Aller au contenu

scarves

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    16

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par scarves

  1. scarves
    plop bon j'ai fait presque toutes les grandes etapes indiquées en rouge si j'ai un nouveau soucis je devrais creer un new post ? je mets resolu en attendant comme indiqué Sinon en tout cas je te remercie pour ton aide et ta disponibilité j'aurais trop galéré sinon ^^
  2. scarves
    hum alors quand je fais la demarche OTL ça reboot tout ça mais ya pas de rapport sinon j'ai mis à jour le reste
  3. scarves
    rohh rapide merci en tout cas pour ta disponibilité et la rapidité des reponses donc voici le log le pc à reboot quelques fois voilou ComboFix 11-04-22.03 - pitta 23/04/2011 12:34:02.1.2 - x86 Microsoft Windows XP Professionnel 5.1.2600.3.1252.33.1036.18.3583.3142 [GMT 2:00] Lancé depuis: c:\documents and settings\pitta\Bureau\ComboFix.exe AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7} . . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\pitta\Application Data\Adobe\plugs c:\documents and settings\pitta\Application Data\Adobe\shed c:\documents and settings\pitta\Application Data\OfferBox c:\documents and settings\pitta\Application Data\OfferBox\config.xml C:\readme.txt . . ((((((((((((((((((((((((((((( Fichiers créés du 2011-03-23 au 2011-04-23 )))))))))))))))))))))))))))))))))))) . . 2011-04-22 18:20 . 2011-04-22 18:20 -------- d-----w- C:\_OTL 2011-04-22 14:15 . 2011-04-22 14:15 -------- d-sh--w- c:\documents and settings\NetworkService\PrivacIE 2011-04-19 08:39 . 2011-04-19 08:39 -------- d-----w- c:\windows\system32\wbem\Repository 2011-04-17 15:06 . 2011-04-19 08:38 -------- dc----w- c:\windows\ie8 2011-04-15 10:31 . 2011-04-15 10:31 54016 ----a-w- c:\windows\system32\drivers\blln.sys 2011-04-14 10:08 . 2011-04-14 10:13 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Adobe 2011-04-11 13:13 . 2011-04-11 13:13 54016 ----a-w- c:\windows\system32\drivers\obfn.sys 2011-04-11 11:26 . 2011-03-18 17:58 142296 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll 2011-04-11 11:26 . 2011-03-18 17:58 781272 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll 2011-04-11 11:26 . 2011-03-18 17:58 728024 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll 2011-04-11 11:26 . 2011-03-18 17:58 1975768 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_42.dll 2011-04-11 11:26 . 2011-03-18 17:58 1893336 ----a-w- c:\program files\Mozilla Firefox\d3dx9_42.dll 2011-04-11 11:26 . 2011-03-18 17:58 1874904 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll 2011-04-11 11:26 . 2011-03-18 17:58 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll 2011-04-11 11:26 . 2011-03-18 17:58 142296 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll 2011-04-11 07:28 . 2011-04-22 14:15 -------- d-----r- c:\documents and settings\NetworkService\Favoris 2011-03-31 09:08 . 2011-03-31 09:10 -------- d-----w- C:\Adèle - 21 . . . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2011-02-20 14:08 . 2011-02-20 14:07 4198724 ----a-w- C:\FileZilla_3.3.4.1_win32-setup.exe 2011-02-20 13:58 . 2011-02-20 13:58 623418 ----a-w- C:\BlackBoxFTP.by.ps3gunz.zip 2011-02-17 12:26 . 2011-02-17 12:13 391079393 ----a-w- C:\Archive_zazeur.zip 2011-02-09 13:54 . 2002-08-29 09:44 270848 ----a-w- c:\windows\system32\sbe.dll 2011-02-09 13:54 . 2002-08-29 09:44 186880 ----a-w- c:\windows\system32\encdec.dll 2011-02-02 07:59 . 2010-03-30 09:38 2067456 ----a-w- c:\windows\system32\mstscax.dll 2011-01-29 17:22 . 2011-01-29 17:22 24646 ----a-w- C:\03655c6d75fa56605a0d9a2422ca18f633e36a01.zip 2011-01-27 11:57 . 2010-03-30 09:38 677888 ----a-w- c:\windows\system32\mstsc.exe 2011-03-18 17:58 . 2011-04-11 11:26 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-07-09 39408] "BitTorrent"="c:\program files\BitTorrent\BitTorrent.exe" [2011-04-22 4772720] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153] "EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2010-06-26 1311312] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760] "Adobe ARM"="c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360] . c:\documents and settings\pitta\Menu D‚marrer\Programmes\D‚marrage\ CurseClientStartup.ccip [2011-2-1 0] . c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ PHOTOfunSTUDIO 5.1 HD Edition.lnk - c:\program files\Fichiers communs\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe [2011-2-14 172544] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableLinkedConnections"= 1 (0x1) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn] 2010-05-06 09:29 64592 ----a-w- c:\program files\Fichiers communs\LogiShrd\Bluetooth\LBTWLgn.dll . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^GammaTray.lnk] path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\GammaTray.lnk backup=c:\windows\pss\GammaTray.lnkCommon Startup . [HKLM\~\startupfolder\C:^Documents and Settings^pitta^Menu Démarrer^Programmes^Démarrage^CurseClientStartup.ccip] path=c:\documents and settings\pitta\Menu Démarrer\Programmes\Démarrage\CurseClientStartup.ccip backup=c:\windows\pss\CurseClientStartup.ccipStartup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2010-09-20 21:07 932288 ----a-r- c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] 2011-01-31 08:44 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICustomerCare] 2010-05-04 15:05 311296 ----a-r- c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent] 2011-04-22 19:18 4772720 ----a-w- c:\program files\BitTorrent\BitTorrent.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE] 2008-04-14 02:33 15360 ----a-w- c:\windows\system32\ctfmon.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] 2010-04-01 09:16 357696 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ManyCam] 2010-10-15 05:25 1721640 ----a-w- c:\program files\ManyCam\Bin\ManyCam.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] 2008-06-02 20:44 1660952 ----a-w- c:\program files\Messenger\Msmsgs.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] 2010-04-16 21:12 3872080 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent] 2010-03-26 09:52 1234216 ----a-w- c:\program files\Nero\Nero 10\Nero BackItUp\NBAgent.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL] 2009-08-14 06:08 18702336 ----a-w- c:\windows\RTHDCPL.EXE . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] 2010-10-11 15:49 14940040 ----a-r- c:\program files\Skype\Phone\Skype.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC] 2010-11-25 20:32 98304 ----a-w- c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2010-05-14 10:44 248552 ----a-w- c:\program files\Fichiers communs\Java\Java Update\jusched.exe . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\World of Warcraft\\WoW-3.2.0-frFR-downloader.exe"= "c:\\Program Files\\World of Warcraft\\Launcher.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\MagicTune Premium\\MagicTune.exe"= "c:\\Program Files\\Ventrilo\\Ventrilo.exe"= "c:\\Program Files\\BitTorrent\\BitTorrent.exe"= "c:\\Program Files\\Messenger\\Msmsgs.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= "c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"= "c:\\Program Files\\Call of DutyModern Warfare 2\\iw4mp.exe"= "c:\\Program Files\\Electronic Arts\\Need for Speed Hot Pursuit\\Launcher.exe"= "c:\\Program Files\\Electronic Arts\\Need for Speed Hot Pursuit\\NFS11.exe"= "c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\mIRC\\mirc.exe"= "c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"= "c:\\Program Files\\FileZilla FTP Client\\filezilla.exe"= "c:\\Documents and Settings\\pitta\\Local Settings\\Apps\\2.0\\96P0O3PZ.BOZ\\4LNT281M.WD6\\curs..tion_eee711038731a406_0004.0000_efb506202a7c3b08\\CurseClient.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "3724:TCP"= 3724:TCP:Blizzard Downloader: 3724 . R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [04/11/2010 22:24 691696] R2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [09/07/2010 10:35 108289] R2 cpuz134;cpuz134;c:\windows\system32\drivers\cpuz134_x32.sys [19/11/2010 08:10 20328] R2 LBeepKE;Logitech Beep Suppression Driver;c:\windows\system32\drivers\LBeepKE.sys [24/07/2010 15:53 10448] R2 libusbd;LibUsb-Win32 - Daemon, Version 0.1.10.1;system32\libusbd-nt.exe --> system32\libusbd-nt.exe [?] R2 NAUpdate;@c:\program files\Nero\Update\NASvc.exe,-200;c:\program files\Nero\Update\NASvc.exe [25/03/2010 15:39 490280] R3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.10.1;c:\windows\system32\drivers\libusb0.sys [19/12/2010 00:40 33792] R3 TotRec8;Total Recorder WDM audio filter driver;c:\windows\system32\drivers\TotRec8.sys [01/02/2011 02:21 91216] S2 AMService;AMService;c:\windows\TEMP\mtiy\setup.exe run --> c:\windows\TEMP\mtiy\setup.exe run [?] S2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [09/07/2010 10:18 136176] S2 pvctzzze;PCANDIS5 NDIS Protocol Helper;c:\windows\System32\svchost.exe -k netsvcs [28/08/2001 14:00 14336] S3 Alpham;Ideazon Merc Composite Keyboard Driver;c:\windows\system32\drivers\Alpham.sys [12/03/2006 13:11 37248] S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [30/03/2010 12:06 1684736] S3 PS3 Media Server;PS3 Media Server;c:\program files\PS3 Media Server\win32\service\wrapper.exe [17/08/2008 10:40 217088] S3 XPADFL02;XPAD Filter Service 02;c:\windows\system32\drivers\xPADFL02.sys [19/12/2010 00:41 27904] . HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs pvctzzze . . ------- Examen supplémentaire ------- . uStart Page = hxxp://www.google.com/ IE: Free YouTube to Mp3 Converter - c:\documents and settings\pitta\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html IE: Liens de téléchargement avec Mega Manager... - c:\program files\Megaupload\Mega Manager\mm_file.htm IE: Post Image to Blog - c:\program files\ImageShackToolbar\ImageShackToolbar.dll/5003 IE: Tag This Image - c:\program files\ImageShackToolbar\ImageShackToolbar.dll/5002 IE: Transload Image to ImageShack - c:\program files\ImageShackToolbar\ImageShackToolbar.dll/5004 IE: Upload All Images to ImageShack - c:\program files\ImageShackToolbar\ImageShackToolbar.dll/5000 IE: Upload Image to ImageShack - c:\program files\ImageShackToolbar\ImageShackToolbar.dll/5001 FF - ProfilePath - c:\documents and settings\pitta\Application Data\Mozilla\Firefox\Profiles\gvwd237t.default\ FF - prefs.js: browser.search.defaulturl - FF - prefs.js: browser.search.selectedEngine - FF - prefs.js: network.proxy.type - 0 . - - - - ORPHELINS SUPPRIMES - - - - . BHO-{F0921779-632A-3B6E-68C5-AE3DBE8219CB} - c:\windows\system32\jqzevvyv.dll HKU-Default-Run-Metropolis - c:\windows\system32\sshnas21.dll MSConfigStartUp-RGSC - c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-04-23 12:42 Windows 5.1.2600 Service Pack 3 NTFS . Recherche de processus cachés ... . Recherche d'éléments en démarrage automatique cachés ... . Recherche de fichiers cachés ... . Scan terminé avec succès Fichiers cachés: 0 . ************************************************************************** . --------------------- CLES DE REGISTRE BLOQUEES --------------------- . [HKEY_USERS\S-1-5-21-2000478354-1085031214-725345543-1003\Software\SecuROM\License information*] "datasecu"=hex:b8,ce,c2,17,ca,d9,70,1a,da,f2,c7,09,f9,48,07,c4,4e,a9,1b,90,ef, 95,42,e6,b1,13,58,98,d5,30,e2,35,af,85,05,ec,13,36,82,ab,14,02,78,77,2d,b9,\ "rkeysecu"=hex:ec,33,6a,53,d9,b1,5f,65,0e,15,6b,da,2a,91,c8,8f . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10p_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10p_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . --------------------- DLLs chargées dans les processus actifs --------------------- . - - - - - - - > 'winlogon.exe'(744) c:\windows\system32\Ati2evxx.dll c:\windows\system32\atiadlxx.dll c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll . - - - - - - - > 'explorer.exe'(2268) c:\windows\system32\msi.dll c:\windows\system32\ieframe.dll c:\windows\system32\eappprxy.dll c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . ------------------------ Autres processus actifs ------------------------ . c:\windows\system32\Ati2evxx.exe c:\windows\system32\Ati2evxx.exe c:\program files\Avira\AntiVir Desktop\avguard.exe c:\windows\system32\bgsvcgen.exe c:\program files\Java\jre6\bin\jqs.exe c:\windows\system32\libusbd-nt.exe c:\program files\MagicTune Premium\MagicTuneEngine.exe c:\program files\Fichiers communs\LogiShrd\KHAL3\KHALMNPR.EXE c:\windows\Microsoft.NET\Framework\v2.0.50727\dfsvc.exe c:\windows\System32\wbem\wmiapsrv.exe c:\program files\MagicTune Premium\MagicTune.exe c:\windows\system32\wscntfy.exe . ************************************************************************** . Heure de fin: 2011-04-23 12:46:34 - La machine a redémarré ComboFix-quarantined-files.txt 2011-04-23 10:46 . Avant-CF: 36 189 519 872 octets libres Après-CF: 36 126 539 776 octets libres . WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /fastdetect /NoExecute=OptIn . Current=5 Default=5 Failed=4 LastKnownGood=6 Sets=1,2,3,4,5,6 - - End Of File - - A0BF933BBD5B7A415A76D03AC40DC5C5
