019.jpg
[28/06/2009 19:26|--a------|2946253] L:\andalousie 0609 020.jpg
[28/06/2009 19:26|--a------|2747286] L:\andalousie 0609 021.jpg
[28/06/2009 19:26|--a------|3913750] L:\andalousie 0609 022.jpg
[28/06/2009 19:26|--a------|4455126] L:\andalousie 0609 023.jpg
[28/06/2009 19:26|--a------|4259220] L:\andalousie 0609 024.jpg
[28/06/2009 19:26|--a------|3905702] L:\andalousie 0609 025.jpg
[28/06/2009 19:26|--a------|4017498] L:\andalousie 0609 026.jpg
[28/06/2009 19:26|--a------|4604869] L:\andalousie 0609 027.jpg
[28/06/2009 19:26|--a------|2917471] L:\andalousie 0609 028.jpg
[28/06/2009 19:26|--a------|3006064] L:\andalousie 0609 029.jpg
[28/06/2009 19:26|--a------|4332154] L:\andalousie 0609 030.jpg
[28/06/2009 19:26|--a------|4404196] L:\andalousie 0609 031.jpg
[28/06/2009 19:27|--a------|4114652] L:\andalousie 0609 032.jpg
[28/06/2009 19:27|--a------|4308416] L:\andalousie 0609 033.jpg
[28/06/2009 19:27|--a------|4184051] L:\andalousie 0609 034.jpg
[28/06/2009 19:27|--a------|4155224] L:\andalousie 0609 035.jpg
[28/06/2009 19:27|--a------|4056795] L:\andalousie 0609 036.jpg
[28/06/2009 19:27|--a------|4103224] L:\andalousie 0609 037.jpg
[28/06/2009 19:27|--a------|3979440] L:\andalousie 0609 038.jpg
[28/06/2009 19:27|--a------|2630513] L:\andalousie 0609 039.jpg
[28/06/2009 19:27|--a------|2411756] L:\andalousie 0609 040.jpg
[28/06/2009 19:27|--a------|4285563] L:\andalousie 0609 041.jpg
[28/06/2009 19:27|--a------|3954336] L:\andalousie 0609 042.jpg
[28/06/2009 19:27|--a------|3970928] L:\andalousie 0609 043.jpg
[28/06/2009 19:27|--a------|4096605] L:\andalousie 0609 044.jpg
[28/06/2009 19:27|--a------|3973792] L:\andalousie 0609 045.jpg
[28/06/2009 19:28|--a------|4421880] L:\andalousie 0609 046.jpg
[28/06/2009 19:28|--a------|3042871] L:\andalousie 0609 047.jpg
[28/06/2009 19:28|--a------|4331894] L:\andalousie 0609 048.jpg
[28/06/2009 19:28|--a------|4169458] L:\andalousie 0609 049.jpg
[28/06/2009 19:28|--a------|3974176] L:\andalousie 0609 050.jpg
[28/06/2009 19:28|--a------|4336392] L:\andalousie 0609 051.jpg
[28/06/2009 19:28|--a------|3972532] L:\andalousie 0609 052.jpg
[28/06/2009 19:28|--a------|4382776] L:\andalousie 0609 053.jpg
[28/06/2009 19:28|--a------|4040567] L:\andalousie 0609 054.jpg
[28/06/2009 19:28|--a------|4476878] L:\andalousie 0609 055.jpg
[28/06/2009 19:28|--a------|4233999] L:\andalousie 0609 056.jpg
[28/06/2009 19:28|--a------|4039201] L:\andalousie 0609 057.jpg
[28/06/2009 19:28|--a------|4017834] L:\andalousie 0609 058.jpg
[28/06/2009 19:28|--a------|3620136] L:\andalousie 0609 059.jpg
[28/06/2009 19:29|--a------|3771577] L:\andalousie 0609 060.jpg
[28/06/2009 19:29|--a------|3529326] L:\andalousie 0609 061.jpg
[28/06/2009 19:29|--a------|3795090] L:\andalousie 0609 062.jpg
[28/06/2009 19:29|--a------|3833475] L:\andalousie 0609 063.jpg
[28/06/2009 19:29|--a------|4458195] L:\andalousie 0609 064.jpg
[28/06/2009 19:29|--a------|4217008] L:\andalousie 0609 065.jpg
[28/06/2009 19:29|--a------|4077227] L:\andalousie 0609 066.jpg
[28/06/2009 19:29|--a------|4244088] L:\andalousie 0609 067.jpg
[28/06/2009 19:29|--a------|3782317] L:\andalousie 0609 068.jpg
[28/06/2009 19:29|--a------|3768446] L:\andalousie 0609 069.jpg
[28/06/2009 19:29|--a------|4466401] L:\andalousie 0609 070.jpg
[28/06/2009 19:29|--a------|3963802] L:\andalousie 0609 071.jpg
[28/06/2009 19:29|--a------|3919009] L:\andalousie 0609 072.jpg
[28/06/2009 19:30|--a------|3822220] L:\andalousie 0609 073.jpg
[28/06/2009 19:30|--a------|3743862] L:\andalousie 0609 074.jpg
[28/06/2009 19:30|--a------|3751003] L:\andalousie 0609 075.jpg
[28/06/2009 19:30|--a------|3811065] L:\andalousie 0609 076.jpg
[02/07/2009 00:39|--ahs----|690920] L:\Thumbs.db
################## | Vaccination |
# C:\autorun.inf -> Dossier créé par UsbFix.
# J:\autorun.inf -> Dossier créé par UsbFix.
# L:\autorun.inf -> Dossier créé par UsbFix.
################## | Suspect | https://www.virustotal.com/gui/ |
################## | Cracks / Keygens / Serials |
"C:\Program Files\Jeux Rico\Mystery P.I. - The Lottery Ticket\_keygen.exe"
18/09/2007 00:18 |Size 84480 |Crc32 68ae8829 |Md5 1ea6aae38bd310d3da24646dc55f25e7
"C:\Program Files\Jeux Rico\Mystery P.I. - The Lottery Ticket\Crack\chp.exe"
28/10/2007 19:25 |Size 7168 |Crc32 fcc98a67 |Md5 aea383d349b7d5ab52fe0b969849a545
"C:\Program Files\Jeux Rico\Mystery P.I. - The Lottery Ticket\Crack\crack.exe"
22/09/2008 08:33 |Size 107232 |Crc32 04ab31b7 |Md5 dbe6e2cdd3c4d1c3b66ce8f3b5f51a89
"C:\SWORDTMP\SOLENE\VUZE\So Blonde\SO BLONDE\Crack\SoBlonde.exe"
22/06/2008 14:24 |Size 1041024 |Crc32 62ad7a18 |Md5 f25cb232843f7c0e34e1b7ef2de0312b
################## | Upload |
Veuillez envoyer le fichier : C:\DOCUME~1\DEMANG~1\Bureau\UsbFix_Upload_Me_DEMANGEO-F101EC.zip : https://www.androidworld.fr/
Merci pour votre contribution .
################## | ! Fin du rapport # UsbFix V6.050 ! |
merci
voila le rapport :
############################## | UsbFix V6.050 |
User : DEMANGEOT Solène (Administrateurs) # DEMANGEO-F101EC
Update on 09/11/2009 by Chiquitine29, C_XX & Chimay8
Start at: 11:55:38 | 12/11/2009
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com
Intel(R) Pentium(R) 4 CPU 3.06GHz
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 7.0.5730.11
Windows Firewall Status : Enabled
AV : AntiVir Desktop 9.0.1.32 [ Enabled | Updated ]
C:\ -> Disque fixe local # 232,88 Go (141,66 Go free) # NTFS
D:\ -> Disque CD-ROM
E:\ -> Disque CD-ROM
F:\ -> Disque amovible
G:\ -> Disque amovible
H:\ -> Disque amovible
I:\ -> Disque amovible
J:\ -> Disque fixe local # 465,64 Go (248,28 Go free) [My Book] # FAT32
K:\ -> Disque amovible
L:\ -> Disque fixe local # 967,2 Mo (408,86 Mo free) [USB_OUVERT] # FAT
Z:\ -> Disque virtuel # 0,04 Mo (0,04 Mo free) [MS-RAMDRIVE] # FAT
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe 680
C:\WINDOWS\system32\csrss.exe 772
C:\WINDOWS\system32\winlogon.exe 804
C:\WINDOWS\system32\services.exe 848
C:\WINDOWS\system32\lsass.exe 860
C:\WINDOWS\system32\Ati2evxx.exe 1056
C:\WINDOWS\system32\svchost.exe 1072
C:\WINDOWS\system32\svchost.exe 1148
C:\WINDOWS\System32\svchost.exe 1244
C:\WINDOWS\system32\svchost.exe 1284
C:\WINDOWS\system32\svchost.exe 1344
C:\WINDOWS\system32\svchost.exe 1476
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe 1520
C:\WINDOWS\system32\spoolsv.exe 1688
C:\Program Files\Avira\AntiVir Desktop\sched.exe 1756
C:\WINDOWS\system32\svchost.exe 1836
C:\WINDOWS\system32\Ati2evxx.exe 2020
C:\WINDOWS\Explorer.EXE 164
C:\Program Files\Avira\AntiVir Desktop\avguard.exe 380
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe 392
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe 444
C:\Program Files\Bonjour\mDNSResponder.exe 480
C:\WINDOWS\system32\drivers\CDAC11BA.EXE 500
C:\Program Files\Java\jre6\bin\jqs.exe 580
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe 660
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe 696
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe 732
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe 1092
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe 1104
C:\Program Files\Java\jre6\bin\jusched.exe 1184
C:\Program Files\Windows Live\Messenger\msnmsgr.exe 1196
C:\WINDOWS\system32\ctfmon.exe 1228
C:\Program Files\Messenger\msmsgs.exe 1268
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 1896
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe 1984
C:\WINDOWS\system32\svchost.exe 328
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe 1328
C:\WINDOWS\system32\wbem\unsecapp.exe 2680
C:\WINDOWS\system32\wbem\wmiprvse.exe 2692
C:\WINDOWS\system32\wbem\wmiapsrv.exe 2984
C:\WINDOWS\System32\alg.exe 3188
C:\Program Files\Java\jre6\bin\jucheck.exe 1920
C:\Program Files\Windows Live\Contacts\wlcomm.exe 3416
C:\Program Files\eMule\emule.exe 12204
C:\Program Files\bfgclient\bfgclient.exe 13276
C:\Program Files\Mozilla Firefox\firefox.exe 14232
C:\WINDOWS\system32\wbem\wmiprvse.exe 2768
################## | Fichiers # Dossiers infectieux |
Supprimé ! C:\SETUP.PIF
Supprimé ! J:\autorun.inf
################## | Registre # Clés Run infectieuses |
Supprimé ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableTaskMgr"
################## | Registre # Mountpoints2 |
Supprimé ! HKCU\...\Explorer\MountPoints2\{05885f7b-d66d-11dc-8211-0015f260c369}\Shell\Auto\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{3d89ffc5-9c4d-11de-8369-0015f260c369}\Shell\AutoRun\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{5cc7dbc6-1e18-11de-82f3-0015f260c369}\Shell\Auto\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{66ec75db-722c-11de-8333-0015f260c369}\Shell\AutoRun\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{71d3eda1-daa5-11dd-82b6-0015f260c369}\Shell\Auto\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{7428f1ef-954d-11dd-8292-0015f260c369}\Shell\Auto\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{7541a31c-4de9-11dd-8261-0015f260c369}\Shell\Auto\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{83be5959-d10c-11dc-8210-0015f260c369}\Shell\Auto\Command
################## | Listing des fichiers présent |
[14/04/2008 13:00|--a------|263504] C:\$LDR$
[11/11/2009 05:20|--a------|22562] C:\aaw7boot.log
[07/07/2008 22:30|--a------|92216] C:\bass.dll
[08/10/2008 13:31|--a------|198] C:\BOOT.BAK
[30/08/2009 19:37|-rahs----|239] C:\boot.ini
[14/04/2008 13:00|-rahs----|4952] C:\Bootfont.bin
[12/05/2007 17:22|--a------|68096] C:\diff.exe
[08/04/2008 18:37|--a------|103680] C:\grep.exe
[12/06/2006 16:37|-rahs----|0] C:\IO.SYS
[27/12/2007 13:41|--a------|125] C:\ioSpecial.ini
[02/04/2009 22:40|--a------|63454843] C:\main.pak
[12/06/2006 16:37|-rahs----|0] C:\MSDOS.SYS
[14/04/2008 13:00|-rahs----|47564] C:\NTDETECT.COM
