Probleme de virus obfuskated
tias2000
Messages postés
2
Statut
Membre
-
tias2000 Messages postés 2 Statut Membre -
tias2000 Messages postés 2 Statut Membre -
salut tt le monde je suis nouveau dans le monde fabuleux de l'informatique et je crois que j'ai un pc bien infecté alors si qqun peut m'aider ce serait tres tres tres sympa . Je ,vous envoie un rapport hijackthis. Merci D'avance aplus
Scan saved at 00:31:09, on 10/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Elaborate Bytes\CloneCD\CloneCDTray.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Registry Mechanic\RegMech.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe
C:\Program Files\Spyware Doctor\swdoctor.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\PROGRA~1\Grisoft\AVG7\avgwb.dat
C:\WINDOWS\system32\cidaemon.exe
C:\Documents and Settings\Admin\Bureau\HijackThis.exe
C:\WINDOWS\system32\wuauclt.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: metaspinner media GmbH - {12FC9A49-CFE0-49AA-BE9E-8F4EEAFC9443} - C:\PROGRA~1\YETISP~1\IEBUTT~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - (no file)
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Alcohol Toolbar Helper - {8126A4A5-BFD3-46FE-BBDF-BFB5CF78E489} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: Alcohol Toolbar - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\Elaborate Bytes\CloneCD\CloneCDTray.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [RegistryMechanic] C:\Program Files\Registry Mechanic\RegMech.exe /QS
O4 - HKLM\..\Run: [PCTAVApp] "C:\Program Files\PC Tools AntiVirus\PCTAV.exe" /MONITORSCAN
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [trans dale] C:\DOCUME~1\Admin\APPLIC~1\atomsafe\vc live creative.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8
O4 - HKCU\..\Run: [Windows Registry Repair Pro] C:\Program Files\3B Software\Windows Registry Repair Pro\RegistryRepairPro.exe 4
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q
O4 - HKCU\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: OpenOffice.org 2.1.lnk = C:\Program Files\OpenOffice.org 2.1\program\quickstart.exe
O4 - Global Startup: Catalyst System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O17 - HKLM\System\CCS\Services\Tcpip\..\{3DECDB58-FEA4-4714-8D0D-B0501BF6369F}: NameServer = 85.255.116.124,85.255.112.99
O17 - HKLM\System\CCS\Services\Tcpip\..\{8844D5EF-4053-4C61-B0D4-D0212D2E0218}: NameServer = 85.255.116.124,85.255.112.99
O17 - HKLM\System\CCS\Services\Tcpip\..\{9368318E-5DF0-4F2F-A27C-C0BF407611FA}: NameServer = 85.255.116.124,85.255.112.99
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.116.124 85.255.112.99
O17 - HKLM\System\CS1\Services\Tcpip\..\{3DECDB58-FEA4-4714-8D0D-B0501BF6369F}: NameServer = 85.255.116.124,85.255.112.99
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 85.255.116.124 85.255.112.99
O17 - HKLM\System\CS2\Services\Tcpip\..\{3DECDB58-FEA4-4714-8D0D-B0501BF6369F}: NameServer = 85.255.116.124,85.255.112.99
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.116.124 85.255.112.99
O18 - Protocol: bw+0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
Scan saved at 00:31:09, on 10/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Elaborate Bytes\CloneCD\CloneCDTray.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Registry Mechanic\RegMech.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe
C:\Program Files\Spyware Doctor\swdoctor.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\PROGRA~1\Grisoft\AVG7\avgwb.dat
C:\WINDOWS\system32\cidaemon.exe
C:\Documents and Settings\Admin\Bureau\HijackThis.exe
C:\WINDOWS\system32\wuauclt.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: metaspinner media GmbH - {12FC9A49-CFE0-49AA-BE9E-8F4EEAFC9443} - C:\PROGRA~1\YETISP~1\IEBUTT~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - (no file)
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Alcohol Toolbar Helper - {8126A4A5-BFD3-46FE-BBDF-BFB5CF78E489} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: Alcohol Toolbar - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\Elaborate Bytes\CloneCD\CloneCDTray.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [RegistryMechanic] C:\Program Files\Registry Mechanic\RegMech.exe /QS
O4 - HKLM\..\Run: [PCTAVApp] "C:\Program Files\PC Tools AntiVirus\PCTAV.exe" /MONITORSCAN
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [trans dale] C:\DOCUME~1\Admin\APPLIC~1\atomsafe\vc live creative.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8
O4 - HKCU\..\Run: [Windows Registry Repair Pro] C:\Program Files\3B Software\Windows Registry Repair Pro\RegistryRepairPro.exe 4
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q
O4 - HKCU\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: OpenOffice.org 2.1.lnk = C:\Program Files\OpenOffice.org 2.1\program\quickstart.exe
O4 - Global Startup: Catalyst System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O17 - HKLM\System\CCS\Services\Tcpip\..\{3DECDB58-FEA4-4714-8D0D-B0501BF6369F}: NameServer = 85.255.116.124,85.255.112.99
O17 - HKLM\System\CCS\Services\Tcpip\..\{8844D5EF-4053-4C61-B0D4-D0212D2E0218}: NameServer = 85.255.116.124,85.255.112.99
O17 - HKLM\System\CCS\Services\Tcpip\..\{9368318E-5DF0-4F2F-A27C-C0BF407611FA}: NameServer = 85.255.116.124,85.255.112.99
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.116.124 85.255.112.99
O17 - HKLM\System\CS1\Services\Tcpip\..\{3DECDB58-FEA4-4714-8D0D-B0501BF6369F}: NameServer = 85.255.116.124,85.255.112.99
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 85.255.116.124 85.255.112.99
O17 - HKLM\System\CS2\Services\Tcpip\..\{3DECDB58-FEA4-4714-8D0D-B0501BF6369F}: NameServer = 85.255.116.124,85.255.112.99
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.116.124 85.255.112.99
O18 - Protocol: bw+0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {DE771DAE-C971-4B82-AF02-A9F133FA2765} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
A voir également:
- Probleme de virus obfuskated
- Virus mcafee - Accueil - Piratage
- Virus facebook demande d'amis - Accueil - Facebook
- Virus informatique - Guide
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Undisclosed-recipients virus - Guide
2 réponses
Salut
¤ Tu as deux antivirus c'est pas recommandé désinstalle en un des deux, garde Avast qui est plus performant.
