Sujet Précédent Sujet Suivant

Lent

kirosene Messages postés 145 Date d'inscription   Statut Membre Dernière intervention   -  
 Utilisateur anonyme -
Bonjour,
mon ordi rame regardez les rapport random...
Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrateur at 2010-01-24 15:33:40
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 3 GB (5%) free of 60 GB
Total RAM: 1014 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:33:46, on 24/01/2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\My Lockbox\flockbox.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\VM_STI.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
C:\Program Files\PowerArchiver\PASTARTER.EXE
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE
C:\Documents and Settings\Administrateur.STANDARD\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
C:\Program Files\Rapidown\rapidown.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Documents and Settings\Administrateur.STANDARD\Application Data\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Hotspot Shield\bin\openvpnas.exe
C:\Program Files\Hotspot Shield\bin\openvpntray.exe
C:\Program Files\Hotspot Shield\bin\hsswd.exe
C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Administrateur.STANDARD\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrateur.STANDARD\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrateur.STANDARD\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrateur.STANDARD\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrateur.STANDARD\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrateur.STANDARD\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrateur.STANDARD\Mes documents\Downloads\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\HijackThis\Administrateur.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60001
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60001
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll
R3 - URLSearchHook: speed-bit Toolbar - {2ba521ac-b9b9-4433-ba45-dba2f02cba5a} - C:\Program Files\speed-bit\tbspe1.dll
R3 - URLSearchHook: (no name) - {0579B4B6-0293-4d73-B02D-5EBB0BA0F0A2} - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
R3 - URLSearchHook: MyPlayCity Toolbar - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll
O2 - BHO: Ask Search Assistant BHO - {0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2} - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
O2 - BHO: Mirar - {059E0B69-8722-40C5-987C-ABCAB34194D0} - C:\WINDOWS\system32\winhg75.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {140BD8E3-C167-11D4-B4A3-080000180323} - (no file)
O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll
O2 - BHO: speed-bit Toolbar - {2ba521ac-b9b9-4433-ba45-dba2f02cba5a} - C:\Program Files\speed-bit\tbspe1.dll
O2 - BHO: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: mysidesearch search enhancer - {3FE2007D-DB15-DD27-3562-436037EEEBC0} - C:\WINDOWS\system32\nprmhbwpemc.dll
O2 - BHO: MyPlayCity Toolbar - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll
O2 - BHO: Windows Live Family Safety Browser Helper Class - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {A6984C00-C6EB-11D4-B4A4-080000180323} - C:\PROGRA~1\Rapidown\rapi310.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Ask Toolbar BHO - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
O2 - BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\hssie\HssIE.dll
O3 - Toolbar: TextAloud - {F053C368-5458-45B2-9B4D-D8914BDDDBFF} - C:\PROGRA~1\TEXTAL~1\TAForIE.dll
O3 - Toolbar: speed-bit Toolbar - {2ba521ac-b9b9-4433-ba45-dba2f02cba5a} - C:\Program Files\speed-bit\tbspe1.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll
O3 - Toolbar: Ask Toolbar - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
O3 - Toolbar: Mirar - {059E0B68-8722-40C5-987C-ABCAB34194D0} - C:\WINDOWS\system32\winhg75.dll
O3 - Toolbar: MyPlayCity Toolbar - {4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - C:\Program Files\MyPlayCity\tbMyP1.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
O4 - HKLM\..\Run: [flockbox] C:\Program Files\My Lockbox\flockbox.exe /a
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE VIMICRO USB PC Camera
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [User Enc Proc Curb] C:\Documents and Settings\All Users.WINDOWS\Application Data\bias grim user enc\dumb free.exe
O4 - HKLM\..\Run: [repogobiw] Rundll32.exe "c:\windows\system32\jakejoki.dll",a
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SuperCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [L08FXLRD_9902343] "C:\Program Files\Microsoft Etudes\Microsoft Encarta 2008 - Études DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe"
O4 - HKCU\..\Run: [PowerArchiver Tray] C:\Program Files\PowerArchiver\PASTARTER.EXE
O4 - HKCU\..\Run: [E09FXLRD_13140890] "C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [svchost] C:\Documents and Settings\Administrateur.STANDARD\Bureau\KEYLOGGER\svchost.exe
O4 - HKCU\..\Run: [Skype] "C:\Documents and Settings\Administrateur.STANDARD\Bureau\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Administrateur.STANDARD\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKLM\..\Policies\Explorer\Run: [STANDARD] .vbe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Startup: Outil de notification Live Search.lnk = C:\Documents and Settings\Administrateur.STANDARD\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
O4 - Startup: Rapidown.lnk = C:\Program Files\Rapidown\rapidown.exe
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZRxdm427YYTN
O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users.WINDOWS\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: Baixar com o Rapidown... - C:\Program Files\Rapidown\rapidownGet.htm
O8 - Extra context menu item: Baixar tudo com o Rapidown... - C:\Program Files\Rapidown\rapidownGetAll.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?2a3d0d20f3cf4384bb457d80057d73d7
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?2a3d0d20f3cf4384bb457d80057d73d7
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Rapidown - {57E91B47-F40A-11D1-B792-444553540011} - C:\Program Files\Rapidown\rapidown.exe
O9 - Extra 'Tools' menuitem: Rapidown - {57E91B47-F40A-11D1-B792-444553540011} - C:\Program Files\Rapidown\rapidown.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: ShopperReports - Compare travel rates - {C5428486-50A0-4a02-9D20-520B59A9F9B3} - C:\WINDOWS\system32\shdocvw.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file:///C:/Program%20Files/Monopoly%20Here%20and%20Now/Images/armhelper.ocx
O17 - HKLM\System\CCS\Services\Tcpip\..\{62D06F79-EC9B-41CA-A863-0E21D6F792CA}: NameServer = 10.28.64.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: jitodujo.dll c:\windows\system32\jakejoki.dll
O21 - SSODL: molitegej - {76f1f185-30ea-42ac-b523-42aafde320e9} - c:\windows\system32\jakejoki.dll
O22 - SharedTaskScheduler: jugezatag - {76f1f185-30ea-42ac-b523-42aafde320e9} - c:\windows\system32\jakejoki.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - Unknown owner - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe (file missing)
O23 - Service: Hotspot Shield Service (HotspotShieldService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exe
O23 - Service: Hotspot Shield Routing Service (HssSrv) - AnchorFree Inc. - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
O23 - Service: Hotspot Shield Monitoring Service (HssWd) - Unknown owner - C:\Program Files\Hotspot Shield\bin\hsswd.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: wampapache - Unknown owner - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe (file missing)
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe (file missing)

--
End of file - 15810 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-682003330-500Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-682003330-500UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2}]
Ask Search Assistant BHO - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL [2006-12-20 66912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{059E0B69-8722-40C5-987C-ABCAB34194D0}]
Mirar - C:\WINDOWS\system32\winhg75.dll [2008-07-18 401408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{140BD8E3-C167-11D4-B4A3-080000180323}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
Winamp Toolbar Loader - C:\Program Files\Winamp Toolbar\winamptb.dll [2008-03-19 1267040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2ba521ac-b9b9-4433-ba45-dba2f02cba5a}]
speed-bit Toolbar - C:\Program Files\speed-bit\tbspe1.dll [2007-01-07 1470488]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3FE2007D-DB15-DD27-3562-436037EEEBC0}]
mysidesearch search enhancer - C:\WINDOWS\system32\nprmhbwpemc.dll [2009-12-19 581120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac}]
MyPlayCity Toolbar - C:\Program Files\MyPlayCity\tbMyP1.dll [2009-11-18 2166296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2009-08-05 113512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
Click-to-Call BHO - C:\Program Files\Windows Live\Messenger\wlchtc.dll [2009-02-06 73072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6984C00-C6EB-11D4-B4A4-080000180323}]
C:\PROGRA~1\Rapidown\rapi310.dll [2009-12-28 346624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-30 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-30 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA}]
Ask Toolbar BHO - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL [2007-01-07 262144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}]
Hotspot Shield Class - C:\Program Files\Hotspot Shield\hssie\HssIE.dll [2009-12-29 218160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{F053C368-5458-45B2-9B4D-D8914BDDDBFF} - TextAloud - C:\PROGRA~1\TEXTAL~1\TAForIE.dll [2005-09-19 509952]
{2ba521ac-b9b9-4433-ba45-dba2f02cba5a} - speed-bit Toolbar - C:\Program Files\speed-bit\tbspe1.dll [2007-01-07 1470488]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - Winamp Toolbar - C:\Program Files\Winamp Toolbar\winamptb.dll [2008-03-19 1267040]
{F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - Ask Toolbar - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL [2007-01-07 262144]
{059E0B68-8722-40C5-987C-ABCAB34194D0} - Mirar - C:\WINDOWS\system32\winhg75.dll [2008-07-18 401408]
{4724c5d8-dfa7-417a-a2f5-1eabfee9b4ac} - MyPlayCity Toolbar - C:\Program Files\MyPlayCity\tbMyP1.dll [2009-11-18 2166296]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2007-10-08 638976]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
"NeroFilterCheck"=C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2004-11-02 32768]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-30 149280]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2008-04-01 36352]
"fssui"=C:\Program Files\Windows Live\Family Safety\fsui.exe [2009-08-05 647520]
"flockbox"=C:\Program Files\My Lockbox\flockbox.exe [2007-12-14 1071472]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-09-08 289576]
"BigDogPath"=C:\WINDOWS\VM_STI.EXE [2004-06-09 40960]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-10-30 16269312]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-02-15 135168]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-15 159744]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-02-15 131072]
"User Enc Proc Curb"=C:\Documents and Settings\All Users.WINDOWS\Application Data\bias grim user enc\dumb free.exe []
"repogobiw"=c:\windows\system32\jakejoki.dll [1601-01-01 96256]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"STANDARD"=.vbe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]
"SuperCopier2.exe"=C:\Program Files\SuperCopier2\SuperCopier2.exe [2005-03-14 1057280]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe [2006-04-21 94208]
"L08FXLRD_9902343"=C:\Program Files\Microsoft Etudes\Microsoft Encarta 2008 - Études DVD\EDICT.EXE [2007-06-12 351000]
"CTSyncU.exe"=C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe [2006-06-12 700416]
"PowerArchiver Tray"=C:\Program Files\PowerArchiver\PASTARTER.EXE [2007-11-30 140328]
"E09FXLRD_13140890"=C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE [2008-05-28 351000]
"svchost"=C:\Documents and Settings\Administrateur.STANDARD\Bureau\KEYLOGGER\svchost.exe []
"Skype"=C:\Documents and Settings\Administrateur.STANDARD\Bureau\Phone\Skype.exe [2009-10-09 25623336]
"Google Update"=C:\Documents and Settings\Administrateur.STANDARD\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-01-24 135664]