  4. scarves
    plop voila j'ai fait un peu de place scan otl OTL logfile created on: 23/04/2011 10:59:38 - Run 2 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\pitta\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 78,00% Memory free 5,00 Gb Paging File | 5,00 Gb Available in Paging File | 86,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 232,88 Gb Total Space | 34,69 Gb Free Space | 14,90% Space Free | Partition Type: NTFS Drive J: | 189,92 Gb Total Space | 0,89 Gb Free Space | 0,47% Space Free | Partition Type: NTFS Computer Name: SCARVESSE | User Name: pitta | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2011/04/22 21:18:05 | 004,772,720 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\BitTorrent\BitTorrent.exe PRC - [2011/04/22 18:39:45 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\pitta\Bureau\OTL.exe PRC - [2011/03/18 19:58:47 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010/11/20 18:55:36 | 001,704,960 | ---- | M] (Curse) -- C:\Documents and Settings\pitta\Local Settings\Apps\2.0\96P0O3PZ.BOZ\4LNT281M.WD6\curs..tion_eee711038731a406_0004.0000_efb506202a7c3b08\CurseClient.exe PRC - [2010/06/26 02:15:32 | 001,311,312 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe PRC - [2010/06/22 21:09:20 | 000,112,208 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Fichiers communs\LogiShrd\KHAL3\KHALMNPR.exe PRC - [2010/03/25 15:39:22 | 000,490,280 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Update\NASvc.exe PRC - [2010/03/15 11:58:30 | 000,172,544 | ---- | M] (Panasonic Corporation) -- C:\Program Files\Fichiers communs\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe PRC - [2010/01/08 00:26:54 | 002,478,080 | ---- | M] (SEC) -- C:\Program Files\MagicTune Premium\MagicTune.exe PRC - [2009/07/21 14:33:58 | 000,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2009/05/13 16:47:40 | 000,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2009/03/02 13:08:11 | 000,209,153 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2008/04/14 04:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007/08/23 15:05:00 | 000,045,056 | ---- | M] () -- C:\Program Files\MagicTune Premium\MagicTuneEngine.exe PRC - [2007/06/15 13:57:42 | 000,145,504 | ---- | M] (B.H.A Corporation) -- C:\WINDOWS\system32\bgsvcgen.exe PRC - [2005/03/09 21:50:18 | 000,018,944 | ---- | M] (http://libusb-win32.sourceforge.net'>http://libusb-win32.sourceforge.net) -- C:\WINDOWS\system32\libusbd-nt.exe ========== Modules (SafeList) ========== MOD - [2011/04/22 18:39:45 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\pitta\Bureau\OTL.exe MOD - [2010/08/23 18:12:39 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll ========== Win32 Services (SafeList) ========== SRV - File not found [Auto | Stopped] -- -- (pvctzzze) SRV - [2010/05/06 11:29:12 | 000,293,456 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ) SRV - [2010/03/25 15:39:22 | 000,490,280 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate) SRV - [2009/07/21 14:33:58 | 000,185,089 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2009/05/13 16:47:40 | 000,108,289 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2008/08/17 10:40:50 | 000,217,088 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\PS3 Media Server\win32\service\wrapper.exe -- (PS3 Media Server) SRV - [2007/08/23 15:05:00 | 000,045,056 | ---- | M] () [Auto | Running] -- C:\Program Files\MagicTune Premium\MagicTuneEngine.exe -- (MagicTuneEngine) SRV - [2007/06/15 13:57:42 | 000,145,504 | ---- | M] (B.H.A Corporation) [Auto | Running] -- C:\WINDOWS\System32\bgsvcgen.exe -- (bgsvcgen) SRV - [2005/03/09 21:50:18 | 000,018,944 | ---- | M] (http://libusb-win32.sourceforge.net) [Auto | Running] -- C:\WINDOWS\system32\libusbd-nt.exe -- (libusbd) ========== Driver Services (SafeList) ========== DRV - [2010/11/26 06:17:40 | 005,555,712 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2010/11/23 13:40:40 | 000,091,216 | ---- | M] (High Criteria inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\TotRec8.sys -- (TotRec8) DRV - [2010/11/04 22:24:55 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2010/07/09 14:18:54 | 000,020,328 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz134_x32.sys -- (cpuz134) DRV - [2010/04/28 08:44:02 | 000,054,760 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr) DRV - [2010/03/18 11:02:32 | 000,028,624 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt) DRV - [2010/03/18 11:02:08 | 000,037,328 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt) DRV - [2010/03/18 11:01:52 | 000,038,864 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt) DRV - [2010/03/18 11:01:12 | 000,010,448 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE) DRV - [2009/11/25 12:19:02 | 000,056,816 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2009/11/19 01:24:26 | 000,095,232 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService) DRV - [2009/08/18 11:32:00 | 005,884,416 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2009/08/05 08:16:44 | 000,039,424 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1e51x86.sys -- (L1e) DRV - [2009/08/04 11:28:18 | 000,011,296 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO) DRV - [2009/06/04 13:53:04 | 000,014,080 | ---- | M] (Samsung Electronics, Inc. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MTiCtwl.sys -- (MagicTune) DRV - [2009/05/11 10:11:52 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2009/03/30 10:32:47 | 000,096,104 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2009/02/13 12:34:33 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2008/08/05 14:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2008/04/13 20:56:06 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx) DRV - [2007/07/23 11:56:58 | 000,042,624 | ---- | M] (Ideazon Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Alpham1.sys -- (Alpham1) DRV - [2007/03/20 13:49:52 | 000,018,432 | ---- | M] (Ideazon Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Alpham2.sys -- (Alpham2) DRV - [2006/12/24 06:15:18 | 000,027,904 | ---- | M] (Compuware Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\xPADFL02.sys -- (XPADFL02) DRV - [2006/03/12 13:11:18 | 000,037,248 | ---- | M] (Ideazon Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Alpham.sys -- (Alpham) DRV - [2006/03/01 19:53:54 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcandis5.sys -- (PCANDIS5) DRV - [2006/01/04 09:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) DRV - [2005/03/09 21:50:16 | 000,033,792 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\libusb0.sys -- (libusb0) DRV - [2004/08/13 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor) DRV - [2004/03/26 11:55:12 | 000,091,241 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\P1131Vid.sys -- (P1131VID) Creative WebCam NX Pro (WDM) DRV - [2003/09/23 11:38:34 | 000,034,688 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcampr5.sys -- (PCAMPR5) DRV - [2001/08/28 14:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb) DRV - [2001/08/28 14:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN : Hotmail, Messenger, Bing, Actualité et Sport IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0E BB A3 DC AF 93 CB 01 [binary data] IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "" FF - prefs.js..browser.search.defaulturl: "" FF - prefs.js..browser.search.selectedEngine: "" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23 FF - prefs.js..network.proxy.type: 0 FF - HKLM\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}: C:\Documents and Settings\All Users\Application Data\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c} [2011/04/19 10:37:13 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/04/19 10:38:06 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/04/19 10:38:04 | 000,000,000 | ---D | M] [2010/12/01 20:26:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\pitta\Application Data\Mozilla\Extensions [2011/04/19 10:39:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\pitta\Application Data\Mozilla\Firefox\Profiles\gvwd237t.default\extensions [2010/12/01 20:28:49 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\pitta\Application Data\Mozilla\Firefox\Profiles\gvwd237t.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011/04/19 10:39:06 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\pitta\Application Data\Mozilla\Firefox\Profiles\gvwd237t.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2011/02/01 02:10:17 | 000,000,260 | ---- | M] () -- C:\Documents and Settings\pitta\Application Data\Mozilla\Firefox\Profiles\gvwd237t.default\searchplugins\Search.xml [2011/04/19 10:38:06 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010/12/30 05:32:33 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2011/01/03 02:50:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} File not found (No name found) -- [2010/12/30 05:32:09 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2011/03/18 19:58:47 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll [2010/11/12 19:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010/01/01 10:00:00 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml [2010/01/01 10:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml [2010/01/01 10:00:00 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml [2010/01/01 10:00:00 | 000,001,154 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml [2010/01/01 10:00:00 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml [2010/01/01 10:00:00 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml Hosts file not found O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll (Google Inc.) O2 - BHO: (IeMonitorBho Class) - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited) O2 - BHO: () - {F0921779-632A-3B6E-68C5-AE3DBE8219CB} - File not found O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.) O4 - HKCU..\Run: [bitTorrent] C:\Program Files\BitTorrent\BitTorrent.exe (BitTorrent, Inc.) O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\PHOTOfunSTUDIO 5.1 HD Edition.lnk = C:\Program Files\Fichiers communs\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe (Panasonic Corporation) O4 - Startup: C:\Documents and Settings\pitta\Menu Démarrer\Programmes\Démarrage\CurseClientStartup.ccip () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\pitta\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll (Google Inc.) O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm () O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241 O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll - c:\Program Files\Fichiers communs\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.) O20 - Winlogon\Notify\WgaLogon: DllName - WgaLogon.dll - File not found O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\pitta\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\pitta\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O30 - LSA: Authentication Packages - (nwprovau) - C:\WINDOWS\System32\nwprovau.