¤ Désactive le pare-feu de Windows (SP2) il ne sert à rien puis installe celui-ci pour plus de sécurité
Kerio (pare-feu) : reste gratuit après la période d'essai en français
----> http://www.infos-du-net.com/telecharger/Firewall-Kerio-Personal,0301-390.html
Regarde ce tutoriel si tu as besoin d'aide pour l'installation, la configuration et compréhension de Kerio
--> http://kerio.probb.fr/Systemesd-exploitation-c1/Logiciels-et-tutoriels-gratuits-tries-par-categorie-f6/Tutoriel-pour-Kerio-43635-t248.htm
Plus d'info :
->https://kerio.probb.fr/
¤ Désinstalle ce logiciel, il ne sert à rien et est inutile pour ta cam
- Desktop Messenger
¤ Télécharge lopxp :
http://perso.numericable.fr/~altshift/Info/Fichiers/lopxpMH2.zip
dézippe-le sur ton bureau puis double-clic sur le fichier "lopxpMH.bat"
quand il a terminé, un rapport s'ouvre : fait un copier-coller du rapport puis mets le ici
¤ Tu as deux antivirus c'est pas recommandé désinstalle en un des deux, garde Avast qui est plus performant.
¤ Désactive le pare-feu de Windows (SP2) il ne sert à rien puis installe celui-ci pour plus de sécurité
Kerio (pare-feu) : reste gratuit après la période d'essai en français
----> http://www.infos-du-net.com/telecharger/Firewall-Kerio-Personal,0301-390.html
Regarde ce tutoriel si tu as besoin d'aide pour l'installation, la configuration et compréhension de Kerio
--> http://kerio.probb.fr/Systemesd-exploitation-c1/Logiciels-et-tutoriels-gratuits-tries-par-categorie-f6/Tutoriel-pour-Kerio-43635-t248.htm
Plus d'info :
->https://kerio.probb.fr/
¤ Désinstalle ce logiciel, il ne sert à rien et est inutile pour ta cam
- Desktop Messenger
¤ Télécharge lopxp :
http://perso.numericable.fr/~altshift/Info/Fichiers/lopxpMH2.zip
dézippe-le sur ton bureau puis double-clic sur le fichier "lopxpMH.bat"
quand il a terminé, un rapport s'ouvre : fait un copier-coller du rapport puis mets le ici
Désolé j'etais au boulot voila le rapport que tu m'as demandé, merci beaucoup pour ton aide. aplu. j'ai suivi tes conseils ,j' ai viré avg ey gardé avast. merci encore.
## Répertoires Application Data
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\Admin\Application Data
17/10/2006 00:52 <REP> .
17/10/2006 00:52 <REP> ..
06/01/2007 17:36 <REP> Adobe
06/01/2007 17:36 <REP> AdobeUM
01/12/2006 16:23 <REP> Apple Computer
17/10/2006 00:52 <REP> ATI
19/01/2007 19:29 <REP> atomsafe
10/03/2007 00:15 <REP> AVG7
19/01/2007 19:32 <REP> BitDownload
28/10/2006 10:32 <REP> CyberLink
17/10/2006 17:52 <REP> DeepBurner
03/12/2006 19:36 <REP> dvdcss
04/12/2006 13:50 <REP> FotoWire
17/10/2006 00:52 <REP> Identities
28/02/2007 13:28 <REP> Lavasoft
20/01/2007 19:30 <REP> Logitech
17/10/2006 00:54 <REP> Macromedia
17/10/2006 00:52 <REP> Microsoft
30/11/2006 15:04 <REP> Mozilla
15/02/2007 21:28 <REP> OpenOffice.org2
09/03/2007 21:28 <REP> PC Tools
16/02/2007 15:13 <REP> SecondLife
01/12/2006 12:47 <REP> Sonic Foundry
01/12/2006 15:41 <REP> Steinberg
09/01/2007 18:46 <REP> Sun
30/11/2006 15:04 <REP> Thunderbird
03/12/2006 19:38 <REP> vlc
26/01/2007 17:14 <REP> Wormux
17/10/2006 00:52 62 desktop.ini
1 fichier(s) 62 octets
28 R‚p(s) 14ÿ198ÿ235ÿ136 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\Admin\Local Settings\Application Data
17/10/2006 00:52 <REP> .