[14/04/2008 13:00|-rahs----|252240] C:\ntldr
[?|?|?] C:\pagefile.sys
[09/12/2007 15:22|--a------|4937] C:\PERF.LOG
[26/11/2007 22:47|--a------|67448] C:\playground.log
[21/01/2008 21:12|--a------|0] C:\plx_proxy.log
[13/12/1994 06:02|--a------|25980] C:\PRSANSR.TTF
[12/05/2007 17:22|--a------|853] C:\reboot.cmd
[14/04/2008 13:00|--a------|459151] C:\txtsetup.sif
[12/11/2009 12:08|--a------|5494] C:\UsbFix.txt
[03/04/2009 17:47|--a------|3298639] C:\Wonderburg.exe
[20/06/2009 23:48|--a------|3833034] L:\2009_0628andalousie06090001.JPG
[21/06/2009 00:39|--a------|4244770] L:\2009_0628andalousie06090002.JPG
[21/06/2009 00:39|--a------|4129795] L:\2009_0628andalousie06090003.JPG
[21/06/2009 00:39|--a------|4040730] L:\2009_0628andalousie06090004.JPG
[21/06/2009 01:47|--a------|3766237] L:\2009_0628andalousie06090005.JPG
[21/06/2009 01:47|--a------|3806852] L:\2009_0628andalousie06090006.JPG
[21/06/2009 01:50|--a------|4008901] L:\2009_0628andalousie06090007.JPG
[22/06/2009 01:08|--a------|4136131] L:\2009_0628andalousie06090008.JPG
[22/06/2009 01:09|--a------|3705182] L:\2009_0628andalousie06090009.JPG
[22/06/2009 02:23|--a------|3759428] L:\2009_0628andalousie06090010.JPG
[22/06/2009 02:23|--a------|4246576] L:\2009_0628andalousie06090011.JPG
[22/06/2009 02:24|--a------|3943018] L:\2009_0628andalousie06090012.JPG
[28/06/2009 20:42|--a------|3832463] L:\2009_0628andalousie06090013.JPG
[28/06/2009 19:30|--a------|30] L:\2009_0628andalousie06090013.jpx
[22/06/2009 05:34|--a------|4095456] L:\2009_0628andalousie06090014.JPG
[22/06/2009 05:34|--a------|3902839] L:\2009_0628andalousie06090015.JPG
[22/06/2009 05:56|--a------|3886364] L:\2009_0628andalousie06090016.JPG
[22/06/2009 05:56|--a------|4303490] L:\2009_0628andalousie06090017.JPG
[22/06/2009 05:59|--a------|4024029] L:\2009_0628andalousie06090018.JPG
[22/06/2009 06:00|--a------|3950707] L:\2009_0628andalousie06090019.JPG
[22/06/2009 06:23|--a------|4276383] L:\2009_0628andalousie06090020.JPG
[22/06/2009 06:24|--a------|4603594] L:\2009_0628andalousie06090021.JPG
[22/06/2009 21:21|--a------|4409723] L:\2009_0628andalousie06090022.JPG
[23/06/2009 01:27|--a------|3932724] L:\2009_0628andalousie06090023.JPG
[23/06/2009 01:27|--a------|3969431] L:\2009_0628andalousie06090024.JPG
[23/06/2009 01:27|--a------|4265808] L:\2009_0628andalousie06090025.JPG
[23/06/2009 01:28|--a------|4125797] L:\2009_0628andalousie06090026.JPG
[28/06/2009 19:30|--a------|4004369] L:\andalousie 0609 077.jpg
[28/06/2009 19:24|--a------|4051049] L:\andalousie 0609 001.jpg
[28/06/2009 19:24|--a------|4609644] L:\andalousie 0609 002.jpg
[28/06/2009 19:24|--a------|3867099] L:\andalousie 0609 003.jpg
[28/06/2009 19:24|--a------|3869784] L:\andalousie 0609 004.jpg
[28/06/2009 19:25|--a------|3985429] L:\andalousie 0609 005.jpg
[28/06/2009 19:25|--a------|3755345] L:\andalousie 0609 006.jpg
[28/06/2009 19:25|--a------|3921136] L:\andalousie 0609 007.jpg
[28/06/2009 19:25|--a------|3159499] L:\andalousie 0609 008.jpg
[28/06/2009 19:25|--a------|3885560] L:\andalousie 0609 009.jpg
[28/06/2009 19:25|--a------|4492348] L:\andalousie 0609 010.jpg
[28/06/2009 19:25|--a------|4121788] L:\andalousie 0609 011.jpg
[28/06/2009 19:25|--a------|4098514] L:\andalousie 0609 012.jpg
[28/06/2009 19:25|--a------|4063465] L:\andalousie 0609 013.jpg
[28/06/2009 19:25|--a------|4053866] L:\andalousie 0609 014.jpg
[28/06/2009 19:25|--a------|3112873] L:\andalousie 0609 015.jpg
[28/06/2009 19:25|--a------|4036255] L:\andalousie 0609 016.jpg
[28/06/2009 19:25|--a------|4819285] L:\andalousie 0609 017.jpg
[28/06/2009 19:26|--a------|4271789] L:\andalousie 0609 018.jpg
[28/06/2009 19:26|--a------|4272127] L:\andalousie 0609 019.jpg
[28/06/2009 19:26|--a------|2946253] L:\andalousie 0609 020.jpg
[28/06/2009 19:26|--a------|2747286] L:\andalousie 0609 021.jpg
[28/06/2009 19:26|--a------|3913750] L:\andalousie 0609 022.jpg
[28/06/2009 19:26|--a------|4455126] L:\andalousie 0609 023.jpg
[28/06/2009 19:26|--a------|4259220] L:\andalousie 0609 024.jpg
[28/06/2009 19:26|--a------|3905702] L:\andalousie 0609 025.jpg
[28/06/2009 19:26|--a------|4017498] L:\andalousie 0609 026.jpg
[28/06/2009 19:26|--a------|4604869] L:\andalousie 0609 027.jpg
[28/06/2009 19:26|--a------|2917471] L:\andalousie 0609 028.jpg
[28/06/2009 19:26|--a------|3006064] L:\andalousie 0609 029.jpg
[28/06/2009 19:26|--a------|4332154] L:\andalousie 0609 030.jpg
[28/06/2009 19:26|--a------|4404196] L:\andalousie 0609 031.jpg
[28/06/2009 19:27|--a------|4114652] L:\andalousie 0609 032.jpg
[28/06/2009 19:27|--a------|4308416] L:\andalousie 0609 033.jpg
[28/06/2009 19:27|--a------|4184051] L:\andalousie 0609 034.jpg
[28/06/2009 19:27|--a------|4155224] L:\andalousie 0609 035.jpg
[28/06/2009 19:27|--a------|4056795] L:\andalousie 0609 036.jpg
[28/06/2009 19:27|--a------|4103224] L:\andalousie 0609 037.jpg
[28/06/2009 19:27|--a------|3979440] L:\andalousie 0609 038.jpg
[28/06/2009 19:27|--a------|2630513] L:\andalousie 0609 039.jpg
[28/06/2009 19:27|--a------|2411756] L:\andalousie 0609 040.jpg
[28/06/2009 19:27|--a------|4285563] L:\andalousie 0609 041.jpg
[28/06/2009 19:27|--a------|3954336] L:\andalousie 0609 042.jpg
[28/06/2009 19:27|--a------|3970928] L:\andalousie 0609 043.jpg
[28/06/2009 19:27|--a------|4096605] L:\andalousie 0609 044.jpg
[28/06/2009 19:27|--a------|3973792] L:\andalousie 0609 045.jpg
[28/06/2009 19:28|--a------|4421880] L:\andalousie 0609 046.jpg
[28/06/2009 19:28|--a------|3042871] L:\andalousie 0609 047.jpg
[28/06/2009 19:28|--a------|4331894] L:\andalousie 0609 048.jpg
[28/06/2009 19:28|--a------|4169458] L:\andalousie 0609 049.jpg
[28/06/2009 19:28|--a------|3974176] L:\andalousie 0609 050.jpg
[28/06/2009 19:28|--a------|4336392] L:\andalousie 0609 051.jpg
[28/06/2009 19:28|--a------|3972532] L:\andalousie 0609 052.jpg
[28/06/2009 19:28|--a------|4382776] L:\andalousie 0609 053.jpg
[28/06/2009 19:28|--a------|4040567] L:\andalousie 0609 054.jpg
[28/06/2009 19:28|--a------|4476878] L:\andalousie 0609 055.jpg
[28/06/2009 19:28|--a------|4233999] L:\andalousie 0609 056.jpg
[28/06/2009 19:28|--a------|4039201] L:\andalousie 0609 057.jpg
[28/06/2009 19:28|--a------|4017834] L:\andalousie 0609 058.jpg
[28/06/2009 19:28|--a------|3620136] L:\andalousie 0609 059.jpg
[28/06/2009 19:29|--a------|3771577] L:\andalousie 0609 060.jpg
[28/06/2009 19:29|--a------|3529326] L:\andalousie 0609 061.jpg
[28/06/2009 19:29|--a------|3795090] L:\andalousie 0609 062.jpg
[28/06/2009 19:29|--a------|3833475] L:\andalousie 0609 063.jpg
[28/06/2009 19:29|--a------|4458195] L:\andalousie 0609 064.jpg
[28/06/2009 19:29|--a------|4217008] L:\andalousie 0609 065.jpg
[28/06/2009 19:29|--a------|4077227] L:\andalousie 0609 066.jpg
[28/06/2009 19:29|--a------|4244088] L:\andalousie 0609 067.jpg
[28/06/2009 19:29|--a------|3782317] L:\andalousie 0609 068.jpg
[28/06/2009 19:29|--a------|3768446] L:\andalousie 0609 069.jpg
[28/06/2009 19:29|--a------|4466401] L:\andalousie 0609 070.jpg
[28/06/2009 19:29|--a------|3963802] L:\andalousie 0609 071.jpg
[28/06/2009 19:29|--a------|3919009] L:\andalousie 0609 072.jpg
[28/06/2009 19:30|--a------|3822220] L:\andalousie 0609 073.jpg
[28/06/2009 19:30|--a------|3743862] L:\andalousie 0609 074.jpg
[28/06/2009 19:30|--a------|3751003] L:\andalousie 0609 075.jpg
[28/06/2009 19:30|--a------|3811065] L:\andalousie 0609 076.jpg
[02/07/2009 00:39|--ahs----|690920] L:\Thumbs.db
################## | Vaccination |
# C:\autorun.inf -> Dossier créé par UsbFix.
# J:\autorun.inf -> Dossier créé par UsbFix.
# L:\autorun.inf -> Dossier créé par UsbFix.
################## | Suspect | https://www.virustotal.com/gui/ |
################## | Cracks / Keygens / Serials |
"C:\Program Files\Jeux Rico\Mystery P.I. - The Lottery Ticket\_keygen.exe"
18/09/2007 00:18 |Size 84480 |Crc32 68ae8829 |Md5 1ea6aae38bd310d3da24646dc55f25e7
"C:\Program Files\Jeux Rico\Mystery P.I. - The Lottery Ticket\Crack\chp.exe"
28/10/2007 19:25 |Size 7168 |Crc32 fcc98a67 |Md5 aea383d349b7d5ab52fe0b969849a545
"C:\Program Files\Jeux Rico\Mystery P.I. - The Lottery Ticket\Crack\crack.exe"
22/09/2008 08:33 |Size 107232 |Crc32 04ab31b7 |Md5 dbe6e2cdd3c4d1c3b66ce8f3b5f51a89
"C:\SWORDTMP\SOLENE\VUZE\So Blonde\SO BLONDE\Crack\SoBlonde.exe"
22/06/2008 14:24 |Size 1041024 |Crc32 62ad7a18 |Md5 f25cb232843f7c0e34e1b7ef2de0312b
################## | Upload |
Veuillez envoyer le fichier : C:\DOCUME~1\DEMANG~1\Bureau\UsbFix_Upload_Me_DEMANGEO-F101EC.zip : https://www.androidworld.fr/
Merci pour votre contribution .
################## | ! Fin du rapport # UsbFix V6.050 ! |
merci
geoffrey5
Messages postés
13732
Date d'inscription
dimanche 20 mai 2007
Statut
Contributeur sécurité
Dernière intervention
21 mai 2010
10
12 nov. 2009 à 12:32
12 nov. 2009 à 12:32
Parfait !! Maintenant :
Il y a des infections LOP dans ton PC.
Elles s'installent via certains programmes, dont ceux-ci :
● Le sponsor de Messenger Plus!
● Bittorent
● BitDownload
● BitGrabber
● NetPumper
● BitRoll
● TorrentQ
● Torrent101
/!\ Fais attention de ne pas faire la même erreur, donc évite ces programmes /!\
▶ Télécharger et enregistrer lopSD sur le Bureau
▶ Double-clic Lop S&D
▶ Faire l'installation
▶ Fermer toutes les applications
▶ Le lancer par un double-clic sur le raccourci qui est sur le bureau
▶ Avec VISTA => clic-droit et => Exécuter en tant qu'administrateur
▶ Taper F pour français , puis presser entrée
▶ Taper 1
▶ Presser Entrée
▶ Le PC va redémarrer
* Note : si l'antivirus annonce une infection dans TEMP , l'ignorer
▶ Attendre l'apparition du rapport
▶ Copier le rapport et le coller dans la réponse
* le rapport se trouve aussi à C:\lopR
Il y a des infections LOP dans ton PC.
Elles s'installent via certains programmes, dont ceux-ci :
● Le sponsor de Messenger Plus!