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010/03/30 11:41:21 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2011/04/22 20:20:37 | 000,000,000 | ---D | C] -- C:\_OTL [2011/04/22 18:39:43 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\pitta\Bureau\OTL.exe [2011/04/22 15:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Macromedia [2011/04/22 15:01:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Adobe [2011/04/22 11:24:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware [2011/04/22 11:23:44 | 007,734,208 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\pitta\Bureau\malwarebytes-anti-malware_malwarebytes_anti-malware_1.50.1_francais_215092.exe [2011/04/22 02:14:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2011/04/22 02:13:13 | 000,000,000 | R--D | C] -- C:\Documents and Settings\pitta\Recent [2011/04/21 09:48:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Identities [2011/04/17 17:06:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8 [2011/04/14 12:08:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Adobe [2011/04/11 09:27:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Macromedia [2011/04/11 09:27:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Adobe [2011/03/31 11:08:24 | 000,000,000 | ---D | C] -- C:\Adèle - 21 ========== Files - Modified Within 30 Days ========== [2011/04/23 10:40:10 | 000,163,840 | ---- | M] () -- C:\Documents and Settings\pitta\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011/04/23 10:25:22 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011/04/22 22:46:10 | 000,011,511 | ---- | M] () -- C:\[gg]_Puella_Magi_Madoka_Magica_-_12_[1A2F25C0].mkv.2.torrent [2011/04/22 22:41:14 | 589,652,560 | ---- | M] () -- C:\[gg]_Puella_Magi_Madoka_Magica_-_12_[1A2F25C0].mkv [2011/04/22 21:57:47 | 000,011,511 | ---- | M] () -- C:\[gg]_Puella_Magi_Madoka_Magica_-_12_[1A2F25C0].mkv.1.torrent [2011/04/22 21:54:29 | 674,671,911 | ---- | M] () -- C:\[gg]_Puella_Magi_Madoka_Magica_-_11_[44209DA8].mkv [2011/04/22 21:44:46 | 366,621,842 | ---- | M] () -- C:\[Tsuki]_Naruto_Shippuuden_-_208_[1280x720][FDBB33F8].mkv [2011/04/22 21:22:30 | 000,014,256 | ---- | M] () -- C:\[Tsuki]_Naruto_Shippuuden_-_208_[1280x720][FDBB33F8].mkv.1.torrent [2011/04/22 21:21:04 | 000,013,131 | ---- | M] () -- C:\[gg]_Puella_Magi_Madoka_Magica_-_11_[44209DA8].mkv.1.torrent [2011/04/22 21:18:05 | 000,000,668 | ---- | M] () -- C:\Documents and Settings\pitta\Application Data\Microsoft\Internet Explorer\Quick Launch\BitTorrent.lnk [2011/04/22 21:18:05 | 000,000,650 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\BitTorrent.lnk [2011/04/22 19:48:28 | 000,000,050 | ---- | M] () -- C:\WINDOWS\MegaManager.INI [2011/04/22 19:35:50 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2011/04/22 18:39:45 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\pitta\Bureau\OTL.exe [2011/04/22 14:12:22 | 000,511,836 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat [2011/04/22 14:12:22 | 000,442,530 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011/04/22 14:12:22 | 000,085,840 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat [2011/04/22 14:12:22 | 000,072,274 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011/04/22 11:41:27 | 000,879,081 | ---- | M] () -- C:\Documents and Settings\pitta\Bureau\SecurityCheck.exe [2011/04/22 11:23:44 | 007,734,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\pitta\Bureau\malwarebytes-anti-malware_malwarebytes_anti-malware_1.50.1_francais_215092.exe [2011/04/22 11:14:00 | 001,006,778 | ---- | M] () -- C:\Documents and Settings\pitta\Bureau\rkill.exe [2011/04/22 02:04:47 | 000,000,336 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\18079540 [2011/04/19 10:20:28 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011/04/17 17:33:55 | 000,000,920 | ---- | M] () -- C:\Documents and Settings\pitta\Bureau\DVDVideoSoft Free Studio.lnk [2011/04/17 17:33:44 | 000,001,051 | ---- | M] () -- C:\Documents and Settings\pitta\Bureau\Free YouTube to MP3 Converter.lnk [2011/04/17 17:09:11 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\pitta\Application Data\Microsoft\Internet Explorer\Quick Launch\Démarrer Internet Explorer.lnk [2011/04/15 16:16:51 | 139,128,832 | ---- | M] () -- C:\[EveTaku] A-Channel - 02 (848x480 xvid mp3).avi [2011/04/15 12:31:08 | 000,054,016 | ---- | M] () -- C:\WINDOWS\System32\drivers\blln.sys [2011/04/15 12:03:36 | 545,443,444 | ---- | M] () -- C:\[gg]_Dororon_Enma-kun_Meramera_-_02_[40804FBA].mkv [2011/04/15 10:35:07 | 366,701,029 | ---- | M] () -- C:\[Tsuki]_Naruto_Shippuuden_-_207_[1280x720][89925B72].mkv [2011/04/13 14:14:06 | 334,313,114 | ---- | M] () -- C:\[AE-Kaen]_Toriko_-_02_[720p][960809F4].mkv [2011/04/13 12:26:03 | 238,893,056 | ---- | M] () -- C:\[aarinfantasy]_Otona_ni_natte_mo_Ep1_[0E1A4D52].avi [2011/04/12 13:02:53 | 331,367,186 | ---- | M] () -- C:\[underwater-Commie] Nichijou - 02 (720p) [87E53446].mkv [2011/04/11 15:13:18 | 000,054,016 | ---- | M] () -- C:\WINDOWS\System32\drivers\obfn.sys [2011/04/11 13:26:18 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\pitta\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2011/04/11 13:26:18 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk [2011/04/10 19:39:30 | 000,000,600 | ---- | M] () -- C:\Documents and Settings\pitta\Local Settings\Application Data\PUTTY.RND [2011/04/09 09:29:43 | 475,026,792 | ---- | M] () -- C:\[gg]_Dororon_Enma-kun_Meramera_-_01_[08BB76C5].mkv [2011/04/08 16:38:42 | 366,949,219 | ---- | M] () -- C:\[Tsuki]_Naruto_Shippuuden_-_206_[1280x720][48C6FF40].mkv [2011/04/03 04:59:41 | 164,359,545 | ---- | M] () -- C:\[subDesu] Nana to Kaoru OVA 01 (853x480) [b0792FB6].mkv [2011/04/02 00:43:27 | 361,053,507 | ---- | M] () -- C:\[Ayako]_Infinite_Stratos_-_IS_-_12_[H264][720p][660B00BB].mkv [2011/04/01 04:44:37 | 366,834,653 | ---- | M] () -- C:\[Tsuki]_Naruto_Shippuuden_-_205_[1280x720][38976FF6].mkv [2011/03/30 17:42:43 | 318,029,970 | ---- | M] () -- C:\[Ruri]Dragon Crisis 09 [720p][H264][ABFC5F29].mkv [2011/03/30 17:28:51 | 333,373,262 | ---- | M] () -- C:\[underwater-Commie] Dragon Crisis! - 10 (720p) [24ECE819].mkv [2011/03/30 17:14:56 | 360,504,963 | ---- | M] () -- C:\[gg]_Kimi_ni_Todoke_2nd_Season_-_11_[8A953257].mkv [2011/03/30 17:12:38 | 340,340,233 | ---- | M] () -- C:\[gg]_Kimi_ni_Todoke_2nd_Season_-_12_[CBA94872].mkv [2011/03/30 17:08:41 | 318,164,686 | ---- | M] () -- C:\[WhyNot] Dragon Crisis - 11 [C98F4886].mkv [2011/03/30 16:49:40 | 329,252,693 | ---- | M] () -- C:\[underwater-Commie] Dragon Crisis! - 12 (720p) [603DD593].mkv [2011/03/25 15:55:53 | 549,611,836 | ---- | M] () -- C:\[uTW]_Fractale_-_04_[h264-720p][bE4B9022].mkv [2011/03/25 15:52:07 | 368,552,515 | ---- | M] () -- C:\[Ayako]_Yumekui_Merry_-_11_[720p][H264][550A7FCB].mkv [2011/03/25 15:43:56 | 368,565,932 | ---- | M] () -- C:\[Ayako]_Yumekui_Merry_-_10_[720p][H264][0E0C5DC3].mkv [2011/03/25 12:51:05 | 314,457,560 | ---- | M] () -- C:\[Tsuki]_Naruto_Shippuuden_-_204_[1280x720][075431C3].mkv [2011/03/24 18:30:37 | 314,298,831 | ---- | M] () -- C:\[Tsuki]_Bleach_-_314_[1280x720][b741695C].mkv ========== Files Created - No Company Name ========== [2011/04/22 22:46:12 | 000,011,511 | ---- | C] () -- C:\[gg]_Puella_Magi_Madoka_Magica_-_12_[1A2F25C0].mkv.2.torrent [2011/04/22 21:58:18 | 589,652,560 | ---- | C] () -- C:\[gg]_Puella_Magi_Madoka_Magica_-_12_[1A2F25C0].mkv [2011/04/22 21:57:48 | 000,011,511 | ---- | C] () -- C:\[gg]_Puella_Magi_Madoka_Magica_-_12_[1A2F25C0].mkv.1.torrent [2011/04/22 21:23:01 | 366,621,842 | ---- | C] () -- C:\[Tsuki]_Naruto_Shippuuden_-_208_[1280x720][FDBB33F8].mkv [2011/04/22 21:22:31 | 000,014,256 | ---- | C] () -- C:\[Tsuki]_Naruto_Shippuuden_-_208_[1280x720][FDBB33F8].mkv.1.torrent [2011/04/22 21:21:21 | 674,671,911 | ---- | C] () -- C:\[gg]_Puella_Magi_Madoka_Magica_-_11_[44209DA8].mkv [2011/04/22 21:21:06 | 000,013,131 | ---- | C] () -- C:\[gg]_Puella_Magi_Madoka_Magica_-_11_[44209DA8].mkv.1.torrent [2011/04/22 11:41:23 | 000,879,081 | ---- | C] () -- C:\Documents and Settings\pitta\Bureau\SecurityCheck.exe [2011/04/22 11:13:57 | 001,006,778 | ---- | C] () -- C:\Documents and Settings\pitta\Bureau\rkill.exe [2011/04/22 02:04:47 | 000,000,336 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\18079540 [2011/04/17 17:33:44 | 000,001,051 | ---- | C] () -- C:\Documents and Settings\pitta\Bureau\Free YouTube to MP3 Converter.lnk [2011/04/15 16:11:55 | 139,128,832 | ---- | C] () -- C:\[EveTaku] A-Channel - 02 (848x480 xvid mp3).avi [2011/04/15 12:31:08 | 000,054,016 | ---- | C] () -- C:\WINDOWS\System32\drivers\blln.sys [2011/04/15 10:49:18 | 545,443,444 | ---- | C] () -- C:\[gg]_Dororon_Enma-kun_Meramera_-_02_[40804FBA].mkv [2011/04/15 10:14:55 | 366,701,029 | ---- | C] () -- C:\[Tsuki]_Naruto_Shippuuden_-_207_[1280x720][89925B72].mkv [2011/04/13 13:58:42 | 334,313,114 | ---- | C] () -- C:\[AE-Kaen]_Toriko_-_02_[720p][960809F4].mkv [2011/04/13 12:16:05 | 238,893,056 | ---- | C] () -- C:\[aarinfantasy]_Otona_ni_natte_mo_Ep1_[0E1A4D52].avi [2011/04/12 12:52:01 | 331,367,186 | ---- | C] () -- C:\[underwater-Commie] Nichijou - 02 (720p) [87E53446].mkv [2011/04/11 15:13:18 | 000,054,016 | ---- | C] () -- C:\WINDOWS\System32\drivers\obfn.sys [2011/04/11 13:26:18 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk [2011/04/11 09:31:05 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2011/04/10 19:39:30 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\pitta\Local Settings\Application Data\PUTTY.RND [2011/04/09 09:12:18 | 475,026,792 | ---- | C] () -- C:\[gg]_Dororon_Enma-kun_Meramera_-_01_[08BB76C5].mkv [2011/04/08 16:10:56 | 366,949,219 | ---- | C] () -- C:\[Tsuki]_Naruto_Shippuuden_-_206_[1280x720][48C6FF40].mkv [2011/04/03 04:53:27 | 164,359,545 | ---- | C] () -- C:\[subDesu] Nana to Kaoru OVA 01 (853x480) [b0792FB6].mkv [2011/04/02 00:29:13 | 361,053,507 | ---- | C] () -- C:\[Ayako]_Infinite_Stratos_-_IS_-_12_[H264][720p][660B00BB].mkv [2011/04/01 03:56:30 | 366,834,653 | ---- | C] () -- C:\[Tsuki]_Naruto_Shippuuden_-_205_[1280x720][38976FF6].mkv [2011/03/30 16:51:09 | 333,373,262 | ---- | C] () -- C:\[underwater-Commie] Dragon Crisis! - 10 (720p) [24ECE819].mkv [2011/03/30 14:33:13 | 318,029,970 | ---- | C] () -- C:\[Ruri]Dragon Crisis 09 [720p][H264][ABFC5F29].mkv [2011/03/30 14:32:35 | 340,340,233 | ---- | C] () -- C:\[gg]_Kimi_ni_Todoke_2nd_Season_-_12_[CBA94872].mkv [2011/03/30 14:32:07 | 318,164,686 | ---- | C] () -- C:\[WhyNot] Dragon Crisis - 11 [C98F4886].mkv [2011/03/30 14:32:00 | 329,252,693 | ---- | C] () -- C:\[underwater-Commie] Dragon Crisis! - 12 (720p) [603DD593].mkv [2011/03/30 14:31:38 | 360,504,963 | ---- | C] () -- C:\[gg]_Kimi_ni_Todoke_2nd_Season_-_11_[8A953257].mkv [2011/03/25 15:15:01 | 549,611,836 | ---- | C] () -- C:\[uTW]_Fractale_-_04_[h264-720p][bE4B9022].mkv [2011/03/25 15:14:11 | 368,552,515 | ---- | C] () -- C:\[Ayako]_Yumekui_Merry_-_11_[720p][H264][550A7FCB].mkv [2011/03/25 15:13:35 | 368,565,932 | ---- | C] () -- C:\[Ayako]_Yumekui_Merry_-_10_[720p][H264][0E0C5DC3].mkv [2011/03/25 12:26:02 | 314,457,560 | ---- | C] () -- C:\[Tsuki]_Naruto_Shippuuden_-_204_[1280x720][075431C3].mkv [2011/03/24 18:15:31 | 314,298,831 | ---- | C] () -- C:\[Tsuki]_Bleach_-_314_[1280x720][b741695C].mkv [2011/02/14 15:25:55 | 000,111,932 | ---- | C] () -- C:\WINDOWS\System32\EPPICPrinterDB.dat [2011/02/14 15:25:55 | 000,031,053 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern131.dat [2011/02/14 15:25:55 | 000,027,417 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern121.dat [2011/02/14 15:25:55 | 000,026,154 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern1.dat [2011/02/14 15:25:55 | 000,024,903 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern3.dat [2011/02/14 15:25:55 | 000,021,390 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern5.dat [2011/02/14 15:25:55 | 000,020,148 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern2.dat [2011/02/14 15:25:55 | 000,011,811 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern4.dat [2011/02/14 15:25:55 | 000,004,943 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern6.dat [2011/02/14 15:25:55 | 000,001,146 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_DU.dat [2011/02/14 15:25:55 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_PT.dat [2011/02/14 15:25:55 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_BP.dat [2011/02/14 15:25:55 | 000,001,136 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_ES.dat [2011/02/14 15:25:55 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_FR.dat [2011/02/14 15:25:55 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_CF.dat [2011/02/14 15:25:55 | 000,001,120 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_IT.dat [2011/02/14 15:25:55 | 000,001,107 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_GE.dat [2011/02/14 15:25:55 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_EN.dat [2011/02/14 15:25:55 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini [2010/12/19 00:40:42 | 000,033,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\libusb0.sys [2010/12/01 20:26:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010/11/30 11:58:00 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\custmon32.dll [2010/11/16 20:45:36 | 000,000,056 | ---- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010/11/14 02:09:54 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2010/11/05 10:54:28 | 000,642,376 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat [2010/11/04 22:22:18 | 000,000,050 | ---- | C] () -- C:\WINDOWS\MegaManager.INI [2010/07/28 21:59:46 | 000,000,262 | ---- | C] () -- C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini [2010/07/09 10:26:39 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\AsIO.dll [2010/07/09 10:26:39 | 000,011,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys [2010/07/09 10:03:17 | 000,163,840 | ---- | C] () -- C:\Documents and Settings\pitta\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/07/09 09:56:03 | 000,028,974 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini [2010/07/09 09:52:42 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\pitta\Local Settings\Application Data\fusioncache.dat [2010/07/09 08:04:49 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS64.DLL [2010/04/25 03:33:48 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010/03/30 12:34:43 | 000,004,207 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010/03/30 12:33:47 | 000,100,640 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010/03/30 12:11:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin [2010/03/30 12:11:42 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat [2010/03/30 12:11:42 | 000,224,001 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat [2010/03/30 12:11:42 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat [2010/03/30 12:03:22 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys [2010/03/30 12:03:18 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini [2010/03/30 12:03:15 | 000,021,654 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2010/03/30 12:03:15 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2010/03/30 11:42:44 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010/03/30 11:39:17 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2008/10/22 06:29:06 | 000,173,550 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat [2005/07/17 15:56:06 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\frapsvid.dll [2004/08/02 14:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2002/08/29 12:18:54 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2001/08/28 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2001/08/28 14:00:00 | 000,511,836 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat [2001/08/28 14:00:00 | 000,442,530 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2001/08/28 14:00:00 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat [2001/08/28 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2001/08/28 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2001/08/28 14:00:00 | 000,151,296 | ---- | C] () -- C:\WINDOWS\System32\zbdfrikm.dat [2001/08/28 14:00:00 | 000,135,936 | ---- | C] () -- C:\WINDOWS\System32\tndhaudj.dat [2001/08/28 14:00:00 | 000,085,840 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat [2001/08/28 14:00:00 | 000,072,274 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2001/08/28 14:00:00 | 000,058,112 | ---- | C] () -- C:\WINDOWS\System32\kkptvebk.dat [2001/08/28 14:00:00 | 000,050,432 | ---- | C] () -- C:\WINDOWS\System32\qyfesnko.dat [2001/08/28 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2001/08/28 14:00:00 | 000,039,680 | ---- | C] () -- C:\WINDOWS\System32\rescbjad.dat [2001/08/28 14:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\fogxuquh.dat [2001/08/28 14:00:00 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat [2001/08/28 14:00:00 | 000,031,488 | ---- | C] () -- C:\WINDOWS\System32\bfcehnhp.dat [2001/08/28 14:00:00 | 000,030,464 | ---- | C] () -- C:\WINDOWS\System32\kyvhhcoo.dat [2001/08/28 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2001/08/28 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2001/08/23 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2001/08/23 13:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat ========== Alternate Data Streams ========== @Alternate Data Stream - 717 bytes -> C:\Documents and Settings\All Users\Bureau\Call of Duty: Modern Warfare 2.lnk < End of report >
  5. scarves
    pc reboot voila All processes killed ========== OTL ========== No active process named Amy.exe was found! No active process named Amx.exe was found! No active process named Amw.exe was found! Error: Unable to stop service pvctzzze! Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\pvctzzze deleted successfully. C:\WINDOWS\system32\jqzevvyv.dll moved successfully. Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{08C06D61-F1F3-4799-86F8-BE1A89362C85} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{08C06D61-F1F3-4799-86F8-BE1A89362C85}\ deleted successfully. Prefs.js: "Search" removed from browser.search.defaultenginename Prefs.js: "http://flvtubesearch.co/websearch.php?src=tops&search="'>http://flvtubesearch.co/websearch.php?src=tops&search=" removed from browser.search.defaulturl Prefs.js: "Search" removed from browser.search.selectedEngine Prefs.js: "http://flvtubesearch.co/" removed from browser.startup.homepage Prefs.js: "http://flvtubesearch.co/websearch.php?src=tops&search=" removed from keyword.URL Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F0921779-632A-3B6E-68C5-AE3DBE8219CB}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F0921779-632A-3B6E-68C5-AE3DBE8219CB}\ deleted successfully. File C:\WINDOWS\system32\jqzevvyv.dll not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{6932D140-ABC4-4073-A44C-D4A541665E35} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6932D140-ABC4-4073-A44C-D4A541665E35}\ deleted successfully. C:\Program Files\ImageShackToolbar\ImageShackToolbar.dll moved successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found. Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully. C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe moved successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Zboard deleted successfully. C:\Program Files\Ideazon\ZEngine\Zboard.exe moved successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\BitTorrent deleted successfully. C:\Program Files\BitTorrent\BitTorrent.exe moved successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Mega Manager deleted successfully. C:\Program Files\Megaupload\Mega Manager\MegaManager.exe moved successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Megakey deleted successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\MegakeyUpdater deleted successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\RGSC deleted successfully. Starting removal of ActiveX control {6932D140-ABC4-4073-A44C-D4A541665E35} C:\WINDOWS\Downloaded Program Files\ImageShackToolbar.inf moved successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{6932D140-ABC4-4073-A44C-D4A541665E35}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6932D140-ABC4-4073-A44C-D4A541665E35}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6932D140-ABC4-4073-A44C-D4A541665E35}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6932D140-ABC4-4073-A44C-D4A541665E35}\ not found. Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93} Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully. Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found. Starting removal of ActiveX control {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\ not found. Starting removal of ActiveX control {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\ deleted successfully. Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\ not found. Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found. File Animation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab not found. Starting removal of ActiveX control DirectAnimation Java Classes Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\DirectAnimation Java Classes\DownloadInformation\\INF . Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\DirectAnimation Java Classes\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\DirectAnimation Java Classes\ not found. File oft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab not found. Starting removal of ActiveX control Microsoft XML Parser for Java Registry error reading value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\Microsoft XML Parser for Java\DownloadInformation\\INF . Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\Microsoft XML Parser for Java\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\Microsoft XML Parser for Java\ not found. C:\WINDOWS\system32\sshnas21.dll moved successfully. ========== SERVICES/DRIVERS ========== ========== REGISTRY ========== ========== FILES ========== C:\Call_Of_Duty_Modern_Warfare_2_CrackRAZOR.rar moved successfully. File move failed. C:\Documents and Settings\pitta\Mes documents\Téléchargements\Webfetti.exe scheduled to be moved on reboot. File move failed. C:\WINDOWS\system32\jqzevvyv.dll scheduled to be moved on reboot. C:\Program Files\ImageShackToolbar\upload folder moved successfully. C:\Program Files\ImageShackToolbar folder moved successfully. File\Folder C:\WINDOWS\System32\sshnas21.dll not found. C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully. C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully. C:\WINDOWS\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job moved successfully. C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job moved successfully. C:\WINDOWS\tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job moved successfully. File\Folder C:\*.sqm not found. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: LocalService ->Temp folder emptied: 82400 bytes ->Temporary Internet Files folder emptied: 648213 bytes ->Flash cache emptied: 813 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 93178794 bytes ->Flash cache emptied: 11532 bytes User: pitta ->Temp folder emptied: 6716915720 bytes ->Temporary Internet Files folder emptied: 114879564 bytes ->Java cache emptied: 10126 bytes ->FireFox cache emptied: 110261278 bytes ->Google Chrome cache emptied: 6050507 bytes ->Flash cache emptied: 264794 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 1139202 bytes %systemroot%\System32 .tmp files removed: 2933248 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 35995499 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 13005534 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 55941 bytes RecycleBin emptied: 212 bytes Total Files Cleaned = 6 767,00 mb [EMPTYFLASH] User: All Users User: Default User User: LocalService ->Flash cache emptied: 0 bytes User: NetworkService ->Flash cache emptied: 0 bytes User: pitta ->Flash cache emptied: 0 bytes Total Flash Files Cleaned = 0,00 mb HOSTS file reset successfully OTL by OldTimer - Version 3.2.22.3 log created on 04222011_202037 Files\Folders moved on Reboot... File\Folder C:\Documents and Settings\pitta\Mes documents\Téléchargements\Webfetti.exe not found! C:\WINDOWS\system32\jqzevvyv.dll moved successfully. Registry entries deleted on Reboot... edit je rajoute le lien physicalmbr http://virusscan.jotti.org/fr/scanresult/682e8062849aef836ac1e81a8962c08f2f946318
  6. scarves
