Sujet Précédent Sujet Suivant

Pub intempestive

Résolu
FAB -  
 FAB -
Bonjour,

J'ai un DELL XPS ONE.
Qd je suis sur internet, j'ai REGULIEREMENT de manière aléatoire dans le temps, une fenêtre de pub qui apparait. Même en bloquand les pub la fenêtre (cette fois une page blanche ) apparaît.

Merci par avance de votre aide

FAB
A voir également:

18 réponses

Réponse 1 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
On va utiliser un autre tool.

● Télécharge AD-Remover (de Cyrildu17 / C_XX) sur ton Bureau.

/!\ Déconnecte-toi et ferme toutes applications en cours /!\

● Double-clique sur le programme d'installation, installe-le dans son emplacement par défaut (C:\Program files).
● Clique droit sur l'icône Ad-remover située sur ton Bureau et choisis Exécuter en tant qu'administrateur.
● Au menu principal, choisis l'option "A".
● Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report(date).log)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

Note :

"Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
2
FAB
 
Qd j execute le programme on me demande la langue d utilisation. Qu je mettes Anglais ou Français, une fenêtre Rouge apparait en inscrivant "Tool Is Missing" et le programme se ferme.....
0
Réponse 2 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
Salut,

- Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.

- Double-clique sur RSIT.exe afin de lancer le programme.

- Clique sur Continue à l'écran Disclaimer.

- Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

- Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

Note : Les rapports sont sauvegardés dans le dossier C:\rsit.
0
FAB
 
OK MERCI

FAB
0
Réponse 3 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
RSIT, c'est seulement pour savoir les infections...
0
FAB
 
OK.

Si c'est possible, j'ai une autre question dans le forum Logiciel / Pilote (avec le même nom FAB - Problème page d'accueil LOST) Pourrais tu y jeter un oeuil et me répondre ?
Merci par avance.

FAB
0
FAB
 
ET AUSSI un Pb dans la section Massagerie....

Merci encore.... d'aider le novice que je suis

FAB
0
Réponse 4 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
Justement, je veux bien t'aider mais poste le rapport RSIT.
0
FAB
 
info.txt logfile of random's system information tool 1.04 2008-11-07 06:55:14

======Uninstall list======

-->MsiExec.exe /I{403EF592-953B-4794-BCEF-ECAB835C2095}
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88564CEF-20A5-4EF2-A05F-309F2EBA9B06}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A1A5BA3E-9ABF-4037-820B-6151022B8ACB}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D5BA7C09-E523-478C-9C37-A1D86C76383E}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F6366726-BA44-4D6A-8ECE-476E2E616AD1}\setup.exe" -l0x40c
AAA Logo 2004 Freeware & AAA Logo 2008 Demo-->"C:\Program Files\AAALOGO2004\unins000.exe"
Adobe Flash Player ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
Advanced Audio FX Engine-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88564CEF-20A5-4EF2-A05F-309F2EBA9B06}\setup.exe" -l0x40c /remove
Advanced Video FX Engine-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D5BA7C09-E523-478C-9C37-A1D86C76383E}\setup.exe" -l0x40c /remove
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Assistant Personnalisation du systéme Dell-->MsiExec.exe /I{9954484F-6EE4-4040-94E3-4B380646F867}
AVerMedia MCE Encoder 3.2.1.62-->C:\Program Files\AVerMedia\AVerMedia MCE Encoder\uninst.exe
AVerMedia MiniCard Hybrid TV-->C:\Program Files\InstallShield Installation Information\{1F295031-E793-4308-A384-5553977DFD13}\setup.exe -runfromtemp -l0x040c
Browser Address Error Redirector-->MsiExec.exe /I{62230596-37E5-4618-A329-0D21F529A86F}
CDDRV_Installer-->MsiExec.exe /I{8CC990CD-87C8-475C-AC32-8A7984E2FCFA}
Dell Support Center (Support Software)-->MsiExec.exe /X{E3BFEE55-39E2-4BE0-B966-89FE583822C1}
Dell Webcam Center-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A1A5BA3E-9ABF-4037-820B-6151022B8ACB}\setup.exe" -l0x40c /remove
Dell Webcam Manager-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F6366726-BA44-4D6A-8ECE-476E2E616AD1}\setup.exe" -l0x40c /remove
DHTML Editing Component-->MsiExec.exe /I{2EA870FA-585F-4187-903D-CB9FFD21E2E0}
Digital Photo Navigator 1.0-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B7EF4BD8-CA13-11D5-AE3D-005004B8E30C}\setup.exe" -l0x9
Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar2.dll"
Guide de l'utilisateur-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5CD29180-A95E-11D3-A4EB-00C04F7BDB2C}\setup.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Integrated Webcam Driver (1.00.01.0720) -->C:\Windows\CtDrvIns.exe -uninstall -script OEM007.uns -plugin OEM07Pin.dll -pluginres OEM07Pin.crl -nodisconprompt -langid 0x040C
Intel(R) PRO Network Connections 12.1.12.0-->MsiExec.exe /i{777CA40C-0206-4EF6-A0FC-618BF06BF8D0} ARPREMOVE=1
Intel(R) PRO Network Connections 12.1.12.0-->MsiExec.exe /i{777CA40C-0206-4EF6-A0FC-618BF06BF8D0} ARPREMOVE=1
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Java(TM) SE Runtime Environment 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}
KhalInstallWrapper-->MsiExec.exe /I{56918C0C-0D87-4CA6-92BF-4975A43AC719}
K-Lite Mega Codec Pack 4.2.5-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Live! Cam Avatar Creator-->C:\Program Files\InstallShield Installation Information\{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}\setup.exe -runfromtemp -l0x040c -removeonly /remove
Live! Cam Avatar-->C:\Program Files\InstallShield Installation Information\{1D5E29AD-39A9-4D0A-A8B6-46A6FCD8C995}\setup.exe -runfromtemp -l0x040c -removeonly /remove
Logiciel Intel® Viiv™-->MsiExec.exe /X{A7472CEE-6E85-4D43-9C71-BDFC0D471F70} /qb!
McAfee SecurityCenter-->C:\Program Files\McAfee\MSC\mcuninst.exe
MediaButtons 1.0.1.2-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ED9C10E6-565C-4D0F-B559-462BEA03804E}\Setup.exe" -l0x9
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint Viewer 2007 (French)-->MsiExec.exe /X{95120000-00AF-040C-0000-0000000FF1CE}
Microsoft Office Professional Plus 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Works-->MsiExec.exe /I{3B160861-7250-451E-B5EE-8B92BF30A710}
Module de compatibilité pour Microsoft Office System 2007-->MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
PokerStars-->"C:\Program Files\PokerStars\PokerStarsUninstall.exe" /u:PokerStars
Realtek High Definition Audio Driver-->RtlUpd.exe -r -m
Roxio Creator Audio-->MsiExec.exe /I{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}
Roxio Creator Copy-->MsiExec.exe /I{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}
Roxio Creator Data-->MsiExec.exe /I{08E81ABD-79F7-49C2-881F-FD6CB0975693}
Roxio Creator DE-->C:\ProgramData\Uninstall\{09760D42-E223-42AD-8C3E-55B47D0DDAC3}\setup.exe /x {09760D42-E223-42AD-8C3E-55B47D0DDAC3}
Roxio Creator DE-->MsiExec.exe /I{ED439A64-F018-4DD4-8BA5-328D85AB09AB}
Roxio Creator Tools-->MsiExec.exe /I{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}
Roxio Express Labeler 3-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
Roxio Update Manager-->MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
Russe d'Or 3.0-->C:\Windows\unin040c.exe -f"C:\Program Files\MMT\Russe d'Or 3.0\DeIsL1.isu" -c"C:\Program Files\MMT\Russe d'Or 3.0\_ISREG32.DLL"
SetPoint-->C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe -runfromtemp -l0x040c -removeonly
SPAMfighter-->"C:\Program Files\SPAMfighter\uninstall.exe" Remove
Spyware Doctor 6.0-->C:\Program Files\Spyware Doctor\unins000.exe /LOG
Turbo Lister 2-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{69640730-B830-4C24-BB5C-222DA1260548}
VideoLAN VLC media player 0.8.6i-->C:\Users\F. ALBERT-BRUNET\Desktop\VLC\uninstall.exe
WIDCOMM Bluetooth Software 6.0.1.5900-->MsiExec.exe /X{03D1988F-469F-4843-8E6E-E5FE9D17889D}

======Security center information======

AV: McAfee VirusScan
FW: McAfee Personal Firewall
AS: McAfee VirusScan
AS: Spyware Doctor
AS: Windows Defender (disabled)

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Intel\DMIX;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\10.0\DLLShared\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 13, GenuineIntel
"PROCESSOR_REVISION"=0f0d
"NUMBER_OF_PROCESSORS"=2
"RoxioCentral"=C:\Program Files\Common Files\Roxio Shared\10.0\Roxio Central36\

-----------------EOF-----------------
0
FAB
 
Logfile of random's system information tool 1.04 (written by random/random)
Run by F. ALBERT-BRUNET at 2008-11-07 07:27:30
Microsoft® Windows Vista™ Édition Familiale Premium
System drive C: has 223 GB (77%) free of 290 GB
Total RAM: 2022 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 07:27:34, on 07/11/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16711)
Boot mode: Normal

Running processes:
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Windows\OEM07Mon.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Java\jre1.6.0\bin\jusched.exe
C:\Windows\System32\FastUserSwitching.exe
C:\Program Files\DELL\Dell Webcam Manager\DellWMgr.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Program Files\Olivetti\ANY_WAY\olDvcStatus.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\SetPoint\SetPoint.exe
C:\Windows\System32\MediaButtons.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE
C:\Windows\System32\DELLOSD.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\system32\AERTSrv.exe
C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe
C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\SPAMfighter\sfus.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\taskeng.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
C:\Windows\system32\WUDFHost.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\conime.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9d.exe
C:\Users\F. ALBERT-BRUNET\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R64Z1HIT\RSIT[1].exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\F. ALBERT-BRUNET.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.lo.st
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer fourni par Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: McAntiPhishingBHO - {377C180E-6F0E-4D4C-980F-F45BD3D40CF4} - c:\PROGRA~1\mcafee\msk\mcapbho.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\EoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [OEM07Mon.exe] C:\Windows\OEM07Mon.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [UserSwitch] C:\Windows\System32\FastUserSwitching.exe
O4 - HKLM\..\Run: [DELL Webcam Manager] "C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe" /s
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [NMSSupport] "C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" /startup
O4 - HKLM\..\Run: [CCUTRAYICON] "C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.e
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
Le rapport log.txt est incomplet.
0
FAB
 
Logfile of random's system information tool 1.04 (written by random/random)
Run by F. ALBERT-BRUNET at 2008-11-07 07:27:30
Microsoft® Windows Vista™ Édition Familiale Premium
System drive C: has 223 GB (77%) free of 290 GB
Total RAM: 2022 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 07:27:34, on 07/11/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16711)
Boot mode: Normal

Running processes:
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Windows\OEM07Mon.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Java\jre1.6.0\bin\jusched.exe
C:\Windows\System32\FastUserSwitching.exe
C:\Program Files\DELL\Dell Webcam Manager\DellWMgr.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Program Files\Olivetti\ANY_WAY\olDvcStatus.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\SetPoint\SetPoint.exe
C:\Windows\System32\MediaButtons.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE
C:\Windows\System32\DELLOSD.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\system32\AERTSrv.exe
C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe
C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\SPAMfighter\sfus.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\taskeng.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
C:\Windows\system32\WUDFHost.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\conime.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9d.exe
C:\Users\F. ALBERT-BRUNET\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R64Z1HIT\RSIT[1].exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\F. ALBERT-BRUNET.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.lo.st
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer fourni par Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: McAntiPhishingBHO - {377C180E-6F0E-4D4C-980F-F45BD3D40CF4} - c:\PROGRA~1\mcafee\msk\mcapbho.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\EoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [OEM07Mon.exe] C:\Windows\OEM07Mon.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [UserSwitch] C:\Windows\System32\FastUserSwitching.exe
O4 - HKLM\..\Run: [DELL Webcam Manager] "C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe" /s
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [NMSSupport] "C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" /startup
O4 - HKLM\..\Run: [CCUTRAYICON] "C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKLM\..\Run: [OlStatusMon] "C:\Program Files\Olivetti\ANY_WAY\olDvcStatus.exe" dvcStatusMinimize
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-21-311937314-4026855078-3392161035-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'IUSR_NMPR')
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: SetPoint.lnk = C:\Program Files\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O13 - Gopher Prefix:
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Windows\system32\AERTSrv.exe
O23 - Service: Intel(R) Alert Service (AlertService) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
O23 - Service: Intel(R) DHTrace Controller (DHTRACE) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\IntelDH\bin\DHTraceController.exe
O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Software Services Manager (ISSM) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
O23 - Service: Intel(R) Viiv(TM) Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
O23 - Service: Intel(R) Application Tracker (MCLServiceATL) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
O23 - Service: Intel(R) NMSCore (NMSCore) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe
O23 - Service: Olivetti Monitor Service (olMntrService) - Olivetti - C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
O23 - Service: Intel(R) Quality Manager (QualityManager) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe
O23 - Service: Intel(R) Remoting Service (Remote UI Service) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - C:\Program Files\SPAMfighter\sfus.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
0
Réponse 6 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
---> Télécharge OTMoveIt3 (OldTimer) sur ton Bureau :
http://oldtimer.geekstogo.com/OTMoveIt3.exe

---> Double-clique sur OTMoveIt3.exe afin de le lancer.

---> Copie (Ctrl+C) le texte suivant ci-dessous :

:processes
explorer.exe

:services
a1lwu5m3

:files
C:\PROGRA~1\EoRezo
C:\Users\F. ALBERT-BRUNET\AppData\Roaming\EoRezo
C:\Windows\system32\drivers\a1lwu5m3.sys

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"EoEngine"=-

:commands
[emptytemp]
[start explorer]
[reboot]

---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.

---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.