● Bittorent
● BitDownload
● BitGrabber
● NetPumper
● BitRoll
● TorrentQ
● Torrent101
/!\ Fais attention de ne pas faire la même erreur, donc évite ces programmes /!\
▶ Télécharger et enregistrer lopSD sur le Bureau
▶ Double-clic Lop S&D
▶ Faire l'installation
▶ Fermer toutes les applications
▶ Le lancer par un double-clic sur le raccourci qui est sur le bureau
▶ Avec VISTA => clic-droit et => Exécuter en tant qu'administrateur
▶ Taper F pour français , puis presser entrée
▶ Taper 1
▶ Presser Entrée
▶ Le PC va redémarrer
* Note : si l'antivirus annonce une infection dans TEMP , l'ignorer
▶ Attendre l'apparition du rapport
▶ Copier le rapport et le coller dans la réponse
* le rapport se trouve aussi à C:\lopR
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.06GHz )
BIOS : BIOS Date: 01/03/06 16:40:56 Ver: 08.00.10
USER : DEMANGEOT Solène ( Administrator )
BOOT : Normal boot
Antivirus : AntiVir Desktop 9.0.1.32 (Activated)
C:\ (Local Disk) - NTFS - Total:232 Go (Free:141 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (Local Disk) - FAT32 - Total:465 Go (Free:248 Go)
K:\ (USB)
L:\ (Local Disk) - FAT - Total:0 Go (Free:0 Go)
Z:\ (RAM) - FAT - Total:0 Go (Free:0 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 12/11/2009|12:36 )
--------------------\\ Listing des dossiers dans APPLIC~1
[02/11/2009|23:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[30/10/2009|18:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}
[07/11/2008|13:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[16/04/2007|12:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[05/07/2009|22:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AdventureChronicles1
[14/08/2008|22:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[27/02/2009|21:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Alawar Stargaze
[27/03/2009|21:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AlawarWrapper
[06/02/2008|13:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Aliasworlds
[04/04/2009|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ApeZone
[02/11/2009|22:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[25/04/2007|13:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[14/12/2008|20:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Astar Games
[25/07/2009|13:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[05/02/2009|20:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[10/04/2008|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Awem
[02/06/2009|20:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[07/10/2009|19:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Becky Brogan
[20/07/2007|18:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\beepflawatompoke
[12/11/2009|11:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishGamesCache
[01/08/2009|11:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishSavedGames
[07/04/2009|19:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishv1005fr
[30/04/2009|17:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\blg
[19/07/2006|19:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[09/12/2007|15:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BufferZone
[15/09/2009|11:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CasualForge
[01/12/2007|19:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Christmasville
[23/01/2007|22:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ciel
[12/05/2009|20:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DAEMON Tools Lite
[21/03/2009|19:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DivoGames
[27/02/2009|19:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EA
[12/01/2009|21:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\eGames
[01/07/2009|22:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ERS G-Studio
[05/02/2009|19:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EscapeTheMuseum
[09/05/2009|11:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Far Mills
[08/03/2008|19:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Farm Frenzy
[06/11/2008|20:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FarmFrenzy2
[13/08/2009|23:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FarmFrenzyPizzaParty
[25/03/2009|18:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FarmFrenzy-PizzaParty
[12/11/2009|10:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fashion Solitaire 1.2
[12/01/2009|21:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet
[01/04/2009|19:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Flood Light Games
[26/09/2007|16:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FloodLightGames
[09/02/2009|00:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FlyWheelGames
[07/01/2008|13:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Forge of Games
[25/09/2008|11:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FreshGames
[21/02/2009|00:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
[14/09/2008|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GameHouse
[28/07/2009|22:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Gamers Digital
[22/08/2009|10:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GAMESHASTRA
[22/04/2009|22:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Gogii
[17/02/2009|18:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Gogii Games
[04/01/2009|21:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Gold Casual Games
[07/05/2009|18:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[07/11/2007|14:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[04/01/2009|16:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HiddenSecretsNightmare
[14/10/2009|11:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HideAndSecret3
[17/01/2009|00:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[25/09/2008|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hot Lava Games
[09/08/2009|21:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HoverBee Studios
[19/07/2009|21:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[06/10/2009|13:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\IntDreams
[10/05/2009|17:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Intenium
[11/01/2009|17:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\iWin
[29/04/2008|20:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[14/07/2009|22:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[26/07/2009|12:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Little Games Company
[31/01/2009|01:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logishrd
[05/02/2007|18:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[11/10/2007|16:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[28/10/2008|15:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[05/05/2009|18:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mandragora
[16/09/2009|10:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mean Hamster
[13/04/2009|20:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[03/01/2009|22:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MonteCristo
[02/11/2009|10:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MumboJumbo
[30/12/2008|18:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mushroom Age
[03/03/2008|13:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\My Games
[29/12/2008|12:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MysteryChronicles
[02/01/2009|19:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MythPeople
[13/10/2007|17:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\n7-89-o9-3r-4t-r9
[24/04/2008|11:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[11/11/2009|19:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NeptunesAdve
[05/03/2009|21:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
[02/11/2009|22:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[19/02/2009|20:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayPond
[22/02/2009|22:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Playrix Entertainment
[17/10/2009|17:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PoBros
[03/10/2009|12:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Princess Isabella
[09/05/2009|16:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickClick
[04/04/2009|21:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Redrum
[17/02/2009|23:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Rumbic Studio
[27/07/2009|19:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[11/01/2009|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Shockwave
[20/10/2009|17:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[30/12/2008|20:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Slapdash Games
[18/05/2009|19:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sortasoft
[03/03/2009|19:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpecialBit
[09/06/2008|12:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpinTop Games
[14/07/2009|22:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[04/04/2009|22:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SugarGames
[10/10/2009|17:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SulusGames
[12/11/2009|11:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[15/12/2008|18:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TheRace_dev
[17/05/2009|21:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TikGames
[09/09/2009|17:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TomTom
[11/07/2009|20:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[17/05/2009|20:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UClick
[03/01/2009|01:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Valusoft
[25/09/2008|20:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\VirtualFarm
[19/08/2009|19:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WildWestQuest2
[02/10/2006|18:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[08/11/2007|12:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[16/01/2007|21:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
[26/05/2009|22:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ZEMNOTT
[02/08/2007|20:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[12/06/2006|16:37] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[14/02/2009|17:20] C:\DOCUME~1\DEMANG~1\APPLIC~1\Adobe
[30/01/2007|22:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\AdobeUM
[08/05/2009|16:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\Alawar
[03/11/2009|15:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\Apple Computer
[26/02/2007|15:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\ArcSoft
[08/11/2009|11:21] C:\DOCUME~1\DEMANG~1\APPLIC~1\Artogon
[09/07/2009|18:40] C:\DOCUME~1\DEMANG~1\APPLIC~1\AVS4YOU
[09/05/2009|15:37] C:\DOCUME~1\DEMANG~1\APPLIC~1\Azuaz Games
[15/07/2009|22:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\Azureus
[17/05/2009|21:09] C:\DOCUME~1\DEMANG~1\APPLIC~1\Be a King
[19/01/2009|21:44] C:\DOCUME~1\DEMANG~1\APPLIC~1\BeachPartyCraze
[06/07/2009|21:33] C:\DOCUME~1\DEMANG~1\APPLIC~1\BFG_JanesRealty
[04/10/2009|20:02] C:\DOCUME~1\DEMANG~1\APPLIC~1\Big Fish Games
[08/05/2009|22:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\BigFishv1002
[30/03/2009|12:20] C:\DOCUME~1\DEMANG~1\APPLIC~1\BigFishv1002fr
[05/06/2009|21:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\BigFishv1005
[14/04/2007|11:08] C:\DOCUME~1\DEMANG~1\APPLIC~1\BitDownload
[11/12/2007|10:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\BitTorrent
[30/04/2009|17:11] C:\DOCUME~1\DEMANG~1\APPLIC~1\blg
[19/07/2009|17:21] C:\DOCUME~1\DEMANG~1\APPLIC~1\BloodTies
[15/05/2009|22:13] C:\DOCUME~1\DEMANG~1\APPLIC~1\Boolat Games
[30/05/2009|23:04] C:\DOCUME~1\DEMANG~1\APPLIC~1\Boomzap
[10/07/2009|19:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\Boontyv1002
[15/07/2009|15:00] C:\DOCUME~1\DEMANG~1\APPLIC~1\BrandX Games
[15/09/2009|11:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\CasualForge
[16/03/2009|20:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\cerasus.media
[25/04/2009|22:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\Chicken Chase
[18/03/2009|19:46] C:\DOCUME~1\DEMANG~1\APPLIC~1\Coyotes Tale
[12/05/2009|20:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\DAEMON Tools Lite
[02/11/2006|13:23] C:\DOCUME~1\DEMANG~1\APPLIC~1\DivX
[08/02/2008|20:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\D-Jix Media
[21/02/2009|20:03] C:\DOCUME~1\DEMANG~1\APPLIC~1\Dragon Altar Games
[01/05/2009|19:20] C:\DOCUME~1\DEMANG~1\APPLIC~1\Dreamsdwell Stories
[12/01/2009|21:54] C:\DOCUME~1\DEMANG~1\APPLIC~1\eGames
[01/05/2009|20:47] C:\DOCUME~1\DEMANG~1\APPLIC~1\EleFun Games
[15/05/2009|19:46] C:\DOCUME~1\DEMANG~1\APPLIC~1\Enchanted Katya
[28/06/2006|16:58] C:\DOCUME~1\DEMANG~1\APPLIC~1\EoRezo
[06/11/2009|11:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\ERS G-Studio
[14/09/2008|22:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\Eyeblaster
[11/01/2009|18:21] C:\DOCUME~1\DEMANG~1\APPLIC~1\Fabulous Finds
[27/03/2009|21:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\FarmerJane
[01/04/2009|19:03] C:\DOCUME~1\DEMANG~1\APPLIC~1\Flood Light Games
[26/09/2007|16:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\FloodLightGames
[14/10/2009|19:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\Friday's games
[16/11/2008|17:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\funkitron
[16/02/2008|12:07] C:\DOCUME~1\DEMANG~1\APPLIC~1\Fuzzy Games
[26/09/2008|13:57] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gaijin Ent
[13/10/2007|17:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\GameHouse
[27/02/2009|20:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\GameInvest
[03/03/2009|13:16] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gamelab
[28/07/2009|22:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gamers Digital
[29/10/2009|18:01] C:\DOCUME~1\DEMANG~1\APPLIC~1\Games
[19/10/2008|19:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\GamesCafe
[22/08/2009|10:48] C:\DOCUME~1\DEMANG~1\APPLIC~1\GAMESHASTRA
[17/12/2008|20:44] C:\DOCUME~1\DEMANG~1\APPLIC~1\GARMIN
[14/06/2008|15:40] C:\DOCUME~1\DEMANG~1\APPLIC~1\GibbHill Properties Ltd
[30/12/2008|21:22] C:\DOCUME~1\DEMANG~1\APPLIC~1\Go Go Gourmet
[17/02/2009|18:08] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gogii Games
[03/07/2009|20:16] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gold Casual Games
[29/10/2007|23:07] C:\DOCUME~1\DEMANG~1\APPLIC~1\Google
[13/06/2008|20:27] C:\DOCUME~1\DEMANG~1\APPLIC~1\GRETECH
[05/08/2008|19:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\Grisoft
[14/04/2007|13:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\gtk-2.0
[16/06/2006|13:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\Help
[10/05/2009|18:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\HiT-MM
[13/05/2009|19:18] C:\DOCUME~1\DEMANG~1\APPLIC~1\Home Sweet Home 2
[01/08/2009|21:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\HouseCall 6.6
[05/08/2009|21:30] C:\DOCUME~1\DEMANG~1\APPLIC~1\HuruBeachParty
[02/11/2009|22:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\Identities
[14/04/2007|12:26] C:\DOCUME~1\DEMANG~1\APPLIC~1\Inkscape
[15/09/2009|20:44] C:\DOCUME~1\DEMANG~1\APPLIC~1\IronCode
[04/11/2009|12:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\Island
[26/04/2009|20:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\ITTNord
[09/02/2009|22:13] C:\DOCUME~1\DEMANG~1\APPLIC~1\iWin
[08/02/2008|18:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Jane s Hotel
[03/09/2008|16:37] C:\DOCUME~1\DEMANG~1\APPLIC~1\Jane s Hotel Family Hero
[05/07/2009|21:01] C:\DOCUME~1\DEMANG~1\APPLIC~1\Janes_Realty
[03/01/2009|00:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\JewelMatch2
[16/02/2009|20:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\JoyBits
[28/06/2007|23:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\Lavasoft
[31/01/2007|11:04] C:\DOCUME~1\DEMANG~1\APPLIC~1\Leadertech
[26/07/2009|12:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\Little Games Company
[19/07/2009|21:26] C:\DOCUME~1\DEMANG~1\APPLIC~1\Lost in the City
[15/02/2008|13:00] C:\DOCUME~1\DEMANG~1\APPLIC~1\Macromedia
[29/09/2007|20:07] C:\DOCUME~1\DEMANG~1\APPLIC~1\Magic Academy
[22/04/2008|12:31] C:\DOCUME~1\DEMANG~1\APPLIC~1\Magic Seeds
[28/10/2008|15:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\Malwarebytes
[16/09/2009|10:42] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mean Hamster
[02/07/2009|00:03] C:\DOCUME~1\DEMANG~1\APPLIC~1\Media Player Classic
[08/06/2009|10:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\Meridian93
[20/07/2007|18:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mfcd Joy
[26/07/2007|16:37] C:\DOCUME~1\DEMANG~1\APPLIC~1\Microgaming
[30/08/2009|19:02] C:\DOCUME~1\DEMANG~1\APPLIC~1\Microsoft
[12/11/2009|10:48] C:\DOCUME~1\DEMANG~1\APPLIC~1\MissTeriTale3
[30/08/2008|15:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mozilla
[02/08/2007|19:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\My Games
[12/10/2009|11:33] C:\DOCUME~1\DEMANG~1\APPLIC~1\MysteryStudio
[29/09/2007|11:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mysteryville2
[10/07/2009|19:01] C:\DOCUME~1\DEMANG~1\APPLIC~1\NevoSoft Games
[05/03/2009|21:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\Oberon Games
[03/07/2009|20:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\panoramik
[04/05/2009|18:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Pharaohs Secret
[16/03/2008|20:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\Pirateville
[02/11/2009|22:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\PlayFirst
[09/05/2009|14:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\Playrix Entertainment
[23/04/2009|18:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\PoBros
[31/07/2008|11:31] C:\DOCUME~1\DEMANG~1\APPLIC~1\Real
[28/11/2008|23:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\RealArcade
[10/07/2009|17:43] C:\DOCUME~1\DEMANG~1\APPLIC~1\Reflexive_Janes_Realty
[05/01/2009|20:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\Righteous Kill
[01/04/2009|19:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\RobinsonCrusoeBFGFR
[03/06/2009|21:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sahmon Games
[30/10/2007|21:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sandlot Games
[02/02/2009|20:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\SecretIslandEng
[17/02/2009|21:38] C:\DOCUME~1\DEMANG~1\APPLIC~1\SecretIslandFraBF
[21/09/2007|13:12] C:\DOCUME~1\DEMANG~1\APPLIC~1\SecuROM
[25/05/2009|21:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\SerpentOfIsis
[16/05/2009|15:11] C:\DOCUME~1\DEMANG~1\APPLIC~1\Shape games
[08/11/2009|12:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\she_is_a_shadow
[03/10/2009|10:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\ShinyTales
[19/10/2008|20:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\Shopping Blocks
[11/11/2009|10:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\Skype
[11/11/2009|08:02] C:\DOCUME~1\DEMANG~1\APPLIC~1\skypePM
[07/07/2009|16:23] C:\DOCUME~1\DEMANG~1\APPLIC~1\Softonic_JanesRealty
[18/05/2009|19:00] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sortasoft
[12/08/2008|17:18] C:\DOCUME~1\DEMANG~1\APPLIC~1\Spamihilator
[09/12/2007|14:47] C:\DOCUME~1\DEMANG~1\APPLIC~1\SpinTop
[16/04/2009|21:58] C:\DOCUME~1\DEMANG~1\APPLIC~1\SpinTop Games
[05/07/2008|12:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\SprillBermudeEng
[02/10/2008|15:23] C:\DOCUME~1\DEMANG~1\APPLIC~1\SprillBermudeFr
[29/10/2009|13:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\SprillRichiEng
[03/10/2006|17:14] C:\DOCUME~1\DEMANG~1\APPLIC~1\StoneTrip
[23/12/2008|18:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\SultansLabyrinth
[10/10/2009|17:50] C:\DOCUME~1\DEMANG~1\APPLIC~1\SulusGames
[12/06/2006|18:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sun
[18/07/2009|13:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\SunRay Games
[05/02/2008|19:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\Super-Cow
[12/06/2006|20:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\Talkback
[14/06/2006|13:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Template
[07/04/2008|11:42] C:\DOCUME~1\DEMANG~1\APPLIC~1\TheScruffs
[17/05/2009|21:18] C:\DOCUME~1\DEMANG~1\APPLIC~1\TikGames
[22/04/2009|19:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\TMInc
[09/09/2009|17:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\TomTom
[12/11/2009|10:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\Total Eclipse
[08/05/2009|22:36] C:\DOCUME~1\DEMANG~1\APPLIC~1\Twintale Entertainment
[16/12/2007|18:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\U3
[14/10/2009|17:40] C:\DOCUME~1\DEMANG~1\APPLIC~1\Ubisoft
[17/05/2009|20:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\UClick
[13/10/2008|10:47] C:\DOCUME~1\DEMANG~1\APPLIC~1\Uniblue
[21/02/2009|00:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\URSE Games
[11/11/2009|02:30] C:\DOCUME~1\DEMANG~1\APPLIC~1\uTorrent
[03/01/2009|01:08] C:\DOCUME~1\DEMANG~1\APPLIC~1\Valusoft
[26/07/2009|14:48] C:\DOCUME~1\DEMANG~1\APPLIC~1\V-Games
[09/10/2009|10:30] C:\DOCUME~1\DEMANG~1\APPLIC~1\ViquaSoft
[29/11/2008|01:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\Wildfire
[09/12/2007|14:36] C:\DOCUME~1\DEMANG~1\APPLIC~1\WinRAR
[19/06/2006|09:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\Yahoo!