17/10/2006 00:52 <REP> ..
06/01/2007 17:36 <REP> Adobe
06/01/2007 16:20 <REP> Apple Computer
17/10/2006 00:52 <REP> ApplicationHistory
17/10/2006 00:52 <REP> ATI
26/01/2007 17:04 <REP> Help
01/12/2006 15:54 <REP> Identities
04/12/2006 13:53 <REP> Logitech-LS
17/10/2006 00:52 <REP> Microsoft
06/01/2007 16:14 <REP> Mozilla
20/01/2007 19:27 <REP> Musicmatch
03/12/2006 10:26 <REP> WMTools Downloaded Files
04/12/2006 14:53 201ÿ728 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
17/10/2006 00:52 128 fusioncache.dat
17/10/2006 00:52 14ÿ704 GDIPFONTCACHEV1.DAT
17/10/2006 01:01 5ÿ336ÿ974 IconCache.db
4 fichier(s) 5ÿ553ÿ534 octets
13 R‚p(s) 14ÿ198ÿ235ÿ136 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\All Users\Application Data
14/08/2006 03:26 <REP> .
14/08/2006 03:26 <REP> ..
14/08/2006 02:23 <REP> Adobe
14/08/2006 12:58 <REP> Apple Computer
09/03/2007 23:20 <REP> avg7
17/10/2006 16:15 <REP> CyberLink
09/03/2007 23:20 <REP> Grisoft
14/08/2006 03:26 <REP> Microsoft
25/08/2006 02:26 <REP> Real
24/02/2007 16:14 <REP> Spybot - Search & Destroy
19/01/2007 19:30 <REP> StupidBlehWaitKind
19/08/2006 18:51 <REP> VMware
14/08/2006 14:31 <REP> Windows Genuine Advantage
09/01/2007 21:38 <REP> Windows Live Toolbar
14/08/2006 02:07 <REP> Yahoo! Companion
14/08/2006 03:27 62 desktop.ini
04/12/2006 13:47 0 Installer.log
17/02/2007 15:18 1ÿ751 QTSBandwidthCache
3 fichier(s) 1ÿ813 octets
15 R‚p(s) 14ÿ198ÿ235ÿ136 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\Default User\Application Data
14/08/2006 03:26 <REP> .
14/08/2006 03:26 <REP> ..
14/08/2006 03:26 <REP> Microsoft
14/08/2006 03:27 62 desktop.ini
1 fichier(s) 62 octets
3 R‚p(s) 14ÿ198ÿ231ÿ040 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\Default User\Local Settings\Application Data
14/08/2006 03:27 <REP> .
14/08/2006 03:27 <REP> ..
14/08/2006 01:34 <REP> Microsoft
0 fichier(s) 0 octets
3 R‚p(s) 14ÿ198ÿ231ÿ040 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\elsa\Application Data
01/12/2006 10:25 <REP> .
01/12/2006 10:25 <REP> ..
01/12/2006 12:18 <REP> Adobe
17/01/2007 20:59 <REP> AdobeUM
06/01/2007 21:21 <REP> Apple Computer
01/12/2006 10:26 <REP> ATI
09/03/2007 23:21 <REP> AVG7
07/02/2007 01:52 <REP> DeepBurner
03/12/2006 21:41 <REP> dvdcss
08/03/2007 17:15 <REP> Help
01/12/2006 10:25 <REP> Identities
21/01/2007 09:38 <REP> Logitech
08/01/2007 11:21 <REP> Macromedia
01/12/2006 10:25 <REP> Microsoft
08/01/2007 10:00 <REP> Mozilla
28/01/2007 20:15 <REP> OpenOffice.org2
01/12/2006 12:49 <REP> Sonic Foundry
15/01/2007 13:45 <REP> Sun
03/12/2006 22:27 <REP> vlc
01/12/2006 10:25 62 desktop.ini
1 fichier(s) 62 octets
19 R‚p(s) 14ÿ198ÿ231ÿ040 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\elsa\Local Settings\Application Data
01/12/2006 10:25 <REP> .
01/12/2006 10:25 <REP> ..
01/12/2006 12:18 <REP> Adobe
06/01/2007 21:21 <REP> Apple Computer
01/12/2006 10:25 <REP> ApplicationHistory
01/12/2006 10:26 <REP> ATI
08/03/2007 17:15 <REP> Help
02/12/2006 01:51 <REP> Identities
04/12/2006 14:42 <REP> Logitech-LS
01/12/2006 10:25 <REP> Microsoft
08/01/2007 10:00 <REP> Mozilla
01/12/2006 12:56 27ÿ136 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
01/12/2006 10:25 127 fusioncache.dat
01/12/2006 10:26 14ÿ704 GDIPFONTCACHEV1.DAT
01/12/2006 15:39 4ÿ275ÿ604 IconCache.db
4 fichier(s) 4ÿ317ÿ571 octets
11 R‚p(s) 14ÿ198ÿ231ÿ040 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\Invit‚\Application Data
24/12/2006 16:05 <REP> .