---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
0
FAB
 
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== SERVICES/DRIVERS ==========
Unable to stop service a1lwu5m3 .
========== FILES ==========
Folder move failed. C:\PROGRA~1\EoRezo\EoAdv scheduled to be moved on reboot.
Folder move failed. C:\PROGRA~1\EoRezo scheduled to be moved on reboot.
C:\Users\F. ALBERT-BRUNET\AppData\Roaming\EoRezo\eoDesktop moved successfully.
C:\Users\F. ALBERT-BRUNET\AppData\Roaming\EoRezo\db moved successfully.
C:\Users\F. ALBERT-BRUNET\AppData\Roaming\EoRezo moved successfully.
File/Folder C:\Windows\system32\drivers\a1lwu5m3.sys not found.
========== REGISTRY ==========
Unable to delete registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}\\ .
Unable to delete registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\EoEngine .
========== COMMANDS ==========
File delete failed. C:\Users\F9D22~1.ALB\AppData\Local\Temp\Low\~DFE191.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\F9D22~1.ALB\AppData\Local\Temp\Low\~DFE1A2.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\F9D22~1.ALB\AppData\Local\Temp\~DF291A.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.7.0 log created on 11072008_074816
0
Réponse 7 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
Refais la même manip' mais en mode sans échec.

---> Pour redémarrer en mode sans échec :
- Redémarre ton PC.
- Au démarrage, tapote sur F8 (F5 sur certains PC) juste après l'affichage du BIOS et juste avant le chargement de Windows.
- Dans le menu d'options avancées, choisis Mode sans échec.
- Choisis ton compte.
0
FAB
 
Qd je redemare les touches F5 ou F8 n ont pas d effet.
Mon écran affiche: F2=SET UP et en dessous F12=BOOT MENU.
Si je rentre dans l'un ou l'autre, j'ai de nombreux sous menus.
Lequel dois je utiliser et aller dans quel Sous menus??
Qd vous dites choiissez un compte, De quel compte s'agit t'il??

Merci

FAB
0
Réponse 8 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
Refais la procédure en mode normal.
0
FAB
 
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== SERVICES/DRIVERS ==========
Unable to stop service a1lwu5m3 .
========== FILES ==========
Folder move failed. C:\PROGRA~1\EoRezo\EoAdv scheduled to be moved on reboot.
Folder move failed. C:\PROGRA~1\EoRezo scheduled to be moved on reboot.
File/Folder C:\Users\F. ALBERT-BRUNET\AppData\Roaming\EoRezo not found.
File/Folder C:\Windows\system32\drivers\a1lwu5m3.sys not found.
========== REGISTRY ==========
Unable to delete registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}\\ .
Unable to delete registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\EoEngine .
========== COMMANDS ==========
File delete failed. C:\Users\F9D22~1.ALB\AppData\Local\Temp\Low\~DFFAE8.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\F9D22~1.ALB\AppData\Local\Temp\Low\~DFFB38.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\F9D22~1.ALB\AppData\Local\Temp\Low\~DFFC5C.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\F9D22~1.ALB\AppData\Local\Temp\Low\~DFFF74.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\F9D22~1.ALB\AppData\Local\Temp\~DF3D5A.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.7.0 log created on 11072008_081717
0
Réponse 9 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
"Qd vous dites choiissez un compte, De quel compte s'agit t'il??"
---> Je parle de la session.

https://www.malekal.com/demarrer-windows-mode-sans-echec/
0
FAB
 
Donc je redemarre en mode sans echec ? et fais quelle opération ?
0
Réponse 10 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
Tu l'as installé où ?
0
FAB
 
Sur Programme file. Et la c'est bon, le programme se lance mais plusieur lignes avec "Accées refusé " apparaisse.
Je dois partir Bosser. Si tu peux me laisser les étapes suivantes je les exécuterai en rentrant.
Je te contacterai si besoin.
Merci encore pour ta précieuse aide

Bonne journée

FAB
0
Réponse 11 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
"Et la c'est bon, le programme se lance mais plusieur lignes avec "Accées refusé " apparaisse."
---> Il faut l'exécuter en tant qu'administrateur et il faut que l'UAC soit désactivé.
0
FAB
 
C'est quoi l'UAC ?
0
Réponse 12 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
---> Désactive l'UAC le temps de la désinfection :
http://www.commentcamarche.net/faq/sujet 8343 vista desactiver l uac
0
FAB
 
Voici le rapport, tout a fonctionné. et ENSUITE ?





F --------- Logfile of AD-Remover 1.0.2.7 by C_XX ---------

START at: 9:26:23 | 07/11/2008
ON: Microsoft Windows [version 6.0.6000] ( Windows Vista )
OPTION: Scan
EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat
USER: F. ALBERT-BRUNET | PC: PC-BUREAU
BOOT MODE: Normal
UAC is disable
DRIVE(S): C:\ D:\ E:\ F:\ G:\ H:\ I:\ (Systemdrive= C:\)

--------- [ PROCESSES ] ---------

C:\Windows\system32\csrss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Windows\OEM07Mon.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Windows\System32\FastUserSwitching.exe
C:\Program Files\DELL\Dell Webcam Manager\DellWMgr.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Program Files\Olivetti\ANY_WAY\olDvcStatus.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\Intel\IntelDH\CCU\CCU_Engine.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\SetPoint\SetPoint.exe
C:\Windows\System32\MediaButtons.exe
C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\System32\DELLOSD.exe
C:\Windows\system32\AERTSrv.exe
C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe
C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\SPAMfighter\sfus.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\System32\cmd.exe
C:\Program Files\Intel\NCS2\WMIProv\NCS2Prov.exe
C:\Windows\system32\taskeng.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\msiexec.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\System32\WScript.exe
C:\Windows\system32\wbem\wmiprvse.exe

---------------------------- [ 82 ]


+---------------------------------------------------------------------------+
+------------------------------- SERVICES FOUND
+---------------------------------------------------------------------------+


+---------------------------------------------------------------------------+
+------------------------------- REGISTRY ELEMENTS FOUND
+---------------------------------------------------------------------------+

"HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run" /v "EoEngine"
"HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64F56FC1-1272-44CD-BA6E-39723696E350}"
"HKEY_CURRENT_USER\SOFTWARE\EoRezo"
"HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}"
"HKEY_CLASSES_ROOT\EoRezoBHO.EoBho"
"HKEY_CLASSES_ROOT\EoRezoBHO.EoBho.1"
"HKEY_CLASSES_ROOT\Typelib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}"
"HKEY_CLASSES_ROOT\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}"

+---------------------------------------------------------------------------+
+------------------------------- FILES\FOLDERS FOUND
+---------------------------------------------------------------------------+

[04/11/2008 09:36|--a------] C:\Windows\PFRO.log
[07/11/2008 06:22|d--------] C:\Program Files\EoRezo

+---------- Temp files found.. ( Elements found aren't necessarily harmful )