[14/10/2009|18:31] C:\DOCUME~1\DEMANG~1\APPLIC~1\YoudaGames
[14/09/2008|17:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\YTHE
[26/05/2009|22:16] C:\DOCUME~1\DEMANG~1\APPLIC~1\ZEMNOTT
[02/11/2009|22:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\Zylom
[02/11/2009|22:54] C:\DOCUME~1\DEMANG~1\APPLIC~1\Zylom 3 Days Zoo Mystery
[01/05/2009|22:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\Zylom DressUpRush
[14/02/2009|17:20] C:\DOCUME~1\DEMANG~1\APPLIC~1\Adobe
[30/01/2007|22:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\AdobeUM
[08/05/2009|16:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\Alawar
[03/11/2009|15:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\Apple Computer
[26/02/2007|15:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\ArcSoft
[08/11/2009|11:21] C:\DOCUME~1\DEMANG~1\APPLIC~1\Artogon
[09/07/2009|18:40] C:\DOCUME~1\DEMANG~1\APPLIC~1\AVS4YOU
[09/05/2009|15:37] C:\DOCUME~1\DEMANG~1\APPLIC~1\Azuaz Games
[15/07/2009|22:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\Azureus
[17/05/2009|21:09] C:\DOCUME~1\DEMANG~1\APPLIC~1\Be a King
[19/01/2009|21:44] C:\DOCUME~1\DEMANG~1\APPLIC~1\BeachPartyCraze
[06/07/2009|21:33] C:\DOCUME~1\DEMANG~1\APPLIC~1\BFG_JanesRealty
[04/10/2009|20:02] C:\DOCUME~1\DEMANG~1\APPLIC~1\Big Fish Games
[08/05/2009|22:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\BigFishv1002
[30/03/2009|12:20] C:\DOCUME~1\DEMANG~1\APPLIC~1\BigFishv1002fr
[05/06/2009|21:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\BigFishv1005
[14/04/2007|11:08] C:\DOCUME~1\DEMANG~1\APPLIC~1\BitDownload
[11/12/2007|10:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\BitTorrent
[30/04/2009|17:11] C:\DOCUME~1\DEMANG~1\APPLIC~1\blg
[19/07/2009|17:21] C:\DOCUME~1\DEMANG~1\APPLIC~1\BloodTies
[15/05/2009|22:13] C:\DOCUME~1\DEMANG~1\APPLIC~1\Boolat Games
[30/05/2009|23:04] C:\DOCUME~1\DEMANG~1\APPLIC~1\Boomzap
[10/07/2009|19:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\Boontyv1002
[15/07/2009|15:00] C:\DOCUME~1\DEMANG~1\APPLIC~1\BrandX Games
[15/09/2009|11:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\CasualForge
[16/03/2009|20:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\cerasus.media
[25/04/2009|22:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\Chicken Chase
[18/03/2009|19:46] C:\DOCUME~1\DEMANG~1\APPLIC~1\Coyotes Tale
[12/05/2009|20:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\DAEMON Tools Lite
[02/11/2006|13:23] C:\DOCUME~1\DEMANG~1\APPLIC~1\DivX
[08/02/2008|20:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\D-Jix Media
[21/02/2009|20:03] C:\DOCUME~1\DEMANG~1\APPLIC~1\Dragon Altar Games
[01/05/2009|19:20] C:\DOCUME~1\DEMANG~1\APPLIC~1\Dreamsdwell Stories
[12/01/2009|21:54] C:\DOCUME~1\DEMANG~1\APPLIC~1\eGames
[01/05/2009|20:47] C:\DOCUME~1\DEMANG~1\APPLIC~1\EleFun Games
[15/05/2009|19:46] C:\DOCUME~1\DEMANG~1\APPLIC~1\Enchanted Katya
[28/06/2006|16:58] C:\DOCUME~1\DEMANG~1\APPLIC~1\EoRezo
[06/11/2009|11:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\ERS G-Studio
[14/09/2008|22:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\Eyeblaster
[11/01/2009|18:21] C:\DOCUME~1\DEMANG~1\APPLIC~1\Fabulous Finds
[27/03/2009|21:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\FarmerJane
[01/04/2009|19:03] C:\DOCUME~1\DEMANG~1\APPLIC~1\Flood Light Games
[26/09/2007|16:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\FloodLightGames
[14/10/2009|19:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\Friday's games
[16/11/2008|17:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\funkitron
[16/02/2008|12:07] C:\DOCUME~1\DEMANG~1\APPLIC~1\Fuzzy Games
[26/09/2008|13:57] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gaijin Ent
[13/10/2007|17:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\GameHouse
[27/02/2009|20:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\GameInvest
[03/03/2009|13:16] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gamelab
[28/07/2009|22:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gamers Digital
[29/10/2009|18:01] C:\DOCUME~1\DEMANG~1\APPLIC~1\Games
[19/10/2008|19:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\GamesCafe
[22/08/2009|10:48] C:\DOCUME~1\DEMANG~1\APPLIC~1\GAMESHASTRA
[17/12/2008|20:44] C:\DOCUME~1\DEMANG~1\APPLIC~1\GARMIN
[14/06/2008|15:40] C:\DOCUME~1\DEMANG~1\APPLIC~1\GibbHill Properties Ltd
[30/12/2008|21:22] C:\DOCUME~1\DEMANG~1\APPLIC~1\Go Go Gourmet
[17/02/2009|18:08] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gogii Games
[03/07/2009|20:16] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gold Casual Games
[29/10/2007|23:07] C:\DOCUME~1\DEMANG~1\APPLIC~1\Google
[13/06/2008|20:27] C:\DOCUME~1\DEMANG~1\APPLIC~1\GRETECH
[05/08/2008|19:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\Grisoft
[14/04/2007|13:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\gtk-2.0
[16/06/2006|13:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\Help
[10/05/2009|18:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\HiT-MM
[13/05/2009|19:18] C:\DOCUME~1\DEMANG~1\APPLIC~1\Home Sweet Home 2
[01/08/2009|21:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\HouseCall 6.6
[05/08/2009|21:30] C:\DOCUME~1\DEMANG~1\APPLIC~1\HuruBeachParty
[02/11/2009|22:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\Identities
[14/04/2007|12:26] C:\DOCUME~1\DEMANG~1\APPLIC~1\Inkscape
[15/09/2009|20:44] C:\DOCUME~1\DEMANG~1\APPLIC~1\IronCode
[04/11/2009|12:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\Island
[26/04/2009|20:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\ITTNord
[09/02/2009|22:13] C:\DOCUME~1\DEMANG~1\APPLIC~1\iWin
[08/02/2008|18:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Jane s Hotel
[03/09/2008|16:37] C:\DOCUME~1\DEMANG~1\APPLIC~1\Jane s Hotel Family Hero
[05/07/2009|21:01] C:\DOCUME~1\DEMANG~1\APPLIC~1\Janes_Realty
[03/01/2009|00:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\JewelMatch2
[16/02/2009|20:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\JoyBits
[28/06/2007|23:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\Lavasoft
[31/01/2007|11:04] C:\DOCUME~1\DEMANG~1\APPLIC~1\Leadertech
[26/07/2009|12:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\Little Games Company
[19/07/2009|21:26] C:\DOCUME~1\DEMANG~1\APPLIC~1\Lost in the City
[15/02/2008|13:00] C:\DOCUME~1\DEMANG~1\APPLIC~1\Macromedia
[29/09/2007|20:07] C:\DOCUME~1\DEMANG~1\APPLIC~1\Magic Academy
[22/04/2008|12:31] C:\DOCUME~1\DEMANG~1\APPLIC~1\Magic Seeds
[28/10/2008|15:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\Malwarebytes
[16/09/2009|10:42] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mean Hamster
[02/07/2009|00:03] C:\DOCUME~1\DEMANG~1\APPLIC~1\Media Player Classic
[08/06/2009|10:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\Meridian93
[20/07/2007|18:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mfcd Joy
[26/07/2007|16:37] C:\DOCUME~1\DEMANG~1\APPLIC~1\Microgaming
[30/08/2009|19:02] C:\DOCUME~1\DEMANG~1\APPLIC~1\Microsoft
[12/11/2009|10:48] C:\DOCUME~1\DEMANG~1\APPLIC~1\MissTeriTale3
[30/08/2008|15:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mozilla
[02/08/2007|19:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\My Games
[12/10/2009|11:33] C:\DOCUME~1\DEMANG~1\APPLIC~1\MysteryStudio
[29/09/2007|11:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mysteryville2
[10/07/2009|19:01] C:\DOCUME~1\DEMANG~1\APPLIC~1\NevoSoft Games
[05/03/2009|21:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\Oberon Games
[03/07/2009|20:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\panoramik
[04/05/2009|18:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Pharaohs Secret
[16/03/2008|20:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\Pirateville
[02/11/2009|22:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\PlayFirst
[09/05/2009|14:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\Playrix Entertainment
[23/04/2009|18:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\PoBros
[31/07/2008|11:31] C:\DOCUME~1\DEMANG~1\APPLIC~1\Real
[28/11/2008|23:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\RealArcade
[10/07/2009|17:43] C:\DOCUME~1\DEMANG~1\APPLIC~1\Reflexive_Janes_Realty
[05/01/2009|20:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\Righteous Kill
[01/04/2009|19:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\RobinsonCrusoeBFGFR
[03/06/2009|21:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sahmon Games
[30/10/2007|21:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sandlot Games
[02/02/2009|20:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\SecretIslandEng
[17/02/2009|21:38] C:\DOCUME~1\DEMANG~1\APPLIC~1\SecretIslandFraBF
[21/09/2007|13:12] C:\DOCUME~1\DEMANG~1\APPLIC~1\SecuROM
[25/05/2009|21:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\SerpentOfIsis
[16/05/2009|15:11] C:\DOCUME~1\DEMANG~1\APPLIC~1\Shape games
[08/11/2009|12:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\she_is_a_shadow
[03/10/2009|10:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\ShinyTales
[19/10/2008|20:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\Shopping Blocks
[11/11/2009|10:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\Skype
[11/11/2009|08:02] C:\DOCUME~1\DEMANG~1\APPLIC~1\skypePM
[07/07/2009|16:23] C:\DOCUME~1\DEMANG~1\APPLIC~1\Softonic_JanesRealty
[18/05/2009|19:00] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sortasoft
[12/08/2008|17:18] C:\DOCUME~1\DEMANG~1\APPLIC~1\Spamihilator
[09/12/2007|14:47] C:\DOCUME~1\DEMANG~1\APPLIC~1\SpinTop
[16/04/2009|21:58] C:\DOCUME~1\DEMANG~1\APPLIC~1\SpinTop Games
[05/07/2008|12:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\SprillBermudeEng
[02/10/2008|15:23] C:\DOCUME~1\DEMANG~1\APPLIC~1\SprillBermudeFr
[29/10/2009|13:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\SprillRichiEng
[03/10/2006|17:14] C:\DOCUME~1\DEMANG~1\APPLIC~1\StoneTrip
[23/12/2008|18:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\SultansLabyrinth
[10/10/2009|17:50] C:\DOCUME~1\DEMANG~1\APPLIC~1\SulusGames
[12/06/2006|18:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sun
[18/07/2009|13:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\SunRay Games
[05/02/2008|19:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\Super-Cow
[12/06/2006|20:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\Talkback
[14/06/2006|13:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Template
[07/04/2008|11:42] C:\DOCUME~1\DEMANG~1\APPLIC~1\TheScruffs
[17/05/2009|21:18] C:\DOCUME~1\DEMANG~1\APPLIC~1\TikGames
[22/04/2009|19:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\TMInc
[09/09/2009|17:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\TomTom
[12/11/2009|10:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\Total Eclipse
[08/05/2009|22:36] C:\DOCUME~1\DEMANG~1\APPLIC~1\Twintale Entertainment
[16/12/2007|18:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\U3
[14/10/2009|17:40] C:\DOCUME~1\DEMANG~1\APPLIC~1\Ubisoft
[17/05/2009|20:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\UClick
[13/10/2008|10:47] C:\DOCUME~1\DEMANG~1\APPLIC~1\Uniblue
[21/02/2009|00:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\URSE Games
[11/11/2009|02:30] C:\DOCUME~1\DEMANG~1\APPLIC~1\uTorrent
[03/01/2009|01:08] C:\DOCUME~1\DEMANG~1\APPLIC~1\Valusoft
[26/07/2009|14:48] C:\DOCUME~1\DEMANG~1\APPLIC~1\V-Games
[09/10/2009|10:30] C:\DOCUME~1\DEMANG~1\APPLIC~1\ViquaSoft
[29/11/2008|01:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\Wildfire
[09/12/2007|14:36] C:\DOCUME~1\DEMANG~1\APPLIC~1\WinRAR
[19/06/2006|09:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\Yahoo!