C:\Documents and Settings\Administrateur.STANDARD\Menu Démarrer\Programmes\Démarrage
Outil de notification Live Search.lnk - C:\Documents and Settings\Administrateur.STANDARD\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
Rapidown.lnk - C:\Program Files\Rapidown\rapidown.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="jitodujo.dll c:\windows\system32\jakejoki.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2007-07-27 118784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2006-06-19 312112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
molitegej - {76f1f185-30ea-42ac-b523-42aafde320e9} - c:\windows\system32\jakejoki.dll [1601-01-01 96256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
jugezatag - {76f1f185-30ea-42ac-b523-42aafde320e9} - c:\windows\system32\jakejoki.dll [1601-01-01 96256]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
nwprovau
"notification packages"=scecli
ropenoya.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, zpasspc.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceClassicControlPanel"=
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\FrostWire\FrostWire.exe"="C:\Program Files\FrostWire\FrostWire.exe:*:Enabled:FrostWire"
"C:\Program Files\EA GAMES\La Bataille pour la Terre du Milieu(tm)\game.dat"="C:\Program Files\EA GAMES\La Bataille pour la Terre du Milieu(tm)\game.dat:*:Enabled:La Bataille pour la Terre du Milieu(tm)"
"C:\Program Files\aMSN\bin\wish.exe"="C:\Program Files\aMSN\bin\wish.exe:*:Enabled:Wish Application"
"C:\Program Files\aMSN\amsn.exe"="C:\Program Files\aMSN\amsn.exe:*:Enabled:aMSN"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Microsoft Games\Age of Empires III\age3.exe"="C:\Program Files\Microsoft Games\Age of Empires III\age3.exe:*:Enabled:Age of Empires 3"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Vuze\Azureus.exe"="C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Phone\Skype.exe"="C:\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\KONAMI\Pro Evolution Soccer 2009\pes2009.exe"="C:\Program Files\KONAMI\Pro Evolution Soccer 2009\pes2009.exe:*:Enabled:Pro Evolution Soccer 2009"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\wamp\bin\apache\Apache2.2.11\bin\httpd.exe"="C:\wamp\bin\apache\Apache2.2.11\bin\httpd.exe:*:Enabled:Apache HTTP Server"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"
"C:\Program Files\Firaxis Games\Sid Meier's Civilization 4\Civilization4.exe"="C:\Program Files\Firaxis Games\Sid Meier's Civilization 4\Civilization4.exe:*:Enabled:Sid Meier's Civilization 4"
"C:\Program Files\Firaxis Games\Sid Meier's Civilization 4\Beyond the Sword\Civ4BeyondSword.exe"="C:\Program Files\Firaxis Games\Sid Meier's Civilization 4\Beyond the Sword\Civ4BeyondSword.exe:*:Enabled:Sid Meier's Civilization 4 Beyond the Sword"
"C:\Program Files\Firaxis Games\Sid Meier's Civilization 4\Beyond the Sword\Civ4BeyondSword_PitBoss.exe"="C:\Program Files\Firaxis Games\Sid Meier's Civilization 4\Beyond the Sword\Civ4BeyondSword_PitBoss.exe:*:Enabled:Sid Meier's Civilization 4 Beyond the Sword Pitboss"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
"C:\Documents and Settings\Administrateur.STANDARD\Bureau\Skype.exe"="C:\Documents and Settings\Administrateur.STANDARD\Bureau\Skype.exe:*:Enabled:Skype"
"C:\Documents and Settings\Administrateur.STANDARD\Bureau\Plugin Manager\skypePM.exe"="C:\Documents and Settings\Administrateur.STANDARD\Bureau\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Documents and Settings\Administrateur.STANDARD\Bureau\Phone\Skype.exe"="C:\Documents and Settings\Administrateur.STANDARD\Bureau\Phone\Skype.exe:*:Enabled:Skype"
"C:\windows\explorer.exe"="C:\windows\explorer.exe:*:Enabled:Explorer"
"C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe"="C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe:*:Enabled:sm56hlpr"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5e9ff1b1-957b-11de-9e4e-003018a57269}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL XVIRUS_LEM3allem.vbs

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5e9ff1b9-957b-11de-9e4e-003018a57269}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL XVIRUS_LEM3allem.vbs

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8b63912c-8fcd-11db-a6da-001921e1b989}]
shell\AutoRun\command - wscript.exe antinul.vbe
shell\open\command - wscript.exe antinul.vbe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a210abb2-b405-11de-9e9b-003018a57269}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL XVIRUS_LEM3allem.vbs

======List of files/folders created in the last 1 months======

2010-01-24 15:33:40 ----D---- C:\rsit
2010-01-23 10:06:05 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\AlawarGameBox
2010-01-22 11:28:03 ----D---- C:\Documents and Settings\Administrateur.STANDARD\Application Data\Bandoo
2010-01-22 11:27:23 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Bandoo
2010-01-22 11:27:18 ----D---- C:\Program Files\Bandoo
2010-01-20 20:05:23 ----D---- C:\Documents and Settings\Administrateur.STANDARD\Application Data\FreeVideoConverter
2010-01-14 15:14:01 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-01-14 15:13:29 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2009-12-29 15:57:41 ----D---- C:\Program Files\WeFi
2009-12-29 15:53:04 ----D---- C:\Documents and Settings\Administrateur.STANDARD\Application Data\OpenCandy
2009-12-29 04:14:31 ----D---- C:\Documents and Settings\Administrateur.STANDARD\Application Data\WinRAR
2009-12-29 04:14:18 ----D---- C:\Program Files\WinRAR
2009-12-28 22:51:41 ----D---- C:\Program Files\Rapidown
2009-12-28 22:13:18 ----D---- C:\Setup_QI98_100
2009-12-28 21:36:20 ----D---- C:\Documents and Settings\Administrateur.STANDARD\Application Data\QUAD Utilities
2009-12-28 16:55:38 ----D---- C:\Program Files\MegaDev
2009-12-28 00:29:20 ----D---- C:\Program Files\ma-config.com
2009-12-28 00:29:20 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\ma-config.com
2009-12-28 00:17:59 ----D---- C:\SDFix

======List of files/folders modified in the last 1 months======

2010-01-24 15:33:44 ----D---- C:\WINDOWS\Prefetch
2010-01-24 15:25:06 ----A---- C:\WINDOWS\NeroDigital.ini
2010-01-24 15:22:07 ----RD---- C:\Program Files
2010-01-24 15:22:07 ----D---- C:\WINDOWS\system32
2010-01-24 15:18:48 ----D---- C:\WINDOWS\temp
2010-01-24 15:16:54 ----HD---- C:\WINDOWS\inf
2010-01-24 15:16:53 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-24 15:07:39 ----SD---- C:\WINDOWS\Tasks
2010-01-24 15:07:01 ----D---- C:\Program Files\Mozilla Firefox
2010-01-24 15:05:12 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-01-24 14:23:31 ----D---- C:\Program Files\Hotspot Shield
2010-01-24 14:23:31 ----D---- C:\Hotspot Shield
2010-01-24 14:01:02 ----SHD---- C:\WINDOWS\Installer
2010-01-24 13:59:02 ----D---- C:\Documents and Settings\Administrateur.STANDARD\Application Data\Skype
2010-01-23 11:15:47 ----D---- C:\windows
2010-01-23 11:14:51 ----SHD---- C:\WINDOWS\CSC
2010-01-23 10:06:05 ----D---- C:\Program Files\Alawar
2010-01-23 10:06:02 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\AlawarWrapper
2010-01-23 10:05:04 ----D---- C:\WINDOWS\system32\DllCache
2010-01-23 10:04:58 ----D---- C:\Program Files\Internet Explorer
2010-01-23 10:04:42 ----D---- C:\WINDOWS\ie8updates
2010-01-23 10:04:31 ----HD---- C:\WINDOWS\$hf_mig$
2010-01-22 11:23:54 ----D---- C:\Program Files\PowerArchiver
2010-01-22 08:45:29 ----D---- C:\Program Files\Microsoft Silverlight
2010-01-22 07:56:27 ----SHD---- C:\Config.Msi
2010-01-21 16:36:24 ----D---- C:\Documents and Settings\Administrateur.STANDARD\Application Data\skypePM
2010-01-21 14:47:50 ----D---- C:\Program Files\Fichiers communs\Skype
2010-01-21 14:47:44 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Skype
2010-01-21 14:47:38 ----D---- C:\Program Files\Skype
2010-01-21 14:29:07 ----A---- C:\WINDOWS\win.ini
2010-01-20 15:14:31 ----A---- C:\WINDOWS\system32\u_nprmhbwpemc.dll.exe
2010-01-17 18:54:34 ----D---- C:\Documents and Settings\Administrateur.STANDARD\Application Data\Azureus
2010-01-17 14:26:23 ----D---- C:\WINDOWS\system32\drivers
2010-01-14 16:31:24 ----D---- C:\WINDOWS\AppPatch
2010-01-14 15:14:06 ----A---- C:\WINDOWS\imsins.BAK
2009-12-31 16:54:17 ----D---- C:\WINDOWS\Minidump
2009-12-28 22:21:54 ----A---- C:\WINDOWS\ST6UNST.EXE
2009-12-28 16:39:12 ----D---- C:\Program Files\Messenger Plus! Live