    et pour finir OTL Extras logfile created on: 22/04/2011 19:20:25 - Run 1 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\pitta\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 3,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 33,00% Memory free 5,00 Gb Paging File | 3,00 Gb Available in Paging File | 57,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 232,88 Gb Total Space | 4,10 Gb Free Space | 1,76% Space Free | Partition Type: NTFS Computer Name: SCARVESSE | User Name: pitta | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = htmlfile] -- Reg Error: Key error. File not found ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 4 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 "3724:TCP" = 3724:TCP:*:Enabled:Blizzard Downloader: 3724 ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\World of Warcraft\WoW-3.2.0-frFR-downloader.exe" = C:\Program Files\World of Warcraft\WoW-3.2.0-frFR-downloader.exe:*:Enabled:Blizzard Downloader -- (Blizzard Entertainment) "C:\Program Files\World of Warcraft\Launcher.exe" = C:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher -- (Blizzard Entertainment) "C:\Program Files\World of Warcraft\WoW-3.2.2.10482-to-3.2.2.10505-frFR-downloader.exe" = C:\Program Files\World of Warcraft\WoW-3.2.2.10482-to-3.2.2.10505-frFR-downloader.exe:*:Enabled:Blizzard Downloader "C:\Program Files\MagicTune Premium\MagicTune.exe" = C:\Program Files\MagicTune Premium\MagicTune.exe:*:Enabled:MagicTune -- (SEC) "C:\Program Files\Ventrilo\Ventrilo.exe" = C:\Program Files\Ventrilo\Ventrilo.exe:*:Enabled:Ventrilo.exe -- (Flagship Industries, Inc.) "C:\Program Files\World of Warcraft bêta\Launcher.exe" = C:\Program Files\World of Warcraft bêta\Launcher.exe:*:Enabled:Blizzard Launcher "C:\Program Files\World of Warcraft bêta\Temp\wow-4.0.0.1817-to-4.0.0.1837-enUS-tools-downloader.exe" = C:\Program Files\World of Warcraft bêta\Temp\wow-4.0.0.1817-to-4.0.0.1837-enUS-tools-downloader.exe:*:Enabled:Blizzard Downloader "C:\Program Files\World of Warcraft bêta\Launcher.patch.exe" = C:\Program Files\World of Warcraft bêta\Launcher.patch.exe:*:Enabled:Blizzard Launcher "C:\Program Files\World of Warcraft bêta\Temp\wow-4.0.0.1854-to-4.0.0.1935-enUS-beta-tools-downloader.exe" = C:\Program Files\World of Warcraft bêta\Temp\wow-4.0.0.1854-to-4.0.0.1935-enUS-beta-tools-downloader.exe:*:Enabled:Blizzard Downloader "C:\Program Files\World of Warcraft bêta\Blizzard Downloader.exe" = C:\Program Files\World of Warcraft bêta\Blizzard Downloader.exe:*:Enabled:Blizzard Downloader "C:\Program Files\World of Warcraft bêta\Temp\wow-4.0.0.1837-to-4.0.0.1988-enUS-beta-tools-downloader.exe" = C:\Program Files\World of Warcraft bêta\Temp\wow-4.0.0.1837-to-4.0.0.1988-enUS-beta-tools-downloader.exe:*:Enabled:Blizzard Downloader "C:\Program Files\World of Warcraft\Launcher.patch.exe" = C:\Program Files\World of Warcraft\Launcher.patch.exe:*:Enabled:Blizzard Launcher "C:\Program Files\BitTorrent\BitTorrent.exe" = C:\Program Files\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.) "C:\Program Files\World of Warcraft\Blizzard Downloader.exe" = C:\Program Files\World of Warcraft\Blizzard Downloader.exe:*:Enabled:Blizzard Downloader "J:\Program files\World of Warcraft\Launcher.exe" = J:\Program files\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher "J:\World of Warcraft bêta\Launcher.exe" = J:\World of Warcraft bêta\Launcher.exe:*:Enabled:Blizzard Launcher "C:\Program Files\Rockstar Games\Grand Theft Auto IV\GTAIV.exe" = C:\Program Files\Rockstar Games\Grand Theft Auto IV\GTAIV.exe:*:Enabled:Grand Theft Auto IV "J:\Program files\World of Warcraft\Blizzard Downloader.exe" = J:\Program files\World of Warcraft\Blizzard Downloader.exe:*:Enabled:Blizzard Downloader "J:\Program files\World of Warcraft\Launcher.patch.exe" = J:\Program files\World of Warcraft\Launcher.patch.exe:*:Enabled:Blizzard Launcher "C:\Program Files\Call of DutyModern Warfare 2\iw4mp.exe" = C:\Program Files\Call of DutyModern Warfare 2\iw4mp.exe:*:Enabled:iw4mp -- () "C:\Program Files\Electronic Arts\Need for Speed Hot Pursuit\Launcher.exe" = C:\Program Files\Electronic Arts\Need for Speed Hot Pursuit\Launcher.exe:*:Enabled:Need for Speed Hot Pursuit -- (Electronic Arts) "C:\Program Files\Electronic Arts\Need for Speed Hot Pursuit\NFS11.exe" = C:\Program Files\Electronic Arts\Need for Speed Hot Pursuit\NFS11.exe:*:Enabled:Need for Speed Hot Pursuit Application -- (Electronic Arts) "J:\World of Warcraft bêta\Blizzard Downloader.exe" = J:\World of Warcraft bêta\Blizzard Downloader.exe:*:Enabled:Blizzard Downloader "C:\hfs.exe" = C:\hfs.exe:*:Enabled:hfs "C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java Platform SE binary -- (Sun Microsystems, Inc.) "C:\Program Files\mIRC\mirc.exe" = C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC -- (mIRC Co. Ltd.) "C:\Program Files\VideoLAN\VLC\vlc.exe" = C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player -- () "C:\Program Files\FileZilla FTP Client\filezilla.exe" = C:\Program Files\FileZilla FTP Client\filezilla.exe:*:Enabled:FileZilla FTP Client -- (FileZilla Project) "C:\Documents and Settings\pitta\Local Settings\Apps\2.0\96P0O3PZ.BOZ\4LNT281M.WD6\curs..tion_eee711038731a406_0004.0000_efb506202a7c3b08\CurseClient.exe" = C:\Documents and Settings\pitta\Local Settings\Apps\2.0\96P0O3PZ.BOZ\4LNT281M.WD6\curs..tion_eee711038731a406_0004.0000_efb506202a7c3b08\CurseClient.exe:*:Enabled:Curse Client 4.0 -- (Curse) ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club "{08C8666B-C502-4AB3-B4CB-D74AC42D14FE}" = Nero BackItUp 10 Help (CHM) "{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration "{133742BA-6F46-4D3E-85AF-78631D9AD8B8}" = Installation Windows Live "{16987E99-C95C-4513-9239-7B44A0A71DB5}" = Nero SoundTrax 10 Help (CHM) "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{1D76557F-04F5-4CF9-AB20-6A621B0D52D7}" = MyPDFConverter "{1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}" = Galerie de photos Windows Live "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}" = Nero MediaHub 10 "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{237CCB62-8454-43E3-B158-3ACD0134852E}" = High-Definition Video Playback 10 "{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10 "{26A24AE4-039D-4CA4-87B4-2F83216010F0}" = Java 6 Update 10 "{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java 6 Update 23 "{277C1559-4CF7-44FF-8D07-98AA9C13AABD}" = Nero Multimedia Suite 10 "{2CCBABCB-6427-4A55-B091-49864623C43F}" = Google Toolbar for Firefox "{307EB4FE-0D78-5E8D-CCCA-96CD18751694}" = Catalyst Control Center InstallProxy "{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.® AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform "{329411A0-19F3-4740-874F-17400B126F27}" = Nero Vision 10 Help (CHM) "{33643918-7957-4839-92C7-EA96CB621A98}" = Nero Express 10 Help (CHM) "{34490F4E-48D0-492E-8249-B48BECF0537C}" = Nero DiscSpeed 10 "{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3B6E3FC6-274C-4B6C-BC85-5C3B15DE18E2}" = Mega Manager "{3CDF9C0F-6C77-4307-80A6-0A9D47C174D8}_is1" = Call of Duty Modern Warfare 2 "{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg "{445B183D-F4F1-45C8-B9DB-F11355CA657B}" = Windows Live Messenger "{4634B21A-CC07-4396-890C-2B8168661FEA}" = Windows Live Writer "{4640FDE1-B83A-4376-84ED-86F86BEE2D41}" = Driver Detective "{477E717B-36FD-7318-0FAE-AF20D23DC9B3}" = ATI AVIVO Codecs "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM) "{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM) "{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV "{59E4543A-D49D-4489-B445-473D763C79AF}" = Microsoft Games for Windows - LIVE Redistributable "{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail "{607169F0-07F6-4797-99D2-D5E7C4715E20}" = Mega Manager "{63AA3EAB-23BB-48B2-9AD0-44F878075604}" = Nero 10 Menu TemplatePack Basic "{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update "{66049135-9659-4AAD-9169-9CCA269EBB3E}" = Nero InfoTool 10 Help (CHM) "{67AEBC24-2D41-4E40-969C-0A6C6718856A}" = Z Engine "{68AB6930-5BFF-4FF6-923B-516A91984FE6}" = Nero BackItUp 10 "{6AB57823-3580-4CE0-9CF0-072E2A39460C}" = Catalyst Control Center - Branding "{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10 "{6E127288-02BD-4DB8-B46B-D9B2BB3C268C}" = Windows Messenger 5.1 "{70550193-1C22-445C-8FA4-564E155DB1A7}" = Nero Express 10 "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{76810709-A7D3-468D-9167-A1780C1E766C}" = Windows Live FolderShare "{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client "{790F6156-B231-F7D6-BAE4-741E7CB0ACB1}" = ccc-utility "{79E37F9C-9330-42BA-9F49-4237A2F1C1C1}" = ImageShack Toolbar for Internet Explorer "{7A295D8F-484B-4FFB-89AB-C1FD497591FE}" = Nero WaveEditor 10 Help (CHM) "{7A5D731D-B4B3-490E-B339-75685712BAAB}" = Nero Burning ROM 10 "{810AD6B3-C830-A74C-300E-D14820CE1850}" = Catalyst Control Center InstallProxy "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{83A606F5-BF6F-42ED-9F33-B9F74297CDED}" = Need for Speed Hot Pursuit "{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial "{8BCD7AE7-F713-4D50-BAB9-7839B9386870}" = ImageShack Uploader 2.2.0 "{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update "{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}" = Nero Recode 10 "{92E25238-61A3-4ACD-A407-3C480EEF47A7}" = Nero RescueAgent 10 Help (CHM) "{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10 "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{959282E3-55A9-49D8-B885-D27CF8A2FD82}" = PHOTOfunSTUDIO 5.1 HD Edition "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}" = Nero Vision 10 "{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM) "{9FF9FDF7-F84A-4F99-B4BB-066B6F95F33D}" = Windows Live Contrôle parental "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A36579B4-313E-DC6B-D817-41824D46EF5D}" = CCC Help English "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1036-7B44-A94000000001}" = Adobe Reader 9.4.3 - Français "{B3B487E7-6171-4376-9074-B28082CEB504}" = Windows Live Call "{B9060398-FB64-2A4C-C4E6-D1236447E026}" = ATI Catalyst Install Manager "{B967EE8A-3E0C-5248-D731-A56B41319D9E}" = ATI Problem Report Wizard "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C18A0418-442A-4186-AF98-D08F5054A2FC}" = Nero DiscSpeed 10 Help (CHM) "{C3273C55-E1E4-41FF-8D69-0158090DB8D8}" = Nero CoverDesigner 10 Help (CHM) "{C3580AC4-C827-4332-B935-9A282ED5BB97}" = Nero Dolby Files 10 "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}" = Microsoft Primary Interoperability Assemblies 2005 "{D3BA6488-5C3E-A4EF-BA64-74C54ABCEE03}" = ccc-core-static "{D6044256-A309-43B5-9833-D3FAFE2AD24D}" = MagicTune Premium "{DB7C1D4A-08BA-4C7E-A8AA-B7F9BB372DCF}" = Nero Recode 10 Help (CHM) "{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live "{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}" = Nero SoundTrax 10 "{E337E787-CF61-4B7B-B84F-509202A54023}" = Nero RescueAgent 10 "{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}" = Microsoft SQL Server Compact 3.5 SP1 English "{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0 "{EDCDFAD5-DF80-4600-A493-E9DAD6810230}" = Nero WaveEditor 10 "{EDD654B3-6FE9-67AC-CE7D-5FE3698439DB}" = Catalyst Control Center Graphics Previews Common "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F412B4AF-388C-4FF5-9B2F-33DB1C536953}" = Nero InfoTool 10 "{F467862A-D9CA-47ED-8D81-B4B3C9399272}" = Nero MediaHub 10 Help (CHM) "{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic "{F6117F9C-ADB5-4590-9BE4-12C7BEC28702}" = Nero StartSmart 10 Help (CHM) "{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}" = Nero StartSmart 10 "{FCF00A6E-FB58-477A-ABE9-232907105521}" = Nero CoverDesigner 10 "7-Zip" = 7-Zip 9.20 "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus "BitTorrent" = BitTorrent "CPUID CPU-Z_is1" = CPUID CPU-Z 1.55 "Creative PC-CAM Center" = "Creative PD1131" = Creative WebCam NX Pro Driver (1.03.03.0326) "FileZilla Client" = FileZilla Client 3.3.5.1 "Fraps" = Fraps (remove only) "Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4.7 "Free Audio Converter_is1" = Free Audio Converter version 2.2.13 "Free Audio Dub_is1" = Free Audio Dub version 1.7.7 "Free Video to MP3 Converter_is1" = Free Video to MP3 Converter version 4.2.14 "Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.9.35.324 "GameSaike SixaxisDriver_is1" = SixaxisDriver 0.91 "Hoyle Puzzle and Board Games 2011" = Hoyle Puzzle and Board Games 2011 (remove only) "ie8" = Windows Internet Explorer 8 "JDownloader" = JDownloader "LibUSB-Win32_is1" = LibUSB-Win32-0.1.10.1 "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "ManyCam" = ManyCam 2.6.1 (remove only) "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "mIRC" = mIRC "Mozilla Firefox 4.0 (x86 fr)" = Mozilla Firefox 4.0 (x86 fr) "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP "Mumble" = Mumble and Murmur "Satsuki Decoder Pack" = Satsuki Decoder Pack "SP6" = Logitech SetPoint 6.15 "TeamSpeak 3 Client" = TeamSpeak 3 Client "TotalRecorder" = Total Recorder 8.2 "Uninstall_is1" = Uninstall 1.0.0.1 "VLC media player" = VLC media player 1.1.4 "Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Lecteur Windows Media 11 "Windows XP Service" = Windows XP Service Pack 3 "WinLiveSuite_Wave3" = Installation Windows Live "WinRAR archiver" = Logiciel d'archivage WinRAR "WMFDist11" = Windows Media Format 11 runtime "wmp11" = Windows Media Player 11 "World of Warcraft" = World of Warcraft "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0 ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "090215de958f1060" = Curse Client ========== Last 10 Event Log Errors ========== Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt! < End of report >