[07/11/2008 09:21|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\Administrateur.bmp
[07/11/2008 09:25|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\AUInst.log
[07/11/2008 09:25|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\F. ALBERT-BRUNET.bmp
[07/11/2008 09:21|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\Invit‚.bmp
[07/11/2008 09:21|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\IUSR_NMPR.bmp
[07/11/2008 08:23|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\jusched.log
[07/11/2008 09:22|d--------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\Low
[07/11/2008 09:11|d--------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\outlook logging
[07/11/2008 09:26|d--------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\svl5c.tmp
[07/11/2008 09:26|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\wmplog00.sqm
[07/11/2008 09:26|d--------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\WPDNSE
[07/11/2008 08:36|d--------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\{b34d56f9-d769-4174-90dd-b13a07d4ca4b}
[07/11/2008 08:18|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\~DF2B15.tmp
[07/11/2008 08:08|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\~DF3D5A.tmp
[07/11/2008 09:25|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\~DFAEB0.tmp
[02/11/2006 13:48|d--------] C:\Windows\temp\cmi{99681151-3537-434F-8D53-AA0EF9812DEC}
[03/10/2008 14:52|--a------] C:\Windows\temp\coinlog.log
[03/10/2008 15:31|d--hs----] C:\Windows\temp\Cookies
[13/11/2006 09:46|--a------] C:\Windows\temp\DMI2D18.tmp
[04/03/2008 23:49|--a------] C:\Windows\temp\DMI9CDA.tmp
[04/03/2008 23:55|--a------] C:\Windows\temp\DMIE001.tmp
[24/10/2008 23:20|--a------] C:\Windows\temp\ehprivjob.log
[09/10/2008 03:30|--a------] C:\Windows\temp\ehprivjob1.log
[03/10/2008 15:32|--a------] C:\Windows\temp\ehprivjob2.log
[03/10/2008 15:18|--a------] C:\Windows\temp\ehprivjob3.log
[03/10/2008 15:18|--a------] C:\Windows\temp\ehprivjob4.log
[03/10/2008 15:31|d--hs----] C:\Windows\temp\Fichiers Internet temporaires
[03/10/2008 16:43|d--------] C:\Windows\temp\Google Toolbar
[03/10/2008 16:43|--a------] C:\Windows\temp\GoogleToolbarInstaller1.log
[03/10/2008 16:43|--a------] C:\Windows\temp\GoogleToolbarInstaller2.log
[03/10/2008 15:31|d--hs----] C:\Windows\temp\History
[07/10/2008 01:23|--a------] C:\Windows\temp\lpksetup-20081007-022303-0.log
[07/10/2008 01:23|--a------] C:\Windows\temp\lpksetup-20081007-022320-0.log
[07/10/2008 07:06|--a------] C:\Windows\temp\lpksetup-20081007-080635-0.log
[07/10/2008 07:06|--a------] C:\Windows\temp\lpksetup-20081007-080649-0.log
[08/10/2008 19:31|--a------] C:\Windows\temp\lpksetup-20081008-203136-0.log
[08/10/2008 19:31|--a------] C:\Windows\temp\lpksetup-20081008-203153-0.log
[09/10/2008 03:05|--a------] C:\Windows\temp\lpksetup-20081009-040453-0.log
[09/10/2008 03:05|--a------] C:\Windows\temp\lpksetup-20081009-040511-0.log
[09/10/2008 15:55|--a------] C:\Windows\temp\lpksetup-20081009-165532-0.log
[09/10/2008 15:55|--a------] C:\Windows\temp\lpksetup-20081009-165549-0.log
[10/10/2008 20:45|--a------] C:\Windows\temp\lpksetup-20081010-214423-0.log
[10/10/2008 20:45|--a------] C:\Windows\temp\lpksetup-20081010-214523-0.log
[12/10/2008 18:03|--a------] C:\Windows\temp\lpksetup-20081012-190320-0.log
[12/10/2008 18:03|--a------] C:\Windows\temp\lpksetup-20081012-190337-0.log
[13/10/2008 02:37|--a------] C:\Windows\temp\lpksetup-20081013-033734-0.log
[13/10/2008 02:37|--a------] C:\Windows\temp\lpksetup-20081013-033753-0.log
[13/10/2008 15:16|--a------] C:\Windows\temp\lpksetup-20081013-161616-0.log
[13/10/2008 15:16|--a------] C:\Windows\temp\lpksetup-20081013-161632-0.log
[14/10/2008 07:47|--a------] C:\Windows\temp\lpksetup-20081014-084725-0.log
[14/10/2008 07:47|--a------] C:\Windows\temp\lpksetup-20081014-084740-0.log
[15/10/2008 01:51|--a------] C:\Windows\temp\lpksetup-20081015-025131-0.log
[15/10/2008 01:51|--a------] C:\Windows\temp\lpksetup-20081015-025145-0.log
[15/10/2008 10:42|--a------] C:\Windows\temp\lpksetup-20081015-114233-0.log
[15/10/2008 10:42|--a------] C:\Windows\temp\lpksetup-20081015-114250-0.log
[16/10/2008 08:20|--a------] C:\Windows\temp\lpksetup-20081016-092031-0.log
[16/10/2008 08:20|--a------] C:\Windows\temp\lpksetup-20081016-092046-0.log
[16/10/2008 11:42|--a------] C:\Windows\temp\lpksetup-20081016-124245-0.log
[16/10/2008 11:43|--a------] C:\Windows\temp\lpksetup-20081016-124259-0.log
[16/10/2008 13:42|--a------] C:\Windows\temp\lpksetup-20081016-144245-0.log
[16/10/2008 13:42|--a------] C:\Windows\temp\lpksetup-20081016-144259-0.log
[17/10/2008 18:29|--a------] C:\Windows\temp\lpksetup-20081017-192844-0.log
[17/10/2008 18:29|--a------] C:\Windows\temp\lpksetup-20081017-192904-0.log
[18/10/2008 07:51|--a------] C:\Windows\temp\lpksetup-20081018-085047-0.log
[18/10/2008 07:51|--a------] C:\Windows\temp\lpksetup-20081018-085101-0.log
[18/10/2008 10:23|--a------] C:\Windows\temp\lpksetup-20081018-112301-0.log
[18/10/2008 10:23|--a------] C:\Windows\temp\lpksetup-20081018-112315-0.log
[18/10/2008 11:39|--a------] C:\Windows\temp\lpksetup-20081018-123856-0.log
[18/10/2008 11:39|--a------] C:\Windows\temp\lpksetup-20081018-123910-0.log
[18/10/2008 21:51|--a------] C:\Windows\temp\lpksetup-20081018-225117-0.log
[18/10/2008 21:51|--a------] C:\Windows\temp\lpksetup-20081018-225131-0.log
[19/10/2008 03:31|--a------] C:\Windows\temp\lpksetup-20081019-043142-0.log
[19/10/2008 03:31|--a------] C:\Windows\temp\lpksetup-20081019-043159-0.log
[19/10/2008 17:43|--a------] C:\Windows\temp\lpksetup-20081019-184251-0.log
[19/10/2008 17:43|--a------] C:\Windows\temp\lpksetup-20081019-184304-0.log
[19/10/2008 23:14|--a------] C:\Windows\temp\lpksetup-20081020-001425-0.log
[19/10/2008 23:14|--a------] C:\Windows\temp\lpksetup-20081020-001442-0.log
[20/10/2008 23:32|--a------] C:\Windows\temp\lpksetup-20081021-003206-0.log
[20/10/2008 23:32|--a------] C:\Windows\temp\lpksetup-20081021-003220-0.log
[21/10/2008 04:26|--a------] C:\Windows\temp\lpksetup-20081021-052553-0.log
[21/10/2008 04:26|--a------] C:\Windows\temp\lpksetup-20081021-052609-0.log
[22/10/2008 03:13|--a------] C:\Windows\temp\lpksetup-20081022-041314-0.log
[22/10/2008 03:13|--a------] C:\Windows\temp\lpksetup-20081022-041328-0.log
[22/10/2008 12:50|--a------] C:\Windows\temp\lpksetup-20081022-135044-0.log
[22/10/2008 12:50|--a------] C:\Windows\temp\lpksetup-20081022-135058-0.log
[22/10/2008 22:09|--a------] C:\Windows\temp\lpksetup-20081022-230942-0.log
[22/10/2008 22:09|--a------] C:\Windows\temp\lpksetup-20081022-230956-0.log
[23/10/2008 00:18|--a------] C:\Windows\temp\lpksetup-20081023-011758-0.log
[23/10/2008 00:18|--a------] C:\Windows\temp\lpksetup-20081023-011815-0.log
[23/10/2008 01:06|--a------] C:\Windows\temp\lpksetup-20081023-020606-0.log
[23/10/2008 01:06|--a------] C:\Windows\temp\lpksetup-20081023-020619-0.log
[23/10/2008 03:08|--a------] C:\Windows\temp\lpksetup-20081023-040811-0.log
[23/10/2008 03:08|--a------] C:\Windows\temp\lpksetup-20081023-040825-0.log
[24/10/2008 21:10|--a------] C:\Windows\temp\lpksetup-20081024-220936-0.log
[24/10/2008 21:10|--a------] C:\Windows\temp\lpksetup-20081024-221025-0.log
[24/10/2008 23:30|--a------] C:\Windows\temp\lpksetup-20081025-003001-0.log
[24/10/2008 23:30|--a------] C:\Windows\temp\lpksetup-20081025-003015-0.log
[25/10/2008 20:14|--a------] C:\Windows\temp\lpksetup-20081025-211402-0.log
[25/10/2008 20:14|--a------] C:\Windows\temp\lpksetup-20081025-211415-0.log
[26/10/2008 07:04|--a------] C:\Windows\temp\lpksetup-20081026-070351-0.log
[26/10/2008 07:04|--a------] C:\Windows\temp\lpksetup-20081026-070408-0.log
[27/10/2008 08:26|--a------] C:\Windows\temp\lpksetup-20081027-082554-0.log
[27/10/2008 08:26|--a------] C:\Windows\temp\lpksetup-20081027-082608-0.log
[27/10/2008 16:39|--a------] C:\Windows\temp\lpksetup-20081027-163914-0.log
[27/10/2008 16:39|--a------] C:\Windows\temp\lpksetup-20081027-163928-0.log
[27/10/2008 18:41|--a------] C:\Windows\temp\lpksetup-20081027-184107-0.log
[27/10/2008 18:41|--a------] C:\Windows\temp\lpksetup-20081027-184123-0.log
[29/10/2008 03:51|--a------] C:\Windows\temp\lpksetup-20081029-035115-0.log
[29/10/2008 03:51|--a------] C:\Windows\temp\lpksetup-20081029-035130-0.log
[29/10/2008 13:54|--a------] C:\Windows\temp\lpksetup-20081029-135443-0.log
[29/10/2008 13:54|--a------] C:\Windows\temp\lpksetup-20081029-135458-0.log
[30/10/2008 05:10|--a------] C:\Windows\temp\lpksetup-20081030-051013-0.log
[30/10/2008 05:10|--a------] C:\Windows\temp\lpksetup-20081030-051027-0.log
[30/10/2008 13:06|--a------] C:\Windows\temp\lpksetup-20081030-130624-0.log
[30/10/2008 13:06|--a------] C:\Windows\temp\lpksetup-20081030-130638-0.log
[30/10/2008 22:11|--a------] C:\Windows\temp\lpksetup-20081030-221057-0.log
[30/10/2008 22:11|--a------] C:\Windows\temp\lpksetup-20081030-221111-0.log
[31/10/2008 03:18|--a------] C:\Windows\temp\lpksetup-20081031-031525-0.log
[31/10/2008 03:18|--a------] C:\Windows\temp\lpksetup-20081031-031812-0.log
[01/11/2008 23:17|--a------] C:\Windows\temp\lpksetup-20081101-231449-0.log
[01/11/2008 23:17|--a------] C:\Windows\temp\lpksetup-20081101-231713-0.log
[04/11/2008 09:51|--a------] C:\Windows\temp\lpksetup-20081104-095138-0.log
[04/11/2008 09:51|--a------] C:\Windows\temp\lpksetup-20081104-095153-0.log
[05/11/2008 16:52|--a------] C:\Windows\temp\lpksetup-20081105-165202-0.log
[05/11/2008 16:52|--a------] C:\Windows\temp\lpksetup-20081105-165216-0.log
[07/11/2008 03:56|--a------] C:\Windows\temp\lpksetup-20081107-035603-0.log
[07/11/2008 03:56|--a------] C:\Windows\temp\lpksetup-20081107-035617-0.log
[07/11/2008 04:52|--a------] C:\Windows\temp\lpksetup-20081107-045212-0.log
[07/11/2008 04:52|--a------] C:\Windows\temp\lpksetup-20081107-045228-0.log
[07/11/2008 08:34|--a------] C:\Windows\temp\lpksetup-20081107-083346-0.log
[07/11/2008 08:34|--a------] C:\Windows\temp\lpksetup-20081107-083402-0.log
[16/10/2008 11:39|--a----t-] C:\Windows\temp\mcafee_3mBwpEhn9PzyPcq
[15/10/2008 12:12|--a----t-] C:\Windows\temp\mcafee_9eCeat084Z1bz4V
[07/11/2008 03:55|--a----t-] C:\Windows\temp\mcafee_B7ljhHhBdnwcFsI
[27/10/2008 08:11|--a----t-] C:\Windows\temp\mcafee_CzkXjpxg97cRKah
[03/10/2008 17:09|--a----t-] C:\Windows\temp\mcafee_du1ZiMthIj8hfLh
[14/10/2008 07:33|--a----t-] C:\Windows\temp\mcafee_EX8jfdWvYeOEZkD
[19/10/2008 18:16|--a----t-] C:\Windows\temp\mcafee_fXSHGV55CZx4jk7
[22/10/2008 21:55|--a----t-] C:\Windows\temp\mcafee_KZ5DPbtb9M8l8Z8
[07/10/2008 01:08|--a----t-] C:\Windows\temp\mcafee_MizWBpFMgfvNoY7
[04/10/2008 01:02|--a----t-] C:\Windows\temp\mcafee_nvGdkGVbpR5rwlO
[03/10/2008 15:27|d--------] C:\Windows\temp\MCE00000
[03/10/2008 16:12|d--------] C:\Windows\temp\MCE00001
[04/10/2008 00:01|d--------] C:\Windows\temp\MCE00002
[04/10/2008 00:03|d--------] C:\Windows\temp\MCE00003
[04/10/2008 01:00|d--------] C:\Windows\temp\MCE00004
[07/10/2008 01:08|d--------] C:\Windows\temp\MCE00005
[07/10/2008 06:51|d--------] C:\Windows\temp\MCE00006
[08/10/2008 19:17|d--------] C:\Windows\temp\MCE00007
[09/10/2008 02:50|d--------] C:\Windows\temp\MCE00008
[09/10/2008 15:40|d--------] C:\Windows\temp\MCE00009
[10/10/2008 02:14|d--------] C:\Windows\temp\MCE0000a
[10/10/2008 20:29|d--------] C:\Windows\temp\MCE0000b
[12/10/2008 17:48|d--------] C:\Windows\temp\MCE0000c
[13/10/2008 02:22|d--------] C:\Windows\temp\MCE0000d
[13/10/2008 15:01|d--------] C:\Windows\temp\MCE0000e
[14/10/2008 07:32|d--------] C:\Windows\temp\MCE0000f
[15/10/2008 01:36|d--------] C:\Windows\temp\MCE00010
[15/10/2008 10:27|d--------] C:\Windows\temp\MCE00011
[16/10/2008 08:06|d--------] C:\Windows\temp\MCE00012
[16/10/2008 11:27|d--------] C:\Windows\temp\MCE00013
[16/10/2008 13:27|d--------] C:\Windows\temp\MCE00014
[17/10/2008 18:13|d--------] C:\Windows\temp\MCE00015
[18/10/2008 07:35|d--------] C:\Windows\temp\MCE00016
[18/10/2008 10:08|d--------] C:\Windows\temp\MCE00017
[18/10/2008 11:23|d--------] C:\Windows\temp\MCE00018
[18/10/2008 21:36|d--------] C:\Windows\temp\MCE00019
[19/10/2008 03:16|d--------] C:\Windows\temp\MCE0001a
[19/10/2008 17:27|d--------] C:\Windows\temp\MCE0001b
[19/10/2008 22:59|d--------] C:\Windows\temp\MCE0001c
[20/10/2008 23:17|d--------] C:\Windows\temp\MCE0001d
[21/10/2008 04:10|d--------] C:\Windows\temp\MCE0001e
[22/10/2008 02:58|d--------] C:\Windows\temp\MCE0001f
[22/10/2008 12:35|d--------] C:\Windows\temp\MCE00020
[22/10/2008 21:54|d--------] C:\Windows\temp\MCE00021
[23/10/2008 00:02|d--------] C:\Windows\temp\MCE00022
[23/10/2008 00:51|d--------] C:\Windows\temp\MCE00023
[23/10/2008 02:54|d--------] C:\Windows\temp\MCE00024
[24/10/2008 20:54|d--------] C:\Windows\temp\MCE00025