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-04 40320]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-08-05 54752]
R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2004-08-03 88448]
R2 NwlnkNb;NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-09-28 63232]
R2 NwlnkSpx;Protocole NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-09-28 55936]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-11-03 4394496]
R3 MODEMCSA;Périphérique de filtrage de flux Unimodem; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 NWRDR;NetWare Rdr; C:\WINDOWS\system32\DRIVERS\nwrdr.sys [2006-10-13 163584]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856]
R3 smserial;smserial; C:\WINDOWS\system32\DRIVERS\smserial.sys [2007-10-08 984832]
R3 taphss;Anchorfree HSS Adapter; C:\WINDOWS\system32\DRIVERS\taphss.sys [2009-11-12 32768]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-04 60800]
S3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-07-27 2371584]
S3 catchme;catchme; \??\C:\DOCUME~1\ADMINI~1.STA\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-04-23 26176]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-04 61824]
S3 Profos;Profos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\profos.sys []
S3 QV2KUX;Appareil photo numérique Casio; C:\WINDOWS\system32\DRIVERS\qv2kux.sys [2001-08-17 3328]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 Trufos;Trufos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\trufos.sys []
S3 tunmp;Pilote de carte miniport Tun Microsoft; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2004-08-04 12416]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2008-09-05 36864]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-03 17024]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2006-07-10 244864]
S3 ZSMC302;VIMICRO USB PC Camera; C:\WINDOWS\System32\Drivers\usbVM31b.sys [2004-08-17 91263]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 mchInjDrv;mchInjDrv; \??\C:\DOCUME~1\ADMINI~1.STA\LOCALS~1\Temp\mc21.tmp []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-09-05 116040]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\system32\CTsvcCDA.exe [1999-12-12 44032]
R2 HotspotShieldService;Hotspot Shield Service; C:\Program Files\Hotspot Shield\bin\openvpnas.exe [2010-01-09 234032]
R2 HssSrv;Hotspot Shield Routing Service; C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe [2010-01-09 331824]
R2 HssWd;Hotspot Shield Monitoring Service; C:\Program Files\Hotspot Shield\bin\hsswd.exe [2010-01-09 285744]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-30 153376]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-09-08 536872]
S2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2007-07-27 483328]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -s []
S2 NWCWorkstation;Service client pour NetWare; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
S2 NwSapAgent;Agent SAP; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 fsssvc;Service Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S3 HssTrayService;Hotspot Shield Tray Service; C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE [2010-01-09 57640]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-12-17 243056]
S3 wampapache;wampapache; c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe -k runservice []
S3 wampmysqld;wampmysqld; c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe wampmysqld []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

info.txt logfile of random's system information tool 1.06 2010-01-24 15:33:50

======Uninstall list======

-->"C:\Program Files\Creative Installation Information\CREATIVE_MEDIASOURCE_U\Setup.exe" /remove /l0x040c
-->"C:\Program Files\Creative Installation Information\E-CENTER_NET_CONTENT_U\Setup.exe" /remove /l0x040c
-->"C:\Program Files\Creative Installation Information\E-CENTER_PLUGIN_CDBURNER_U\Setup.exe" /remove /l0x040c
-->"C:\Program Files\Creative Installation Information\E-CENTER_PLUGIN_MTP_U\Setup.exe" /remove /l0x040c
-->"C:\Program Files\Creative Installation Information\E-CENTER_PLUGIN_NOMADJUKEBOXTYPE2_U\Setup.exe" /remove /l0x040c
-->"C:\Program Files\Creative Installation Information\MEDIASOURCE_PLAYER_SKINPACK_U\Setup.exe" /remove /l0x040c
-->C:\Program Files\Nero\Nero 7\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
-->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
-->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->C:\WINDOWS\UNRecode.exe /UNINSTALL
-->MsiExec.exe /I{0F122737-72B2-4095-8B3E-7AAE753DFD3D}
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4E120C99-63A0-470C-B44A-02ED9969A49D}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4E120C99-63A0-470C-B44A-02ED9969A49D}\setup.exe" -l0x40c /remove
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{57FA4E0F-82C9-417D-87BC-0186D6CB7A44}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63A317D0-60A6-43FC-848A-9FE4A53B29CE}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x40c /remove
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{98181885-5B28-4280-9B56-452FF877D5B9}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{98181885-5B28-4280-9B56-452FF877D5B9}\setup.exe" -l0x40c /remove
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A0B5225-B59B-4D72-B3FE-71AAA693A8E2}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A0B5225-B59B-4D72-B3FE-71AAA693A8E2}\setup.exe" -l0x40c /remove
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A9BB081B-C020-4D02-A763-D32204D2563D}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A9BB081B-C020-4D02-A763-D32204D2563D}\setup.exe" -l0x40c /remove
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C029DB0E-C59F-417A-90F8-88FD5B2C4AE7}\setup.exe" -l0x40c
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
3DRT PingPong Shareware (Désinstaller)-->C:\Program Files\TLKGAMES\3DRT PingPong Shareware\uninstall.exe
471 Jeux - CD-ROM UpToTen-->C:\WINDOWS\unvise32.exe C:\Program Files\UpToTen\uninstal.log
ãæÓæÚÉ åá ÊÚáã¿-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\DoYouKnow\Uninst.isu"
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81200000003}
Adobe SVG Viewer 3.0-->C:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Winstall.exe -u -fC:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Install.log
Age of Empires III-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}
aMSN 0.97.2-->C:\Program Files\aMSN\uninstall.exe
Amusive Chess-->"C:\Program Files\MyPlayCity.com\Amusive Chess\unins000.exe"
Animal Rehouse-->"C:\Program Files\MyPlayCity.com\Animal Rehouse\unins000.exe"
Apple Mobile Device Support-->MsiExec.exe /I{C7C895CA-331B-4D7D-A0FB-D3BC637949F9}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Ask Toolbar-->rundll32 C:\PROGRA~1\AskSBar\bar\1.bin\AskSBar.dll,O
Assistant de connexion Windows Live-->MsiExec.exe /I{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Audacity 1.2.6-->"C:\Program Files\Audacity\unins000.exe"
AudibleManager-->C:\Program Files\Audible\Bin\Upgrade.exe /Uninstall
Bandoo-->C:\Program Files\Bandoo\PreUninstall.exe
Barre d'outils Outlook de Windows Live (Windows Live Toolbar)-->MsiExec.exe /X{4002F73D-EBB3-4EA1-A2FF-DBCB4529759E}
Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{51F366F4-C2E4-429A-866A-59C885ED42FD}
Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}
Canon i560-->C:\WINDOWS\system32\CNMCP58.exe "-PRINTERNAMECanon i560" "-HELPERDLLC:\BJPrinter\CNMWINDOWS\Canon i560 Installer\Inst2\cnmis.dll" "-RCDLLC:\BJPrinter\CNMWINDOWS\Canon i560 Installer\Inst2\cnmi040c.dll"
Combatant Area-->"C:\Program Files\MyPlayCity.com\Combatant Area\unins000.exe"
Contextual Tool Adzgalore-->C:\WINDOWS\system32\baa34cac-5a33-f34a-5031-380311336957.exe
Convert-->MsiExec.exe /X{23970E31-948B-466E-8376-1224D32FDF0C}
Correctif Lecteur Windows Media 10 - KB895316-->"C:\WINDOWS\$NtUninstallKB895316$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB935448)-->"C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe"
Correctif Windows XP - KB873339-->C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
Correctif Windows XP - KB885835-->C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
Correctif Windows XP - KB885836-->C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
Correctif Windows XP - KB886185-->C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
Correctif Windows XP - KB888302-->C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
Correctif Windows XP - KB890859-->"C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
Correctif Windows XP - KB891781-->C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
Creative MediaSource 5-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}\SETUP.EXE" -l0x40c /remove
Creative System Information-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63A317D0-60A6-43FC-848A-9FE4A53B29CE}\setup.exe" -l0x40c /remove
Creative ZEN Vision W-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{569C24E9-1D28-4738-99EF-6BEC75DC5F6A}\SETUP.EXE" -l0x40c /remove
Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{175B7C4A-CAF8-437A-B597-73E0D2D970FE}
EA SPORTS online 2007-->C:\Program Files\EA SPORTS\EA SPORTS online\EASOUNInstaller.exe
ETAJV GAMEBOY 3.89-->C:\Program Files\ETAJV GAMEBOY\uninst.exe
Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{D518AD32-C710-4616-BA0D-D4B1FA5F82E8}
F1 Racing-->"C:\Program Files\MyPlayCity.com\F1 Racing\unins000.exe"
Farm Frenzy - Pizza Party!-->C:\Program Files\Alawar\FarmFrenzyPizzaParty\Uninstall.exe
FBrowsingAdvisor-->"C:\Program Files\FBrowsingAdvisor\unins000.exe"
FrostWire 4.17.0-->C:\Program Files\FrostWire\Uninstall.exe
Galerie de photos Windows Live-->MsiExec.exe /X{B131E59D-202C-43C6-84C9-68F0C37541F1}
Gestionnaire de disques amovible Creative-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{57FA4E0F-82C9-417D-87BC-0186D6CB7A44}\setup.exe" -l0x40c /remove
GTA VC - NFS Undeground-->"C:\Program Files\GTA VC - NFS Undeground\unins001.exe"
GVOX Encore 32 v4.5-->C:\PROGRA~1\GVOX\Encore\UNWISE.EXE C:\PROGRA~1\GVOX\Encore\INSTALL.LOG
High Definition Audio - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix for Windows XP (KB915865)-->"C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe"
Hotspot Shield 1.37-->C:\Program Files\Hotspot Shield\Uninstall.exe
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
Intel(R) Graphics Media Accelerator Driver-->C:\WINDOWS\system32\igxpun.exe -uninstall
iTunes-->MsiExec.exe /I{EA418519-2160-43A0-AABD-6608DDD8D87F}
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216015FF}
Java(TM) 6 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160060}
Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
karimTheme-->C:\Documents and Settings\Administrateur.STANDARD\Mes documents\My TopThemes\My Themes\UninstTheme.exe "C:\Documents and Settings\Administrateur.STANDARD\Mes documents\My TopThemes\My Themes\karim.theme"
KeyGen RC4 v3.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{769CAC9A-D3DE-4C1C-9A52-79BF9DCEB1C0}\Setup.exe" -l0x9
K-Lite Mega Codec Pack 3.3.5-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
La Bataille pour la Terre du Milieu(tm)-->C:\Program Files\EA GAMES\La Bataille pour la Terre du Milieu(tm)\EAUninstall.exe
Learn French Vocabulary-->MsiExec.exe /I{EBE43A40-9794-482D-A146-09E027763545}
Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Les Indispensables Éducation pour Microsoft Office-->MsiExec.exe /X{75F3A4B2-F6E8-434D-A2EF-DBBC016C6CB2}
LimeWire PRO 4.12.3-->"C:\Program Files\LimeWire\uninstall.exe"
Logiciel d'archivage WinRAR-->C:\Program Files\WinRAR\uninstall.exe
LogMeIn Hamachi-->C:\WINDOWS\system32\\msiexec.exe /i {067EC517-9731-43FD-B4D5-296EE0027BBB} REMOVE=ALL
LogMeIn Hamachi-->MsiExec.exe /I{067EC517-9731-43FD-B4D5-296EE0027BBB}
Ma-Config.com-->MsiExec.exe /X{18754BA4-4F0C-4E6E-888B-9496AFA05F43}
MegaTrainer eXperience V1.0.0.5-->"C:\Program Files\MegaDev\MD-Trainers\MT-X\unins000.exe"
Messenger Plus! Live & Sponsor (CiD)-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 1.1 Security Update (KB953297)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - FRA-->MsiExec.exe /I{3F7924B9-D148-3141-87B1-68F36043A940}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - FRA-->MsiExec.exe /I{511DF669-2930-30C0-8EB6-552887E29EC8}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 Language Pack - fra-->MsiExec.exe /I{5B76AEA2-D4E5-3B55-B965-ACC36AE0EAFC}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Encarta 2009 - Collection-->MsiExec.exe /I{09180081-2C94-4A67-8E55-8483C019C7D2}
Microsoft Encarta Maths-->MsiExec.exe /I{07183840-959A-4B0D-8825-2C533F0DDB19}
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Live Add-in 1.3-->MsiExec.exe /I{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
Microsoft Office Outlook Connector-->MsiExec.exe /I{95120000-0122-040C-0000-0000000FF1CE}
Microsoft Office Profess