[14/10/2009|18:31] C:\DOCUME~1\DEMANG~1\APPLIC~1\YoudaGames
[14/09/2008|17:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\YTHE
[26/05/2009|22:16] C:\DOCUME~1\DEMANG~1\APPLIC~1\ZEMNOTT
[02/11/2009|22:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\Zylom
[02/11/2009|22:54] C:\DOCUME~1\DEMANG~1\APPLIC~1\Zylom 3 Days Zoo Mystery
[01/05/2009|22:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\Zylom DressUpRush
[02/01/2007|17:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[12/06/2006|16:42] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[07/11/2009 23:11][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[12/11/2009 12:19][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[12/11/2009 12:00][--ah-----] C:\WINDOWS\tasks\BA7D9D6D943207C1.job
[11/11/2009 05:20][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
( BA7D9D6D943207C1.job )=( c:\docume~1\demang~1\applic~1\mfcdjo~1\DATATRAYNOUN.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[04/05/2009|21:53] C:\Program Files\Adobe
[30/01/2007|17:43] C:\Program Files\AGEIA Technologies
[14/08/2008|22:51] C:\Program Files\Ahead
[12/08/2006|19:17] C:\Program Files\Analog Devices
[02/11/2009|22:55] C:\Program Files\Apple Software Update
[25/07/2009|13:20] C:\Program Files\Avira
[02/10/2009|22:06] C:\Program Files\bfgclient
[02/11/2009|23:11] C:\Program Files\Bonjour
[23/10/2009|09:42] C:\Program Files\CCleaner
[28/07/2009|19:50] C:\Program Files\Conduit
[07/10/2009|17:16] C:\Program Files\DAEMON Tools Lite
[09/10/2009|19:38] C:\Program Files\DAEMON Tools Toolbar
[11/11/2009|17:54] C:\Program Files\Danger Next Door - Miss Teri Tale's Adventure
[12/05/2009|21:03] C:\Program Files\directx
[11/12/2008|17:46] C:\Program Files\DivX
[28/07/2009|19:56] C:\Program Files\eMule
[02/11/2009|23:01] C:\Program Files\Fichiers communs
[28/06/2006|16:54] C:\Program Files\FileZilla
[26/07/2009|14:01] C:\Program Files\GamesBar
[07/07/2009|10:15] C:\Program Files\Google
[13/06/2008|20:26] C:\Program Files\GRETECH
[05/08/2008|19:58] C:\Program Files\Grisoft
[16/09/2009|14:21] C:\Program Files\Hotel Mogul
[14/10/2009|18:51] C:\Program Files\InstallShield Installation Information
[15/10/2009|02:08] C:\Program Files\Internet Explorer
[08/10/2009|20:06] C:\Program Files\Java
[12/11/2009|10:38] C:\Program Files\Jeux Rico
[14/07/2009|22:08] C:\Program Files\Lavasoft
[03/06/2009|12:33] C:\Program Files\Logitech
[06/10/2009|23:36] C:\Program Files\Malwarebytes' Anti-Malware
[25/09/2008|09:08] C:\Program Files\Messenger
[06/10/2009|13:10] C:\Program Files\Micro Application
[17/12/2008|17:02] C:\Program Files\Microsoft
[08/11/2007|15:38] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[12/06/2006|16:40] C:\Program Files\microsoft frontpage
[11/01/2009|18:31] C:\Program Files\Microsoft Office
[05/10/2009|15:30] C:\Program Files\Microsoft Silverlight
[08/11/2007|12:49] C:\Program Files\Microsoft SQL Server Compact Edition
[17/12/2008|17:00] C:\Program Files\Microsoft Sync Framework
[24/09/2008|13:39] C:\Program Files\Movie Maker
[12/11/2009|12:13] C:\Program Files\Mozilla Firefox
[09/08/2009|20:59] C:\Program Files\MSBuild
[22/07/2009|21:22] C:\Program Files\MSECache
[12/06/2006|16:33] C:\Program Files\MSN
[12/06/2006|16:34] C:\Program Files\MSN Gaming Zone
[24/01/2007|22:35] C:\Program Files\MSXML 4.0
[24/09/2008|13:31] C:\Program Files\NetMeeting
[14/08/2009|02:04] C:\Program Files\Outlook Express
[25/07/2009|13:04] C:\Program Files\QUAD Utilities
[30/07/2008|20:14] C:\Program Files\Real
[08/07/2009|20:41] C:\Program Files\Realore
[09/08/2009|20:58] C:\Program Files\Reference Assemblies
[25/07/2009|18:35] C:\Program Files\ReflexiveArcade
[12/11/2009|10:55] C:\Program Files\Season of Mystery - The Cherry Blossom Murders
[12/11/2009|12:14] C:\Program Files\Shareware.Pro-FR
[20/10/2009|17:13] C:\Program Files\Skype
[16/11/2008|20:11] C:\Program Files\Sun
[20/05/2009|17:02] C:\Program Files\Techcity
[09/09/2009|17:03] C:\Program Files\TomTom DesktopSuite
[09/09/2009|17:04] C:\Program Files\TomTom HOME 2
[09/09/2009|17:04] C:\Program Files\TomTom International B.V
[05/08/2008|21:36] C:\Program Files\Trend Micro
[11/10/2009|16:50] C:\Program Files\Ubisoft
[12/06/2006|16:44] C:\Program Files\Uninstall Information
[15/07/2009|22:39] C:\Program Files\uTorrent
[06/08/2008|10:48] C:\Program Files\VideoLAN
[17/07/2009|18:29] C:\Program Files\Western Digital
[17/07/2009|18:01] C:\Program Files\Western Digital Corporation
[02/10/2009|22:03] C:\Program Files\Windows Live
[17/12/2008|16:55] C:\Program Files\Windows Live SkyDrive
[25/10/2007|18:28] C:\Program Files\Windows Media Connect 2
[08/10/2009|20:22] C:\Program Files\Windows Media Player
[24/09/2008|13:31] C:\Program Files\Windows NT
[12/06/2006|16:36] C:\Program Files\WindowsUpdate
[13/08/2008|12:50] C:\Program Files\WinPcap
[09/12/2007|15:15] C:\Program Files\WinRAR
[12/06/2006|16:40] C:\Program Files\xerox
[16/09/2009|14:18] C:\Program Files\Your Product
[08/11/2009|21:16] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[12/01/2009|20:42] C:\Program Files\Fichiers communs\Adobe
[16/04/2007|12:02] C:\Program Files\Fichiers communs\Adobe Systems Shared
[14/08/2008|22:48] C:\Program Files\Fichiers communs\Ahead
[05/11/2009|10:39] C:\Program Files\Fichiers communs\Apple
[09/07/2009|18:47] C:\Program Files\Fichiers communs\AVSMedia
[03/08/2008|21:06] C:\Program Files\Fichiers communs\BOONTY Shared
[06/01/2007|10:56] C:\Program Files\Fichiers communs\Designer
[12/08/2006|18:40] C:\Program Files\Fichiers communs\EPSON
[19/07/2009|21:24] C:\Program Files\Fichiers communs\InstallShield
[03/06/2009|12:32] C:\Program Files\Fichiers communs\LogiShrd
[15/10/2007|09:22] C:\Program Files\Fichiers communs\Macromedia
[12/01/2009|20:10] C:\Program Files\Fichiers communs\Macrovision Shared
[02/10/2009|21:53] C:\Program Files\Fichiers communs\Microsoft Shared
[12/06/2006|16:35] C:\Program Files\Fichiers communs\MSSoap
[07/07/2006|10:45] C:\Program Files\Fichiers communs\Nero
[29/07/2009|22:40] C:\Program Files\Fichiers communs\Oberon Media
[12/06/2006|18:28] C:\Program Files\Fichiers communs\ODBC
[31/07/2008|11:31] C:\Program Files\Fichiers communs\Real
[05/05/2009|20:48] C:\Program Files\Fichiers communs\Sandlot Shared
[12/06/2006|16:35] C:\Program Files\Fichiers communs\Services
[20/10/2009|17:12] C:\Program Files\Fichiers communs\Skype
[12/06/2006|18:28] C:\Program Files\Fichiers communs\SpeechEngines
[19/10/2009|10:23] C:\Program Files\Fichiers communs\SWF Studio
[24/09/2008|13:31] C:\Program Files\Fichiers communs\System
[14/04/2007|10:12] C:\Program Files\Fichiers communs\Vbox
[17/12/2008|16:34] C:\Program Files\Fichiers communs\Windows Live
[08/11/2007|12:24] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[24/10/2007|16:23] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 42 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\DEMANG~1\APPLIC~1\mfcdjo~1
C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp\NSISPromotion.dll
C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp\NSISPromotion.ini
C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp\nsk24F.tmp
C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp\nsm28D.tmp
C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp\nsq514.tmp
C:\DOCUME~1\DEMANG~1\APPLIC~1\Bitdownload
C:\DOCUME~1\DEMANG~1\APPLIC~1\BitDownload
C:\DOCUME~1\DEMANG~1\APPLIC~1\BitDownload\Data
C:\WINDOWS\Tasks\BA7D9D6D943207C1.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-11-12 12:38:03
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:442][D:38]-> C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp
[F:26][D:0]-> C:\DOCUME~1\DEMANG~1\Cookies
[F:176][D:4]-> C:\DOCUME~1\DEMANG~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 12/11/2009|12:39 - Option : [1]
--------------------\\ Fin du rapport a 12:39:16
merci
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.06GHz )
BIOS : BIOS Date: 01/03/06 16:40:56 Ver: 08.00.10
USER : DEMANGEOT Solène ( Administrator )
BOOT : Normal boot
Antivirus : AntiVir Desktop 9.0.1.32 (Activated)
C:\ (Local Disk) - NTFS - Total:232 Go (Free:141 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (Local Disk) - FAT32 - Total:465 Go (Free:248 Go)
K:\ (USB)
L:\ (Local Disk) - FAT - Total:0 Go (Free:0 Go)
Z:\ (RAM) - FAT - Total:0 Go (Free:0 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 12/11/2009|12:36 )
--------------------\\ Listing des dossiers dans APPLIC~1
[02/11/2009|23:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[30/10/2009|18:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}
[07/11/2008|13:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[16/04/2007|12:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[05/07/2009|22:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AdventureChronicles1
[14/08/2008|22:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[27/02/2009|21:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Alawar Stargaze
[27/03/2009|21:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AlawarWrapper
[06/02/2008|13:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Aliasworlds
[04/04/2009|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ApeZone
[02/11/2009|22:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[25/04/2007|13:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[14/12/2008|20:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Astar Games
[25/07/2009|13:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[05/02/2009|20:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[10/04/2008|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Awem
[02/06/2009|20:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[07/10/2009|19:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Becky Brogan
[20/07/2007|18:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\beepflawatompoke
[12/11/2009|11:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishGamesCache
[01/08/2009|11:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishSavedGames
[07/04/2009|19:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishv1005fr
[30/04/2009|17:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\blg
[19/07/2006|19:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[09/12/2007|15:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BufferZone
[15/09/2009|11:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CasualForge
[01/12/2007|19:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Christmasville
[23/01/2007|22:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ciel
[12/05/2009|20:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DAEMON Tools Lite
[21/03/2009|19:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DivoGames
[27/02/2009|19:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EA
[12/01/2009|21:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\eGames
[01/07/2009|22:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ERS G-Studio
[05/02/2009|19:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EscapeTheMuseum
[09/05/2009|11:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Far Mills
[08/03/2008|19:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Farm Frenzy
[06/11/2008|20:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FarmFrenzy2
[13/08/2009|23:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FarmFrenzyPizzaParty
[25/03/2009|18:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FarmFrenzy-PizzaParty
[12/11/2009|10:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fashion Solitaire 1.2
[12/01/2009|21:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet
[01/04/2009|19:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Flood Light Games
[26/09/2007|16:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FloodLightGames
[09/02/2009|00:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FlyWheelGames
[07/01/2008|13:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Forge of Games
[25/09/2008|11:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FreshGames
[21/02/2009|00:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
[14/09/2008|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GameHouse
[28/07/2009|22:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Gamers Digital
[22/08/2009|10:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GAMESHASTRA
[22/04/2009|22:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Gogii
[17/02/2009|18:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Gogii Games
[04/01/2009|21:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Gold Casual Games
[07/05/2009|18:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[07/11/2007|14:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[04/01/2009|16:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HiddenSecretsNightmare
[14/10/2009|11:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HideAndSecret3
[17/01/2009|00:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[25/09/2008|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hot Lava Games
[09/08/2009|21:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HoverBee Studios
[19/07/2009|21:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[06/10/2009|13:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\IntDreams
[10/05/2009|17:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Intenium
[11/01/2009|17:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\iWin
[29/04/2008|20:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[14/07/2009|22:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[26/07/2009|12:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Little Games Company
[31/01/2009|01:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logishrd
[05/02/2007|18:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[11/10/2007|16:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[28/10/2008|15:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[05/05/2009|18:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mandragora
[16/09/2009|10:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mean Hamster
[13/04/2009|20:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[03/01/2009|22:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MonteCristo
[02/11/2009|10:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MumboJumbo
[30/12/2008|18:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mushroom Age
[03/03/2008|13:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\My Games
[29/12/2008|12:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MysteryChronicles
[02/01/2009|19:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MythPeople
[13/10/2007|17:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\n7-89-o9-3r-4t-r9
[24/04/2008|11:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[11/11/2009|19:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NeptunesAdve
[05/03/2009|21:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
[02/11/2009|22:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[19/02/2009|20:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayPond
[22/02/2009|22:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Playrix Entertainment
[17/10/2009|17:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PoBros
[03/10/2009|12:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Princess Isabella
[09/05/2009|16:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickClick
[04/04/2009|21:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Redrum
[17/02/2009|23:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Rumbic Studio
[27/07/2009|19:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[11/01/2009|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Shockwave
[20/10/2009|17:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[30/12/2008|20:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Slapdash Games
[18/05/2009|19:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sortasoft
[03/03/2009|19:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpecialBit
[09/06/2008|12:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpinTop Games