[24/10/2008 23:15|d--------] C:\Windows\temp\MCE00026
[25/10/2008 19:59|d--------] C:\Windows\temp\MCE00027
[26/10/2008 06:49|d--------] C:\Windows\temp\MCE00028
[27/10/2008 08:10|d--------] C:\Windows\temp\MCE00029
[27/10/2008 16:25|d--------] C:\Windows\temp\MCE0002a
[27/10/2008 18:27|d--------] C:\Windows\temp\MCE0002b
[29/10/2008 03:36|d--------] C:\Windows\temp\MCE0002c
[29/10/2008 13:07|d--------] C:\Windows\temp\MCE0002d
[29/10/2008 13:20|d--------] C:\Windows\temp\MCE0002e
[29/10/2008 13:32|d--------] C:\Windows\temp\MCE0002f
[29/10/2008 13:40|d--------] C:\Windows\temp\MCE00030
[30/10/2008 04:55|d--------] C:\Windows\temp\MCE00031
[30/10/2008 12:52|d--------] C:\Windows\temp\MCE00032
[30/10/2008 21:52|d--------] C:\Windows\temp\MCE00033
[30/10/2008 21:55|d--------] C:\Windows\temp\MCE00034
[31/10/2008 03:01|d--------] C:\Windows\temp\MCE00035
[01/11/2008 23:00|d--------] C:\Windows\temp\MCE00036
[04/11/2008 09:37|d--------] C:\Windows\temp\MCE00037
[05/11/2008 16:37|d--------] C:\Windows\temp\MCE00038
[07/11/2008 03:41|d--------] C:\Windows\temp\MCE00039
[07/11/2008 04:38|d--------] C:\Windows\temp\MCE0003a
[07/11/2008 07:51|d--------] C:\Windows\temp\MCE0003b
[07/11/2008 08:04|d--------] C:\Windows\temp\MCE0003c
[07/11/2008 08:08|d--------] C:\Windows\temp\MCE0003d
[07/11/2008 08:19|d--------] C:\Windows\temp\MCE0003e
[07/11/2008 09:25|d--------] C:\Windows\temp\MCE0003f
[16/10/2008 05:25|--a----t-] C:\Windows\temp\mcmsc_1ON7NQadeq4HyqG
[15/10/2008 10:28|--a----t-] C:\Windows\temp\mcmsc_6OVNmqKKxAGOCQp
[19/10/2008 17:30|--a----t-] C:\Windows\temp\mcmsc_7a0qv3cdFf3vewJ
[22/10/2008 21:55|--a----t-] C:\Windows\temp\mcmsc_AYFprsgjHzhE9Ig
[30/10/2008 21:53|--a----t-] C:\Windows\temp\mcmsc_D8g6ANxFy3mrw3S
[22/10/2008 12:36|--a----t-] C:\Windows\temp\mcmsc_EqbokuHnjpbfnCF
[03/10/2008 16:43|--a----t-] C:\Windows\temp\mcmsc_J7HZdkBQoUDwoJa
[04/10/2008 01:00|--a----t-] C:\Windows\temp\mcmsc_lpj7GyQQeiXhWau
[16/10/2008 11:30|--a----t-] C:\Windows\temp\mcmsc_lSx2c2Gb0K8F0D4
[07/10/2008 01:08|--a----t-] C:\Windows\temp\mcmsc_o7edGAFmgebqTTR
[15/10/2008 12:51|--a----t-] C:\Windows\temp\mcmsc_oOeAxMHQjukWqch
[27/10/2008 08:31|--a----t-] C:\Windows\temp\mcmsc_PBbd3mRQzZt7uuc
[07/11/2008 09:26|--a----t-] C:\Windows\temp\mcmsc_psioC0hjbLQSuDg
[03/10/2008 16:14|--a----t-] C:\Windows\temp\mcmsc_qVsDlHDdmXbmk1h
[27/10/2008 08:11|--a----t-] C:\Windows\temp\mcmsc_rVdUqhmjBYXEBOZ
[27/10/2008 08:31|--a----t-] C:\Windows\temp\mcmsc_TEggExaRQ3hZqPt
[14/10/2008 07:33|--a----t-] C:\Windows\temp\mcmsc_Tfdu28HXq8Djmo0
[10/10/2008 02:15|--a----t-] C:\Windows\temp\mcmsc_Twa3IyRiPH7srVw
[29/10/2008 13:33|--a----t-] C:\Windows\temp\mcmsc_tYOJouAQurgMFmp
[06/10/2008 19:25|--a----t-] C:\Windows\temp\mcmsc_ukgSxbnDNJrWZj0
[07/11/2008 03:44|--a----t-] C:\Windows\temp\mcmsc_wMAhLodjvRRnJmZ
[23/10/2008 02:54|--a----t-] C:\Windows\temp\mcmsc_Y6cAwibujDD8aOl
[15/10/2008 12:51|--a----t-] C:\Windows\temp\mcmsc_YxtX3ppkLBSShh7
[03/10/2008 16:43|--a----t-] C:\Windows\temp\mcmsc_Z7Lq9VHq0FkZzYh
[03/10/2008 15:18|--a------] C:\Windows\temp\NMSP_EF.log
[05/03/2008 00:01|--a------] C:\Windows\temp\SetupAV.log
[05/03/2008 00:02|--a------] C:\Windows\temp\SetupAVC.log
[18/10/2008 21:37|--a----t-] C:\Windows\temp\sqlite_0NX0GSkUesqGM2K
[13/10/2008 15:02|--a----t-] C:\Windows\temp\sqlite_1umYqb899AwkG8i
[16/10/2008 08:07|--a----t-] C:\Windows\temp\sqlite_1z3krrykCOdqB5k
[29/10/2008 13:33|--a----t-] C:\Windows\temp\sqlite_2fWqZiAlB3hSQzV
[27/10/2008 08:11|--a----t-] C:\Windows\temp\sqlite_2gk4ZoSusUhxyMs
[29/10/2008 13:33|--a----t-] C:\Windows\temp\sqlite_2IjHdl3r4JmcwR8
[07/10/2008 01:09|--a----t-] C:\Windows\temp\sqlite_2kg8pWCjoGIEYLw
[25/10/2008 20:00|--a----t-] C:\Windows\temp\sqlite_2LT114gZDrBpLnc
[24/10/2008 20:55|--a----t-] C:\Windows\temp\sqlite_39oievZmihwWxsp
[19/10/2008 03:17|--a----t-] C:\Windows\temp\sqlite_3brjvihSPVNmhem
[07/11/2008 08:20|--a----t-] C:\Windows\temp\sqlite_3Kg24oERxl6WXdc
[29/10/2008 13:35|--a----t-] C:\Windows\temp\sqlite_5iCDgbUUlO6m9kU
[04/10/2008 00:04|--a----t-] C:\Windows\temp\sqlite_6jbOeKJkggtWTRZ
[18/10/2008 10:09|--a----t-] C:\Windows\temp\sqlite_6M43HdgGcN1Q2j5
[10/10/2008 02:15|--a----t-] C:\Windows\temp\sqlite_7CHMEsYBBl4X0kk
[23/10/2008 02:55|--a----t-] C:\Windows\temp\sqlite_7imc3PBsXpGyhqM
[15/10/2008 01:37|--a----t-] C:\Windows\temp\sqlite_7mdF6MeskewwoYG
[29/10/2008 03:37|--a----t-] C:\Windows\temp\sqlite_7ROL8F4c3Igpxhy
[16/10/2008 13:28|--a----t-] C:\Windows\temp\sqlite_84oD0Sibk8riPSJ
[23/10/2008 00:52|--a----t-] C:\Windows\temp\sqlite_863YeTRetHVdewc
[07/11/2008 08:20|--a----t-] C:\Windows\temp\sqlite_9FbKZRE6bWluH26
[19/10/2008 17:28|--a----t-] C:\Windows\temp\sqlite_9FJfqjKxlqfpacr
[30/10/2008 21:56|--a----t-] C:\Windows\temp\sqlite_AaVVTF4pdKqc2Mo
[03/10/2008 15:28|--a----t-] C:\Windows\temp\sqlite_AbBogCnzIpZYFEB
[23/10/2008 05:08|--a----t-] C:\Windows\temp\sqlite_aoeknxPwhci1zSM
[30/10/2008 12:53|--a----t-] C:\Windows\temp\sqlite_C1edZCudggCWX72
[15/10/2008 01:37|--a----t-] C:\Windows\temp\sqlite_CgNTTQgNcB9dbAJ
[15/10/2008 10:28|--a----t-] C:\Windows\temp\sqlite_cN4D4Y5I8m2hQli
[22/10/2008 12:36|--a----t-] C:\Windows\temp\sqlite_cN74YFy9yXaNapc
[18/10/2008 07:37|--a----t-] C:\Windows\temp\sqlite_DB9lwpA259JDNfx
[24/10/2008 20:55|--a----t-] C:\Windows\temp\sqlite_DcpuCxbueRIFmPN
[29/10/2008 13:08|--a----t-] C:\Windows\temp\sqlite_ddVpdrZgwrfwu3e
[13/10/2008 02:23|--a----t-] C:\Windows\temp\sqlite_DG6sllNXY2oMwOW
[12/10/2008 17:49|--a----t-] C:\Windows\temp\sqlite_dZyZtcsfMkvpjLE
[22/10/2008 21:55|--a----t-] C:\Windows\temp\sqlite_eEDqzWpHLt0DH2r
[29/10/2008 13:41|--a----t-] C:\Windows\temp\sqlite_EkQ8FhCp5i99IQc
[23/10/2008 00:52|--a----t-] C:\Windows\temp\sqlite_Eme922crDVaR5pg
[17/10/2008 18:14|--a----t-] C:\Windows\temp\sqlite_Esx9CA1GRU9Dofz
[04/11/2008 09:38|--a----t-] C:\Windows\temp\sqlite_fe1lrcuKv3LSlQd
[29/10/2008 03:37|--a----t-] C:\Windows\temp\sqlite_fhHfdLoHEoTT0Qh
[30/10/2008 21:53|--a----t-] C:\Windows\temp\sqlite_fIheYaObu0eAnJA
[15/10/2008 10:28|--a----t-] C:\Windows\temp\sqlite_fKrIMBytduRFw3Z
[18/10/2008 07:37|--a----t-] C:\Windows\temp\sqlite_fOMW9CUpmpaPAgo
[04/10/2008 00:04|--a----t-] C:\Windows\temp\sqlite_gETWrSMAbg5Zbv4
[08/10/2008 19:18|--a----t-] C:\Windows\temp\sqlite_Gk45iqz1Ee41wue
[26/10/2008 06:50|--a----t-] C:\Windows\temp\sqlite_glml9qMsaTla4WQ
[07/11/2008 04:39|--a----t-] C:\Windows\temp\sqlite_GrDu6l2womk6fe9
[22/10/2008 02:59|--a----t-] C:\Windows\temp\sqlite_GtDbcNAWWDcXECY
[26/10/2008 06:50|--a----t-] C:\Windows\temp\sqlite_GXg7Oi5biYvJmDO
[10/10/2008 20:30|--a----t-] C:\Windows\temp\sqlite_H3J0SsAPTtrKK5p
[22/10/2008 02:59|--a----t-] C:\Windows\temp\sqlite_heMpdfB5sO7ectt
[07/11/2008 03:42|--a----t-] C:\Windows\temp\sqlite_HivUVVsg6WCjuzL
[08/10/2008 19:18|--a----t-] C:\Windows\temp\sqlite_hJ79g0D08iMTOsf
[07/11/2008 03:42|--a----t-] C:\Windows\temp\sqlite_I7lgxnFK4AgWJR4
[16/10/2008 08:07|--a----t-] C:\Windows\temp\sqlite_icdE1ISIMDAhpDl
[19/10/2008 23:00|--a----t-] C:\Windows\temp\sqlite_iEqn8JI5HJGrgNB
[05/11/2008 16:38|--a----t-] C:\Windows\temp\sqlite_IZ2eEvCUf7r1KFf
[09/10/2008 02:51|--a----t-] C:\Windows\temp\sqlite_JAGnPrhbbtJxRHA
[31/10/2008 03:02|--a----t-] C:\Windows\temp\sqlite_JBYcQhzYu8NZwhq
[18/10/2008 11:24|--a----t-] C:\Windows\temp\sqlite_JFtJfxANI74Rc02
[19/10/2008 03:17|--a----t-] C:\Windows\temp\sqlite_jujuu6fV1Ogm7Gu
[23/10/2008 00:03|--a----t-] C:\Windows\temp\sqlite_k0oZx6Pnj1bgQ9f
[07/11/2008 09:26|--a----t-] C:\Windows\temp\sqlite_K7zK9orBoIqMObr
[29/10/2008 13:21|--a----t-] C:\Windows\temp\sqlite_KfR4UirdiJ1CDaf
[07/11/2008 09:26|--a----t-] C:\Windows\temp\sqlite_KtKmaMsaKxZehfn
[27/10/2008 16:26|--a----t-] C:\Windows\temp\sqlite_kvXGFXafNegs7Xg
[27/10/2008 18:28|--a----t-] C:\Windows\temp\sqlite_l0eG6PbGJFow0ls
[09/10/2008 02:51|--a----t-] C:\Windows\temp\sqlite_LgOIE6haC81797S
[30/10/2008 04:56|--a----t-] C:\Windows\temp\sqlite_lHtneHcRgN8I0F3
[10/10/2008 02:15|--a----t-] C:\Windows\temp\sqlite_lVvtuMWxdmVrld7
[09/10/2008 15:41|--a----t-] C:\Windows\temp\sqlite_lWcR5YwAth7AWjw
[04/11/2008 09:38|--a----t-] C:\Windows\temp\sqlite_LXFCoPX1YUUz7sy
[29/10/2008 13:08|--a----t-] C:\Windows\temp\sqlite_LytyBQH6CbS0yIb
[14/10/2008 07:33|--a----t-] C:\Windows\temp\sqlite_M7pOS0sRU0bi5ob
[27/10/2008 18:28|--a----t-] C:\Windows\temp\sqlite_Mbh15AGYsqutejt
[07/11/2008 08:09|--a----t-] C:\Windows\temp\sqlite_mLbfUA31D0G1wLQ
[04/10/2008 01:01|--a----t-] C:\Windows\temp\sqlite_mQZura1A1VZg5cS
[18/10/2008 21:37|--a----t-] C:\Windows\temp\sqlite_mRuEnSa3merkYem
[19/10/2008 17:28|--a----t-] C:\Windows\temp\sqlite_MUVFuLwGqNg9oVF
[13/10/2008 02:23|--a----t-] C:\Windows\temp\sqlite_N6zkPT845AeAy3e
[29/10/2008 13:21|--a----t-] C:\Windows\temp\sqlite_N8c6hR95JK49sB0
[19/10/2008 23:00|--a----t-] C:\Windows\temp\sqlite_naAf7dbk2qfpRA0
[20/10/2008 23:18|--a----t-] C:\Windows\temp\sqlite_Nhgykej946q88MU
[04/10/2008 01:01|--a----t-] C:\Windows\temp\sqlite_NrogLyRQ46mKIz4
[22/10/2008 12:36|--a----t-] C:\Windows\temp\sqlite_O7z0MX1ithpgKBZ
[14/10/2008 07:33|--a----t-] C:\Windows\temp\sqlite_OSk3MZ1P6XiBwmf
[23/10/2008 02:55|--a----t-] C:\Windows\temp\sqlite_oZ6grmmDgERbB3a
[16/10/2008 11:28|--a----t-] C:\Windows\temp\sqlite_p70mpgV0aVX5yxM
[16/10/2008 13:28|--a----t-] C:\Windows\temp\sqlite_poVbqPemJepgWe0
[30/10/2008 12:53|--a----t-] C:\Windows\temp\sqlite_PQe9YcSenuk30Ov
[18/10/2008 11:24|--a----t-] C:\Windows\temp\sqlite_PvXCsLrMVcXxHht
[24/10/2008 23:16|--a----t-] C:\Windows\temp\sqlite_Q7xKR64N9KSqX18
[03/10/2008 14:52|--a----t-] C:\Windows\temp\sqlite_qBPxTwSmlX9PLBA
[05/03/2008 00:20|--a----t-] C:\Windows\temp\sqlite_QeAxRhvCHJlIMOg
[25/10/2008 20:00|--a----t-] C:\Windows\temp\sqlite_qvuNcHyZIe0Xv7G
[07/10/2008 06:52|--a----t-] C:\Windows\temp\sqlite_QZvrgTXgCj9CCOI
[05/11/2008 16:38|--a----t-] C:\Windows\temp\sqlite_rbSORgILnTwdOoQ
[04/10/2008 00:02|--a----t-] C:\Windows\temp\sqlite_RbU3WQZjEx80Aja
[01/11/2008 23:01|--a----t-] C:\Windows\temp\sqlite_rcj7Mrjw5YbEadU
[10/10/2008 20:30|--a----t-] C:\Windows\temp\sqlite_RcMuqnntn4Vx8Cl
[03/10/2008 15:28|--a----t-] C:\Windows\temp\sqlite_SePykEeAEFzJAst
[30/10/2008 21:53|--a----t-] C:\Windows\temp\sqlite_SgEkOLEdD65p7wt
[22/10/2008 21:16|--a----t-] C:\Windows\temp\sqlite_tCdq2HvVZK6xBil
[04/10/2008 00:02|--a----t-] C:\Windows\temp\sqlite_tyW6nmUfY3CX3Tm
[07/11/2008 07:52|--a----t-] C:\Windows\temp\sqlite_u4ks9wRm4M05yFw
[07/11/2008 08:09|--a----t-] C:\Windows\temp\sqlite_U7ptLrgtdCxpE0J
[03/10/2008 16:13|--a----t-] C:\Windows\temp\sqlite_UeQDSCl3v40ibGW
[05/03/2008 00:20|--a----t-] C:\Windows\temp\sqlite_UKMYgh65HQuw48L
[24/10/2008 23:16|--a----t-] C:\Windows\temp\sqlite_UUfh8sJEXarcBvU
[03/10/2008 16:13|--a----t-] C:\Windows\temp\sqlite_UWX02drOJdZaB7c
[18/10/2008 10:09|--a----t-] C:\Windows\temp\sqlite_vaYO7OXa13qVw5R
[29/10/2008 13:41|--a----t-] C:\Windows\temp\sqlite_vbnxnQCqsQ6hxiQ
[16/10/2008 11:28|--a----t-] C:\Windows\temp\sqlite_Virs0RxBO7z779f
[27/10/2008 16:26|--a----t-] C:\Windows\temp\sqlite_VxplOlIt45Imp1k
[30/10/2008 21:56|--a----t-] C:\Windows\temp\sqlite_w18ed158XbVTpsf
[31/10/2008 03:02|--a----t-] C:\Windows\temp\sqlite_weRBN3wa0uJganh
[23/10/2008 00:03|--a----t-] C:\Windows\temp\sqlite_wuazf8BHUmvDwMz
[07/10/2008 06:52|--a----t-] C:\Windows\temp\sqlite_XbRzqKpTUn7Ipjy
[22/10/2008 21:55|--a----t-] C:\Windows\temp\sqlite_XYursm4p51U8ZGR
[12/10/2008 17:49|--a----t-] C:\Windows\temp\sqlite_yAK701bkqhPJNzb
[21/10/2008 04:11|--a----t-] C:\Windows\temp\sqlite_ylt7vVFzZYMHFVQ
[09/10/2008 15:41|--a----t-] C:\Windows\temp\sqlite_ynjUopvLyislaVQ
[03/10/2008 14:52|--a----t-] C:\Windows\temp\sqlite_Yp3qEaOz2iYsLfb
[21/10/2008 04:11|--a----t-] C:\Windows\temp\sqlite_YsWf54omu30I55s
[07/11/2008 07:52|--a----t-] C:\Windows\temp\sqlite_yZXNHOcTt8TMBPW
[01/11/2008 23:01|--a----t-] C:\Windows\temp\sqlite_zcIr0o6EaY3SkGE
[27/10/2008 08:11|--a----t-] C:\Windows\temp\sqlite_ZCL0moPQ1tR6Wlo
[20/10/2008 23:18|--a----t-] C:\Windows\temp\sqlite_zcXbeudeVUtWELf
[30/10/2008 04:56|--a----t-] C:\Windows\temp\sqlite_Zfux1oq12IketPN
[13/10/2008 15:02|--a----t-] C:\Windows\temp\sqlite_Zgs4kHUJGNktNej
[07/10/2008 01:09|--a----t-] C:\Windows\temp\sqlite_zlNvAfIKZc1AdUw
[17/10/2008 18:14|--a----t-] C:\Windows\temp\sqlite_zmDuUmAekuCugg8
[07/11/2008 04:39|--a----t-] C:\Windows\temp\sqlite_ZZWVZlfgEdJ6EeE
[03/10/2008 15:45|d--------] C:\Windows\temp\SxsTemp
[07/11/2008 09:23|--a------] C:\Windows\temp\WERBA4C.tmp.hdmp
[07/11/2008 09:25|--a------] C:\Windows\temp\WFV4420.tmp
[03/10/2008 14:53|--a------] C:\Windows\temp\WinSAT_DX.etl
[03/10/2008 14:53|--a------] C:\Windows\temp\WinSAT_KernelLog.etl
[03/10/2008 14:55|--a------] C:\Windows\temp\WinSAT_StorageAsmt.etl
[02/11/2006 13:56|--a------] C:\Windows\temp\wmsetup.log
[02/11/2006 12:18|d--------] C:\Windows\temp\~msdt