  7. scarves
    re alors je sais pas comment mais on dirait que j'ai reussi à arriver à la fin de la manip pour eset il y avait plein de fenetres pop-up etc à chaque fois mais bon le rapport complet ça donne ça C:\Call_Of_Duty_Modern_Warfare_2_CrackRAZOR.rar une variante de Win32/Packed.Themida application C:\Documents and Settings\pitta\Mes documents\Téléchargements\Webfetti.exe Win32/Toolbar.MyWebSearch application C:\WINDOWS\system32\jqzevvyv.dll une variante de Win32/Boaxxe.B cheval de troie Mémoire vive une variante de Win32/Boaxxe.B cheval de troie ensuite on à le rapport OTL OTL logfile created on: 22/04/2011 19:20:25 - Run 1 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\pitta\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 3,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 33,00% Memory free 5,00 Gb Paging File | 3,00 Gb Available in Paging File | 57,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 232,88 Gb Total Space | 4,10 Gb Free Space | 1,76% Space Free | Partition Type: NTFS Computer Name: SCARVESSE | User Name: pitta | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2011/04/22 18:39:45 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\pitta\Bureau\OTL.exe PRC - [2011/04/22 16:04:42 | 000,109,568 | ---- | M] (videosoft) -- C:\WINDOWS\Temp\Amy.exe PRC - [2011/04/22 16:04:40 | 000,119,808 | ---- | M] (videosoft) -- C:\WINDOWS\Temp\Amx.exe PRC - [2011/04/22 16:04:39 | 000,116,224 | ---- | M] (videosoft) -- C:\WINDOWS\Temp\Amw.exe PRC - [2008/04/14 04:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe ========== Modules (SafeList) ========== MOD - [2011/04/22 18:39:45 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\pitta\Bureau\OTL.exe MOD - [2010/08/23 18:12:39 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll ========== Win32 Services (SafeList) ========== SRV - [2011/04/22 14:24:52 | 000,739,328 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\jqzevvyv.dll -- (pvctzzze) SRV - [2010/05/06 11:29:12 | 000,293,456 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ) SRV - [2010/03/25 15:39:22 | 000,490,280 | ---- | M] (Nero AG) [Auto | Stopped] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate) SRV - [2009/07/21 14:33:58 | 000,185,089 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2009/05/13 16:47:40 | 000,108,289 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2008/08/17 10:40:50 | 000,217,088 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\PS3 Media Server\win32\service\wrapper.exe -- (PS3 Media Server) SRV - [2007/08/23 15:05:00 | 000,045,056 | ---- | M] () [Auto | Stopped] -- C:\Program Files\MagicTune Premium\MagicTuneEngine.exe -- (MagicTuneEngine) SRV - [2007/06/15 13:57:42 | 000,145,504 | ---- | M] (B.H.A Corporation) [Auto | Stopped] -- C:\WINDOWS\System32\bgsvcgen.exe -- (bgsvcgen) SRV - [2005/03/09 21:50:18 | 000,018,944 | ---- | M] (http://libusb-win32.sourceforge.net) [Auto | Stopped] -- C:\WINDOWS\system32\libusbd-nt.exe -- (libusbd) ========== Driver Services (SafeList) ========== DRV - [2010/11/26 06:17:40 | 005,555,712 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2010/11/23 13:40:40 | 000,091,216 | ---- | M] (High Criteria inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TotRec8.sys -- (TotRec8) DRV - [2010/11/04 22:24:55 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2010/07/09 14:18:54 | 000,020,328 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\cpuz134_x32.sys -- (cpuz134) DRV - [2010/04/28 08:44:02 | 000,054,760 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr) DRV - [2010/03/18 11:02:32 | 000,028,624 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt) DRV - [2010/03/18 11:02:08 | 000,037,328 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt) DRV - [2010/03/18 11:01:52 | 000,038,864 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt) DRV - [2010/03/18 11:01:12 | 000,010,448 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE) DRV - [2009/11/25 12:19:02 | 000,056,816 | ---- | M] (Avira GmbH) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2009/11/19 01:24:26 | 000,095,232 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService) DRV - [2009/08/18 11:32:00 | 005,884,416 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2009/08/05 08:16:44 | 000,039,424 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1e51x86.sys -- (L1e) DRV - [2009/08/04 11:28:18 | 000,011,296 | ---- | M] () [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO) DRV - [2009/06/04 13:53:04 | 000,014,080 | ---- | M] (Samsung Electronics, Inc. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MTiCtwl.sys -- (MagicTune) DRV - [2009/05/11 10:11:52 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2009/03/30 10:32:47 | 000,096,104 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2009/02/13 12:34:33 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2008/08/05 14:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2008/04/13 20:56:06 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx) DRV - [2007/07/23 11:56:58 | 000,042,624 | ---- | M] (Ideazon Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Alpham1.sys -- (Alpham1) DRV - [2007/03/20 13:49:52 | 000,018,432 | ---- | M] (Ideazon Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Alpham2.sys -- (Alpham2) DRV - [2006/12/24 06:15:18 | 000,027,904 | ---- | M] (Compuware Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\xPADFL02.sys -- (XPADFL02) DRV - [2006/03/12 13:11:18 | 000,037,248 | ---- | M] (Ideazon Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Alpham.sys -- (Alpham) DRV - [2006/03/01 19:53:54 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcandis5.sys -- (PCANDIS5) DRV - [2006/01/04 09:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) DRV - [2005/03/09 21:50:16 | 000,033,792 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\libusb0.sys -- (libusb0) DRV - [2004/08/13 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor) DRV - [2004/03/26 11:55:12 | 000,091,241 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\P1131Vid.sys -- (P1131VID) Creative WebCam NX Pro (WDM) DRV - [2003/09/23 11:38:34 | 000,034,688 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcampr5.sys -- (PCAMPR5) DRV - [2001/08/28 14:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb) DRV - [2001/08/28 14:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0E BB A3 DC AF 93 CB 01 [binary data] IE - HKCU\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - File not found IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "Search" FF - prefs.js..browser.search.defaulturl: "http://flvtubesearch.co/websearch.php?src=tops&search="'>http://flvtubesearch.co/websearch.php?src=tops&search=" FF - prefs.js..browser.search.selectedEngine: "Search" FF - prefs.js..browser.startup.homepage: "http://flvtubesearch.co/" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23 FF - prefs.js..keyword.URL: "http://flvtubesearch.co/websearch.php?src=tops&search=" FF - prefs.js..network.proxy.type: 0 FF - HKLM\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}: C:\Documents and Settings\All Users\Application Data\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c} [2011/04/19 10:37:13 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/04/19 10:38:06 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/04/19 10:38:04 | 000,000,000 | ---D | M] [2010/12/01 20:26:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\pitta\Application Data\Mozilla\Extensions [2011/04/19 10:39:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\pitta\Application Data\Mozilla\Firefox\Profiles\gvwd237t.default\extensions [2010/12/01 20:28:49 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\pitta\Application Data\Mozilla\Firefox\Profiles\gvwd237t.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011/04/19 10:39:06 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\pitta\Application Data\Mozilla\Firefox\Profiles\gvwd237t.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2011/02/01 02:10:17 | 000,000,260 | ---- | M] () -- C:\Documents and Settings\pitta\Application Data\Mozilla\Firefox\Profiles\gvwd237t.default\searchplugins\Search.xml [2011/04/19 10:38:06 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010/12/30 05:32:33 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2011/01/03 02:50:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} File not found (No name found) -- [2010/12/30 05:32:09 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2011/03/18 19:58:47 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll [2010/11/12 19:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010/01/01 10:00:00 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml [2010/01/01 10:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml [2010/01/01 10:00:00 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml [2010/01/01 10:00:00 | 000,001,154 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml [2010/01/01 10:00:00 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml [2010/01/01 10:00:00 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml Hosts file not found O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll (Google Inc.) O2 - BHO: (IeMonitorBho Class) - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited) O2 - BHO: () - {F0921779-632A-3B6E-68C5-AE3DBE8219CB} - C:\WINDOWS\system32\jqzevvyv.dll () O3 - HKLM\..\Toolbar: (ImageShack Toolbar) - {6932D140-ABC4-4073-A44C-D4A541665E35} - C:\Program Files\ImageShackToolbar\ImageShackToolbar.dll (ImageShack Corp.) O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.) O4 - HKLM..\Run: [Zboard] C:\Program Files\Ideazon\ZEngine\Zboard.exe (Ideazon, Inc.) O4 - HKCU..\Run: [bitTorrent] C:\Program Files\BitTorrent\BitTorrent.exe (BitTorrent, Inc.) O4 - HKCU..\Run: [Mega Manager] C:\Program Files\Megaupload\Mega Manager\MegaManager.exe (Megaupload Limited) O4 - HKCU..\Run: [Megakey] File not found O4 - HKCU..\Run: [MegakeyUpdater] File not found O4 - HKCU..\Run: [RGSC] File not found O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\PHOTOfunSTUDIO 5.1 HD Edition.lnk = C:\Program Files\Fichiers communs\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe (Panasonic Corporation) O4 - Startup: C:\Documents and Settings\pitta\Menu Démarrer\Programmes\Démarrage\CurseClientStartup.ccip () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\pitta\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll (Google Inc.) O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm () O8 - Extra context menu item: Post Image to Blog - C:\Program Files\ImageShackToolbar\ImageShackToolbar.dll (ImageShack Corp.) O8 - Extra context menu item: Tag This Image - C:\Program Files\ImageShackToolbar\ImageShackToolbar.dll (ImageShack Corp.) O8 - Extra context menu item: Transload Image to ImageShack - C:\Program Files\ImageShackToolbar\ImageShackToolbar.dll (ImageShack Corp.) O8 - Extra context menu item: Upload All Images to ImageShack - C:\Program Files\ImageShackToolbar\ImageShackToolbar.dll (ImageShack Corp.) O8 - Extra context menu item: Upload Image to ImageShack - C:\Program Files\ImageShackToolbar\ImageShackToolbar.dll (ImageShack Corp.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation) O16 - DPF: {6932D140-ABC4-4073-A44C-D4A541665E35} http://toolbar.imageshack.us/toolbar/ImageShackToolbar.cab (ImageShack Toolbar) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab'>http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab'>http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.) O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241 O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll - c:\Program Files\Fichiers communs\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.) O20 - Winlogon\Notify\WgaLogon: DllName - WgaLogon.dll - File not found O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\pitta\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\pitta\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O30 - LSA: Authentication Packages - (nwprovau) - C:\WINDOWS\System32\nwprovau.