[14/07/2009|22:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[04/04/2009|22:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SugarGames
[10/10/2009|17:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SulusGames
[12/11/2009|11:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[15/12/2008|18:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TheRace_dev
[17/05/2009|21:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TikGames
[09/09/2009|17:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TomTom
[11/07/2009|20:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[17/05/2009|20:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UClick
[03/01/2009|01:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Valusoft
[25/09/2008|20:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\VirtualFarm
[19/08/2009|19:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WildWestQuest2
[02/10/2006|18:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[08/11/2007|12:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[16/01/2007|21:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
[26/05/2009|22:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ZEMNOTT
[02/08/2007|20:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[12/06/2006|16:37] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[14/02/2009|17:20] C:\DOCUME~1\DEMANG~1\APPLIC~1\Adobe
[30/01/2007|22:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\AdobeUM
[08/05/2009|16:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\Alawar
[03/11/2009|15:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\Apple Computer
[26/02/2007|15:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\ArcSoft
[08/11/2009|11:21] C:\DOCUME~1\DEMANG~1\APPLIC~1\Artogon
[09/07/2009|18:40] C:\DOCUME~1\DEMANG~1\APPLIC~1\AVS4YOU
[09/05/2009|15:37] C:\DOCUME~1\DEMANG~1\APPLIC~1\Azuaz Games
[15/07/2009|22:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\Azureus
[17/05/2009|21:09] C:\DOCUME~1\DEMANG~1\APPLIC~1\Be a King
[19/01/2009|21:44] C:\DOCUME~1\DEMANG~1\APPLIC~1\BeachPartyCraze
[06/07/2009|21:33] C:\DOCUME~1\DEMANG~1\APPLIC~1\BFG_JanesRealty
[04/10/2009|20:02] C:\DOCUME~1\DEMANG~1\APPLIC~1\Big Fish Games
[08/05/2009|22:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\BigFishv1002
[30/03/2009|12:20] C:\DOCUME~1\DEMANG~1\APPLIC~1\BigFishv1002fr
[05/06/2009|21:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\BigFishv1005
[14/04/2007|11:08] C:\DOCUME~1\DEMANG~1\APPLIC~1\BitDownload
[11/12/2007|10:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\BitTorrent
[30/04/2009|17:11] C:\DOCUME~1\DEMANG~1\APPLIC~1\blg
[19/07/2009|17:21] C:\DOCUME~1\DEMANG~1\APPLIC~1\BloodTies
[15/05/2009|22:13] C:\DOCUME~1\DEMANG~1\APPLIC~1\Boolat Games
[30/05/2009|23:04] C:\DOCUME~1\DEMANG~1\APPLIC~1\Boomzap
[10/07/2009|19:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\Boontyv1002
[15/07/2009|15:00] C:\DOCUME~1\DEMANG~1\APPLIC~1\BrandX Games
[15/09/2009|11:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\CasualForge
[16/03/2009|20:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\cerasus.media
[25/04/2009|22:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\Chicken Chase
[18/03/2009|19:46] C:\DOCUME~1\DEMANG~1\APPLIC~1\Coyotes Tale
[12/05/2009|20:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\DAEMON Tools Lite
[02/11/2006|13:23] C:\DOCUME~1\DEMANG~1\APPLIC~1\DivX
[08/02/2008|20:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\D-Jix Media
[21/02/2009|20:03] C:\DOCUME~1\DEMANG~1\APPLIC~1\Dragon Altar Games
[01/05/2009|19:20] C:\DOCUME~1\DEMANG~1\APPLIC~1\Dreamsdwell Stories
[12/01/2009|21:54] C:\DOCUME~1\DEMANG~1\APPLIC~1\eGames
[01/05/2009|20:47] C:\DOCUME~1\DEMANG~1\APPLIC~1\EleFun Games
[15/05/2009|19:46] C:\DOCUME~1\DEMANG~1\APPLIC~1\Enchanted Katya
[28/06/2006|16:58] C:\DOCUME~1\DEMANG~1\APPLIC~1\EoRezo
[06/11/2009|11:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\ERS G-Studio
[14/09/2008|22:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\Eyeblaster
[11/01/2009|18:21] C:\DOCUME~1\DEMANG~1\APPLIC~1\Fabulous Finds
[27/03/2009|21:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\FarmerJane
[01/04/2009|19:03] C:\DOCUME~1\DEMANG~1\APPLIC~1\Flood Light Games
[26/09/2007|16:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\FloodLightGames
[14/10/2009|19:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\Friday's games
[16/11/2008|17:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\funkitron
[16/02/2008|12:07] C:\DOCUME~1\DEMANG~1\APPLIC~1\Fuzzy Games
[26/09/2008|13:57] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gaijin Ent
[13/10/2007|17:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\GameHouse
[27/02/2009|20:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\GameInvest
[03/03/2009|13:16] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gamelab
[28/07/2009|22:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gamers Digital
[29/10/2009|18:01] C:\DOCUME~1\DEMANG~1\APPLIC~1\Games
[19/10/2008|19:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\GamesCafe
[22/08/2009|10:48] C:\DOCUME~1\DEMANG~1\APPLIC~1\GAMESHASTRA
[17/12/2008|20:44] C:\DOCUME~1\DEMANG~1\APPLIC~1\GARMIN
[14/06/2008|15:40] C:\DOCUME~1\DEMANG~1\APPLIC~1\GibbHill Properties Ltd
[30/12/2008|21:22] C:\DOCUME~1\DEMANG~1\APPLIC~1\Go Go Gourmet
[17/02/2009|18:08] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gogii Games
[03/07/2009|20:16] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gold Casual Games
[29/10/2007|23:07] C:\DOCUME~1\DEMANG~1\APPLIC~1\Google
[13/06/2008|20:27] C:\DOCUME~1\DEMANG~1\APPLIC~1\GRETECH
[05/08/2008|19:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\Grisoft
[14/04/2007|13:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\gtk-2.0
[16/06/2006|13:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\Help
[10/05/2009|18:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\HiT-MM
[13/05/2009|19:18] C:\DOCUME~1\DEMANG~1\APPLIC~1\Home Sweet Home 2
[01/08/2009|21:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\HouseCall 6.6
[05/08/2009|21:30] C:\DOCUME~1\DEMANG~1\APPLIC~1\HuruBeachParty
[02/11/2009|22:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\Identities
[14/04/2007|12:26] C:\DOCUME~1\DEMANG~1\APPLIC~1\Inkscape
[15/09/2009|20:44] C:\DOCUME~1\DEMANG~1\APPLIC~1\IronCode
[04/11/2009|12:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\Island
[26/04/2009|20:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\ITTNord
[09/02/2009|22:13] C:\DOCUME~1\DEMANG~1\APPLIC~1\iWin
[08/02/2008|18:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Jane s Hotel
[03/09/2008|16:37] C:\DOCUME~1\DEMANG~1\APPLIC~1\Jane s Hotel Family Hero
[05/07/2009|21:01] C:\DOCUME~1\DEMANG~1\APPLIC~1\Janes_Realty
[03/01/2009|00:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\JewelMatch2
[16/02/2009|20:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\JoyBits
[28/06/2007|23:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\Lavasoft
[31/01/2007|11:04] C:\DOCUME~1\DEMANG~1\APPLIC~1\Leadertech
[26/07/2009|12:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\Little Games Company
[19/07/2009|21:26] C:\DOCUME~1\DEMANG~1\APPLIC~1\Lost in the City
[15/02/2008|13:00] C:\DOCUME~1\DEMANG~1\APPLIC~1\Macromedia
[29/09/2007|20:07] C:\DOCUME~1\DEMANG~1\APPLIC~1\Magic Academy
[22/04/2008|12:31] C:\DOCUME~1\DEMANG~1\APPLIC~1\Magic Seeds
[28/10/2008|15:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\Malwarebytes
[16/09/2009|10:42] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mean Hamster
[02/07/2009|00:03] C:\DOCUME~1\DEMANG~1\APPLIC~1\Media Player Classic
[08/06/2009|10:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\Meridian93
[20/07/2007|18:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mfcd Joy
[26/07/2007|16:37] C:\DOCUME~1\DEMANG~1\APPLIC~1\Microgaming
[30/08/2009|19:02] C:\DOCUME~1\DEMANG~1\APPLIC~1\Microsoft
[12/11/2009|10:48] C:\DOCUME~1\DEMANG~1\APPLIC~1\MissTeriTale3
[30/08/2008|15:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mozilla
[02/08/2007|19:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\My Games
[12/10/2009|11:33] C:\DOCUME~1\DEMANG~1\APPLIC~1\MysteryStudio
[29/09/2007|11:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mysteryville2
[10/07/2009|19:01] C:\DOCUME~1\DEMANG~1\APPLIC~1\NevoSoft Games
[05/03/2009|21:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\Oberon Games
[03/07/2009|20:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\panoramik
[04/05/2009|18:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Pharaohs Secret
[16/03/2008|20:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\Pirateville
[02/11/2009|22:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\PlayFirst
[09/05/2009|14:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\Playrix Entertainment
[23/04/2009|18:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\PoBros
[31/07/2008|11:31] C:\DOCUME~1\DEMANG~1\APPLIC~1\Real
[28/11/2008|23:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\RealArcade
[10/07/2009|17:43] C:\DOCUME~1\DEMANG~1\APPLIC~1\Reflexive_Janes_Realty
[05/01/2009|20:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\Righteous Kill
[01/04/2009|19:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\RobinsonCrusoeBFGFR
[03/06/2009|21:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sahmon Games
[30/10/2007|21:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sandlot Games
[02/02/2009|20:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\SecretIslandEng
[17/02/2009|21:38] C:\DOCUME~1\DEMANG~1\APPLIC~1\SecretIslandFraBF
[21/09/2007|13:12] C:\DOCUME~1\DEMANG~1\APPLIC~1\SecuROM
[25/05/2009|21:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\SerpentOfIsis
[16/05/2009|15:11] C:\DOCUME~1\DEMANG~1\APPLIC~1\Shape games
[08/11/2009|12:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\she_is_a_shadow
[03/10/2009|10:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\ShinyTales
[19/10/2008|20:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\Shopping Blocks
[11/11/2009|10:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\Skype
[11/11/2009|08:02] C:\DOCUME~1\DEMANG~1\APPLIC~1\skypePM
[07/07/2009|16:23] C:\DOCUME~1\DEMANG~1\APPLIC~1\Softonic_JanesRealty
[18/05/2009|19:00] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sortasoft
[12/08/2008|17:18] C:\DOCUME~1\DEMANG~1\APPLIC~1\Spamihilator
[09/12/2007|14:47] C:\DOCUME~1\DEMANG~1\APPLIC~1\SpinTop
[16/04/2009|21:58] C:\DOCUME~1\DEMANG~1\APPLIC~1\SpinTop Games
[05/07/2008|12:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\SprillBermudeEng
[02/10/2008|15:23] C:\DOCUME~1\DEMANG~1\APPLIC~1\SprillBermudeFr
[29/10/2009|13:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\SprillRichiEng
[03/10/2006|17:14] C:\DOCUME~1\DEMANG~1\APPLIC~1\StoneTrip
[23/12/2008|18:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\SultansLabyrinth
[10/10/2009|17:50] C:\DOCUME~1\DEMANG~1\APPLIC~1\SulusGames
[12/06/2006|18:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sun
[18/07/2009|13:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\SunRay Games
[05/02/2008|19:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\Super-Cow
[12/06/2006|20:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\Talkback
[14/06/2006|13:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Template
[07/04/2008|11:42] C:\DOCUME~1\DEMANG~1\APPLIC~1\TheScruffs
[17/05/2009|21:18] C:\DOCUME~1\DEMANG~1\APPLIC~1\TikGames
[22/04/2009|19:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\TMInc
[09/09/2009|17:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\TomTom
[12/11/2009|10:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\Total Eclipse
[08/05/2009|22:36] C:\DOCUME~1\DEMANG~1\APPLIC~1\Twintale Entertainment
[16/12/2007|18:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\U3
[14/10/2009|17:40] C:\DOCUME~1\DEMANG~1\APPLIC~1\Ubisoft
[17/05/2009|20:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\UClick
[13/10/2008|10:47] C:\DOCUME~1\DEMANG~1\APPLIC~1\Uniblue
[21/02/2009|00:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\URSE Games
[11/11/2009|02:30] C:\DOCUME~1\DEMANG~1\APPLIC~1\uTorrent
[03/01/2009|01:08] C:\DOCUME~1\DEMANG~1\APPLIC~1\Valusoft
[26/07/2009|14:48] C:\DOCUME~1\DEMANG~1\APPLIC~1\V-Games
[09/10/2009|10:30] C:\DOCUME~1\DEMANG~1\APPLIC~1\ViquaSoft
[29/11/2008|01:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\Wildfire
[09/12/2007|14:36] C:\DOCUME~1\DEMANG~1\APPLIC~1\WinRAR
[19/06/2006|09:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\Yahoo!
[14/10/2009|18:31] C:\DOCUME~1\DEMANG~1\APPLIC~1\YoudaGames
[14/09/2008|17:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\YTHE
[26/05/2009|22:16] C:\DOCUME~1\DEMANG~1\APPLIC~1\ZEMNOTT
[02/11/2009|22:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\Zylom
[02/11/2009|22:54] C:\DOCUME~1\DEMANG~1\APPLIC~1\Zylom 3 Days Zoo Mystery
[01/05/2009|22:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\Zylom DressUpRush
[14/02/2009|17:20] C:\DOCUME~1\DEMANG~1\APPLIC~1\Adobe
[30/01/2007|22:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\AdobeUM
[08/05/2009|16:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\Alawar
[03/11/2009|15:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\Apple Computer
[26/02/2007|15:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\ArcSoft
[08/11/2009|11:21] C:\DOCUME~1\DEMANG~1\APPLIC~1\Artogon
[09/07/2009|18:40] C:\DOCUME~1\DEMANG~1\APPLIC~1\AVS4YOU
[09/05/2009|15:37] C:\DOCUME~1\DEMANG~1\APPLIC~1\Azuaz Games
[15/07/2009|22:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\Azureus
[17/05/2009|21:09] C:\DOCUME~1\DEMANG~1\APPLIC~1\Be a King
[19/01/2009|21:44] C:\DOCUME~1\DEMANG~1\APPLIC~1\BeachPartyCraze
[06/07/2009|21:33] C:\DOCUME~1\DEMANG~1\APPLIC~1\BFG_JanesRealty
[04/10/2009|20:02] C:\DOCUME~1\DEMANG~1\APPLIC~1\Big Fish Games
[08/05/2009|22:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\BigFishv1002
[30/03/2009|12:20] C:\DOCUME~1\DEMANG~1\APPLIC~1\BigFishv1002fr
[05/06/2009|21:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\BigFishv1005
[14/04/2007|11:08] C:\DOCUME~1\DEMANG~1\APPLIC~1\BitDownload
[11/12/2007|10:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\BitTorrent
[30/04/2009|17:11] C:\DOCUME~1\DEMANG~1\APPLIC~1\blg
[19/07/2009|17:21] C:\DOCUME~1\DEMANG~1\APPLIC~1\BloodTies
[15/05/2009|22:13] C:\DOCUME~1\DEMANG~1\APPLIC~1\Boolat Games
[30/05/2009|23:04] C:\DOCUME~1\DEMANG~1\APPLIC~1\Boomzap
[10/07/2009|19:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\Boontyv1002
[15/07/2009|15:00] C:\DOCUME~1\DEMANG~1\APPLIC~1\BrandX Games
[15/09/2009|11:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\CasualForge
[16/03/2009|20:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\cerasus.media
[25/04/2009|22:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\Chicken Chase
[18/03/2009|19:46] C:\DOCUME~1\DEMANG~1\APPLIC~1\Coyotes Tale
[12/05/2009|20:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\DAEMON Tools Lite
[02/11/2006|13:23] C:\DOCUME~1\DEMANG~1\APPLIC~1\DivX
[08/02/2008|20:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\D-Jix Media
[21/02/2009|20:03] C:\DOCUME~1\DEMANG~1\APPLIC~1\Dragon Altar Games
[01/05/2009|19:20] C:\DOCUME~1\DEMANG~1\APPLIC~1\Dreamsdwell Stories
[12/01/2009|21:54] C:\DOCUME~1\DEMANG~1\APPLIC~1\eGames
[01/05/2009|20:47] C:\DOCUME~1\DEMANG~1\APPLIC~1\EleFun Games
[15/05/2009|19:46] C:\DOCUME~1\DEMANG~1\APPLIC~1\Enchanted Katya
[28/06/2006|16:58] C:\DOCUME~1\DEMANG~1\APPLIC~1\EoRezo
[06/11/2009|11:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\ERS G-Studio
[14/09/2008|22:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\Eyeblaster
[11/01/2009|18:21] C:\DOCUME~1\DEMANG~1\APPLIC~1\Fabulous Finds
[27/03/2009|21:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\FarmerJane
[01/04/2009|19:03] C:\DOCUME~1\DEMANG~1\APPLIC~1\Flood Light Games
[26/09/2007|16:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\FloodLightGames