+---------- Scanning prefs.js ... ( # Mozilla User Preferences )

...\ggpivvsj.default\prefs.js :

STARTPAGE: "http://www.lo.st"

+----------+


+---------------------------------------------------------------------------+


+---------- Added scan ...

+-----[HKLM\...\Run]

Windows Defender REG_EXPAND_SZ %ProgramFiles%\Windows Defender\MSASCui.exe -hide
ECenter REG_SZ C:\Dell\E-Center\EULALauncher.exe
RtHDVCpl REG_SZ RtHDVCpl.exe
OEM07Mon.exe REG_SZ C:\Windows\OEM07Mon.exe
IgfxTray REG_SZ C:\Windows\system32\igfxtray.exe
HotKeysCmds REG_SZ C:\Windows\system32\hkcmd.exe
Persistence REG_SZ C:\Windows\system32\igfxpers.exe
SunJavaUpdateSched REG_SZ "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
UserSwitch REG_SZ C:\Windows\System32\FastUserSwitching.exe
DELL Webcam Manager REG_SZ "C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe" /s
Kernel and Hardware Abstraction Layer REG_SZ KHALMNPR.EXE
NMSSupport REG_SZ "C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" /startup
CCUTRAYICON REG_SZ "C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe"
Google Desktop Search REG_SZ "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
dscactivate REG_SZ "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
mcagent_exe REG_SZ C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey
DellSupportCenter REG_SZ "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
EoEngine REG_SZ
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
SPAMfighter Agent REG_SZ "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
ISTray REG_SZ "C:\Program Files\Spyware Doctor\pctsTray.exe"
OlStatusMon REG_SZ "C:\Program Files\Olivetti\ANY_WAY\olDvcStatus.exe" dvcStatusMinimize

+-----[HKCU\...\Run]

ehTray.exe REG_SZ C:\Windows\ehome\ehTray.exe
swg REG_SZ C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
DellSupportCenter REG_SZ "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
WMPNSCFG REG_SZ C:\Program Files\Windows Media Player\WMPNSCFG.exe

+-----[HKLM\...\Internet Explorer\MAIN]

Start Page : hxxp://go.microsoft.com/fwlink/?LinkId=69157

+-----[HKCU\...\Internet Explorer\MAIN]

Start Page : hxxp://www.lo.st

+---------------------------------------------------------------------------+
+------------------------------- [ EOF - 539 lines ]
+---------------------------------------------------------------------------+

[ END at: 9:27:36 | 07/11/2008 ] - [ Time elapsed: 73.2 seconds ]
0
Réponse 13 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
/!\ Déconnecte-toi et ferme toutes applications en cours /!\

● Clique droit sur AD-Remover et choisis Exécuter en tant qu'administrateur : au menu principal choisi l'option "B".

--> Le programme va travailler...

● Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report.log)

/!\ Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr, Onglet "Fichier", "Nouvelle tâche", tape explorer.exe et valide) /!\
0
Réponse 14 / 18
FAB
 
F --------- Logfile of AD-Remover 1.0.2.7 by C_XX ---------

START at: 9:38:29 | 07/11/2008
ON: Microsoft Windows [version 6.0.6000] ( Windows Vista )
OPTION: Clean
EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat
USER: F. ALBERT-BRUNET | PC: PC-BUREAU
BOOT MODE: Normal
UAC is disable
DRIVE(S): C:\ D:\ E:\ F:\ G:\ H:\ I:\ (Systemdrive= C:\)

--------- [ PROCESSES ] ---------

C:\Windows\system32\csrss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\OEM07Mon.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Windows\System32\FastUserSwitching.exe
C:\Program Files\DELL\Dell Webcam Manager\DellWMgr.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Program Files\Olivetti\ANY_WAY\olDvcStatus.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\Intel\IntelDH\CCU\CCU_Engine.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\SetPoint\SetPoint.exe
C:\Windows\System32\MediaButtons.exe
C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\System32\DELLOSD.exe
C:\Windows\system32\AERTSrv.exe
C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe
C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\SPAMfighter\sfus.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\taskeng.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\WUDFHost.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\System32\cmd.exe
C:\Windows\System32\WScript.exe
C:\Windows\system32\wbem\wmiprvse.exe

---------------------------- [ 84 ]

+---------------------------------------------------------------------------+
+------------------------------- SERVICES DELETED
+---------------------------------------------------------------------------+

+---------------------------------------------------------------------------+
+------------------------------- REGISTRY ELEMENTS DELETED
+---------------------------------------------------------------------------+

"HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run" /v "EoEngine"
"HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64F56FC1-1272-44CD-BA6E-39723696E350}"
"HKEY_CURRENT_USER\SOFTWARE\EoRezo"
"HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}"
"HKEY_CLASSES_ROOT\EoRezoBHO.EoBho"
"HKEY_CLASSES_ROOT\EoRezoBHO.EoBho.1"
"HKEY_CLASSES_ROOT\Typelib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}"
"HKEY_CLASSES_ROOT\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}"

+---------------------------------------------------------------------------+
+------------------------------- FILES\FOLDERS DELETED
+---------------------------------------------------------------------------+

[04/11/2008 09:36|--a------] C:\Windows\PFRO.log
[07/11/2008 06:22|d--------] C:\Program Files\EoRezo

+---------- Temp files deleted.. ( Elements deleted was not necessarily harmful )