24/12/2006 16:05 <REP> ..
28/01/2007 16:09 <REP> Apple Computer
24/12/2006 16:06 <REP> ATI
24/12/2006 16:06 <REP> Identities
28/01/2007 16:08 <REP> Logitech
24/12/2006 16:10 <REP> Macromedia
24/12/2006 16:05 <REP> Microsoft
24/12/2006 16:05 62 desktop.ini
1 fichier(s) 62 octets
8 R‚p(s) 14ÿ198ÿ231ÿ040 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\Invit‚\Local Settings\Application Data
24/12/2006 16:05 <REP> .
24/12/2006 16:05 <REP> ..
28/01/2007 16:09 <REP> Apple Computer
24/12/2006 16:06 <REP> ApplicationHistory
24/12/2006 16:06 <REP> ATI
24/12/2006 16:05 <REP> Microsoft
24/12/2006 16:06 129 fusioncache.dat
24/12/2006 16:06 14ÿ704 GDIPFONTCACHEV1.DAT
24/12/2006 16:15 3ÿ236ÿ152 IconCache.db
3 fichier(s) 3ÿ250ÿ985 octets
6 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\LocalService\Application Data
14/08/2006 01:37 <REP> .
14/08/2006 01:37 <REP> ..
06/02/2007 23:22 <REP> Adobe
09/03/2007 23:21 <REP> AVG7
14/08/2006 01:37 <REP> Microsoft
19/08/2006 18:53 <REP> VMware
0 fichier(s) 0 octets
6 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\LocalService\Local Settings\Application Data
14/08/2006 01:37 <REP> .
14/08/2006 01:37 <REP> ..
06/02/2007 23:22 <REP> Adobe
14/08/2006 01:37 <REP> Microsoft
0 fichier(s) 0 octets
4 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\NetworkService\Application Data
14/08/2006 01:37 <REP> .
14/08/2006 01:37 <REP> ..
14/08/2006 01:37 <REP> Microsoft
0 fichier(s) 0 octets
3 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\NetworkService\Local Settings\Application Data
14/08/2006 01:37 <REP> .
14/08/2006 01:37 <REP> ..
14/08/2006 01:37 <REP> Microsoft
0 fichier(s) 0 octets
3 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\WINDOWS\system32\config\systemprofile\Application Data
14/08/2006 01:36 <REP> .
14/08/2006 01:36 <REP> ..
14/08/2006 01:36 <REP> Microsoft
14/08/2006 01:36 62 desktop.ini
1 fichier(s) 62 octets
3 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data
14/08/2006 01:36 <REP> .
14/08/2006 01:36 <REP> ..
14/08/2006 01:36 <REP> Microsoft
0 fichier(s) 0 octets
3 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\WINDOWS\Tasks
27/02/2007 09:37 260 B3AE8E5A91853BA6.job
26/02/2007 17:07 372 RegCure.job
16/02/2007 22:20 254 V‚rifier les mises … jour de Windows Live Toolbar.job
06/01/2007 16:18 284 AppleSoftwareUpdate.job
14/08/2006 01:37 6 SA.DAT
14/08/2006 01:32 65 desktop.ini
14/08/2006 01:32 <REP> ..
14/08/2006 01:32 <REP> .
6 fichier(s) 1ÿ241 octets
2 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
******************************************
## Répertoires de C:\Program Files
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Program Files
10/03/2007 18:58 <REP> .
10/03/2007 18:58 <REP> ..
09/03/2007 17:31 <REP> 3B Software
14/08/2006 02:35 <REP> Adobe
27/01/2007 15:20 <REP> Alcohol Soft
27/01/2007 15:20 <REP> Alcohol Toolbar
20/08/2006 06:15 <REP> Alwil Software
28/01/2007 13:49 <REP> Any Video Converter
28/02/2007 12:23 <REP> Apple Software Update
17/10/2006 00:20 <REP> Astonsoft
20/08/2006 04:36 <REP> ATI Technologies
27/02/2007 09:36 <REP> atomsafe
28/02/2007 14:29 <REP> AviSynth 2.5
28/02/2007 13:07 <REP> CCleaner
20/01/2007 17:10 824 CloneCD.lnk
14/08/2006 01:32 <REP> ComPlus Applications
01/12/2006 16:19 <REP> CyberLink
20/01/2007 17:10 <REP> Elaborate Bytes
27/02/2007 09:35 <REP> Electronic Arts
10/03/2007 18:53 <REP> eMule
01/03/2007 17:06 <REP> Fichiers communs
26/01/2007 13:25 <REP> FruityLoops 3.56
09/03/2007 23:20 <REP> Grisoft
28/02/2007 12:03 <REP> HardwareDetection
26/01/2007 16:09 <REP> iGnuteel
17/10/2006 00:01 <REP> Innovatools