3 réponses

Réponse 1 / 3
Utilisateur anonyme
 
Bonjour
Plusieurs infections

Tu as une infection LOP, ce qui fait apparaitre des pop-up CID
Elles s'installent par ces programmes qu'il éviter à tout prix:
* Le sponsor de Messenger Plus!
* Bittorent
* BitDownload
* BitGrabber
* NetPumper
* BitRoll
* TorrentQ
* Torrent101

Télécharge Lop S&D(de Eric_71 et Angeldark) sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
http://eric71.geekstogo.com/tools/LopSD.exe

* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
0
Réponse 2 / 3
kirosene Messages postés 145 Date d'inscription   Statut Membre Dernière intervention   14
 
le voici le rapport:

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.20GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Administrateur ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:58 Go (Free:3 Go)
D:\ (Local Disk) - NTFS - Total:83 Go (Free:27 Go)
E:\ (Local Disk) - NTFS - Total:91 Go (Free:45 Go)
F:\ (CD or DVD)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 24/01/2010|16:18 )

--------------------\\ Listing des dossiers dans APPLIC~1

[08/12/2009|21:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[14/04/2008|18:09] C:\DOCUME~1\ADMINI~1\APPLIC~1\AdobeUM
[08/12/2009|21:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\Creative
[08/04/2008|20:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
[06/04/2008|20:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\Help
[28/12/2006|10:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[08/12/2009|21:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[08/12/2009|21:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[08/12/2009|21:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\Nero
[09/12/2009|12:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\Skype

[20/12/2006|04:12] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\.wyzo
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Ace
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Adobe
[09/12/2009|12:20] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Ahead
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Apple Computer
[21/12/2006|09:04] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\AVGTOOLBAR
[17/01/2010|18:54] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Azureus
[09/12/2009|12:21] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Babylon
[22/01/2010|11:28] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Bandoo
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Command & Conquer 3 Les guerres du Tiberium
[09/12/2009|12:21] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Command & Conquer 3 Tiberium Wars
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Command and Conquer 3 Tiberium Wars
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Creative
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\CyberLink
[26/12/2006|04:29] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\FlashFXP
[20/01/2010|20:05] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\FreeVideoConverter
[09/12/2009|12:21] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\FrostWire
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\funkitron
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Google
[20/12/2006|00:02] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Help
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Identities
[27/03/2009|18:45] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\InstallShield
[09/12/2009|12:21] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\La Bataille pour la Terre du Milieu
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Leadertech
[09/12/2009|12:21] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\LimeWire
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Macromedia
[09/12/2009|12:22] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Media Player Classic
[08/12/2009|21:07] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Meridian93
[09/12/2009|12:22] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Microsoft
[09/12/2009|12:22] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Mozilla
[10/12/2009|14:14] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\My Games
[16/12/2009|19:25] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\online up eggs
[29/12/2009|15:53] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\OpenCandy
[08/12/2009|21:08] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Opera
[08/12/2009|21:08] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\PC Tools
[28/12/2009|21:36] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\QUAD Utilities
[22/12/2006|11:50] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Real
[08/12/2009|21:08] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\SecuROM
[24/01/2010|13:59] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Skype
[21/01/2010|16:36] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\skypePM
[08/12/2009|21:08] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\SolidWorks
[09/12/2009|12:22] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\SpinTop
[08/12/2009|21:08] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Sun
[09/12/2009|12:22] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\TeamViewer
[08/12/2009|21:09] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Uniblue
[29/12/2009|04:14] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\WinRAR
[10/04/2009|14:34] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Zylom

[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Babylon
[09/12/2009|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ConeXware
[26/07/2007|08:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Creative
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[28/12/2006|15:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
[09/12/2009|12:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[28/12/2006|15:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[09/12/2009|12:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSScanAppDataDir
[09/12/2009|12:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MumboJumbo
[28/12/2006|15:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[09/12/2009|12:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[03/03/2008|16:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[09/12/2009|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[22/12/2006|14:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[09/12/2009|12:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanAppDataDir
[09/12/2009|12:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanWizard
[20/12/2006|03:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[09/12/2009|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[09/12/2009|12:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[09/12/2009|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[09/12/2009|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[20/12/2006|01:04] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[26/04/2008|09:20] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
[09/01/2007|04:58] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Age of Empires 3
[23/01/2010|10:06] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\AlawarGameBox
[23/01/2010|10:06] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\AlawarWrapper
[20/12/2006|02:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[20/12/2006|01:03] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[28/07/2009|08:56] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avg8
[07/01/2007|11:39] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Azureus
[26/12/2006|03:35] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Babylon
[22/01/2010|11:27] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Bandoo
[30/10/2009|13:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\bias grim user enc
[03/04/2009|16:04] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\BigFishGamesCache
[25/12/2006|03:44] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\BOONTY
[06/05/2009|20:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ConeXware
[26/12/2006|09:34] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Creative
[26/04/2008|09:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\CyberLink
[05/01/2007|08:08] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\DVD X Studios
[04/04/2009|14:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\FarmFrenzy-PizzaParty
[29/12/2006|10:31] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
[26/12/2006|04:24] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Grisoft
[24/08/2009|19:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\KONAMI
[28/12/2009|00:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ma-config.com
[02/11/2009|12:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Messenger Plus!
[16/12/2009|16:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Meta Knob Soft Soap
[20/12/2006|02:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MGS
[20/12/2006|02:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microgaming
[29/07/2009|09:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[22/12/2006|03:54] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MSScanAppDataDir
[21/12/2006|23:54] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\phenomedia
[03/02/2007|08:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Real
[21/01/2010|14:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Skype
[24/01/2010|16:16] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Spybot - Search & Destroy
[04/04/2009|14:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TEMP
[05/01/2007|10:22] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Trymedia
[22/12/2006|11:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Winamp Toolbar
[20/12/2006|19:03] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
[26/04/2008|09:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Live Toolbar
[06/05/2009|19:36] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WinZip
[20/12/2006|19:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WLInstaller
[10/04/2009|14:34] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Zylom