[07/11/2008 09:21|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\Administrateur.bmp
[07/11/2008 09:25|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\AUInst.log
[07/11/2008 09:37|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\F. ALBERT-BRUNET.bmp
[07/11/2008 09:21|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\Invit‚.bmp
[07/11/2008 09:21|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\IUSR_NMPR.bmp
[07/11/2008 09:30|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\jusched.log
[07/11/2008 09:22|d--------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\Low
[07/11/2008 09:11|d--------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\outlook logging
[07/11/2008 09:26|d--------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\svl5c.tmp
[07/11/2008 09:26|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\wmplog00.sqm
[07/11/2008 09:26|d--------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\WPDNSE
[07/11/2008 08:36|d--------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\{b34d56f9-d769-4174-90dd-b13a07d4ca4b}
[07/11/2008 08:18|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\~DF2B15.tmp
[07/11/2008 08:08|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\~DF3D5A.tmp
/!\ - [07/11/2008 09:25|---------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\~DFAEB0.tmp
[02/11/2006 13:48|d--------] C:\Windows\temp\cmi{99681151-3537-434F-8D53-AA0EF9812DEC}
[03/10/2008 14:52|--a------] C:\Windows\temp\coinlog.log
[03/10/2008 15:31|d--hs----] C:\Windows\temp\Cookies
[13/11/2006 09:46|--a------] C:\Windows\temp\DMI2D18.tmp
[04/03/2008 23:49|--a------] C:\Windows\temp\DMI9CDA.tmp
[04/03/2008 23:55|--a------] C:\Windows\temp\DMIE001.tmp
[24/10/2008 23:20|--a------] C:\Windows\temp\ehprivjob.log
[09/10/2008 03:30|--a------] C:\Windows\temp\ehprivjob1.log
[03/10/2008 15:32|--a------] C:\Windows\temp\ehprivjob2.log
[03/10/2008 15:18|--a------] C:\Windows\temp\ehprivjob3.log
[03/10/2008 15:18|--a------] C:\Windows\temp\ehprivjob4.log
[03/10/2008 15:31|d--hs----] C:\Windows\temp\Fichiers Internet temporaires
[03/10/2008 16:43|d--------] C:\Windows\temp\Google Toolbar
[03/10/2008 16:43|--a------] C:\Windows\temp\GoogleToolbarInstaller1.log
[03/10/2008 16:43|--a------] C:\Windows\temp\GoogleToolbarInstaller2.log
[03/10/2008 15:31|d--hs----] C:\Windows\temp\History
[07/10/2008 01:23|--a------] C:\Windows\temp\lpksetup-20081007-022303-0.log
[07/10/2008 01:23|--a------] C:\Windows\temp\lpksetup-20081007-022320-0.log
[07/10/2008 07:06|--a------] C:\Windows\temp\lpksetup-20081007-080635-0.log
[07/10/2008 07:06|--a------] C:\Windows\temp\lpksetup-20081007-080649-0.log
[08/10/2008 19:31|--a------] C:\Windows\temp\lpksetup-20081008-203136-0.log
[08/10/2008 19:31|--a------] C:\Windows\temp\lpksetup-20081008-203153-0.log
[09/10/2008 03:05|--a------] C:\Windows\temp\lpksetup-20081009-040453-0.log
[09/10/2008 03:05|--a------] C:\Windows\temp\lpksetup-20081009-040511-0.log
[09/10/2008 15:55|--a------] C:\Windows\temp\lpksetup-20081009-165532-0.log
[09/10/2008 15:55|--a------] C:\Windows\temp\lpksetup-20081009-165549-0.log
[10/10/2008 20:45|--a------] C:\Windows\temp\lpksetup-20081010-214423-0.log
[10/10/2008 20:45|--a------] C:\Windows\temp\lpksetup-20081010-214523-0.log
[12/10/2008 18:03|--a------] C:\Windows\temp\lpksetup-20081012-190320-0.log
[12/10/2008 18:03|--a------] C:\Windows\temp\lpksetup-20081012-190337-0.log
[13/10/2008 02:37|--a------] C:\Windows\temp\lpksetup-20081013-033734-0.log
[13/10/2008 02:37|--a------] C:\Windows\temp\lpksetup-20081013-033753-0.log
[13/10/2008 15:16|--a------] C:\Windows\temp\lpksetup-20081013-161616-0.log
[13/10/2008 15:16|--a------] C:\Windows\temp\lpksetup-20081013-161632-0.log
[14/10/2008 07:47|--a------] C:\Windows\temp\lpksetup-20081014-084725-0.log
[14/10/2008 07:47|--a------] C:\Windows\temp\lpksetup-20081014-084740-0.log
[15/10/2008 01:51|--a------] C:\Windows\temp\lpksetup-20081015-025131-0.log
[15/10/2008 01:51|--a------] C:\Windows\temp\lpksetup-20081015-025145-0.log
[15/10/2008 10:42|--a------] C:\Windows\temp\lpksetup-20081015-114233-0.log
[15/10/2008 10:42|--a------] C:\Windows\temp\lpksetup-20081015-114250-0.log
[16/10/2008 08:20|--a------] C:\Windows\temp\lpksetup-20081016-092031-0.log
[16/10/2008 08:20|--a------] C:\Windows\temp\lpksetup-20081016-092046-0.log
[16/10/2008 11:42|--a------] C:\Windows\temp\lpksetup-20081016-124245-0.log
[16/10/2008 11:43|--a------] C:\Windows\temp\lpksetup-20081016-124259-0.log
[16/10/2008 13:42|--a------] C:\Windows\temp\lpksetup-20081016-144245-0.log
[16/10/2008 13:42|--a------] C:\Windows\temp\lpksetup-20081016-144259-0.log
[17/10/2008 18:29|--a------] C:\Windows\temp\lpksetup-20081017-192844-0.log
[17/10/2008 18:29|--a------] C:\Windows\temp\lpksetup-20081017-192904-0.log
[18/10/2008 07:51|--a------] C:\Windows\temp\lpksetup-20081018-085047-0.log
[18/10/2008 07:51|--a------] C:\Windows\temp\lpksetup-20081018-085101-0.log
[18/10/2008 10:23|--a------] C:\Windows\temp\lpksetup-20081018-112301-0.log
[18/10/2008 10:23|--a------] C:\Windows\temp\lpksetup-20081018-112315-0.log
[18/10/2008 11:39|--a------] C:\Windows\temp\lpksetup-20081018-123856-0.log
[18/10/2008 11:39|--a------] C:\Windows\temp\lpksetup-20081018-123910-0.log
[18/10/2008 21:51|--a------] C:\Windows\temp\lpksetup-20081018-225117-0.log
[18/10/2008 21:51|--a------] C:\Windows\temp\lpksetup-20081018-225131-0.log
[19/10/2008 03:31|--a------] C:\Windows\temp\lpksetup-20081019-043142-0.log
[19/10/2008 03:31|--a------] C:\Windows\temp\lpksetup-20081019-043159-0.log
[19/10/2008 17:43|--a------] C:\Windows\temp\lpksetup-20081019-184251-0.log
[19/10/2008 17:43|--a------] C:\Windows\temp\lpksetup-20081019-184304-0.log
[19/10/2008 23:14|--a------] C:\Windows\temp\lpksetup-20081020-001425-0.log
[19/10/2008 23:14|--a------] C:\Windows\temp\lpksetup-20081020-001442-0.log
[20/10/2008 23:32|--a------] C:\Windows\temp\lpksetup-20081021-003206-0.log
[20/10/2008 23:32|--a------] C:\Windows\temp\lpksetup-20081021-003220-0.log
[21/10/2008 04:26|--a------] C:\Windows\temp\lpksetup-20081021-052553-0.log
[21/10/2008 04:26|--a------] C:\Windows\temp\lpksetup-20081021-052609-0.log
[22/10/2008 03:13|--a------] C:\Windows\temp\lpksetup-20081022-041314-0.log
[22/10/2008 03:13|--a------] C:\Windows\temp\lpksetup-20081022-041328-0.log
[22/10/2008 12:50|--a------] C:\Windows\temp\lpksetup-20081022-135044-0.log
[22/10/2008 12:50|--a------] C:\Windows\temp\lpksetup-20081022-135058-0.log
[22/10/2008 22:09|--a------] C:\Windows\temp\lpksetup-20081022-230942-0.log
[22/10/2008 22:09|--a------] C:\Windows\temp\lpksetup-20081022-230956-0.log
[23/10/2008 00:18|--a------] C:\Windows\temp\lpksetup-20081023-011758-0.log
[23/10/2008 00:18|--a------] C:\Windows\temp\lpksetup-20081023-011815-0.log
[23/10/2008 01:06|--a------] C:\Windows\temp\lpksetup-20081023-020606-0.log
[23/10/2008 01:06|--a------] C:\Windows\temp\lpksetup-20081023-020619-0.log
[23/10/2008 03:08|--a------] C:\Windows\temp\lpksetup-20081023-040811-0.log
[23/10/2008 03:08|--a------] C:\Windows\temp\lpksetup-20081023-040825-0.log
[24/10/2008 21:10|--a------] C:\Windows\temp\lpksetup-20081024-220936-0.log
[24/10/2008 21:10|--a------] C:\Windows\temp\lpksetup-20081024-221025-0.log
[24/10/2008 23:30|--a------] C:\Windows\temp\lpksetup-20081025-003001-0.log
[24/10/2008 23:30|--a------] C:\Windows\temp\lpksetup-20081025-003015-0.log
[25/10/2008 20:14|--a------] C:\Windows\temp\lpksetup-20081025-211402-0.log
[25/10/2008 20:14|--a------] C:\Windows\temp\lpksetup-20081025-211415-0.log
[26/10/2008 07:04|--a------] C:\Windows\temp\lpksetup-20081026-070351-0.log
[26/10/2008 07:04|--a------] C:\Windows\temp\lpksetup-20081026-070408-0.log
[27/10/2008 08:26|--a------] C:\Windows\temp\lpksetup-20081027-082554-0.log
[27/10/2008 08:26|--a------] C:\Windows\temp\lpksetup-20081027-082608-0.log
[27/10/2008 16:39|--a------] C:\Windows\temp\lpksetup-20081027-163914-0.log
[27/10/2008 16:39|--a------] C:\Windows\temp\lpksetup-20081027-163928-0.log
[27/10/2008 18:41|--a------] C:\Windows\temp\lpksetup-20081027-184107-0.log
[27/10/2008 18:41|--a------] C:\Windows\temp\lpksetup-20081027-184123-0.log
[29/10/2008 03:51|--a------] C:\Windows\temp\lpksetup-20081029-035115-0.log
[29/10/2008 03:51|--a------] C:\Windows\temp\lpksetup-20081029-035130-0.log
[29/10/2008 13:54|--a------] C:\Windows\temp\lpksetup-20081029-135443-0.log
[29/10/2008 13:54|--a------] C:\Windows\temp\lpksetup-20081029-135458-0.log
[30/10/2008 05:10|--a------] C:\Windows\temp\lpksetup-20081030-051013-0.log
[30/10/2008 05:10|--a------] C:\Windows\temp\lpksetup-20081030-051027-0.log
[30/10/2008 13:06|--a------] C:\Windows\temp\lpksetup-20081030-130624-0.log
[30/10/2008 13:06|--a------] C:\Windows\temp\lpksetup-20081030-130638-0.log
[30/10/2008 22:11|--a------] C:\Windows\temp\lpksetup-20081030-221057-0.log
[30/10/2008 22:11|--a------] C:\Windows\temp\lpksetup-20081030-221111-0.log
[31/10/2008 03:18|--a------] C:\Windows\temp\lpksetup-20081031-031525-0.log
[31/10/2008 03:18|--a------] C:\Windows\temp\lpksetup-20081031-031812-0.log
[01/11/2008 23:17|--a------] C:\Windows\temp\lpksetup-20081101-231449-0.log
[01/11/2008 23:17|--a------] C:\Windows\temp\lpksetup-20081101-231713-0.log
[04/11/2008 09:51|--a------] C:\Windows\temp\lpksetup-20081104-095138-0.log
[04/11/2008 09:51|--a------] C:\Windows\temp\lpksetup-20081104-095153-0.log
[05/11/2008 16:52|--a------] C:\Windows\temp\lpksetup-20081105-165202-0.log
[05/11/2008 16:52|--a------] C:\Windows\temp\lpksetup-20081105-165216-0.log
[07/11/2008 03:56|--a------] C:\Windows\temp\lpksetup-20081107-035603-0.log
[07/11/2008 03:56|--a------] C:\Windows\temp\lpksetup-20081107-035617-0.log
[07/11/2008 04:52|--a------] C:\Windows\temp\lpksetup-20081107-045212-0.log
[07/11/2008 04:52|--a------] C:\Windows\temp\lpksetup-20081107-045228-0.log
[07/11/2008 08:34|--a------] C:\Windows\temp\lpksetup-20081107-083346-0.log
[07/11/2008 08:34|--a------] C:\Windows\temp\lpksetup-20081107-083402-0.log
[07/11/2008 09:39|--a------] C:\Windows\temp\lpksetup-20081107-093932-0.log
[07/11/2008 09:39|--a------] C:\Windows\temp\lpksetup-20081107-093947-0.log
[16/10/2008 11:39|--a----t-] C:\Windows\temp\mcafee_3mBwpEhn9PzyPcq
[15/10/2008 12:12|--a----t-] C:\Windows\temp\mcafee_9eCeat084Z1bz4V
[07/11/2008 03:55|--a----t-] C:\Windows\temp\mcafee_B7ljhHhBdnwcFsI
[27/10/2008 08:11|--a----t-] C:\Windows\temp\mcafee_CzkXjpxg97cRKah
[03/10/2008 17:09|--a----t-] C:\Windows\temp\mcafee_du1ZiMthIj8hfLh
[14/10/2008 07:33|--a----t-] C:\Windows\temp\mcafee_EX8jfdWvYeOEZkD
[19/10/2008 18:16|--a----t-] C:\Windows\temp\mcafee_fXSHGV55CZx4jk7
[22/10/2008 21:55|--a----t-] C:\Windows\temp\mcafee_KZ5DPbtb9M8l8Z8
[07/10/2008 01:08|--a----t-] C:\Windows\temp\mcafee_MizWBpFMgfvNoY7
[04/10/2008 01:02|--a----t-] C:\Windows\temp\mcafee_nvGdkGVbpR5rwlO
[03/10/2008 15:27|d--------] C:\Windows\temp\MCE00000
[03/10/2008 16:12|d--------] C:\Windows\temp\MCE00001
[04/10/2008 00:01|d--------] C:\Windows\temp\MCE00002
[04/10/2008 00:03|d--------] C:\Windows\temp\MCE00003
[04/10/2008 01:00|d--------] C:\Windows\temp\MCE00004
[07/10/2008 01:08|d--------] C:\Windows\temp\MCE00005
[07/10/2008 06:51|d--------] C:\Windows\temp\MCE00006
[08/10/2008 19:17|d--------] C:\Windows\temp\MCE00007
[09/10/2008 02:50|d--------] C:\Windows\temp\MCE00008
[09/10/2008 15:40|d--------] C:\Windows\temp\MCE00009
[10/10/2008 02:14|d--------] C:\Windows\temp\MCE0000a
[10/10/2008 20:29|d--------] C:\Windows\temp\MCE0000b
[12/10/2008 17:48|d--------] C:\Windows\temp\MCE0000c
[13/10/2008 02:22|d--------] C:\Windows\temp\MCE0000d
[13/10/2008 15:01|d--------] C:\Windows\temp\MCE0000e
[14/10/2008 07:32|d--------] C:\Windows\temp\MCE0000f
[15/10/2008 01:36|d--------] C:\Windows\temp\MCE00010
[15/10/2008 10:27|d--------] C:\Windows\temp\MCE00011
[16/10/2008 08:06|d--------] C:\Windows\temp\MCE00012
[16/10/2008 11:27|d--------] C:\Windows\temp\MCE00013
[16/10/2008 13:27|d--------] C:\Windows\temp\MCE00014
[17/10/2008 18:13|d--------] C:\Windows\temp\MCE00015
[18/10/2008 07:35|d--------] C:\Windows\temp\MCE00016
[18/10/2008 10:08|d--------] C:\Windows\temp\MCE00017
[18/10/2008 11:23|d--------] C:\Windows\temp\MCE00018
[18/10/2008 21:36|d--------] C:\Windows\temp\MCE00019
[19/10/2008 03:16|d--------] C:\Windows\temp\MCE0001a
[19/10/2008 17:27|d--------] C:\Windows\temp\MCE0001b
[19/10/2008 22:59|d--------] C:\Windows\temp\MCE0001c
[20/10/2008 23:17|d--------] C:\Windows\temp\MCE0001d
[21/10/2008 04:10|d--------] C:\Windows\temp\MCE0001e
[22/10/2008 02:58|d--------] C:\Windows\temp\MCE0001f
[22/10/2008 12:35|d--------] C:\Windows\temp\MCE00020
[22/10/2008 21:54|d--------] C:\Windows\temp\MCE00021
[23/10/2008 00:02|d--------] C:\Windows\temp\MCE00022
[23/10/2008 00:51|d--------] C:\Windows\temp\MCE00023
[23/10/2008 02:54|d--------] C:\Windows\temp\MCE00024