05/12/2006 01:19 <REP> InterActual
07/03/2007 03:00 <REP> Internet Explorer
06/01/2007 16:19 <REP> iPod
13/01/2007 14:44 <REP> iTunes
01/03/2007 12:52 <REP> Java
28/02/2007 12:08 <REP> Lavalys
06/03/2007 20:51 <REP> Lavasoft
01/03/2007 15:42 <REP> lbreakout2
20/01/2007 19:25 <REP> Logitech
19/08/2006 01:52 <REP> Marvell
24/12/2006 16:16 <REP> Messenger
14/08/2006 01:34 <REP> microsoft frontpage
26/01/2007 01:44 <REP> Microsoft SQL Server
14/08/2006 01:32 <REP> Movie Maker
10/03/2007 00:07 <REP> Mozilla Firefox
15/01/2007 13:39 <REP> Mozilla Thunderbird
14/08/2006 01:31 <REP> MSN
14/08/2006 01:31 <REP> MSN Gaming Zone
16/02/2007 22:19 <REP> MSN Messenger
26/01/2007 14:54 <REP> Multi_Media_France
20/01/2007 19:27 <REP> MUSICMATCH
14/08/2006 01:33 <REP> NetMeeting
14/08/2006 01:31 <REP> Online Services
28/01/2007 20:12 <REP> OpenOffice.org 2.1
21/12/2006 21:48 <REP> Outlook Express
28/02/2007 12:23 <REP> QuickTime
18/01/2007 17:21 <REP> Real
28/02/2007 15:06 <REP> Realtek
28/02/2007 14:37 <REP> RegCleaner
01/03/2007 11:57 <REP> RegCure
10/03/2007 11:28 <REP> Registry Mechanic
28/02/2007 12:46 <REP> Rockstar Games
14/08/2006 01:33 <REP> Services en ligne
01/12/2006 12:46 <REP> son
01/12/2006 12:46 <REP> Sonic Foundry
22/12/2006 11:10 <REP> Soulseek
19/08/2006 19:21 <REP> SpeedVDrives
06/03/2007 20:21 <REP> Spybot - Search & Destroy
09/03/2007 21:37 <REP> Spyware Doctor
01/12/2006 15:39 <REP> Steinberg
10/03/2007 18:58 <REP> Sunbelt Software
19/08/2006 21:10 <REP> VDMSound
03/12/2006 19:34 <REP> VideoLAN
27/02/2007 15:06 <REP> Virtools Web Player 3.5
17/08/2006 18:35 <REP> VSTplugins
16/02/2007 22:20 <REP> Windows Live Favorites
28/02/2007 13:20 <REP> Windows Live Toolbar
01/12/2006 15:39 <REP> Windows Media Components
21/12/2006 22:09 <REP> Windows Media Connect 2
21/12/2006 22:24 <REP> Windows Media Player
14/08/2006 01:31 <REP> Windows NT
08/03/2007 17:15 <REP> WinRAR
27/01/2007 16:17 <REP> WinUAE
10/10/2006 20:44 <REP> WinZip
14/08/2006 01:34 <REP> xerox
16/10/2006 22:38 <REP> Yahoo!
27/02/2007 11:46 <REP> Yetisports
06/03/2007 20:50 <REP> Zone Labs
1 fichier(s) 824 octets
83 R‚p(s) 14ÿ198ÿ222ÿ848 octets libres
******************************************
## Popups autorisées
* Internet Explorer
! REG.EXE VERSION 3.0
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow
netsearchsoft.com REG_SZ
www.netsearchsoft.com REG_SZ
netbios-wait.com REG_SZ
www.netbios-wait.com REG_SZ
* Mozilla Firefox (1 autorisé 2 interdit)
---------- C:\DOCUMENTS AND SETTINGS\ADMIN\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\IQY5GKDY.DEFAULT\HOSTPERM.1
host popup 1 www.ratp.info
host popup 1 www.emule-inside.net
host popup 1 en-us.start.mozilla.com
host popup 2 64.28.178.4
host popup 1 www.numericable.fr
host popup 1 webmessenger.msn.com
host popup 1 www.absoluflash.com
******************************************
## Registre
* [HKEY_CURRENT_USER\\Software\Microsoft\Internet Explorer\Main]
Search Bar REG_SZ https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
* [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]
command REG_SZ C:\Documents and Settings\All Users\Application Data\StupidBlehWaitKind\browsebait.exe
******************************************
## Zones de sécurité
* HKCU Domains (4)
* P3P History (5)
******************************************
## Recherche C:\WINDOWS\*.htm, "C:\WINDOWS\*.gif"
*************** Fin du rapport ****************
## Répertoires Application Data
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\Admin\Application Data
17/10/2006 00:52 <REP> .
17/10/2006 00:52 <REP> ..