[12/05/2007|10:37] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[28/07/2009|08:56] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

[09/12/2009|12:43] C:\DOCUME~1\famille\APPLIC~1\Adobe
[09/12/2009|12:45] C:\DOCUME~1\famille\APPLIC~1\ATI
[09/12/2009|12:43] C:\DOCUME~1\famille\APPLIC~1\Babylon
[09/12/2009|12:45] C:\DOCUME~1\famille\APPLIC~1\CyberLink
[01/03/2008|13:29] C:\DOCUME~1\famille\APPLIC~1\Google
[09/12/2009|12:45] C:\DOCUME~1\famille\APPLIC~1\Identities
[09/12/2009|12:43] C:\DOCUME~1\famille\APPLIC~1\Macromedia
[09/12/2009|12:45] C:\DOCUME~1\famille\APPLIC~1\Microsoft
[09/12/2009|12:43] C:\DOCUME~1\famille\APPLIC~1\PC Suite
[09/12/2009|12:45] C:\DOCUME~1\famille\APPLIC~1\Yahoo!

[09/12/2009|12:45] C:\DOCUME~1\INVIT~1\APPLIC~1\Creative
[02/02/2008|10:46] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
[09/12/2009|12:45] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[09/12/2009|12:45] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[09/12/2009|12:45] C:\DOCUME~1\INVIT~1\APPLIC~1\PC Suite
[09/12/2009|12:45] C:\DOCUME~1\INVIT~1\APPLIC~1\ScanSoft

[12/05/2007|10:37] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[28/07/2009|08:56] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft

[09/12/2009|12:45] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[28/07/2009|08:56] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[24/01/2010 16:12][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-682003330-500UA.job
[24/01/2010 15:12][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-682003330-500Core.job
[24/01/2010 15:05][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/09/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[11/04/2007|07:45] C:\Program Files\3DO
[26/04/2008|09:19] C:\Program Files\Adobe
[23/01/2010|10:06] C:\Program Files\Alawar
[22/12/2006|08:43] C:\Program Files\aMSN
[20/12/2006|00:57] C:\Program Files\Apple Software Update
[22/12/2006|23:41] C:\Program Files\Audacity
[14/04/2008|20:25] C:\Program Files\Audible
[21/12/2006|09:04] C:\Program Files\AVG
[22/01/2010|11:37] C:\Program Files\Bandoo
[23/12/2006|19:46] C:\Program Files\BitDefender
[20/12/2006|01:03] C:\Program Files\Bonjour
[22/12/2006|12:26] C:\Program Files\Boonty
[25/12/2006|03:44] C:\Program Files\BoontyGames
[23/12/2006|19:33] C:\Program Files\Caffe
[09/04/2008|20:53] C:\Program Files\Canon
[14/11/2009|14:41] C:\Program Files\Cirle Developement
[20/12/2006|01:14] C:\Program Files\Common Files
[28/12/2006|09:59] C:\Program Files\ComPlus Applications
[25/04/2009|14:16] C:\Program Files\Conduit
[14/04/2008|20:25] C:\Program Files\Creative
[14/04/2008|20:20] C:\Program Files\Creative Installation Information
[28/12/2006|15:03] C:\Program Files\CyberLink
[21/12/2006|03:58] C:\Program Files\Data
[21/12/2006|02:47] C:\Program Files\Design Science
[22/01/2007|05:59] C:\Program Files\directx
[26/12/2006|00:18] C:\Program Files\DiskTrix
[28/12/2006|15:01] C:\Program Files\DivX
[20/12/2006|00:05] C:\Program Files\DoYouKnow
[05/04/2009|15:02] C:\Program Files\EA GAMES
[20/12/2006|01:59] C:\Program Files\EA SPORTS
[23/12/2006|00:19] C:\Program Files\Electronic Arts
[27/12/2006|14:43] C:\Program Files\eMule
[31/12/2006|13:37] C:\Program Files\ETAJV GAMEBOY
[07/05/2009|20:35] C:\Program Files\Farm Frenzy Pizza Party
[25/12/2006|03:32] C:\Program Files\Feneris
[27/07/2009|15:44] C:\Program Files\Fichiers communs
[11/07/2009|12:58] C:\Program Files\Firaxis Games
[20/12/2006|00:07] C:\Program Files\FlashGet
[09/08/2009|16:52] C:\Program Files\FrostWire
[07/05/2009|20:35] C:\Program Files\Galaxy Online
[20/12/2006|00:45] C:\Program Files\GameShadow
[20/12/2006|00:46] C:\Program Files\GameSpy Arcade
[26/12/2006|10:33] C:\Program Files\GigaTribe
[28/12/2006|15:07] C:\Program Files\Golden Al-Wafi Translator
[20/12/2006|00:29] C:\Program Files\Google
[11/06/2009|17:11] C:\Program Files\GTA VC - NFS Undeground
[20/12/2006|08:25] C:\Program Files\GVOX
[24/01/2010|14:23] C:\Program Files\Hotspot Shield
[10/12/2009|14:17] C:\Program Files\InstallShield Installation Information
[23/01/2010|10:04] C:\Program Files\Internet Explorer
[20/12/2006|01:03] C:\Program Files\iPod
[20/12/2006|01:04] C:\Program Files\iTunes
[30/08/2009|17:54] C:\Program Files\Java
[20/12/2006|13:01] C:\Program Files\JoshMadison
[18/12/2009|13:44] C:\Program Files\Kaspersky Lab
[03/02/2007|08:47] C:\Program Files\K-Lite Codec Pack
[24/08/2009|19:12] C:\Program Files\KONAMI
[28/12/2006|15:25] C:\Program Files\Learning Essentials
[08/12/2009|21:13] C:\Program Files\LimeWire
[28/12/2009|00:29] C:\Program Files\ma-config.com
[28/12/2009|16:55] C:\Program Files\MegaDev
[28/12/2009|16:39] C:\Program Files\Messenger Plus! Live
[03/10/2009|21:25] C:\Program Files\Microsoft
[07/05/2009|12:44] C:\Program Files\Microsoft Encarta
[28/12/2006|15:28] C:\Program Files\Microsoft Etudes
[27/07/2009|15:48] C:\Program Files\microsoft frontpage
[07/01/2007|08:52] C:\Program Files\Microsoft Games
[26/12/2006|03:42] C:\Program Files\Microsoft Office
[03/10/2009|21:25] C:\Program Files\Microsoft Office Outlook Connector
[22/01/2010|08:45] C:\Program Files\Microsoft Silverlight
[20/12/2006|00:37] C:\Program Files\Microsoft SQL Server Compact Edition
[03/10/2009|21:19] C:\Program Files\Microsoft Sync Framework
[28/12/2006|15:03] C:\Program Files\Microsoft Visual Studio
[26/04/2008|09:27] C:\Program Files\Microsoft Works
[26/04/2008|09:28] C:\Program Files\Microsoft.NET
[11/04/2009|12:47] C:\Program Files\Monopoly
[28/12/2006|10:56] C:\Program Files\Motorola
[26/04/2008|08:14] C:\Program Files\Movie Maker
[24/01/2010|15:07] C:\Program Files\Mozilla Firefox
[21/12/2006|00:05] C:\Program Files\MSBuild
[22/01/2007|06:00] C:\Program Files\MSN Gaming Zone
[28/12/2006|10:41] C:\Program Files\MSN Messenger
[07/10/2008|20:29] C:\Program Files\MSXML 4.0
[21/12/2006|00:01] C:\Program Files\MSXML 6.0
[20/12/2006|00:26] C:\Program Files\My Lockbox
[18/11/2009|19:34] C:\Program Files\MyPlayCity
[15/12/2009|23:52] C:\Program Files\MyPlayCity.com
[26/04/2008|09:07] C:\Program Files\Nero
[27/07/2009|15:48] C:\Program Files\netmeeting
[21/12/2006|03:50] C:\Program Files\o
[14/11/2009|14:41] C:\Program Files\online up eggs
[03/07/2009|12:23] C:\Program Files\Opera
[18/08/2009|12:26] C:\Program Files\Outlook Express
[24/12/2006|22:12] C:\Program Files\PopCap Games
[22/01/2010|11:23] C:\Program Files\PowerArchiver
[28/08/2009|22:06] C:\Program Files\Project64 1.6
[31/05/2009|21:53] C:\Program Files\Pyro Studios
[20/12/2006|00:58] C:\Program Files\QuickTime
[29/12/2009|15:25] C:\Program Files\Rapidown
[27/03/2009|18:45] C:\Program Files\Realtek
[21/12/2006|00:05] C:\Program Files\Reference Assemblies
[04/04/2009|13:42] C:\Program Files\ReflexiveArcade
[11/04/2009|13:44] C:\Program Files\RomStation
[27/12/2006|02:50] C:\Program Files\Rorschach Software
[20/12/2006|01:26] C:\Program Files\Samsung
[04/07/2009|10:02] C:\Program Files\Sega
[28/12/2006|10:01] C:\Program Files\Services en ligne
[21/01/2010|14:47] C:\Program Files\Skype
[07/01/2007|08:06] C:\Program Files\Sony
[07/01/2007|07:33] C:\Program Files\speed-bit
[24/01/2010|15:41] C:\Program Files\Spybot - Search & Destroy
[21/12/2006|03:03] C:\Program Files\Sun
[28/07/2009|08:53] C:\Program Files\SuperCopier2
[26/06/2009|16:06] C:\Program Files\TeamViewer
[06/05/2009|18:04] C:\Program Files\TextAloud
[01/02/2007|00:58] C:\Program Files\THQ
[05/01/2007|09:46] C:\Program Files\TLKGAMES
[20/12/2006|00:46] C:\Program Files\TopThemesXP
[27/07/2009|15:29] C:\Program Files\trend micro
[20/12/2006|00:38] C:\Program Files\TvInternet
[21/12/2006|00:44] C:\Program Files\Uniblue
[28/12/2006|10:04] C:\Program Files\Uninstall Information
[20/12/2006|04:42] C:\Program Files\Vimicro
[19/09/2009|21:25] C:\Program Files\Vuze
[29/12/2009|22:21] C:\Program Files\WeFi
[22/12/2006|12:00] C:\Program Files\Winamp
[29/12/2006|10:35] C:\Program Files\Winamp Remote
[22/12/2006|11:59] C:\Program Files\Winamp Toolbar
[03/10/2009|21:21] C:\Program Files\Windows Live
[26/04/2008|09:21] C:\Program Files\Windows Live Favorites
[03/10/2009|21:14] C:\Program Files\Windows Live SkyDrive
[22/12/2006|09:37] C:\Program Files\Windows Media Player
[27/07/2009|15:48] C:\Program Files\windows nt
[29/12/2009|04:14] C:\Program Files\WinRAR
[24/01/2010|16:15] C:\Program Files\WinZix
[27/07/2009|15:48] C:\Program Files\xerox
[15/12/2009|23:47] C:\Program Files\Zylom Games