[14/10/2009|19:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\Friday's games
[16/11/2008|17:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\funkitron
[16/02/2008|12:07] C:\DOCUME~1\DEMANG~1\APPLIC~1\Fuzzy Games
[26/09/2008|13:57] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gaijin Ent
[13/10/2007|17:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\GameHouse
[27/02/2009|20:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\GameInvest
[03/03/2009|13:16] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gamelab
[28/07/2009|22:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gamers Digital
[29/10/2009|18:01] C:\DOCUME~1\DEMANG~1\APPLIC~1\Games
[19/10/2008|19:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\GamesCafe
[22/08/2009|10:48] C:\DOCUME~1\DEMANG~1\APPLIC~1\GAMESHASTRA
[17/12/2008|20:44] C:\DOCUME~1\DEMANG~1\APPLIC~1\GARMIN
[14/06/2008|15:40] C:\DOCUME~1\DEMANG~1\APPLIC~1\GibbHill Properties Ltd
[30/12/2008|21:22] C:\DOCUME~1\DEMANG~1\APPLIC~1\Go Go Gourmet
[17/02/2009|18:08] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gogii Games
[03/07/2009|20:16] C:\DOCUME~1\DEMANG~1\APPLIC~1\Gold Casual Games
[29/10/2007|23:07] C:\DOCUME~1\DEMANG~1\APPLIC~1\Google
[13/06/2008|20:27] C:\DOCUME~1\DEMANG~1\APPLIC~1\GRETECH
[05/08/2008|19:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\Grisoft
[14/04/2007|13:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\gtk-2.0
[16/06/2006|13:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\Help
[10/05/2009|18:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\HiT-MM
[13/05/2009|19:18] C:\DOCUME~1\DEMANG~1\APPLIC~1\Home Sweet Home 2
[01/08/2009|21:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\HouseCall 6.6
[05/08/2009|21:30] C:\DOCUME~1\DEMANG~1\APPLIC~1\HuruBeachParty
[02/11/2009|22:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\Identities
[14/04/2007|12:26] C:\DOCUME~1\DEMANG~1\APPLIC~1\Inkscape
[15/09/2009|20:44] C:\DOCUME~1\DEMANG~1\APPLIC~1\IronCode
[04/11/2009|12:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\Island
[26/04/2009|20:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\ITTNord
[09/02/2009|22:13] C:\DOCUME~1\DEMANG~1\APPLIC~1\iWin
[08/02/2008|18:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Jane s Hotel
[03/09/2008|16:37] C:\DOCUME~1\DEMANG~1\APPLIC~1\Jane s Hotel Family Hero
[05/07/2009|21:01] C:\DOCUME~1\DEMANG~1\APPLIC~1\Janes_Realty
[03/01/2009|00:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\JewelMatch2
[16/02/2009|20:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\JoyBits
[28/06/2007|23:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\Lavasoft
[31/01/2007|11:04] C:\DOCUME~1\DEMANG~1\APPLIC~1\Leadertech
[26/07/2009|12:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\Little Games Company
[19/07/2009|21:26] C:\DOCUME~1\DEMANG~1\APPLIC~1\Lost in the City
[15/02/2008|13:00] C:\DOCUME~1\DEMANG~1\APPLIC~1\Macromedia
[29/09/2007|20:07] C:\DOCUME~1\DEMANG~1\APPLIC~1\Magic Academy
[22/04/2008|12:31] C:\DOCUME~1\DEMANG~1\APPLIC~1\Magic Seeds
[28/10/2008|15:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\Malwarebytes
[16/09/2009|10:42] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mean Hamster
[02/07/2009|00:03] C:\DOCUME~1\DEMANG~1\APPLIC~1\Media Player Classic
[08/06/2009|10:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\Meridian93
[20/07/2007|18:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mfcd Joy
[26/07/2007|16:37] C:\DOCUME~1\DEMANG~1\APPLIC~1\Microgaming
[30/08/2009|19:02] C:\DOCUME~1\DEMANG~1\APPLIC~1\Microsoft
[12/11/2009|10:48] C:\DOCUME~1\DEMANG~1\APPLIC~1\MissTeriTale3
[30/08/2008|15:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mozilla
[02/08/2007|19:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\My Games
[12/10/2009|11:33] C:\DOCUME~1\DEMANG~1\APPLIC~1\MysteryStudio
[29/09/2007|11:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\Mysteryville2
[10/07/2009|19:01] C:\DOCUME~1\DEMANG~1\APPLIC~1\NevoSoft Games
[05/03/2009|21:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\Oberon Games
[03/07/2009|20:10] C:\DOCUME~1\DEMANG~1\APPLIC~1\panoramik
[04/05/2009|18:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Pharaohs Secret
[16/03/2008|20:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\Pirateville
[02/11/2009|22:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\PlayFirst
[09/05/2009|14:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\Playrix Entertainment
[23/04/2009|18:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\PoBros
[31/07/2008|11:31] C:\DOCUME~1\DEMANG~1\APPLIC~1\Real
[28/11/2008|23:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\RealArcade
[10/07/2009|17:43] C:\DOCUME~1\DEMANG~1\APPLIC~1\Reflexive_Janes_Realty
[05/01/2009|20:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\Righteous Kill
[01/04/2009|19:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\RobinsonCrusoeBFGFR
[03/06/2009|21:32] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sahmon Games
[30/10/2007|21:49] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sandlot Games
[02/02/2009|20:29] C:\DOCUME~1\DEMANG~1\APPLIC~1\SecretIslandEng
[17/02/2009|21:38] C:\DOCUME~1\DEMANG~1\APPLIC~1\SecretIslandFraBF
[21/09/2007|13:12] C:\DOCUME~1\DEMANG~1\APPLIC~1\SecuROM
[25/05/2009|21:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\SerpentOfIsis
[16/05/2009|15:11] C:\DOCUME~1\DEMANG~1\APPLIC~1\Shape games
[08/11/2009|12:59] C:\DOCUME~1\DEMANG~1\APPLIC~1\she_is_a_shadow
[03/10/2009|10:45] C:\DOCUME~1\DEMANG~1\APPLIC~1\ShinyTales
[19/10/2008|20:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\Shopping Blocks
[11/11/2009|10:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\Skype
[11/11/2009|08:02] C:\DOCUME~1\DEMANG~1\APPLIC~1\skypePM
[07/07/2009|16:23] C:\DOCUME~1\DEMANG~1\APPLIC~1\Softonic_JanesRealty
[18/05/2009|19:00] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sortasoft
[12/08/2008|17:18] C:\DOCUME~1\DEMANG~1\APPLIC~1\Spamihilator
[09/12/2007|14:47] C:\DOCUME~1\DEMANG~1\APPLIC~1\SpinTop
[16/04/2009|21:58] C:\DOCUME~1\DEMANG~1\APPLIC~1\SpinTop Games
[05/07/2008|12:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\SprillBermudeEng
[02/10/2008|15:23] C:\DOCUME~1\DEMANG~1\APPLIC~1\SprillBermudeFr
[29/10/2009|13:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\SprillRichiEng
[03/10/2006|17:14] C:\DOCUME~1\DEMANG~1\APPLIC~1\StoneTrip
[23/12/2008|18:56] C:\DOCUME~1\DEMANG~1\APPLIC~1\SultansLabyrinth
[10/10/2009|17:50] C:\DOCUME~1\DEMANG~1\APPLIC~1\SulusGames
[12/06/2006|18:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\Sun
[18/07/2009|13:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\SunRay Games
[05/02/2008|19:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\Super-Cow
[12/06/2006|20:05] C:\DOCUME~1\DEMANG~1\APPLIC~1\Talkback
[14/06/2006|13:51] C:\DOCUME~1\DEMANG~1\APPLIC~1\Template
[07/04/2008|11:42] C:\DOCUME~1\DEMANG~1\APPLIC~1\TheScruffs
[17/05/2009|21:18] C:\DOCUME~1\DEMANG~1\APPLIC~1\TikGames
[22/04/2009|19:34] C:\DOCUME~1\DEMANG~1\APPLIC~1\TMInc
[09/09/2009|17:06] C:\DOCUME~1\DEMANG~1\APPLIC~1\TomTom
[12/11/2009|10:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\Total Eclipse
[08/05/2009|22:36] C:\DOCUME~1\DEMANG~1\APPLIC~1\Twintale Entertainment
[16/12/2007|18:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\U3
[14/10/2009|17:40] C:\DOCUME~1\DEMANG~1\APPLIC~1\Ubisoft
[17/05/2009|20:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\UClick
[13/10/2008|10:47] C:\DOCUME~1\DEMANG~1\APPLIC~1\Uniblue
[21/02/2009|00:39] C:\DOCUME~1\DEMANG~1\APPLIC~1\URSE Games
[11/11/2009|02:30] C:\DOCUME~1\DEMANG~1\APPLIC~1\uTorrent
[03/01/2009|01:08] C:\DOCUME~1\DEMANG~1\APPLIC~1\Valusoft
[26/07/2009|14:48] C:\DOCUME~1\DEMANG~1\APPLIC~1\V-Games
[09/10/2009|10:30] C:\DOCUME~1\DEMANG~1\APPLIC~1\ViquaSoft
[29/11/2008|01:24] C:\DOCUME~1\DEMANG~1\APPLIC~1\Wildfire
[09/12/2007|14:36] C:\DOCUME~1\DEMANG~1\APPLIC~1\WinRAR
[19/06/2006|09:55] C:\DOCUME~1\DEMANG~1\APPLIC~1\Yahoo!
[14/10/2009|18:31] C:\DOCUME~1\DEMANG~1\APPLIC~1\YoudaGames
[14/09/2008|17:15] C:\DOCUME~1\DEMANG~1\APPLIC~1\YTHE
[26/05/2009|22:16] C:\DOCUME~1\DEMANG~1\APPLIC~1\ZEMNOTT
[02/11/2009|22:52] C:\DOCUME~1\DEMANG~1\APPLIC~1\Zylom
[02/11/2009|22:54] C:\DOCUME~1\DEMANG~1\APPLIC~1\Zylom 3 Days Zoo Mystery
[01/05/2009|22:17] C:\DOCUME~1\DEMANG~1\APPLIC~1\Zylom DressUpRush
[02/01/2007|17:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[12/06/2006|16:42] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[07/11/2009 23:11][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[12/11/2009 12:19][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[12/11/2009 12:00][--ah-----] C:\WINDOWS\tasks\BA7D9D6D943207C1.job
[11/11/2009 05:20][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
( BA7D9D6D943207C1.job )=( c:\docume~1\demang~1\applic~1\mfcdjo~1\DATATRAYNOUN.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[04/05/2009|21:53] C:\Program Files\Adobe
[30/01/2007|17:43] C:\Program Files\AGEIA Technologies
[14/08/2008|22:51] C:\Program Files\Ahead
[12/08/2006|19:17] C:\Program Files\Analog Devices
[02/11/2009|22:55] C:\Program Files\Apple Software Update
[25/07/2009|13:20] C:\Program Files\Avira
[02/10/2009|22:06] C:\Program Files\bfgclient
[02/11/2009|23:11] C:\Program Files\Bonjour
[23/10/2009|09:42] C:\Program Files\CCleaner
[28/07/2009|19:50] C:\Program Files\Conduit
[07/10/2009|17:16] C:\Program Files\DAEMON Tools Lite
[09/10/2009|19:38] C:\Program Files\DAEMON Tools Toolbar
[11/11/2009|17:54] C:\Program Files\Danger Next Door - Miss Teri Tale's Adventure
[12/05/2009|21:03] C:\Program Files\directx
[11/12/2008|17:46] C:\Program Files\DivX
[28/07/2009|19:56] C:\Program Files\eMule
[02/11/2009|23:01] C:\Program Files\Fichiers communs
[28/06/2006|16:54] C:\Program Files\FileZilla
[26/07/2009|14:01] C:\Program Files\GamesBar
[07/07/2009|10:15] C:\Program Files\Google
[13/06/2008|20:26] C:\Program Files\GRETECH
[05/08/2008|19:58] C:\Program Files\Grisoft
[16/09/2009|14:21] C:\Program Files\Hotel Mogul
[14/10/2009|18:51] C:\Program Files\InstallShield Installation Information
[15/10/2009|02:08] C:\Program Files\Internet Explorer
[08/10/2009|20:06] C:\Program Files\Java
[12/11/2009|10:38] C:\Program Files\Jeux Rico
[14/07/2009|22:08] C:\Program Files\Lavasoft
[03/06/2009|12:33] C:\Program Files\Logitech
[06/10/2009|23:36] C:\Program Files\Malwarebytes' Anti-Malware
[25/09/2008|09:08] C:\Program Files\Messenger
[06/10/2009|13:10] C:\Program Files\Micro Application
[17/12/2008|17:02] C:\Program Files\Microsoft
[08/11/2007|15:38] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[12/06/2006|16:40] C:\Program Files\microsoft frontpage
[11/01/2009|18:31] C:\Program Files\Microsoft Office
[05/10/2009|15:30] C:\Program Files\Microsoft Silverlight
[08/11/2007|12:49] C:\Program Files\Microsoft SQL Server Compact Edition
[17/12/2008|17:00] C:\Program Files\Microsoft Sync Framework
[24/09/2008|13:39] C:\Program Files\Movie Maker
[12/11/2009|12:13] C:\Program Files\Mozilla Firefox
[09/08/2009|20:59] C:\Program Files\MSBuild
[22/07/2009|21:22] C:\Program Files\MSECache
[12/06/2006|16:33] C:\Program Files\MSN
[12/06/2006|16:34] C:\Program Files\MSN Gaming Zone
[24/01/2007|22:35] C:\Program Files\MSXML 4.0
[24/09/2008|13:31] C:\Program Files\NetMeeting
[14/08/2009|02:04] C:\Program Files\Outlook Express
[25/07/2009|13:04] C:\Program Files\QUAD Utilities
[30/07/2008|20:14] C:\Program Files\Real
[08/07/2009|20:41] C:\Program Files\Realore
[09/08/2009|20:58] C:\Program Files\Reference Assemblies
[25/07/2009|18:35] C:\Program Files\ReflexiveArcade
[12/11/2009|10:55] C:\Program Files\Season of Mystery - The Cherry Blossom Murders
[12/11/2009|12:14] C:\Program Files\Shareware.Pro-FR
[20/10/2009|17:13] C:\Program Files\Skype
[16/11/2008|20:11] C:\Program Files\Sun
[20/05/2009|17:02] C:\Program Files\Techcity
[09/09/2009|17:03] C:\Program Files\TomTom DesktopSuite
[09/09/2009|17:04] C:\Program Files\TomTom HOME 2
[09/09/2009|17:04] C:\Program Files\TomTom International B.V
[05/08/2008|21:36] C:\Program Files\Trend Micro
[11/10/2009|16:50] C:\Program Files\Ubisoft
[12/06/2006|16:44] C:\Program Files\Uninstall Information
[15/07/2009|22:39] C:\Program Files\uTorrent
[06/08/2008|10:48] C:\Program Files\VideoLAN
[17/07/2009|18:29] C:\Program Files\Western Digital
[17/07/2009|18:01] C:\Program Files\Western Digital Corporation
[02/10/2009|22:03] C:\Program Files\Windows Live
[17/12/2008|16:55] C:\Program Files\Windows Live SkyDrive
[25/10/2007|18:28] C:\Program Files\Windows Media Connect 2
[08/10/2009|20:22] C:\Program Files\Windows Media Player
[24/09/2008|13:31] C:\Program Files\Windows NT
[12/06/2006|16:36] C:\Program Files\WindowsUpdate
[13/08/2008|12:50] C:\Program Files\WinPcap
[09/12/2007|15:15] C:\Program Files\WinRAR
[12/06/2006|16:40] C:\Program Files\xerox
[16/09/2009|14:18] C:\Program Files\Your Product
[08/11/2009|21:16] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[12/01/2009|20:42] C:\Program Files\Fichiers communs\Adobe
[16/04/2007|12:02] C:\Program Files\Fichiers communs\Adobe Systems Shared
[14/08/2008|22:48] C:\Program Files\Fichiers communs\Ahead
[05/11/2009|10:39] C:\Program Files\Fichiers communs\Apple
[09/07/2009|18:47] C:\Program Files\Fichiers communs\AVSMedia
[03/08/2008|21:06] C:\Program Files\Fichiers communs\BOONTY Shared
[06/01/2007|10:56] C:\Program Files\Fichiers communs\Designer
[12/08/2006|18:40] C:\Program Files\Fichiers communs\EPSON
[19/07/2009|21:24] C:\Program Files\Fichiers communs\InstallShield
[03/06/2009|12:32] C:\Program Files\Fichiers communs\LogiShrd
[15/10/2007|09:22] C:\Program Files\Fichiers communs\Macromedia
[12/01/2009|20:10] C:\Program Files\Fichiers communs\Macrovision Shared
[02/10/2009|21:53] C:\Program Files\Fichiers communs\Microsoft Shared
[12/06/2006|16:35] C:\Program Files\Fichiers communs\MSSoap
[07/07/2006|10:45] C:\Program Files\Fichiers communs\Nero
[29/07/2009|22:40] C:\Program Files\Fichiers communs\Oberon Media
[12/06/2006|18:28] C:\Program Files\Fichiers communs\ODBC
[31/07/2008|11:31] C:\Program Files\Fichiers communs\Real
[05/05/2009|20:48] C:\Program Files\Fichiers communs\Sandlot Shared
[12/06/2006|16:35] C:\Program Files\Fichiers communs\Services
[20/10/2009|17:12] C:\Program Files\Fichiers communs\Skype
[12/06/2006|18:28] C:\Program Files\Fichiers communs\SpeechEngines
[19/10/2009|10:23] C:\Program Files\Fichiers communs\SWF Studio
[24/09/2008|13:31] C:\Program Files\Fichiers communs\System
[14/04/2007|10:12] C:\Program Files\Fichiers communs\Vbox
[17/12/2008|16:34] C:\Program Files\Fichiers communs\Windows Live
[08/11/2007|12:24] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[24/10/2007|16:23] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 42 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\DEMANG~1\APPLIC~1\mfcdjo~1
C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp\NSISPromotion.dll
C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp\NSISPromotion.ini
C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp\nsk24F.tmp
C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp\nsm28D.tmp
C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp\nsq514.tmp
C:\DOCUME~1\DEMANG~1\APPLIC~1\Bitdownload
C:\DOCUME~1\DEMANG~1\APPLIC~1\BitDownload
C:\DOCUME~1\DEMANG~1\APPLIC~1\BitDownload\Data
C:\WINDOWS\Tasks\BA7D9D6D943207C1.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-11-12 12:38:03
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:442][D:38]-> C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp
[F:26][D:0]-> C:\DOCUME~1\DEMANG~1\Cookies
[F:176][D:4]-> C:\DOCUME~1\DEMANG~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 12/11/2009|12:39 - Option : [1]
--------------------\\ Fin du rapport a 12:39:16
merci
geoffrey5
Messages postés
13732
Date d'inscription
dimanche 20 mai 2007
Statut
Contributeur sécurité
Dernière intervention
21 mai 2010
10
12 nov. 2009 à 12:59
12 nov. 2009 à 12:59
▶ Relance Lop S&D
▶ Choisis cette fois-ci l'option 2 (Suppression)
▶ Ne ferme pas la fenêtre lors de la suppression !