06/01/2007 17:36 <REP> Adobe
06/01/2007 17:36 <REP> AdobeUM
01/12/2006 16:23 <REP> Apple Computer
17/10/2006 00:52 <REP> ATI
19/01/2007 19:29 <REP> atomsafe
10/03/2007 00:15 <REP> AVG7
19/01/2007 19:32 <REP> BitDownload
28/10/2006 10:32 <REP> CyberLink
17/10/2006 17:52 <REP> DeepBurner
03/12/2006 19:36 <REP> dvdcss
04/12/2006 13:50 <REP> FotoWire
17/10/2006 00:52 <REP> Identities
28/02/2007 13:28 <REP> Lavasoft
20/01/2007 19:30 <REP> Logitech
17/10/2006 00:54 <REP> Macromedia
17/10/2006 00:52 <REP> Microsoft
30/11/2006 15:04 <REP> Mozilla
15/02/2007 21:28 <REP> OpenOffice.org2
09/03/2007 21:28 <REP> PC Tools
16/02/2007 15:13 <REP> SecondLife
01/12/2006 12:47 <REP> Sonic Foundry
01/12/2006 15:41 <REP> Steinberg
09/01/2007 18:46 <REP> Sun
30/11/2006 15:04 <REP> Thunderbird
03/12/2006 19:38 <REP> vlc
26/01/2007 17:14 <REP> Wormux
17/10/2006 00:52 62 desktop.ini
1 fichier(s) 62 octets
28 R‚p(s) 14ÿ198ÿ235ÿ136 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\Admin\Local Settings\Application Data
17/10/2006 00:52 <REP> .
17/10/2006 00:52 <REP> ..
06/01/2007 17:36 <REP> Adobe
06/01/2007 16:20 <REP> Apple Computer
17/10/2006 00:52 <REP> ApplicationHistory
17/10/2006 00:52 <REP> ATI
26/01/2007 17:04 <REP> Help
01/12/2006 15:54 <REP> Identities
04/12/2006 13:53 <REP> Logitech-LS
17/10/2006 00:52 <REP> Microsoft
06/01/2007 16:14 <REP> Mozilla
20/01/2007 19:27 <REP> Musicmatch
03/12/2006 10:26 <REP> WMTools Downloaded Files
04/12/2006 14:53 201ÿ728 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
17/10/2006 00:52 128 fusioncache.dat
17/10/2006 00:52 14ÿ704 GDIPFONTCACHEV1.DAT
17/10/2006 01:01 5ÿ336ÿ974 IconCache.db
4 fichier(s) 5ÿ553ÿ534 octets
13 R‚p(s) 14ÿ198ÿ235ÿ136 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\All Users\Application Data
14/08/2006 03:26 <REP> .
14/08/2006 03:26 <REP> ..
14/08/2006 02:23 <REP> Adobe
14/08/2006 12:58 <REP> Apple Computer
09/03/2007 23:20 <REP> avg7
17/10/2006 16:15 <REP> CyberLink
09/03/2007 23:20 <REP> Grisoft
14/08/2006 03:26 <REP> Microsoft
25/08/2006 02:26 <REP> Real
24/02/2007 16:14 <REP> Spybot - Search & Destroy
19/01/2007 19:30 <REP> StupidBlehWaitKind
19/08/2006 18:51 <REP> VMware
14/08/2006 14:31 <REP> Windows Genuine Advantage
09/01/2007 21:38 <REP> Windows Live Toolbar
14/08/2006 02:07 <REP> Yahoo! Companion
14/08/2006 03:27 62 desktop.ini
04/12/2006 13:47 0 Installer.log
17/02/2007 15:18 1ÿ751 QTSBandwidthCache
3 fichier(s) 1ÿ813 octets
15 R‚p(s) 14ÿ198ÿ235ÿ136 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\Default User\Application Data
14/08/2006 03:26 <REP> .
14/08/2006 03:26 <REP> ..
14/08/2006 03:26 <REP> Microsoft
14/08/2006 03:27 62 desktop.ini
1 fichier(s) 62 octets
3 R‚p(s) 14ÿ198ÿ231ÿ040 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\Default User\Local Settings\Application Data
14/08/2006 03:27 <REP> .
14/08/2006 03:27 <REP> ..
14/08/2006 01:34 <REP> Microsoft
0 fichier(s) 0 octets
3 R‚p(s) 14ÿ198ÿ231ÿ040 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\elsa\Application Data
01/12/2006 10:25 <REP> .
01/12/2006 10:25 <REP> ..
01/12/2006 12:18 <REP> Adobe
17/01/2007 20:59 <REP> AdobeUM
06/01/2007 21:21 <REP> Apple Computer
01/12/2006 10:26 <REP> ATI
09/03/2007 23:21 <REP> AVG7
07/02/2007 01:52 <REP> DeepBurner
03/12/2006 21:41 <REP> dvdcss
08/03/2007 17:15 <REP> Help
01/12/2006 10:25 <REP> Identities
21/01/2007 09:38 <REP> Logitech
08/01/2007 11:21 <REP> Macromedia
01/12/2006 10:25 <REP> Microsoft
08/01/2007 10:00 <REP> Mozilla
28/01/2007 20:15 <REP> OpenOffice.org2
01/12/2006 12:49 <REP> Sonic Foundry
15/01/2007 13:45 <REP> Sun
03/12/2006 22:27 <REP> vlc
01/12/2006 10:25 62 desktop.ini
1 fichier(s) 62 octets
19 R‚p(s) 14ÿ198ÿ231ÿ040 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\elsa\Local Settings\Application Data
01/12/2006 10:25 <REP> .
01/12/2006 10:25 <REP> ..