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[20/12/2006|01:34] C:\Program Files\Fichiers communs\Adobe
[26/04/2008|09:09] C:\Program Files\Fichiers communs\Ahead
[20/12/2006|00:57] C:\Program Files\Fichiers communs\Apple
[23/12/2006|19:46] C:\Program Files\Fichiers communs\BitDefender
[25/12/2006|03:44] C:\Program Files\Fichiers communs\BOONTY Shared
[14/04/2008|20:20] C:\Program Files\Fichiers communs\Creative
[28/12/2006|15:03] C:\Program Files\Fichiers communs\DESIGNER
[04/04/2008|16:40] C:\Program Files\Fichiers communs\InstallShield
[21/12/2006|02:55] C:\Program Files\Fichiers communs\Java
[29/07/2009|09:45] C:\Program Files\Fichiers communs\Microsoft Shared
[28/12/2006|10:00] C:\Program Files\Fichiers communs\MSSoap
[28/12/2006|15:14] C:\Program Files\Fichiers communs\Nero
[22/12/2006|11:50] C:\Program Files\Fichiers communs\Nullsoft
[28/12/2006|10:55] C:\Program Files\Fichiers communs\ODBC
[26/04/2008|08:14] C:\Program Files\Fichiers communs\Services
[21/01/2010|14:47] C:\Program Files\Fichiers communs\Skype
[28/12/2006|10:55] C:\Program Files\Fichiers communs\SpeechEngines
[14/04/2008|18:09] C:\Program Files\Fichiers communs\SWF Studio
[20/12/2006|00:39] C:\Program Files\Fichiers communs\System
[20/12/2006|00:21] C:\Program Files\Fichiers communs\Windows Live
[20/12/2006|00:15] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 58 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\ONLINE~1
C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\ONLINE~1\Comp bait rule list.exe
C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\ONLINE~1\Grey Cake.exe
C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\ONLINE~1\rwdgfixi.exe
C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\ONLINE~1\uefzipwx.exe
C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\ONLINE~1\zxjrisni.exe

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\bias grim user enc
C:\DOCUME~1\ADMINI~1.STA\LOCALS~1\Temp\nsx13B.tmp
C:\Program Files\WinZix
C:\Program Files\WinZix\WinZixManager.dll_old
C:\DOCUME~1\ADMINI~1.STA\Cookies\administrateur@install.winzix[2].txt
C:\DOCUME~1\ADMINI~1.STA\Cookies\administrateur@www.adserver5[1].txt
C:\DOCUME~1\ADMINI~1.STA\Cookies\administrateur@www.adserver5[2].txt
C:\DOCUME~1\ADMINI~1.STA\Cookies\administrateur@advertising[2].txt

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\the base find]
"DisplayName"="CiD Help"
"UninstallString"="C:\\DOCUME~1\\ADMINI~1.STA\\APPLIC~1\\ONLINE~1\\Grey Cake.exe -uninstall"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"User Enc Proc Curb"="C:\\Documents and Settings\\All Users.WINDOWS\\Application Data\\bias grim user enc\\dumb free.exe"

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-24 16:23:30
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\ADMINI~1.STA\Application Data\Azureus\torrents\hotmail.password.crack.hack.2009.torrent
C:\DOCUME~1\ADMINI~1.STA\Bureau\Crack
C:\DOCUME~1\ADMINI~1.STA\Bureau\business\hotmail.password.crack.hack.2009.torrent
C:\DOCUME~1\ADMINI~1.STA\Bureau\Crack\Civ4BeyondSword.exe
C:\DOCUME~1\ADMINI~1.STA\Bureau\Crack\Civ4Warlords.exe
C:\DOCUME~1\ADMINI~1.STA\Recent\Keygen-1.4.lnk
C:\DOCUME~1\ADMINI~1.STA\Shared\beyond the sword crack 3.19 crack from ECLiPSE 100% working.zip
C:\DOCUME~1\ADMINI~1.STA\Shared\beyond the sword crack 3.19.zip

[F:8][D:121]-> C:\DOCUME~1\ADMINI~1.STA\LOCALS~1\Temp
[F:140][D:0]-> C:\DOCUME~1\ADMINI~1.STA\Cookies
[F:880][D:6]-> C:\DOCUME~1\ADMINI~1.STA\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 24/01/2010|16:26 - Option : [1]

--------------------\\ Fin du rapport a 16:26:06
0
Utilisateur anonyme
 
Clic droit sur le raccourci Lop S&D présent sur ton Bureau, et sur exécuter en tant qu'administrateur
* Séléctionne la langue souhaitée , puis choisis l'option "Suppression + Hosts"
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
0
Réponse 3 / 3
kirosene Messages postés 145 Date d'inscription   Statut Membre Dernière intervention   14
 
le voici ce rapport :

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.20GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Administrateur ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:58 Go (Free:3 Go)
D:\ (Local Disk) - NTFS - Total:83 Go (Free:27 Go)
E:\ (Local Disk) - NTFS - Total:91 Go (Free:45 Go)
F:\ (CD or DVD)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 24/01/2010|18:28 )

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ADMINI~1.STA\LOCALS~1\Temp\nsx13B.tmp
Supprime! - C:\DOCUME~1\ADMINI~1.STA\Cookies\administrateur@install.winzix[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1.STA\Cookies\administrateur@www.adserver5[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1.STA\Cookies\administrateur@www.adserver5[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1.STA\Cookies\administrateur@advertising[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\ONLINE~1\Comp bait rule list.exe
Supprime! - C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\ONLINE~1\Grey Cake.exe
Supprime! - C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\ONLINE~1\rwdgfixi.exe
Supprime! - C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\ONLINE~1\uefzipwx.exe
Supprime! - C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\ONLINE~1\zxjrisni.exe
Supprime! - C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\bias grim user enc
Supprime! - C:\Program Files\WinZix
Supprime! - C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\ONLINE~1
Supprime! - C:\Program Files\ONLINE~1

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans APPLIC~1

[08/12/2009|21:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[14/04/2008|18:09] C:\DOCUME~1\ADMINI~1\APPLIC~1\AdobeUM
[08/12/2009|21:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\Creative
[08/04/2008|20:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
[06/04/2008|20:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\Help
[28/12/2006|10:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[08/12/2009|21:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[08/12/2009|21:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[08/12/2009|21:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\Nero
[09/12/2009|12:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\Skype