[24/10/2008 20:54|d--------] C:\Windows\temp\MCE00025
[24/10/2008 23:15|d--------] C:\Windows\temp\MCE00026
[25/10/2008 19:59|d--------] C:\Windows\temp\MCE00027
[26/10/2008 06:49|d--------] C:\Windows\temp\MCE00028
[27/10/2008 08:10|d--------] C:\Windows\temp\MCE00029
[27/10/2008 16:25|d--------] C:\Windows\temp\MCE0002a
[27/10/2008 18:27|d--------] C:\Windows\temp\MCE0002b
[29/10/2008 03:36|d--------] C:\Windows\temp\MCE0002c
[29/10/2008 13:07|d--------] C:\Windows\temp\MCE0002d
[29/10/2008 13:20|d--------] C:\Windows\temp\MCE0002e
[29/10/2008 13:32|d--------] C:\Windows\temp\MCE0002f
[29/10/2008 13:40|d--------] C:\Windows\temp\MCE00030
[30/10/2008 04:55|d--------] C:\Windows\temp\MCE00031
[30/10/2008 12:52|d--------] C:\Windows\temp\MCE00032
[30/10/2008 21:52|d--------] C:\Windows\temp\MCE00033
[30/10/2008 21:55|d--------] C:\Windows\temp\MCE00034
[31/10/2008 03:01|d--------] C:\Windows\temp\MCE00035
[01/11/2008 23:00|d--------] C:\Windows\temp\MCE00036
[04/11/2008 09:37|d--------] C:\Windows\temp\MCE00037
[05/11/2008 16:37|d--------] C:\Windows\temp\MCE00038
[07/11/2008 03:41|d--------] C:\Windows\temp\MCE00039
[07/11/2008 04:38|d--------] C:\Windows\temp\MCE0003a
[07/11/2008 07:51|d--------] C:\Windows\temp\MCE0003b
[07/11/2008 08:04|d--------] C:\Windows\temp\MCE0003c
[07/11/2008 08:08|d--------] C:\Windows\temp\MCE0003d
[07/11/2008 08:19|d--------] C:\Windows\temp\MCE0003e
[07/11/2008 09:25|d--------] C:\Windows\temp\MCE0003f
[16/10/2008 05:25|--a----t-] C:\Windows\temp\mcmsc_1ON7NQadeq4HyqG
[15/10/2008 10:28|--a----t-] C:\Windows\temp\mcmsc_6OVNmqKKxAGOCQp
[19/10/2008 17:30|--a----t-] C:\Windows\temp\mcmsc_7a0qv3cdFf3vewJ
[22/10/2008 21:55|--a----t-] C:\Windows\temp\mcmsc_AYFprsgjHzhE9Ig
[30/10/2008 21:53|--a----t-] C:\Windows\temp\mcmsc_D8g6ANxFy3mrw3S
[22/10/2008 12:36|--a----t-] C:\Windows\temp\mcmsc_EqbokuHnjpbfnCF
[03/10/2008 16:43|--a----t-] C:\Windows\temp\mcmsc_J7HZdkBQoUDwoJa
[04/10/2008 01:00|--a----t-] C:\Windows\temp\mcmsc_lpj7GyQQeiXhWau
[16/10/2008 11:30|--a----t-] C:\Windows\temp\mcmsc_lSx2c2Gb0K8F0D4
[07/10/2008 01:08|--a----t-] C:\Windows\temp\mcmsc_o7edGAFmgebqTTR
[15/10/2008 12:51|--a----t-] C:\Windows\temp\mcmsc_oOeAxMHQjukWqch
[27/10/2008 08:31|--a----t-] C:\Windows\temp\mcmsc_PBbd3mRQzZt7uuc
/!\ - [07/11/2008 09:26|-------t-] C:\Windows\temp\mcmsc_psioC0hjbLQSuDg
[03/10/2008 16:14|--a----t-] C:\Windows\temp\mcmsc_qVsDlHDdmXbmk1h
[27/10/2008 08:11|--a----t-] C:\Windows\temp\mcmsc_rVdUqhmjBYXEBOZ
[27/10/2008 08:31|--a----t-] C:\Windows\temp\mcmsc_TEggExaRQ3hZqPt
[14/10/2008 07:33|--a----t-] C:\Windows\temp\mcmsc_Tfdu28HXq8Djmo0
[10/10/2008 02:15|--a----t-] C:\Windows\temp\mcmsc_Twa3IyRiPH7srVw
[29/10/2008 13:33|--a----t-] C:\Windows\temp\mcmsc_tYOJouAQurgMFmp
[06/10/2008 19:25|--a----t-] C:\Windows\temp\mcmsc_ukgSxbnDNJrWZj0
[07/11/2008 03:44|--a----t-] C:\Windows\temp\mcmsc_wMAhLodjvRRnJmZ
[23/10/2008 02:54|--a----t-] C:\Windows\temp\mcmsc_Y6cAwibujDD8aOl
[15/10/2008 12:51|--a----t-] C:\Windows\temp\mcmsc_YxtX3ppkLBSShh7
[03/10/2008 16:43|--a----t-] C:\Windows\temp\mcmsc_Z7Lq9VHq0FkZzYh
[03/10/2008 15:18|--a------] C:\Windows\temp\NMSP_EF.log
[05/03/2008 00:01|--a------] C:\Windows\temp\SetupAV.log
[05/03/2008 00:02|--a------] C:\Windows\temp\SetupAVC.log
[18/10/2008 21:37|--a----t-] C:\Windows\temp\sqlite_0NX0GSkUesqGM2K
[13/10/2008 15:02|--a----t-] C:\Windows\temp\sqlite_1umYqb899AwkG8i
[16/10/2008 08:07|--a----t-] C:\Windows\temp\sqlite_1z3krrykCOdqB5k
[29/10/2008 13:33|--a----t-] C:\Windows\temp\sqlite_2fWqZiAlB3hSQzV
[27/10/2008 08:11|--a----t-] C:\Windows\temp\sqlite_2gk4ZoSusUhxyMs
[29/10/2008 13:33|--a----t-] C:\Windows\temp\sqlite_2IjHdl3r4JmcwR8
[07/10/2008 01:09|--a----t-] C:\Windows\temp\sqlite_2kg8pWCjoGIEYLw
[25/10/2008 20:00|--a----t-] C:\Windows\temp\sqlite_2LT114gZDrBpLnc
[24/10/2008 20:55|--a----t-] C:\Windows\temp\sqlite_39oievZmihwWxsp
[19/10/2008 03:17|--a----t-] C:\Windows\temp\sqlite_3brjvihSPVNmhem
[07/11/2008 08:20|--a----t-] C:\Windows\temp\sqlite_3Kg24oERxl6WXdc
[29/10/2008 13:35|--a----t-] C:\Windows\temp\sqlite_5iCDgbUUlO6m9kU
[04/10/2008 00:04|--a----t-] C:\Windows\temp\sqlite_6jbOeKJkggtWTRZ
[18/10/2008 10:09|--a----t-] C:\Windows\temp\sqlite_6M43HdgGcN1Q2j5
[10/10/2008 02:15|--a----t-] C:\Windows\temp\sqlite_7CHMEsYBBl4X0kk
[23/10/2008 02:55|--a----t-] C:\Windows\temp\sqlite_7imc3PBsXpGyhqM
[15/10/2008 01:37|--a----t-] C:\Windows\temp\sqlite_7mdF6MeskewwoYG
[29/10/2008 03:37|--a----t-] C:\Windows\temp\sqlite_7ROL8F4c3Igpxhy
[16/10/2008 13:28|--a----t-] C:\Windows\temp\sqlite_84oD0Sibk8riPSJ
[23/10/2008 00:52|--a----t-] C:\Windows\temp\sqlite_863YeTRetHVdewc
[07/11/2008 08:20|--a----t-] C:\Windows\temp\sqlite_9FbKZRE6bWluH26
[19/10/2008 17:28|--a----t-] C:\Windows\temp\sqlite_9FJfqjKxlqfpacr
[30/10/2008 21:56|--a----t-] C:\Windows\temp\sqlite_AaVVTF4pdKqc2Mo
[03/10/2008 15:28|--a----t-] C:\Windows\temp\sqlite_AbBogCnzIpZYFEB
[23/10/2008 05:08|--a----t-] C:\Windows\temp\sqlite_aoeknxPwhci1zSM
[30/10/2008 12:53|--a----t-] C:\Windows\temp\sqlite_C1edZCudggCWX72
[15/10/2008 01:37|--a----t-] C:\Windows\temp\sqlite_CgNTTQgNcB9dbAJ
[15/10/2008 10:28|--a----t-] C:\Windows\temp\sqlite_cN4D4Y5I8m2hQli
[22/10/2008 12:36|--a----t-] C:\Windows\temp\sqlite_cN74YFy9yXaNapc
[18/10/2008 07:37|--a----t-] C:\Windows\temp\sqlite_DB9lwpA259JDNfx
[24/10/2008 20:55|--a----t-] C:\Windows\temp\sqlite_DcpuCxbueRIFmPN
[29/10/2008 13:08|--a----t-] C:\Windows\temp\sqlite_ddVpdrZgwrfwu3e
[13/10/2008 02:23|--a----t-] C:\Windows\temp\sqlite_DG6sllNXY2oMwOW
[12/10/2008 17:49|--a----t-] C:\Windows\temp\sqlite_dZyZtcsfMkvpjLE
[22/10/2008 21:55|--a----t-] C:\Windows\temp\sqlite_eEDqzWpHLt0DH2r
[29/10/2008 13:41|--a----t-] C:\Windows\temp\sqlite_EkQ8FhCp5i99IQc
[23/10/2008 00:52|--a----t-] C:\Windows\temp\sqlite_Eme922crDVaR5pg
[17/10/2008 18:14|--a----t-] C:\Windows\temp\sqlite_Esx9CA1GRU9Dofz
[04/11/2008 09:38|--a----t-] C:\Windows\temp\sqlite_fe1lrcuKv3LSlQd
[29/10/2008 03:37|--a----t-] C:\Windows\temp\sqlite_fhHfdLoHEoTT0Qh
[30/10/2008 21:53|--a----t-] C:\Windows\temp\sqlite_fIheYaObu0eAnJA
[15/10/2008 10:28|--a----t-] C:\Windows\temp\sqlite_fKrIMBytduRFw3Z
[18/10/2008 07:37|--a----t-] C:\Windows\temp\sqlite_fOMW9CUpmpaPAgo
[04/10/2008 00:04|--a----t-] C:\Windows\temp\sqlite_gETWrSMAbg5Zbv4
[08/10/2008 19:18|--a----t-] C:\Windows\temp\sqlite_Gk45iqz1Ee41wue
[26/10/2008 06:50|--a----t-] C:\Windows\temp\sqlite_glml9qMsaTla4WQ
[07/11/2008 04:39|--a----t-] C:\Windows\temp\sqlite_GrDu6l2womk6fe9
[22/10/2008 02:59|--a----t-] C:\Windows\temp\sqlite_GtDbcNAWWDcXECY
[26/10/2008 06:50|--a----t-] C:\Windows\temp\sqlite_GXg7Oi5biYvJmDO
[10/10/2008 20:30|--a----t-] C:\Windows\temp\sqlite_H3J0SsAPTtrKK5p
[22/10/2008 02:59|--a----t-] C:\Windows\temp\sqlite_heMpdfB5sO7ectt
[07/11/2008 03:42|--a----t-] C:\Windows\temp\sqlite_HivUVVsg6WCjuzL
[08/10/2008 19:18|--a----t-] C:\Windows\temp\sqlite_hJ79g0D08iMTOsf
[07/11/2008 03:42|--a----t-] C:\Windows\temp\sqlite_I7lgxnFK4AgWJR4
[16/10/2008 08:07|--a----t-] C:\Windows\temp\sqlite_icdE1ISIMDAhpDl
[19/10/2008 23:00|--a----t-] C:\Windows\temp\sqlite_iEqn8JI5HJGrgNB
[05/11/2008 16:38|--a----t-] C:\Windows\temp\sqlite_IZ2eEvCUf7r1KFf
[09/10/2008 02:51|--a----t-] C:\Windows\temp\sqlite_JAGnPrhbbtJxRHA
[31/10/2008 03:02|--a----t-] C:\Windows\temp\sqlite_JBYcQhzYu8NZwhq
[18/10/2008 11:24|--a----t-] C:\Windows\temp\sqlite_JFtJfxANI74Rc02
[19/10/2008 03:17|--a----t-] C:\Windows\temp\sqlite_jujuu6fV1Ogm7Gu
[23/10/2008 00:03|--a----t-] C:\Windows\temp\sqlite_k0oZx6Pnj1bgQ9f
/!\ - [07/11/2008 09:26|-------t-] C:\Windows\temp\sqlite_K7zK9orBoIqMObr
[29/10/2008 13:21|--a----t-] C:\Windows\temp\sqlite_KfR4UirdiJ1CDaf
/!\ - [07/11/2008 09:26|-------t-] C:\Windows\temp\sqlite_KtKmaMsaKxZehfn
[27/10/2008 16:26|--a----t-] C:\Windows\temp\sqlite_kvXGFXafNegs7Xg
[27/10/2008 18:28|--a----t-] C:\Windows\temp\sqlite_l0eG6PbGJFow0ls
[09/10/2008 02:51|--a----t-] C:\Windows\temp\sqlite_LgOIE6haC81797S
[30/10/2008 04:56|--a----t-] C:\Windows\temp\sqlite_lHtneHcRgN8I0F3
[10/10/2008 02:15|--a----t-] C:\Windows\temp\sqlite_lVvtuMWxdmVrld7
[09/10/2008 15:41|--a----t-] C:\Windows\temp\sqlite_lWcR5YwAth7AWjw
[04/11/2008 09:38|--a----t-] C:\Windows\temp\sqlite_LXFCoPX1YUUz7sy
[29/10/2008 13:08|--a----t-] C:\Windows\temp\sqlite_LytyBQH6CbS0yIb
[14/10/2008 07:33|--a----t-] C:\Windows\temp\sqlite_M7pOS0sRU0bi5ob
[27/10/2008 18:28|--a----t-] C:\Windows\temp\sqlite_Mbh15AGYsqutejt
[07/11/2008 08:09|--a----t-] C:\Windows\temp\sqlite_mLbfUA31D0G1wLQ
[04/10/2008 01:01|--a----t-] C:\Windows\temp\sqlite_mQZura1A1VZg5cS
[18/10/2008 21:37|--a----t-] C:\Windows\temp\sqlite_mRuEnSa3merkYem
[19/10/2008 17:28|--a----t-] C:\Windows\temp\sqlite_MUVFuLwGqNg9oVF
[13/10/2008 02:23|--a----t-] C:\Windows\temp\sqlite_N6zkPT845AeAy3e
[29/10/2008 13:21|--a----t-] C:\Windows\temp\sqlite_N8c6hR95JK49sB0
[19/10/2008 23:00|--a----t-] C:\Windows\temp\sqlite_naAf7dbk2qfpRA0
[20/10/2008 23:18|--a----t-] C:\Windows\temp\sqlite_Nhgykej946q88MU
[04/10/2008 01:01|--a----t-] C:\Windows\temp\sqlite_NrogLyRQ46mKIz4
[22/10/2008 12:36|--a----t-] C:\Windows\temp\sqlite_O7z0MX1ithpgKBZ
[14/10/2008 07:33|--a----t-] C:\Windows\temp\sqlite_OSk3MZ1P6XiBwmf
[23/10/2008 02:55|--a----t-] C:\Windows\temp\sqlite_oZ6grmmDgERbB3a
[16/10/2008 11:28|--a----t-] C:\Windows\temp\sqlite_p70mpgV0aVX5yxM
[16/10/2008 13:28|--a----t-] C:\Windows\temp\sqlite_poVbqPemJepgWe0
[30/10/2008 12:53|--a----t-] C:\Windows\temp\sqlite_PQe9YcSenuk30Ov
[18/10/2008 11:24|--a----t-] C:\Windows\temp\sqlite_PvXCsLrMVcXxHht
[24/10/2008 23:16|--a----t-] C:\Windows\temp\sqlite_Q7xKR64N9KSqX18
[03/10/2008 14:52|--a----t-] C:\Windows\temp\sqlite_qBPxTwSmlX9PLBA
[05/03/2008 00:20|--a----t-] C:\Windows\temp\sqlite_QeAxRhvCHJlIMOg
[25/10/2008 20:00|--a----t-] C:\Windows\temp\sqlite_qvuNcHyZIe0Xv7G
[07/10/2008 06:52|--a----t-] C:\Windows\temp\sqlite_QZvrgTXgCj9CCOI
[05/11/2008 16:38|--a----t-] C:\Windows\temp\sqlite_rbSORgILnTwdOoQ
[04/10/2008 00:02|--a----t-] C:\Windows\temp\sqlite_RbU3WQZjEx80Aja
[01/11/2008 23:01|--a----t-] C:\Windows\temp\sqlite_rcj7Mrjw5YbEadU
[10/10/2008 20:30|--a----t-] C:\Windows\temp\sqlite_RcMuqnntn4Vx8Cl
[03/10/2008 15:28|--a----t-] C:\Windows\temp\sqlite_SePykEeAEFzJAst
[30/10/2008 21:53|--a----t-] C:\Windows\temp\sqlite_SgEkOLEdD65p7wt
[22/10/2008 21:16|--a----t-] C:\Windows\temp\sqlite_tCdq2HvVZK6xBil
[04/10/2008 00:02|--a----t-] C:\Windows\temp\sqlite_tyW6nmUfY3CX3Tm
[07/11/2008 07:52|--a----t-] C:\Windows\temp\sqlite_u4ks9wRm4M05yFw
[07/11/2008 08:09|--a----t-] C:\Windows\temp\sqlite_U7ptLrgtdCxpE0J
[03/10/2008 16:13|--a----t-] C:\Windows\temp\sqlite_UeQDSCl3v40ibGW
[05/03/2008 00:20|--a----t-] C:\Windows\temp\sqlite_UKMYgh65HQuw48L
[24/10/2008 23:16|--a----t-] C:\Windows\temp\sqlite_UUfh8sJEXarcBvU
[03/10/2008 16:13|--a----t-] C:\Windows\temp\sqlite_UWX02drOJdZaB7c
[18/10/2008 10:09|--a----t-] C:\Windows\temp\sqlite_vaYO7OXa13qVw5R
[29/10/2008 13:41|--a----t-] C:\Windows\temp\sqlite_vbnxnQCqsQ6hxiQ
[16/10/2008 11:28|--a----t-] C:\Windows\temp\sqlite_Virs0RxBO7z779f
[27/10/2008 16:26|--a----t-] C:\Windows\temp\sqlite_VxplOlIt45Imp1k
[30/10/2008 21:56|--a----t-] C:\Windows\temp\sqlite_w18ed158XbVTpsf
[31/10/2008 03:02|--a----t-] C:\Windows\temp\sqlite_weRBN3wa0uJganh
[23/10/2008 00:03|--a----t-] C:\Windows\temp\sqlite_wuazf8BHUmvDwMz
[07/10/2008 06:52|--a----t-] C:\Windows\temp\sqlite_XbRzqKpTUn7Ipjy
[22/10/2008 21:55|--a----t-] C:\Windows\temp\sqlite_XYursm4p51U8ZGR
[12/10/2008 17:49|--a----t-] C:\Windows\temp\sqlite_yAK701bkqhPJNzb
[21/10/2008 04:11|--a----t-] C:\Windows\temp\sqlite_ylt7vVFzZYMHFVQ
[09/10/2008 15:41|--a----t-] C:\Windows\temp\sqlite_ynjUopvLyislaVQ
[03/10/2008 14:52|--a----t-] C:\Windows\temp\sqlite_Yp3qEaOz2iYsLfb
[21/10/2008 04:11|--a----t-] C:\Windows\temp\sqlite_YsWf54omu30I55s
[07/11/2008 07:52|--a----t-] C:\Windows\temp\sqlite_yZXNHOcTt8TMBPW
[01/11/2008 23:01|--a----t-] C:\Windows\temp\sqlite_zcIr0o6EaY3SkGE
[27/10/2008 08:11|--a----t-] C:\Windows\temp\sqlite_ZCL0moPQ1tR6Wlo
[20/10/2008 23:18|--a----t-] C:\Windows\temp\sqlite_zcXbeudeVUtWELf
[30/10/2008 04:56|--a----t-] C:\Windows\temp\sqlite_Zfux1oq12IketPN
[13/10/2008 15:02|--a----t-] C:\Windows\temp\sqlite_Zgs4kHUJGNktNej
[07/10/2008 01:09|--a----t-] C:\Windows\temp\sqlite_zlNvAfIKZc1AdUw
[17/10/2008 18:14|--a----t-] C:\Windows\temp\sqlite_zmDuUmAekuCugg8
[07/11/2008 04:39|--a----t-] C:\Windows\temp\sqlite_ZZWVZlfgEdJ6EeE
[03/10/2008 15:45|d--------] C:\Windows\temp\SxsTemp
[07/11/2008 09:23|--a------] C:\Windows\temp\WERBA4C.tmp.hdmp
/!\ - [07/11/2008 09:25|---------] C:\Windows\temp\WFV4420.tmp
[03/10/2008 14:53|--a------] C:\Windows\temp\WinSAT_DX.etl
[03/10/2008 14:53|--a------] C:\Windows\temp\WinSAT_KernelLog.etl
[03/10/2008 14:55|--a------] C:\Windows\temp\WinSAT_StorageAsmt.etl
[02/11/2006 13:56|--a------] C:\Windows\temp\wmsetup.log
[02/11/2006 12:18|d--------] C:\Windows\temp\~msdt