01/12/2006 12:18 <REP> Adobe
06/01/2007 21:21 <REP> Apple Computer
01/12/2006 10:25 <REP> ApplicationHistory
01/12/2006 10:26 <REP> ATI
08/03/2007 17:15 <REP> Help
02/12/2006 01:51 <REP> Identities
04/12/2006 14:42 <REP> Logitech-LS
01/12/2006 10:25 <REP> Microsoft
08/01/2007 10:00 <REP> Mozilla
01/12/2006 12:56 27ÿ136 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
01/12/2006 10:25 127 fusioncache.dat
01/12/2006 10:26 14ÿ704 GDIPFONTCACHEV1.DAT
01/12/2006 15:39 4ÿ275ÿ604 IconCache.db
4 fichier(s) 4ÿ317ÿ571 octets
11 R‚p(s) 14ÿ198ÿ231ÿ040 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\Invit‚\Application Data
24/12/2006 16:05 <REP> .
24/12/2006 16:05 <REP> ..
28/01/2007 16:09 <REP> Apple Computer
24/12/2006 16:06 <REP> ATI
24/12/2006 16:06 <REP> Identities
28/01/2007 16:08 <REP> Logitech
24/12/2006 16:10 <REP> Macromedia
24/12/2006 16:05 <REP> Microsoft
24/12/2006 16:05 62 desktop.ini
1 fichier(s) 62 octets
8 R‚p(s) 14ÿ198ÿ231ÿ040 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\Invit‚\Local Settings\Application Data
24/12/2006 16:05 <REP> .
24/12/2006 16:05 <REP> ..
28/01/2007 16:09 <REP> Apple Computer
24/12/2006 16:06 <REP> ApplicationHistory
24/12/2006 16:06 <REP> ATI
24/12/2006 16:05 <REP> Microsoft
24/12/2006 16:06 129 fusioncache.dat
24/12/2006 16:06 14ÿ704 GDIPFONTCACHEV1.DAT
24/12/2006 16:15 3ÿ236ÿ152 IconCache.db
3 fichier(s) 3ÿ250ÿ985 octets
6 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\LocalService\Application Data
14/08/2006 01:37 <REP> .
14/08/2006 01:37 <REP> ..
06/02/2007 23:22 <REP> Adobe
09/03/2007 23:21 <REP> AVG7
14/08/2006 01:37 <REP> Microsoft
19/08/2006 18:53 <REP> VMware
0 fichier(s) 0 octets
6 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\LocalService\Local Settings\Application Data
14/08/2006 01:37 <REP> .
14/08/2006 01:37 <REP> ..
06/02/2007 23:22 <REP> Adobe
14/08/2006 01:37 <REP> Microsoft
0 fichier(s) 0 octets
4 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\NetworkService\Application Data
14/08/2006 01:37 <REP> .
14/08/2006 01:37 <REP> ..
14/08/2006 01:37 <REP> Microsoft
0 fichier(s) 0 octets
3 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Documents and Settings\NetworkService\Local Settings\Application Data
14/08/2006 01:37 <REP> .
14/08/2006 01:37 <REP> ..
14/08/2006 01:37 <REP> Microsoft
0 fichier(s) 0 octets
3 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\WINDOWS\system32\config\systemprofile\Application Data
14/08/2006 01:36 <REP> .
14/08/2006 01:36 <REP> ..
14/08/2006 01:36 <REP> Microsoft
14/08/2006 01:36 62 desktop.ini
1 fichier(s) 62 octets
3 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data
14/08/2006 01:36 <REP> .
14/08/2006 01:36 <REP> ..
14/08/2006 01:36 <REP> Microsoft
0 fichier(s) 0 octets
3 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\WINDOWS\Tasks
27/02/2007 09:37 260 B3AE8E5A91853BA6.job
26/02/2007 17:07 372 RegCure.job
16/02/2007 22:20 254 V‚rifier les mises … jour de Windows Live Toolbar.job
06/01/2007 16:18 284 AppleSoftwareUpdate.job
14/08/2006 01:37 6 SA.DAT
14/08/2006 01:32 65 desktop.ini
14/08/2006 01:32 <REP> ..
14/08/2006 01:32 <REP> .
6 fichier(s) 1ÿ241 octets
2 R‚p(s) 14ÿ198ÿ226ÿ944 octets libres
******************************************
## Répertoires de C:\Program Files
Le volume dans le lecteur C n'a pas de nom.
Le num‚ro de s‚rie du volume est FC0D-85A3
R‚pertoire de C:\Program Files
10/03/2007 18:58 <REP> .
10/03/2007 18:58 <REP> ..