[20/12/2006|04:12] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\.wyzo
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Ace
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Adobe
[09/12/2009|12:20] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Ahead
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Apple Computer
[21/12/2006|09:04] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\AVGTOOLBAR
[17/01/2010|18:54] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Azureus
[09/12/2009|12:21] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Babylon
[22/01/2010|11:28] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Bandoo
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Command & Conquer 3 Les guerres du Tiberium
[09/12/2009|12:21] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Command & Conquer 3 Tiberium Wars
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Command and Conquer 3 Tiberium Wars
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Creative
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\CyberLink
[26/12/2006|04:29] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\FlashFXP
[20/01/2010|20:05] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\FreeVideoConverter
[09/12/2009|12:21] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\FrostWire
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\funkitron
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Google
[20/12/2006|00:02] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Help
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Identities
[27/03/2009|18:45] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\InstallShield
[09/12/2009|12:21] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\La Bataille pour la Terre du Milieu
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Leadertech
[09/12/2009|12:21] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\LimeWire
[08/12/2009|21:06] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Macromedia
[09/12/2009|12:22] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Media Player Classic
[08/12/2009|21:07] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Meridian93
[09/12/2009|12:22] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Microsoft
[09/12/2009|12:22] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Mozilla
[10/12/2009|14:14] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\My Games
[29/12/2009|15:53] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\OpenCandy
[08/12/2009|21:08] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Opera
[08/12/2009|21:08] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\PC Tools
[28/12/2009|21:36] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\QUAD Utilities
[22/12/2006|11:50] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Real
[08/12/2009|21:08] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\SecuROM
[24/01/2010|13:59] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Skype
[21/01/2010|16:36] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\skypePM
[08/12/2009|21:08] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\SolidWorks
[09/12/2009|12:22] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\SpinTop
[08/12/2009|21:08] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Sun
[09/12/2009|12:22] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\TeamViewer
[08/12/2009|21:09] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Uniblue
[29/12/2009|04:14] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\WinRAR
[10/04/2009|14:34] C:\DOCUME~1\ADMINI~1.STA\APPLIC~1\Zylom

[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Babylon
[09/12/2009|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ConeXware
[26/07/2007|08:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Creative
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[09/12/2009|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[28/12/2006|15:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
[09/12/2009|12:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[28/12/2006|15:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[09/12/2009|12:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSScanAppDataDir
[09/12/2009|12:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MumboJumbo
[28/12/2006|15:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[09/12/2009|12:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[03/03/2008|16:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[09/12/2009|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[22/12/2006|14:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[09/12/2009|12:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanAppDataDir
[09/12/2009|12:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanWizard
[20/12/2006|03:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[09/12/2009|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[09/12/2009|12:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[09/12/2009|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[09/12/2009|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[20/12/2006|01:04] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[26/04/2008|09:20] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
[09/01/2007|04:58] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Age of Empires 3
[23/01/2010|10:06] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\AlawarGameBox
[23/01/2010|10:06] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\AlawarWrapper
[20/12/2006|02:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[20/12/2006|01:03] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[28/07/2009|08:56] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avg8
[07/01/2007|11:39] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Azureus
[26/12/2006|03:35] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Babylon
[22/01/2010|11:27] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Bandoo
[03/04/2009|16:04] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\BigFishGamesCache
[25/12/2006|03:44] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\BOONTY
[06/05/2009|20:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ConeXware
[26/12/2006|09:34] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Creative
[26/04/2008|09:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\CyberLink
[05/01/2007|08:08] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\DVD X Studios
[04/04/2009|14:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\FarmFrenzy-PizzaParty
[29/12/2006|10:31] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
[26/12/2006|04:24] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Grisoft
[24/08/2009|19:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\KONAMI
[28/12/2009|00:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ma-config.com
[02/11/2009|12:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Messenger Plus!
[16/12/2009|16:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Meta Knob Soft Soap
[20/12/2006|02:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MGS
[20/12/2006|02:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microgaming
[29/07/2009|09:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[22/12/2006|03:54] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MSScanAppDataDir
[21/12/2006|23:54] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\phenomedia
[03/02/2007|08:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Real
[21/01/2010|14:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Skype
[24/01/2010|18:24] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Spybot - Search & Destroy
[04/04/2009|14:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TEMP
[05/01/2007|10:22] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Trymedia
[22/12/2006|11:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Winamp Toolbar
[20/12/2006|19:03] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
[26/04/2008|09:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Live Toolbar
[06/05/2009|19:36] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WinZip
[20/12/2006|19:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WLInstaller
[10/04/2009|14:34] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Zylom

[12/05/2007|10:37] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[28/07/2009|08:56] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

[09/12/2009|12:43] C:\DOCUME~1\famille\APPLIC~1\Adobe
[09/12/2009|12:45] C:\DOCUME~1\famille\APPLIC~1\ATI
[09/12/2009|12:43] C:\DOCUME~1\famille\APPLIC~1\Babylon
[09/12/2009|12:45] C:\DOCUME~1\famille\APPLIC~1\CyberLink
[01/03/2008|13:29] C:\DOCUME~1\famille\APPLIC~1\Google
[09/12/2009|12:45] C:\DOCUME~1\famille\APPLIC~1\Identities
[09/12/2009|12:43] C:\DOCUME~1\famille\APPLIC~1\Macromedia
[09/12/2009|12:45] C:\DOCUME~1\famille\APPLIC~1\Microsoft
[09/12/2009|12:43] C:\DOCUME~1\famille\APPLIC~1\PC Suite
[09/12/2009|12:45] C:\DOCUME~1\famille\APPLIC~1\Yahoo!

[09/12/2009|12:45] C:\DOCUME~1\INVIT~1\APPLIC~1\Creative
[02/02/2008|10:46] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
[09/12/2009|12:45] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[09/12/2009|12:45] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[09/12/2009|12:45] C:\DOCUME~1\INVIT~1\APPLIC~1\PC Suite
[09/12/2009|12:45] C:\DOCUME~1\INVIT~1\APPLIC~1\ScanSoft

[12/05/2007|10:37] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[28/07/2009|08:56] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft

[09/12/2009|12:45] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[28/07/2009|08:56] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[24/01/2010 18:12][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-682003330-500UA.job
[24/01/2010 15:12][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-682003330-500Core.job
[24/01/2010 16:38][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/09/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[11/04/2007|07:45] C:\Program Files\3DO
[26/04/2008|09:19] C:\Program Files\Adobe
[23/01/2010|10:06] C:\Program Files\Alawar
[22/12/2006|08:43] C:\Program Files\aMSN
[20/12/2006|00:57] C:\Program Files\Apple Software Update
[22/12/2006|23:41] C:\Program Files\Audacity
[14/04/2008|20:25] C:\Program Files\Audible
[21/12/2006|09:04] C:\Program Files\AVG
[22/01/2010|11:37] C:\Program Files\Bandoo
[23/12/2006|19:46] C:\Program Files\BitDefender
[20/12/2006|01:03] C:\Program Files\Bonjour
[22/12/2006|12:26] C:\Program Files\Boonty
[25/12/2006|03:44] C:\Program Files\BoontyGames
[23/12/2006|19:33] C:\Program Files\Caffe
[09/04/2008|20:53] C:\Program Files\Canon
[14/11/2009|14:41] C:\Program Files\Cirle Developement
[20/12/2006|01:14] C:\Program Files\Common Files
[28/12/2006|09:59] C:\Program Files\ComPlus Applications
[25/04/2009|14:16] C:\Program Files\Conduit
[14/04/2008|20:25] C:\Program Files\Creative
[14/04/2008|20:20] C:\Program Files\Creative Installation Information
[28/12/2006|15:03] C:\Program Files\CyberLink
[21/12/2006|03:58] C:\Program Files\Data
[21/12/2006|02:47] C:\Program Files\Design Science
[22/01/2007|05:59] C:\Program Files\directx
[26/12/2006|00:18] C:\Program Files\DiskTrix
[28/12/2006|15:01] C:\Program Files\DivX
[20/12/2006|00:05] C:\Program Files\DoYouKnow
[05/04/2009|15:02] C:\Program Files\EA GAMES
[20/12/2006|01:59] C:\Program Files\EA SPORTS
[23/12/2006|00:19] C:\Program Files\Electronic Arts
[27/12/2006|14:43] C:\Program Files\eMule
[31/12/2006|13:37] C:\Program Files\ETAJV GAMEBOY
[07/05/2009|20:35] C:\Program Files\Farm Frenzy Pizza Party
[25/12/2006|03:32] C:\Program Files\Feneris
[27/07/2009|15:44] C:\Program Files\Fichiers communs
[11/07/2009|12:58] C:\Program Files\Firaxis Games
[20/12/2006|00:07] C:\Program Files\FlashGet
[09/08/2009|16:52] C:\Program Files\FrostWire
[07/05/2009|20:35] C:\Program Files\Galaxy Online
[20/12/2006|00:45] C:\Program Files\GameShadow
[20/12/2006|00:46] C:\Program Files\GameSpy Arcade
[26/12/2006|10:33] C:\Program Files\GigaTribe
[28/12/2006|15:07] C:\Program Files\Golden Al-Wafi Translator
[20/12/2006|00:29] C:\Program Files\Google
[11/06/2009|17:11] C:\Program Files\GTA VC - NFS Undeground
[20/12/2006|08:25] C:\Program Files\GVOX
[24/01/2010|14:23] C:\Program Files\Hotspot Shield
[10/12/2009|14:17] C:\Program Files\InstallShield Installation Information
[23/01/2010|10:04] C:\Program Files\Internet Explorer
[20/12/2006|01:03] C:\Program Files\iPod
[20/12/2006|01:04] C:\Program Files\iTunes
[30/08/2009|17:54] C:\Program Files\Java
[20/12/2006|13:01] C:\Program Files\JoshMadison
[18/12/2009|13:44] C:\Program Files\Kaspersky Lab
[03/02/2007|08:47] C:\Program Files\K-Lite Codec Pack
[24/08/2009|19:12] C:\Program Files\KONAMI
[28/12/2006|15:25] C:\Program Files\Learning Essentials
[08/12/2009|21:13] C:\Program Files\LimeWire
[28/12/2009|00:29] C:\Program Files\ma-config.com
[28/12/2009|16:55] C:\Program Files\MegaDev
[28/12/2009|16:39] C:\Program Files\Messenger Plus! Live
[03/10/2009|21:25] C:\Program Files\Microsoft
[07/05/2009|12:44] C:\Program Files\Microsoft Encarta
[28/12/2006|15:28] C:\Program Files\Microsoft Etudes
[27/07/2009|15:48] C:\Program Files\microsoft frontpage
[07/01/2007|08:52] C:\Program Files\Microsoft Games
[26/12/2006|03:42] C:\Program Files\Microsoft Office
[03/10/2009|21:25] C:\Program Files\Microsoft Office Outlook Connector
[22/01/2010|08:45] C:\Program Files\Microsoft Silverlight
[20/12/2006|00:37] C:\Program Files\Microsoft SQL Server Compact Edition
[03/10/2009|21:19] C:\Program Files\Microsoft Sync Framework
[28/12/2006|15:03] C:\Program Files\Microsoft Visual Studio
[26/04/2008|09:27] C:\Program Files\Microsoft Works
[26/04/2008|09:28] C:\Program Files\Microsoft.NET
[11/04/2009|12:47] C:\Program Files\Monopoly
[28/12/2006|10:56] C:\Program Files\Motorola
[26/04/2008|08:14] C:\Program Files\Movie Maker
[24/01/2010|18:24] C:\Program Files\Mozilla Firefox
[21/12/2006|00:05] C:\Program Files\MSBuild
[22/01/2007|06:00] C:\Program Files\MSN Gaming Zone
[28/12/2006|10:41] C:\Program Files\MSN Messenger
[07/10/2008|20:29] C:\Program Files\MSXML 4.0
[21/12/2006|00:01] C:\Program Files\MSXML 6.0
[20/12/2006|00:26] C:\Program Files\My Lockbox
[18/11/2009|19:34] C:\Program Files\MyPlayCity
[15/12/2009|23:52] C:\Program Files\MyPlayCity.com
[26/04/2008|09:07] C:\Program Files\Nero
[27/07/2009|15:48] C:\Program Files\netmeeting
[21/12/2006|03:50] C:\Program Files\o
[03/07/2009|12:23] C:\Program Files\Opera
[18/08/2009|12:26] C:\Program Files\Outlook Express
[24/12/2006|22:12] C:\Program Files\PopCap Games
[22/01/2010|11:23] C:\Program Files\PowerArchiver
[28/08/2009|22:06] C:\Program Files\Project64 1.6
[31/05/2009|21:53] C:\Program Files\Pyro Studios
[20/12/2006|00:58] C:\Program Files\QuickTime
[29/12/2009|15:25] C:\Program Files\Rapidown
[27/03/2009|18:45] C:\Program Files\Realtek
[21/12/2006|00:05] C:\Program Files\Reference Assemblies
[04/04/2009|13:42] C:\Program Files\ReflexiveArcade
[11/04/2009|13:44] C:\Program Files\RomStation
[27/12/2006|02:50] C:\Program Files\Rorschach Software
[20/12/2006|01:26] C:\Program Files\Samsung
[04/07/2009|10:02] C:\Program Files\Sega
[28/12/2006|10:01] C:\Program Files\Services en ligne
[21/01/2010|14:47] C:\Program Files\Skype
[07/01/2007|08:06] C:\Program Files\Sony
[07/01/2007|07:33] C:\Program Files\speed-bit
[24/01/2010|18:24] C:\Program Files\Spybot - Search & Destroy
[21/12/2006|03:03] C:\Program Files\Sun
[28/07/2009|08:53] C:\Program Files\SuperCopier2
[26/06/2009|16:06] C:\Program Files\TeamViewer
[06/05/2009|18:04] C:\Program Files\TextAloud
[01/02/2007|00:58] C:\Program Files\THQ
[05/01/2007|09:46] C:\Program Files\TLKGAMES
[20/12/2006|00:46] C:\Program Files\TopThemesXP
[27/07/2009|15:29] C:\Program Files\trend micro
[20/12/2006|00:38] C:\Program Files\TvInternet
[21/12/2006|00:44] C:\Program Files\Uniblue
[28/12/2006|10:04] C:\Program Files\Uninstall Information
[20/12/2006|04:42] C:\Program Files\Vimicro
[19/09/2009|21:25] C:\Program Files\Vuze
[29/12/2009|22:21] C:\Program Files\WeFi
[22/12/2006|12:00] C:\Program Files\Winamp
[29/12/2006|10:35] C:\Program Files\Winamp Remote
[22/12/2006|11:59] C:\Program Files\Winamp Toolbar
[03/10/2009|21:21] C:\Program Files\Windows Live
[26/04/2008|09:21] C:\Program Files\Windows Live Favorites
[03/10/2009|21:14] C:\Program Files\Windows Live SkyDrive
[22/12/2006|09:37] C:\Program Files\Windows Media Player
[27/07/2009|15:48] C:\Program Files\windows nt
[29/12/2009|04:14] C:\Program Files\WinRAR
[27/07/2009|15:48] C:\Program Files\xerox
[15/12/2009|23:47] C:\Program Files\Zylom Games

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[20/12/2006|01:34] C:\Program Files\Fichiers communs\Adobe
[26/04/2008|09:09] C:\Program Files\Fichiers communs\Ahead
[20/12/2006|00:57] C:\Program Files\Fichiers communs\Apple
[23/12/2006|19:46] C:\Program Files\Fichiers communs\BitDefender
[25/12/2006|03:44] C:\Program Files\Fichiers communs\BOONTY Shared
[14/04/2008|20:20] C:\Program Files\Fichiers communs\Creative
[28/12/2006|15:03] C:\Program Files\Fichiers communs\DESIGNER
[04/04/2008|16:40] C:\Program Files\Fichiers communs\InstallShield
[21/12/2006|02:55] C:\Program Files\Fichiers communs\Java
[29/07/2009|09:45] C:\Program Files\Fichiers communs\Microsoft Shared
[28/12/2006|10:00] C:\Program Files\Fichiers communs\MSSoap
[28/12/2006|15:14] C:\Program Files\Fichiers communs\Nero
[22/12/2006|11:50] C:\Program Files\Fichiers communs\Nullsoft
[28/12/2006|10:55] C:\Program Files\Fichiers communs\ODBC
[26/04/2008|08:14] C:\Program Files\Fichiers communs\Services
[21/01/2010|14:47] C:\Program Files\Fichiers communs\Skype
[28/12/2006|10:55] C:\Program Files\Fichiers communs\SpeechEngines
[14/04/2008|18:09] C:\Program Files\Fichiers communs\SWF Studio
[20/12/2006|00:39] C:\Program Files\Fichiers communs\System
[20/12/2006|00:21] C:\Program Files\Fichiers communs\Windows Live
[20/12/2006|00:15] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 56 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-24 18:31:28
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\ADMINI~1.STA\Application Data\Azureus\torrents\hotmail.password.crack.hack.2009.torrent
C:\DOCUME~1\ADMINI~1.STA\Bureau\Crack
C:\DOCUME~1\ADMINI~1.STA\Bureau\business\hotmail.password.crack.hack.2009.torrent
C:\DOCUME~1\ADMINI~1.STA\Bureau\Crack\Civ4BeyondSword.exe
C:\DOCUME~1\ADMINI~1.STA\Bureau\Crack\Civ4Warlords.exe
C:\DOCUME~1\ADMINI~1.STA\Recent\Keygen-1.4.lnk
C:\DOCUME~1\ADMINI~1.STA\Shared\beyond the sword crack 3.19 crack from ECLiPSE 100% working.zip
C:\DOCUME~1\ADMINI~1.STA\Shared\beyond the sword crack 3.19.zip

[F:43][D:121]-> C:\DOCUME~1\ADMINI~1.STA\LOCALS~1\Temp
[F:136][D:0]-> C:\DOCUME~1\ADMINI~1.STA\Cookies
[F:889][D:6]-> C:\DOCUME~1\ADMINI~1.STA\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 24/01/2010|16:26 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 24/01/2010|18:33 - Option : [2]

--------------------\\ Fin du rapport a 18:33:23
0
Utilisateur anonyme
 
on va traiter une infection supports amovibles

Télécharge USBFix (de El Desaparecido, C_XX et Chimay8) sur ton bureau
http://pagesperso-orange.fr/NosTools/Chiquitine29/UsbFix.exe­
ou
https://www.ionos.fr/?affiliate_id=77097

Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d'avoir été infectées sans les ouvrir

# Double clic sur le raccourci UsbFix présent sur ton bureau .

# Sélectionne l'option 1 ( Recherche )

# Laisse travailler l'outil.

# Ensuite poste le rapport UsbFix.txt qui apparaitra.

# Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )

( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

# Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
0

Discussions similaires

Téléchargement très lent malgré un bon débit
tpez -
tpez -

6 réponses
Pc très lent du jour au lendemain
Zelaz93330 -
Malekal_morte- -

33 réponses
Vitesse internet bonne mais téléchargement lent
Jerom1992 -
Jerom1992 -

10 réponses
clavier subitement lent !
remi18 -
MB -

83 réponses
un des serveurs 1fichier en panne ?
tmartin -
Panth33ra -

4 réponses