▶ Poste le rapport généré (C:\lopR.txt)
* (Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
▶ Choisis cette fois-ci l'option 2 (Suppression)
▶ Ne ferme pas la fenêtre lors de la suppression !
▶ Poste le rapport généré (C:\lopR.txt)
* (Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
suhelen
Messages postés
102
Date d'inscription
jeudi 12 novembre 2009
Statut
Membre
Dernière intervention
4 mars 2019
12 nov. 2009 à 15:44
12 nov. 2009 à 15:44
bonjour
je n'arrive pas à poster le rapport
je n'arrive pas à poster le rapport
geoffrey5
Messages postés
13732
Date d'inscription
dimanche 20 mai 2007
Statut
Contributeur sécurité
Dernière intervention
21 mai 2010
10
12 nov. 2009 à 16:28
12 nov. 2009 à 16:28
Que se passe-t-il que tu n'y arrives pas ??
suhelen
Messages postés
102
Date d'inscription
jeudi 12 novembre 2009
Statut
Membre
Dernière intervention
4 mars 2019
12 nov. 2009 à 17:45
12 nov. 2009 à 17:45
je copie et colle le texte
et j'ai un message "erreur" vous avez déjà posté ce message
et j'ai un message "erreur" vous avez déjà posté ce message
geoffrey5
Messages postés
13732
Date d'inscription
dimanche 20 mai 2007
Statut
Contributeur sécurité
Dernière intervention
21 mai 2010
10
12 nov. 2009 à 19:46
12 nov. 2009 à 19:46
essaye de l'héberger comme expliqué dans ce tutoriel :
Comment héberger un rapports ??
Comment héberger un rapports ??
suhelen
Messages postés
102
Date d'inscription
jeudi 12 novembre 2009
Statut
Membre
Dernière intervention
4 mars 2019
12 nov. 2009 à 22:13
12 nov. 2009 à 22:13
http://ww38.toofiles.com/fr/oip/documents/txt/1019_lopr.html
j'espere que c'est bon !!!
merci
j'espere que c'est bon !!!
merci
geoffrey5
Messages postés
13732
Date d'inscription
dimanche 20 mai 2007
Statut
Contributeur sécurité
Dernière intervention
21 mai 2010
10
13 nov. 2009 à 15:30
13 nov. 2009 à 15:30
Bonjour,
tout s'est bien passé ;)
Maintenant fais ceci stp :
Nous allons maintenant nous occuper de EoRezo
Ne télécharge plus sur ce site car il infectera ton PC à chaque fois que tu téléchargeras un logiciel.
A lire : Ce qu'il faut savoir sur les programmes EoRezo
▶ Rends-toi à cette adresse afin de télécharger AD-Remover (créé par C_XX) : https://www.androidworld.fr/
▶ Clique sur TÉLÉCHARGER et enregistre-le sur ton bureau.
▶ tutoriel recherche
/!\ Ne fait pas le nettoyage tout dessuite /!\
▶ Double clique sur le fichier d'installation de AD-Remover, le programme s'installera automatiquement.
▶ Sous Vista : clic droit sur AD-Remover et sélectionner "Exécuter en tant qu'administrateur"
▶ Au menu principal choisi l'option "S"
▶ Poste le rapport qui apparait à la fin.
( le rapport est sauvegardé aussi sous C:\Ad-report.log )
(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
Note :
Process.exe est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
tout s'est bien passé ;)
Maintenant fais ceci stp :
Nous allons maintenant nous occuper de EoRezo
Ne télécharge plus sur ce site car il infectera ton PC à chaque fois que tu téléchargeras un logiciel.
A lire : Ce qu'il faut savoir sur les programmes EoRezo
▶ Rends-toi à cette adresse afin de télécharger AD-Remover (créé par C_XX) : https://www.androidworld.fr/
▶ Clique sur TÉLÉCHARGER et enregistre-le sur ton bureau.
▶ tutoriel recherche
/!\ Ne fait pas le nettoyage tout dessuite /!\
▶ Double clique sur le fichier d'installation de AD-Remover, le programme s'installera automatiquement.
▶ Sous Vista : clic droit sur AD-Remover et sélectionner "Exécuter en tant qu'administrateur"
▶ Au menu principal choisi l'option "S"
▶ Poste le rapport qui apparait à la fin.
( le rapport est sauvegardé aussi sous C:\Ad-report.log )
(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
Note :
Process.exe est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
suhelen
Messages postés
102
Date d'inscription
jeudi 12 novembre 2009
Statut
Membre
Dernière intervention
4 mars 2019
13 nov. 2009 à 18:22
13 nov. 2009 à 18:22
.
======= RAPPORT D'AD-REMOVER 1.1.4.6_C | UNIQUEMENT XP/VISTA/7 =======
.
Mit à jour par C_XX le 12.11.2009 à 22:02
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 16:29:16, 13/11/2009 | Mode Normal | Option: SCAN
Exécuté de: C:\Program Files\Ad-Remover\
Système d'exploitation: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
Nom du PC: DEMANGEO-F101EC | Utilisateur actuel: DEMANGEOT SolŠne
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.
HKCU\Software\EoRezo
HKCU\Software\MGS\Thumper\Casino\prime
HKCU\Software\MicroGaming\Thumper\Casino\prime
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A0AADCD-3A72-4B5F-900F-E3BB5A838E2A}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
HKCU\Software\Poker 770
HKCU\Software\Titan Poker
HKCU\Software\VB and VBA Program Settings\eurobarre
HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKLM\Software\Classes\TypeLib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKLM\Software\GamesBarSetup
HKLM\Software\Microsoft\ESENT\Process\SweetIM
HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SweetIM
HKLM\Software\Poker 770
HKLM\Software\Titan Poker
HKLM\Software\Trymedia Systems
HKU\S-1-5-21-854245398-527237240-1801674531-1005\Software\Eorezo
HKU\S-1-5-21-854245398-527237240-1801674531-1005\Software\Titan Poker
HKCU\software\microsoft\internet explorer\searchscopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938}
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
.
C:\DOCUME~1\DEMANG~1\APPLIC~1\EoRezo
C:\Program Files\GamesBar
C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp\AskToolbarInstaller.exe
.
============== Scan additionnel ==============
.
.
* Mozilla FireFox Version 3.5.5 [fr] *
.
Nom du profil: 9ond8t8j.default (DEMANGEOT SolŠne)
.
(DEMANG~1, prefs.js) Browser.download.lastDir, C:\Documents and Settings\DEMANGEOT Solène\Bureau
(DEMANG~1, prefs.js) Browser.search.selectedEngine, DAEMON Search
(DEMANG~1, prefs.js) Browser.startup.homepage, hxxp://www.google.com/ig?source=gama&hl=fr
.
.
* Internet Explorer Version 7.0.5730.11 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Start Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Search Page:
Search Bar:
SearchAssistant:
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: hxxp://fr.msn.com/
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
============== Suspect (Cracks, Serials, ...) ==============
.
C:\Documents and Settings\DEMANGEOT SolŠne\Application Data\HouseCall 6.6\patch.exe
C:\Documents and Settings\DEMANGEOT SolŠne\Application Data\uTorrent\Big Fish Games - Wonderburg + Adnan_Boy 2008 + Precracked.torrent
C:\Documents and Settings\DEMANGEOT SolŠne\Application Data\uTorrent\BIGFISH universal patch (new patch working).torrent
C:\Documents and Settings\DEMANGEOT SolŠne\Application Data\uTorrent\BIGFISH universal patch (new patch working)_AMiNE.torrent
C:\Documents and Settings\DEMANGEOT SolŠne\Application Data\uTorrent\BigFish.Games.Plan.It.Green-PRECRACKED[DuTY].torrent
C:\Documents and Settings\DEMANGEOT SolŠne\Application Data\uTorrent\Farm Frenzy 2 cracked.torrent
C:\Documents and Settings\DEMANGEOT SolŠne\Local Settings\Application Data\piratrax\data_patch.tmp.doc.zip
.
===================================
.
4258 Octet(s) - C:\Ad-Report-SCAN[1].log
.
451 Fichier(s) - C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp
5 Fichier(s) - C:\WINDOWS\Temp
.
1 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
0 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
.
Fin à: 16:44:38 | 13/11/2009 - SCAN[1]
.
============== E.O.F ==============
.
merci
======= RAPPORT D'AD-REMOVER 1.1.4.6_C | UNIQUEMENT XP/VISTA/7 =======
.
Mit à jour par C_XX le 12.11.2009 à 22:02
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 16:29:16, 13/11/2009 | Mode Normal | Option: SCAN
Exécuté de: C:\Program Files\Ad-Remover\
Système d'exploitation: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
Nom du PC: DEMANGEO-F101EC | Utilisateur actuel: DEMANGEOT SolŠne
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.
HKCU\Software\EoRezo
HKCU\Software\MGS\Thumper\Casino\prime
HKCU\Software\MicroGaming\Thumper\Casino\prime
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A0AADCD-3A72-4B5F-900F-E3BB5A838E2A}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
HKCU\Software\Poker 770
HKCU\Software\Titan Poker
HKCU\Software\VB and VBA Program Settings\eurobarre
HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKLM\Software\Classes\TypeLib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKLM\Software\GamesBarSetup
HKLM\Software\Microsoft\ESENT\Process\SweetIM
HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SweetIM
HKLM\Software\Poker 770
HKLM\Software\Titan Poker
HKLM\Software\Trymedia Systems
HKU\S-1-5-21-854245398-527237240-1801674531-1005\Software\Eorezo
HKU\S-1-5-21-854245398-527237240-1801674531-1005\Software\Titan Poker
HKCU\software\microsoft\internet explorer\searchscopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938}
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
.
C:\DOCUME~1\DEMANG~1\APPLIC~1\EoRezo
C:\Program Files\GamesBar
C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp\AskToolbarInstaller.exe
.
============== Scan additionnel ==============
.
.
* Mozilla FireFox Version 3.5.5 [fr] *
.
Nom du profil: 9ond8t8j.default (DEMANGEOT SolŠne)
.
(DEMANG~1, prefs.js) Browser.download.lastDir, C:\Documents and Settings\DEMANGEOT Solène\Bureau
(DEMANG~1, prefs.js) Browser.search.selectedEngine, DAEMON Search
(DEMANG~1, prefs.js) Browser.startup.homepage, hxxp://www.google.com/ig?source=gama&hl=fr
.
.
* Internet Explorer Version 7.0.5730.11 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Start Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Search Page:
Search Bar:
SearchAssistant:
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: hxxp://fr.msn.com/
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
============== Suspect (Cracks, Serials, ...) ==============
.
C:\Documents and Settings\DEMANGEOT SolŠne\Application Data\HouseCall 6.6\patch.exe
C:\Documents and Settings\DEMANGEOT SolŠne\Application Data\uTorrent\Big Fish Games - Wonderburg + Adnan_Boy 2008 + Precracked.torrent
C:\Documents and Settings\DEMANGEOT SolŠne\Application Data\uTorrent\BIGFISH universal patch (new patch working).torrent
C:\Documents and Settings\DEMANGEOT SolŠne\Application Data\uTorrent\BIGFISH universal patch (new patch working)_AMiNE.torrent
C:\Documents and Settings\DEMANGEOT SolŠne\Application Data\uTorrent\BigFish.Games.Plan.It.Green-PRECRACKED[DuTY].torrent
C:\Documents and Settings\DEMANGEOT SolŠne\Application Data\uTorrent\Farm Frenzy 2 cracked.torrent
C:\Documents and Settings\DEMANGEOT SolŠne\Local Settings\Application Data\piratrax\data_patch.tmp.doc.zip
.
===================================
.
4258 Octet(s) - C:\Ad-Report-SCAN[1].log
.
451 Fichier(s) - C:\DOCUME~1\DEMANG~1\LOCALS~1\Temp
5 Fichier(s) - C:\WINDOWS\Temp
.
1 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
0 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
.
Fin à: 16:44:38 | 13/11/2009 - SCAN[1]
.
============== E.O.F ==============
.
merci
geoffrey5
Messages postés
13732
Date d'inscription
dimanche 20 mai 2007
Statut
Contributeur sécurité
Dernière intervention
21 mai 2010
10
14 nov. 2009 à 02:01
14 nov. 2009 à 02:01
! Déconnectes toi et fermes toutes applications en cours !
● tutoriel nettoyage
● Relances "Ad-remover" : au menu principal choisi l'option "L" .
● Laisse travailler l'outil et ne touche plus à rien
● Postes le rapport qui apparait à la fin.
( le rapport est sauvegardé aussi sous C:\Ad-report(date).log )
(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
/!\ Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet "Fichier" , "Nouvelle tâche" , tapes explorer.exe et valides)
● tutoriel nettoyage
● Relances "Ad-remover" : au menu principal choisi l'option "L" .
● Laisse travailler l'outil et ne touche plus à rien
● Postes le rapport qui apparait à la fin.
( le rapport est sauvegardé aussi sous C:\Ad-report(date).log )
(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
/!\ Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet "Fichier" , "Nouvelle tâche" , tapes explorer.exe et valides)
suhelen
Messages postés
102
Date d'inscription
jeudi 12 novembre 2009
Statut
Membre
Dernière intervention
4 mars 2019
14 nov. 2009 à 14:23
14 nov. 2009 à 14:23
bonjour,
Il faut que je me déconnecte completement d'internet ?
et que je ferme tous meme antivirus ...?
merci
Il faut que je me déconnecte completement d'internet ?
et que je ferme tous meme antivirus ...?
merci
geoffrey5
Messages postés
13732
Date d'inscription
dimanche 20 mai 2007
Statut
Contributeur sécurité
Dernière intervention
21 mai 2010
10
14 nov. 2009 à 18:33
14 nov. 2009 à 18:33
Bonsoir,
oui ;)
oui ;)