09/03/2007 17:31 <REP> 3B Software
14/08/2006 02:35 <REP> Adobe
27/01/2007 15:20 <REP> Alcohol Soft
27/01/2007 15:20 <REP> Alcohol Toolbar
20/08/2006 06:15 <REP> Alwil Software
28/01/2007 13:49 <REP> Any Video Converter
28/02/2007 12:23 <REP> Apple Software Update
17/10/2006 00:20 <REP> Astonsoft
20/08/2006 04:36 <REP> ATI Technologies
27/02/2007 09:36 <REP> atomsafe
28/02/2007 14:29 <REP> AviSynth 2.5
28/02/2007 13:07 <REP> CCleaner
20/01/2007 17:10 824 CloneCD.lnk
14/08/2006 01:32 <REP> ComPlus Applications
01/12/2006 16:19 <REP> CyberLink
20/01/2007 17:10 <REP> Elaborate Bytes
27/02/2007 09:35 <REP> Electronic Arts
10/03/2007 18:53 <REP> eMule
01/03/2007 17:06 <REP> Fichiers communs
26/01/2007 13:25 <REP> FruityLoops 3.56
09/03/2007 23:20 <REP> Grisoft
28/02/2007 12:03 <REP> HardwareDetection
26/01/2007 16:09 <REP> iGnuteel
17/10/2006 00:01 <REP> Innovatools
05/12/2006 01:19 <REP> InterActual
07/03/2007 03:00 <REP> Internet Explorer
06/01/2007 16:19 <REP> iPod
13/01/2007 14:44 <REP> iTunes
01/03/2007 12:52 <REP> Java
28/02/2007 12:08 <REP> Lavalys
06/03/2007 20:51 <REP> Lavasoft
01/03/2007 15:42 <REP> lbreakout2
20/01/2007 19:25 <REP> Logitech
19/08/2006 01:52 <REP> Marvell
24/12/2006 16:16 <REP> Messenger
14/08/2006 01:34 <REP> microsoft frontpage
26/01/2007 01:44 <REP> Microsoft SQL Server
14/08/2006 01:32 <REP> Movie Maker
10/03/2007 00:07 <REP> Mozilla Firefox
15/01/2007 13:39 <REP> Mozilla Thunderbird
14/08/2006 01:31 <REP> MSN
14/08/2006 01:31 <REP> MSN Gaming Zone
16/02/2007 22:19 <REP> MSN Messenger
26/01/2007 14:54 <REP> Multi_Media_France
20/01/2007 19:27 <REP> MUSICMATCH
14/08/2006 01:33 <REP> NetMeeting
14/08/2006 01:31 <REP> Online Services
28/01/2007 20:12 <REP> OpenOffice.org 2.1
21/12/2006 21:48 <REP> Outlook Express
28/02/2007 12:23 <REP> QuickTime
18/01/2007 17:21 <REP> Real
28/02/2007 15:06 <REP> Realtek
28/02/2007 14:37 <REP> RegCleaner
01/03/2007 11:57 <REP> RegCure
10/03/2007 11:28 <REP> Registry Mechanic
28/02/2007 12:46 <REP> Rockstar Games
14/08/2006 01:33 <REP> Services en ligne
01/12/2006 12:46 <REP> son
01/12/2006 12:46 <REP> Sonic Foundry
22/12/2006 11:10 <REP> Soulseek
19/08/2006 19:21 <REP> SpeedVDrives
06/03/2007 20:21 <REP> Spybot - Search & Destroy
09/03/2007 21:37 <REP> Spyware Doctor
01/12/2006 15:39 <REP> Steinberg
10/03/2007 18:58 <REP> Sunbelt Software
19/08/2006 21:10 <REP> VDMSound
03/12/2006 19:34 <REP> VideoLAN
27/02/2007 15:06 <REP> Virtools Web Player 3.5
17/08/2006 18:35 <REP> VSTplugins
16/02/2007 22:20 <REP> Windows Live Favorites
28/02/2007 13:20 <REP> Windows Live Toolbar
01/12/2006 15:39 <REP> Windows Media Components
21/12/2006 22:09 <REP> Windows Media Connect 2
21/12/2006 22:24 <REP> Windows Media Player
14/08/2006 01:31 <REP> Windows NT
08/03/2007 17:15 <REP> WinRAR
27/01/2007 16:17 <REP> WinUAE
10/10/2006 20:44 <REP> WinZip
14/08/2006 01:34 <REP> xerox
16/10/2006 22:38 <REP> Yahoo!
27/02/2007 11:46 <REP> Yetisports
06/03/2007 20:50 <REP> Zone Labs
1 fichier(s) 824 octets
83 R‚p(s) 14ÿ198ÿ222ÿ848 octets libres
******************************************
## Popups autorisées
* Internet Explorer
! REG.EXE VERSION 3.0
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow
netsearchsoft.com REG_SZ
www.netsearchsoft.com REG_SZ
netbios-wait.com REG_SZ
www.netbios-wait.com REG_SZ
* Mozilla Firefox (1 autorisé 2 interdit)
---------- C:\DOCUMENTS AND SETTINGS\ADMIN\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\IQY5GKDY.DEFAULT\HOSTPERM.1
host popup 1 www.ratp.info
host popup 1 www.emule-inside.net
host popup 1 en-us.start.mozilla.com
host popup 2 64.28.178.4
host popup 1 www.numericable.fr
host popup 1 webmessenger.msn.com
host popup 1 www.absoluflash.com
******************************************
## Registre
* [HKEY_CURRENT_USER\\Software\Microsoft\Internet Explorer\Main]
Search Bar REG_SZ https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
* [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]
command REG_SZ C:\Documents and Settings\All Users\Application Data\StupidBlehWaitKind\browsebait.exe
******************************************
## Zones de sécurité
* HKCU Domains (4)
* P3P History (5)
******************************************
## Recherche C:\WINDOWS\*.htm, "C:\WINDOWS\*.gif"
*************** Fin du rapport ****************