+---------- Scanning prefs.js ... ( # Mozilla User Preferences ) ----+

...\ggpivvsj.default\prefs.js :

STARTPAGE: "http://www.lo.st"

+----------+

+---------- Added scan ...

+-----[HKLM\...\Run]

Windows Defender REG_EXPAND_SZ %ProgramFiles%\Windows Defender\MSASCui.exe -hide
ECenter REG_SZ C:\Dell\E-Center\EULALauncher.exe
RtHDVCpl REG_SZ RtHDVCpl.exe
OEM07Mon.exe REG_SZ C:\Windows\OEM07Mon.exe
IgfxTray REG_SZ C:\Windows\system32\igfxtray.exe
HotKeysCmds REG_SZ C:\Windows\system32\hkcmd.exe
Persistence REG_SZ C:\Windows\system32\igfxpers.exe
SunJavaUpdateSched REG_SZ "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
UserSwitch REG_SZ C:\Windows\System32\FastUserSwitching.exe
DELL Webcam Manager REG_SZ "C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe" /s
Kernel and Hardware Abstraction Layer REG_SZ KHALMNPR.EXE
NMSSupport REG_SZ "C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" /startup
CCUTRAYICON REG_SZ "C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe"
Google Desktop Search REG_SZ "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
dscactivate REG_SZ "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
mcagent_exe REG_SZ C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey
DellSupportCenter REG_SZ "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
SPAMfighter Agent REG_SZ "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
ISTray REG_SZ "C:\Program Files\Spyware Doctor\pctsTray.exe"
OlStatusMon REG_SZ "C:\Program Files\Olivetti\ANY_WAY\olDvcStatus.exe" dvcStatusMinimize

+-----[HKCU\...\Run]

ehTray.exe REG_SZ C:\Windows\ehome\ehTray.exe
swg REG_SZ C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
DellSupportCenter REG_SZ "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
WMPNSCFG REG_SZ C:\Program Files\Windows Media Player\WMPNSCFG.exe

+-----[HKLM\...\Internet Explorer\MAIN]

Start Page : hxxp://go.microsoft.com/fwlink/?LinkId=69157

+-----[HKCU\...\Internet Explorer\MAIN]

Start Page : hxxp://www.lo.st

+---------------------------------------------------------------------------+
+------------------------------- [ EOF - 541 lines ]
+---------------------------------------------------------------------------+

[ END at: 9:45:57 | 07/11/2008 ] - [ Time elapsed: 7 minutes, 27 seconds ]
0
Réponse 15 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
Refais l'option A et poste le rapport.
0
Réponse 16 / 18
FAB
 
F --------- Logfile of AD-Remover 1.0.2.7 by C_XX ---------

START at: 9:48:58 | 07/11/2008
ON: Microsoft Windows [version 6.0.6000] ( Windows Vista )
OPTION: Scan
EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat
USER: F. ALBERT-BRUNET | PC: PC-BUREAU
BOOT MODE: Normal
UAC is disable
DRIVE(S): C:\ D:\ E:\ F:\ G:\ H:\ I:\ (Systemdrive= C:\)

--------- [ PROCESSES ] ---------

C:\Windows\system32\csrss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\OEM07Mon.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Windows\System32\FastUserSwitching.exe
C:\Program Files\DELL\Dell Webcam Manager\DellWMgr.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Program Files\Olivetti\ANY_WAY\olDvcStatus.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\Intel\IntelDH\CCU\CCU_Engine.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\SetPoint\SetPoint.exe
C:\Windows\System32\MediaButtons.exe
C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\System32\DELLOSD.exe
C:\Windows\system32\AERTSrv.exe
C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe
C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\SPAMfighter\sfus.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\taskeng.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\WUDFHost.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\explorer.exe
C:\Windows\System32\cmd.exe
C:\Windows\System32\WScript.exe
C:\Windows\system32\wbem\wmiprvse.exe

---------------------------- [ 84 ]

+---------------------------------------------------------------------------+
+------------------------------- SERVICES FOUND
+---------------------------------------------------------------------------+

+---------------------------------------------------------------------------+
+------------------------------- REGISTRY ELEMENTS FOUND
+---------------------------------------------------------------------------+

+---------------------------------------------------------------------------+
+------------------------------- FILES\FOLDERS FOUND
+---------------------------------------------------------------------------+

+---------- Temp files found.. ( Elements found aren't necessarily harmful )

[07/11/2008 09:41|--a------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\F. ALBERT-BRUNET.bmp
[07/11/2008 09:41|d--------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\WPDNSE
[07/11/2008 09:25|---------] C:\Users\F9D22~1.ALB\AppData\Local\Temp\~DFAEB0.tmp
[07/11/2008 09:26|-------t-] C:\Windows\temp\mcmsc_psioC0hjbLQSuDg
[07/11/2008 09:26|-------t-] C:\Windows\temp\sqlite_K7zK9orBoIqMObr
[07/11/2008 09:26|-------t-] C:\Windows\temp\sqlite_KtKmaMsaKxZehfn
[07/11/2008 09:25|---------] C:\Windows\temp\WFV4420.tmp

+---------- Scanning prefs.js ... ( # Mozilla User Preferences )

...\ggpivvsj.default\prefs.js :

STARTPAGE: "http://www.lo.st"

+----------+

+---------------------------------------------------------------------------+

+---------- Added scan ...

+-----[HKLM\...\Run]

Windows Defender REG_EXPAND_SZ %ProgramFiles%\Windows Defender\MSASCui.exe -hide
ECenter REG_SZ C:\Dell\E-Center\EULALauncher.exe
RtHDVCpl REG_SZ RtHDVCpl.exe
OEM07Mon.exe REG_SZ C:\Windows\OEM07Mon.exe
IgfxTray REG_SZ C:\Windows\system32\igfxtray.exe
HotKeysCmds REG_SZ C:\Windows\system32\hkcmd.exe
Persistence REG_SZ C:\Windows\system32\igfxpers.exe
SunJavaUpdateSched REG_SZ "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
UserSwitch REG_SZ C:\Windows\System32\FastUserSwitching.exe
DELL Webcam Manager REG_SZ "C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe" /s
Kernel and Hardware Abstraction Layer REG_SZ KHALMNPR.EXE
NMSSupport REG_SZ "C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" /startup
CCUTRAYICON REG_SZ "C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe"
Google Desktop Search REG_SZ "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
dscactivate REG_SZ "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
mcagent_exe REG_SZ C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey
DellSupportCenter REG_SZ "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
SPAMfighter Agent REG_SZ "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
ISTray REG_SZ "C:\Program Files\Spyware Doctor\pctsTray.exe"
OlStatusMon REG_SZ "C:\Program Files\Olivetti\ANY_WAY\olDvcStatus.exe" dvcStatusMinimize

+-----[HKCU\...\Run]

ehTray.exe REG_SZ C:\Windows\ehome\ehTray.exe
swg REG_SZ C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
DellSupportCenter REG_SZ "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
WMPNSCFG REG_SZ C:\Program Files\Windows Media Player\WMPNSCFG.exe

+-----[HKLM\...\Internet Explorer\MAIN]

Start Page : hxxp://fr.msn.com/

+-----[HKCU\...\Internet Explorer\MAIN]

Start Page : hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

+---------------------------------------------------------------------------+
+------------------------------- [ EOF - 162 lines ]
+---------------------------------------------------------------------------+

[ END at: 9:49:41 | 07/11/2008 ] - [ Time elapsed: 43.5 seconds ]
0
Réponse 17 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
Change ta page d'accueil, elle ne devrait plus se modifier.
0
FAB
 
Super ça a l'air de marcher...... Merci du temps que tu as pris pour ce paramétrage
As tu des infos à me donner pour configurer ma boite mail windows mail en relation avec mon compte Yahoo.
0
Réponse 18 / 18
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
Tu dois obligatoirement installer le SP1 de Vista :
http://www.microsoft.com/downloads/details.aspx?FamilyID=b0c7136d-5ebb-413b-89c9-cb3d06d12674&DisplayLang=fr

Utilise plutôt Mozilla Firefox qu'Internet Explorer :
http://www.mozilla-europe.org/fr/firefox/

"As tu des infos à me donner pour configurer ma boite mail windows mail en relation avec mon compte Yahoo."
---> http://www.commentcamarche.net/faq/sujet 995 yahoo configuration pop3 pour outlook eudora thunderbird
0
FAB
 
Encore mille MERCI

A +

FAB
0

Discussions similaires

Ouvrir un fichier .pub sans Publisher
baissaoui -
baissaoui -

0 réponse
Ouvrir document Publisher sans Publisher
Curtis Hayes -
Curtis Hayes -

7 réponses
lire un fichier .pub
xycoco -
Valou -

38 réponses
Lire, afficher, exécuter un fichier *.pub sans Publisher
jeannoellaurenti -
informatique_fujitsu -

1 réponse
Recherche nom acteur Pub
Visu -
Lorenzo -

4 réponses