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010/03/30 11:41:21 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: pvctzzze - C:\WINDOWS\system32\jqzevvyv.dll () NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: msacm.vorbis - C:\WINDOWS\System32\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/) Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.ffds - C:\WINDOWS\System32\ff_vfw.dll () Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll () Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation) CREATERESTOREPOINT Error starting restore point: The function was called in safe mode. Error closing restore point: The sequence number is invalid. PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin ========== Files/Folders - Created Within 30 Days ========== [2011/04/22 18:39:43 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\pitta\Bureau\OTL.exe [2011/04/22 16:04:40 | 000,173,056 | ---- | C] (videosoft) -- C:\WINDOWS\System32\sshnas21.dll [2011/04/22 15:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Macromedia [2011/04/22 15:01:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Adobe [2011/04/22 14:30:21 | 000,000,000 | ---D | C] -- C:\Program Files\ESET [2011/04/22 11:24:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware [2011/04/22 11:23:44 | 007,734,208 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\pitta\Bureau\malwarebytes-anti-malware_malwarebytes_anti-malware_1.50.1_francais_215092.exe [2011/04/22 02:14:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2011/04/22 02:13:13 | 000,000,000 | R--D | C] -- C:\Documents and Settings\pitta\Recent [2011/04/21 09:48:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Identities [2011/04/17 17:06:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8 [2011/04/14 12:08:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Adobe [2011/04/11 09:27:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Macromedia [2011/04/11 09:27:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Adobe [2011/03/31 11:08:24 | 000,000,000 | ---D | C] -- C:\Adèle - 21 [5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2011/04/22 19:21:17 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin [2011/04/22 19:10:46 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2011/04/22 19:09:02 | 000,000,252 | -H-- | M] () -- C:\WINDOWS\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job [2011/04/22 18:39:45 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\pitta\Bureau\OTL.exe [2011/04/22 17:34:27 | 000,000,252 | -H-- | M] () -- C:\WINDOWS\tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job [2011/04/22 17:01:47 | 000,000,252 | -H-- | M] () -- C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job [2011/04/22 16:04:40 | 000,173,056 | ---- | M] (videosoft) -- C:\WINDOWS\System32\sshnas21.dll [2011/04/22 15:11:17 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011/04/22 14:43:01 | 000,001,052 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011/04/22 14:24:52 | 000,739,328 | ---- | M] () -- C:\WINDOWS\System32\jqzevvyv.dll [2011/04/22 14:12:36 | 000,000,050 | ---- | M] () -- C:\WINDOWS\MegaManager.INI [2011/04/22 14:12:22 | 000,511,836 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat [2011/04/22 14:12:22 | 000,442,530 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011/04/22 14:12:22 | 000,085,840 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat [2011/04/22 14:12:22 | 000,072,274 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011/04/22 14:11:41 | 000,001,048 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2011/04/22 11:41:27 | 000,879,081 | ---- | M] () -- C:\Documents and Settings\pitta\Bureau\SecurityCheck.exe [2011/04/22 11:23:44 | 007,734,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\pitta\Bureau\malwarebytes-anti-malware_malwarebytes_anti-malware_1.50.1_francais_215092.exe [2011/04/22 11:14:00 | 001,006,778 | ---- | M] () -- C:\Documents and Settings\pitta\Bureau\rkill.exe [2011/04/22 02:04:47 | 000,000,336 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\18079540 [2011/04/22 01:48:59 | 000,164,864 | ---- | M] () -- C:\Documents and Settings\pitta\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011/04/20 19:28:38 | 372,910,764 | ---- | M] () -- C:\[Ayako-Nishishi]_Softenni_-_02_[720p][A48E8D59].mkv [2011/04/20 07:47:44 | 345,449,045 | ---- | M] () -- C:\[Kyuubi]_Fairy_Tail_75_[720p][A05BD897].mp4 [2011/04/19 10:20:28 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011/04/18 10:56:30 | 366,843,195 | ---- | M] () -- C:\[Hatsuyuki]_SKET_Dance_-_02_[1280x720][F40F12FF].mkv [2011/04/17 19:35:43 | 046,492,253 | ---- | M] () -- C:\[Derp]_Seitokai_Yakuindomo_OVA_-_14_[LQ][bFC78797].mkv [2011/04/17 17:33:55 | 000,000,920 | ---- | M] () -- C:\Documents and Settings\pitta\Bureau\DVDVideoSoft Free Studio.lnk [2011/04/17 17:33:44 | 000,001,051 | ---- | M] () -- C:\Documents and Settings\pitta\Bureau\Free YouTube to MP3 Converter.lnk [2011/04/17 17:09:11 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\pitta\Application Data\Microsoft\Internet Explorer\Quick Launch\Démarrer Internet Explorer.lnk [2011/04/15 16:16:51 | 139,128,832 | ---- | M] () -- C:\[EveTaku] A-Channel - 02 (848x480 xvid mp3).avi [2011/04/15 12:31:08 | 000,054,016 | ---- | M] () -- C:\WINDOWS\System32\drivers\blln.sys [2011/04/15 12:03:36 | 545,443,444 | ---- | M] () -- C:\[gg]_Dororon_Enma-kun_Meramera_-_02_[40804FBA].mkv [2011/04/15 11:23:22 | 424,816,857 | ---- | M] () -- C:\[Mazui]_Denpa_Onna_to_Seishun_Otoko_-_01_[7D056FE5].mkv [2011/04/15 10:35:07 | 366,701,029 | ---- | M] () -- C:\[Tsuki]_Naruto_Shippuuden_-_207_[1280x720][89925B72].mkv [2011/04/13 14:14:06 | 334,313,114 | ---- | M] () -- C:\[AE-Kaen]_Toriko_-_02_[720p][960809F4].mkv [2011/04/13 12:26:03 | 238,893,056 | ---- | M] () -- C:\[aarinfantasy]_Otona_ni_natte_mo_Ep1_[0E1A4D52].avi [2011/04/12 13:02:53 | 331,367,186 | ---- | M] () -- C:\[underwater-Commie] Nichijou - 02 (720p) [87E53446].mkv [2011/04/11 15:13:18 | 000,054,016 | ---- | M] () -- C:\WINDOWS\System32\drivers\obfn.sys [2011/04/11 13:26:18 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\pitta\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2011/04/11 13:26:18 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk [2011/04/10 19:39:30 | 000,000,600 | ---- | M] () -- C:\Documents and Settings\pitta\Local Settings\Application Data\PUTTY.RND [2011/04/10 09:14:49 | 366,947,001 | ---- | M] () -- C:\[Hatsuyuki]_SKET_Dance_-_01_[1280x720][11A1B119].mkv [2011/04/09 09:29:43 | 475,026,792 | ---- | M] () -- C:\[gg]_Dororon_Enma-kun_Meramera_-_01_[08BB76C5].mkv [2011/04/08 16:38:42 | 366,949,219 | ---- | M] () -- C:\[Tsuki]_Naruto_Shippuuden_-_206_[1280x720][48C6FF40].mkv [2011/04/03 04:59:41 | 164,359,545 | ---- | M] () -- C:\[subDesu] Nana to Kaoru OVA 01 (853x480) [b0792FB6].mkv [2011/04/02 00:43:27 | 361,053,507 | ---- | M] () -- C:\[Ayako]_Infinite_Stratos_-_IS_-_12_[H264][720p][660B00BB].mkv [2011/04/01 04:44:37 | 366,834,653 | ---- | M] () -- C:\[Tsuki]_Naruto_Shippuuden_-_205_[1280x720][38976FF6].mkv [2011/03/30 17:42:43 | 318,029,970 | ---- | M] () -- C:\[Ruri]Dragon Crisis 09 [720p][H264][ABFC5F29].mkv [2011/03/30 17:28:51 | 333,373,262 | ---- | M] () -- C:\[underwater-Commie] Dragon Crisis! - 10 (720p) [24ECE819].mkv [2011/03/30 17:14:56 | 360,504,963 | ---- | M] () -- C:\[gg]_Kimi_ni_Todoke_2nd_Season_-_11_[8A953257].mkv [2011/03/30 17:12:38 | 340,340,233 | ---- | M] () -- C:\[gg]_Kimi_ni_Todoke_2nd_Season_-_12_[CBA94872].mkv [2011/03/30 17:08:41 | 318,164,686 | ---- | M] () -- C:\[WhyNot] Dragon Crisis - 11 [C98F4886].mkv [2011/03/30 16:49:40 | 329,252,693 | ---- | M] () -- C:\[underwater-Commie] Dragon Crisis! - 12 (720p) [603DD593].mkv [2011/03/25 15:55:53 | 549,611,836 | ---- | M] () -- C:\[uTW]_Fractale_-_04_[h264-720p][bE4B9022].mkv [2011/03/25 15:52:07 | 368,552,515 | ---- | M] () -- C:\[Ayako]_Yumekui_Merry_-_11_[720p][H264][550A7FCB].mkv [2011/03/25 15:43:56 | 368,565,932 | ---- | M] () -- C:\[Ayako]_Yumekui_Merry_-_10_[720p][H264][0E0C5DC3].mkv [2011/03/25 12:51:05 | 314,457,560 | ---- | M] () -- C:\[Tsuki]_Naruto_Shippuuden_-_204_[1280x720][075431C3].mkv [2011/03/24 18:30:37 | 314,298,831 | ---- | M] () -- C:\[Tsuki]_Bleach_-_314_[1280x720][b741695C].mkv [2011/03/24 03:27:51 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Adobe Reader 9.lnk [2011/03/23 20:06:11 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files Created - No Company Name ========== [2011/04/22 19:21:17 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin [2011/04/22 19:09:00 | 000,000,252 | -H-- | C] () -- C:\WINDOWS\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job [2011/04/22 17:34:25 | 000,000,252 | -H-- | C] () -- C:\WINDOWS\tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job [2011/04/22 16:04:42 | 000,000,252 | -H-- | C] () -- C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job [2011/04/22 14:24:52 | 000,739,328 | ---- | C] () -- C:\WINDOWS\System32\jqzevvyv.dll [2011/04/22 11:41:23 | 000,879,081 | ---- | C] () -- C:\Documents and Settings\pitta\Bureau\SecurityCheck.exe [2011/04/22 11:13:57 | 001,006,778 | ---- | C] () -- C:\Documents and Settings\pitta\Bureau\rkill.exe [2011/04/22 02:04:47 | 000,000,336 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\18079540 [2011/04/20 18:40:57 | 372,910,764 | ---- | C] () -- C:\[Ayako-Nishishi]_Softenni_-_02_[720p][A48E8D59].mkv [2011/04/20 07:33:05 | 345,449,045 | ---- | C] () -- C:\[Kyuubi]_Fairy_Tail_75_[720p][A05BD897].mp4 [2011/04/18 10:34:55 | 366,843,195 | ---- | C] () -- C:\[Hatsuyuki]_SKET_Dance_-_02_[1280x720][F40F12FF].mkv [2011/04/17 19:33:40 | 046,492,253 | ---- | C] () -- C:\[Derp]_Seitokai_Yakuindomo_OVA_-_14_[LQ][bFC78797].mkv [2011/04/17 17:33:44 | 000,001,051 | ---- | C] () -- C:\Documents and Settings\pitta\Bureau\Free YouTube to MP3 Converter.lnk [2011/04/15 16:11:55 | 139,128,832 | ---- | C] () -- C:\[EveTaku] A-Channel - 02 (848x480 xvid mp3).avi [2011/04/15 12:31:08 | 000,054,016 | ---- | C] () -- C:\WINDOWS\System32\drivers\blln.sys [2011/04/15 10:49:18 | 545,443,444 | ---- | C] () -- C:\[gg]_Dororon_Enma-kun_Meramera_-_02_[40804FBA].mkv [2011/04/15 10:14:55 | 366,701,029 | ---- | C] () -- C:\[Tsuki]_Naruto_Shippuuden_-_207_[1280x720][89925B72].mkv [2011/04/15 10:14:27 | 424,816,857 | ---- | C] () -- C:\[Mazui]_Denpa_Onna_to_Seishun_Otoko_-_01_[7D056FE5].mkv [2011/04/13 13:58:42 | 334,313,114 | ---- | C] () -- C:\[AE-Kaen]_Toriko_-_02_[720p][960809F4].mkv [2011/04/13 12:16:05 | 238,893,056 | ---- | C] () -- C:\[aarinfantasy]_Otona_ni_natte_mo_Ep1_[0E1A4D52].avi [2011/04/12 12:52:01 | 331,367,186 | ---- | C] () -- C:\[underwater-Commie] Nichijou - 02 (720p) [87E53446].mkv [2011/04/11 15:13:18 | 000,054,016 | ---- | C] () -- C:\WINDOWS\System32\drivers\obfn.sys [2011/04/11 13:26:18 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk [2011/04/11 09:31:05 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2011/04/10 19:39:30 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\pitta\Local Settings\Application Data\PUTTY.RND [2011/04/10 08:51:31 | 366,947,001 | ---- | C] () -- C:\[Hatsuyuki]_SKET_Dance_-_01_[1280x720][11A1B119].mkv [2011/04/09 09:12:18 | 475,026,792 | ---- | C] () -- C:\[gg]_Dororon_Enma-kun_Meramera_-_01_[08BB76C5].mkv [2011/04/08 16:10:56 | 366,949,219 | ---- | C] () -- C:\[Tsuki]_Naruto_Shippuuden_-_206_[1280x720][48C6FF40].mkv [2011/04/03 04:53:27 | 164,359,545 | ---- | C] () -- C:\[subDesu] Nana to Kaoru OVA 01 (853x480) [b0792FB6].mkv [2011/04/02 00:29:13 | 361,053,507 | ---- | C] () -- C:\[Ayako]_Infinite_Stratos_-_IS_-_12_[H264][720p][660B00BB].mkv [2011/04/01 03:56:30 | 366,834,653 | ---- | C] () -- C:\[Tsuki]_Naruto_Shippuuden_-_205_[1280x720][38976FF6].mkv [2011/03/30 16:51:09 | 333,373,262 | ---- | C] () -- C:\[underwater-Commie] Dragon Crisis! - 10 (720p) [24ECE819].mkv [2011/03/30 14:33:13 | 318,029,970 | ---- | C] () -- C:\[Ruri]Dragon Crisis 09 [720p][H264][ABFC5F29].mkv [2011/03/30 14:32:35 | 340,340,233 | ---- | C] () -- C:\[gg]_Kimi_ni_Todoke_2nd_Season_-_12_[CBA94872].mkv [2011/03/30 14:32:07 | 318,164,686 | ---- | C] () -- C:\[WhyNot] Dragon Crisis - 11 [C98F4886].mkv [2011/03/30 14:32:00 | 329,252,693 | ---- | C] () -- C:\[underwater-Commie] Dragon Crisis! - 12 (720p) [603DD593].mkv [2011/03/30 14:31:38 | 360,504,963 | ---- | C] () -- C:\[gg]_Kimi_ni_Todoke_2nd_Season_-_11_[8A953257].mkv [2011/03/25 15:15:01 | 549,611,836 | ---- | C] () -- C:\[uTW]_Fractale_-_04_[h264-720p][bE4B9022].mkv [2011/03/25 15:14:11 | 368,552,515 | ---- | C] () -- C:\[Ayako]_Yumekui_Merry_-_11_[720p][H264][550A7FCB].mkv [2011/03/25 15:13:35 | 368,565,932 | ---- | C] () -- C:\[Ayako]_Yumekui_Merry_-_10_[720p][H264][0E0C5DC3].mkv [2011/03/25 12:26:02 | 314,457,560 | ---- | C] () -- C:\[Tsuki]_Naruto_Shippuuden_-_204_[1280x720][075431C3].mkv [2011/03/24 18:15:31 | 314,298,831 | ---- | C] () -- C:\[Tsuki]_Bleach_-_314_[1280x720][b741695C].mkv [2011/02/14 15:25:55 | 000,111,932 | ---- | C] () -- C:\WINDOWS\System32\EPPICPrinterDB.dat [2011/02/14 15:25:55 | 000,031,053 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern131.dat [2011/02/14 15:25:55 | 000,027,417 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern121.dat [2011/02/14 15:25:55 | 000,026,154 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern1.dat [2011/02/14 15:25:55 | 000,024,903 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern3.dat [2011/02/14 15:25:55 | 000,021,390 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern5.dat [2011/02/14 15:25:55 | 000,020,148 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern2.dat [2011/02/14 15:25:55 | 000,011,811 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern4.dat [2011/02/14 15:25:55 | 000,004,943 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern6.dat [2011/02/14 15:25:55 | 000,001,146 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_DU.dat [2011/02/14 15:25:55 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_PT.dat [2011/02/14 15:25:55 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_BP.dat [2011/02/14 15:25:55 | 000,001,136 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_ES.dat [2011/02/14 15:25:55 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_FR.dat [2011/02/14 15:25:55 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_CF.dat [2011/02/14 15:25:55 | 000,001,120 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_IT.dat [2011/02/14 15:25:55 | 000,001,107 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_GE.dat [2011/02/14 15:25:55 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_EN.dat [2011/02/14 15:25:55 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini [2010/12/19 00:40:42 | 000,033,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\libusb0.sys [2010/12/01 20:26:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010/11/30 11:58:00 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\custmon32.dll [2010/11/16 20:45:36 | 000,000,056 | ---- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010/11/14 02:09:54 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2010/11/05 10:54:28 | 000,642,376 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat [2010/11/04 22:22:18 | 000,000,050 | ---- | C] () -- C:\WINDOWS\MegaManager.INI [2010/07/28 21:59:46 | 000,000,262 | ---- | C] () -- C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini [2010/07/09 10:26:39 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\AsIO.dll [2010/07/09 10:26:39 | 000,011,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys [2010/07/09 10:03:17 | 000,164,864 | ---- | C] () -- C:\Documents and Settings\pitta\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/07/09 09:56:03 | 000,028,974 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini [2010/07/09 09:52:42 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\pitta\Local Settings\Application Data\fusioncache.dat [2010/07/09 08:04:49 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\CNMVS64.DLL [2010/04/25 03:33:48 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010/03/30 12:34:43 | 000,004,207 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010/03/30 12:33:47 | 000,100,640 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010/03/30 12:11:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin [2010/03/30 12:11:42 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat [2010/03/30 12:11:42 | 000,224,001 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat [2010/03/30 12:11:42 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat [2010/03/30 12:03:22 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys [2010/03/30 12:03:18 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini [2010/03/30 12:03:15 | 000,021,654 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2010/03/30 12:03:15 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2010/03/30 11:42:44 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010/03/30 11:39:17 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2008/10/22 06:29:06 | 000,173,550 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat [2005/07/17 15:56:06 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\frapsvid.dll [2004/08/02 14:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2002/08/29 12:18:54 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2001/08/28 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2001/08/28 14:00:00 | 000,511,836 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat [2001/08/28 14:00:00 | 000,442,530 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2001/08/28 14:00:00 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat [2001/08/28 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2001/08/28 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2001/08/28 14:00:00 | 000,151,296 | ---- | C] () -- C:\WINDOWS\System32\zbdfrikm.dat [2001/08/28 14:00:00 | 000,135,936 | ---- | C] () -- C:\WINDOWS\System32\tndhaudj.dat [2001/08/28 14:00:00 | 000,085,840 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat [2001/08/28 14:00:00 | 000,072,274 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2001/08/28 14:00:00 | 000,058,112 | ---- | C] () -- C:\WINDOWS\System32\kkptvebk.dat [2001/08/28 14:00:00 | 000,050,432 | ---- | C] () -- C:\WINDOWS\System32\qyfesnko.dat [2001/08/28 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2001/08/28 14:00:00 | 000,039,680 | ---- | C] () -- C:\WINDOWS\System32\rescbjad.dat [2001/08/28 14:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\fogxuquh.dat [2001/08/28 14:00:00 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat [2001/08/28 14:00:00 | 000,031,488 | ---- | C] () -- C:\WINDOWS\System32\bfcehnhp.dat [2001/08/28 14:00:00 | 000,030,464 | ---- | C] () -- C:\WINDOWS\System32\kyvhhcoo.dat [2001/08/28 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2001/08/28 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2001/08/23 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2001/08/23 13:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat ========== Custom Scans ========== < %SYSTEMDRIVE%\*.* > [2010/12/30 11:59:02 | 757,668,282 | ---- | M] () -- C:\ 2002 720p HDTV Multi DTS AC3 x264 - fafaboy92.mkv [2011/01/29 19:22:32 | 000,024,646 | ---- | M] () -- C:\03655c6d75fa56605a0d9a2422ca18f633e36a01.zip [2011/02/23 04:20:31 | 183,326,720 | ---- | M] () -- C:\04x16 Vostfr T.B.B.T.avi [2010/11/25 16:05:51 | 000,002,506 | ---- | M] () -- C:\0747273V0371290694039826.ofx [2010/11/25 16:05:56 | 000,001,832 | ---- | M] () -- C:\0747273V0371290694050203.csv [2011/02/27 05:05:05 | 008,470,082 | ---- | M] () -- C:\20 Arrietty's Song.mp3 [2010/02/04 17:00:34 | 272,009,588 | ---- | M] () -- C:\52nd.annual.grammy.awards.cd2.hdtv.xvid-2hd.rmvb [2010/12/30 07:21:18 | 001,955,400 | ---- | M] () -- C:\9405796dec45ccddd4c3e903009f34f2.PDF [2011/03/17 03:14:48 | 198,938,624 | ---- | M] () -- C:\Abenobashi ep1.avi [2011/03/15 23:32:43 | 733,530,614 | ---- | M] () -- C:\Adventureland.-eric le rouge - DVDRIP.avi [2011/03/19 02:37:48 | 082,013,108 | ---- | M] () -- C:\Adèle - 21.rar [2010/12/10 12:47:16 | 205,756,406 | ---- | M] () -- C:\Alexis_Texas_Anal.WMV [2011/02/17 14:26:55 | 391,079,393 | ---- | M] () -- C:\Archive_zazeur.zip [2010/03/30 11:41:21 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010/11/17 23:31:31 | 1192,251,987 | ---- | M] () -- C:\avatar.2009.extended.multi.1080p.mkv [2011/01/21 02:54:07 | 022,291,656 | ---- | M] () -- C:\BAPTEME D'ANAIS 1-4.rar [2011/01/21 03:14:43 | 022,564,141 | ---- | M] () -- C:\BAPTEME D'ANAIS 2-4.rar [2011/01/21 14:23:30 | 022,587,331 | ---- | M] () -- C:\BAPTEME D'ANAIS 3-4.rar [2011/01/21 14:24:40 | 018,340,284 | ---- | M] () -- C:\BAPTEME D'ANAIS 4-4.rar [2010/12/27 21:49:48 | 004,717,445 | ---- | M] () -- C:\Bapteme d'anais le 26 Dec 2010.rar [2011/02/20 15:58:39 | 000,623,418 | ---- | M] () -- C:\BlackBoxFTP.by.ps3gunz.zip [2010/10/24 19:44:06 | 000,127,729 | ---- | M] () -- C:\BlinkRogueHelper.zip [2011/01/01 14:20:32 | 737,711,050 | ---- | M] () -- C:\Blonde.Movie.TRUEFRENCH.DVDRiP.XViD.avi [2011/02/01 02:19:39 | 000,000,212 | RHS- | M] () -- C:\boot.ini [2001/08/28 14:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010/11/05 09:57:36 | 000,594,200 | ---- | M] () -- C:\cActDef.tcb86.7z [2010/11/19 13:36:07 | 001,626,828 | ---- | M] () -- C:\Call_Of_Duty_Modern_Warfare_2_CrackRAZOR.rar [2011/02/18 07:31:56 | 733,136,898 | ---- | M] () -- C:\CD1-The.53rd.Annual.Grammy.Awards.2011.HDTV.XviD-2HD.avi [2011/02/18 07:17:44 | 737,312,770 | ---- | M] () -- C:\CD2-The.53rd.Annual.Grammy.Awards.2011.HDTV.XviD-2HD.avi [2011/02/02 08:18:52 | 022,392,546 | ---- | M] () -- C:\Cluedo_Up.By.OrgY-cgD-.rar [2010/03/30 11:41:21 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010/12/19 07:43:39 | 183,517,184 | ---- | M] () -- C:\Cougar Town S02x10.FASTSUB.VOSTFR.avi [2010/12/19 07:33:05 | 000,040,078 | ---- | M] () -- C:\Cougar Town S02x10.FASTSUB.VOSTFR.htm [2010/09/11 14:19:53 | 009,591,104 | ---- | M] (DT Soft Ltd.) -- C:\daemon-tools_daemon_tools_4.35.6_francais_10729.exe [2010/12/30 07:20:04 | 001,186,630 | ---- | M] () -- C:\document.pdf [2011/02/02 08:54:39 | 025,469,968 | ---- | M] () -- C:\DontGA2_Up.By.OrgY-cgD-.rar [2011/01/09 09:10:01 | 361,285,632 | ---- | M] () -- C:\Dragon Ball Z (épisode n°185) vostfr.avi [2011/02/08 03:22:19 | 013,168,640 | ---- | M] () -- C:\Episode1.mp3 [2011/02/08 03:40:11 | 016,685,056 | ---- | M] () -- C:\Episode2.mp3 [2010/11/29 16:22:57 | 000,204,864 | ---- | M] () -- C:\facture edf.pdf [2010/11/20 01:29:29 | 004,729,911 | ---- | M] () -- C:\FA_NFS-HP_Cerise.rar [2011/02/20 16:08:55 | 004,198,724 | ---- | M] () -- C:\FileZilla_3.3.4.1_win32-setup.exe [2010/12/25 20:51:20 | 733,777,920 | ---- | M] () -- C:\Florence Foresti Fait des Sketches à la Cigale (2005).avi [2010/12/25 10:35:17 | 729,812,992 | ---- | M] () -- C:\Florence.Foresti.L.Abribus.FRENCH.DVDRip.XviD.avi [2010/12/01 02:39:35 | 000,500,479 | ---- | M] () -- C:\FR.rar [2010/12/28 10:04:02 | 000,063,614 | ---- | M] () -- C:\FugitivePlanB.E16.101118.HDTV.XViD-HANrel-[WITH S2].srt [2010/12/15 22:09:36 | 000,076,582 | ---- | M] () -- C:\FugitivePlanB.E18.101201.HDTV.XViD-HANrel-[WITH S2]xwelwe.srt [2010/12/18 05:59:41 | 000,054,575 | ---- | M] () -- C:\FugitivePlanB.E19.101202.HDTV.XViD-HANrel-[WITH S2]weott.srt [2010/12/20 18:41:52 | 000,051,980 | ---- | M] () -- C:\FugitivePlanB.E20.END.101208.HDTV.XViD-HANrel-[WITH S2]gpklm.srt [2010/11/24 01:26:25 | 365,337,540 | ---- | M] () -- C:\greek.s02.ep18.vostfr.avi [2010/12/05 18:30:17 | 000,114,688 | ---- | M] () -- C:\guide perso du perfect game.doc [2010/12/25 06:44:30 | 063,390,686 | ---- | M] () -- C:\High School 01.mp4 [2010/12/25 06:45:03 | 055,140,844 | ---- | M] () -- C:\High School 02.mp4 [2010/12/25 06:50:22 | 065,314,050 | ---- | M] () -- C:\High School 03.mp4 [2010/12/25 06:48:47 | 068,724,404 | ---- | M] () -- C:\High School 04.mp4 [2010/12/25 06:51:29 | 066,016,585 | ---- | M] () -- C:\High School 05.mp4 [2010/12/25 06:53:53 | 067,833,653 | ---- | M] () -- C:\High School 06.mp4 [2010/12/25 06:54:20 | 051,614,344 | ---- | M] () -- C:\High School 07.mp4 [2010/12/25 06:54:57 | 046,517,092 | ---- | M] () -- C:\High School 08.mp4 [2010/11/11 16:34:12 | 000,201,728 | ---- | M] (Freebyte.com) -- C:\hjsplit.exe [2010/12/10 20:13:11 | 181,029,410 | ---- | M] () -- C:\How I Meet Your Mother S06E11 Vostfr.avi [2010/01/09 06:15:37 | 2731,408,496 | ---- | M] () -- C:\I A D of the D MULTI 1080p_up_by_amokriss.mkv [2011/02/17 13:55:00 | 000,000,287 | ---- | M] () -- C:\Installation.txt [2010/12/02 14:14:08 | 204,613,229 | ---- | M] () -- C:\IntégraleNES+Emulateur+Frontal.zip [2010/12/02 13:28:09 | 030,000,000 | ---- | M] () -- C:\IntégraleNES+Emulateur+Frontal.zip(1).006 [2010/12/02 13:23:39 | 030,000,000 | ---- | M] () -- C:\IntégraleNES+Emulateur+Frontal.zip.001 [2010/12/02 13:24:40 | 030,000,000 | ---- | M] () -- C:\IntégraleNES+Emulateur+Frontal.zip.002 [2010/12/02 13:26:28 | 030,000,000 | ---- | M] () -- C:\IntégraleNES+Emulateur+Frontal.zip.003 [2010/12/02 13:26:24 | 030,000,000 | ---- | M] () -- C:\IntégraleNES+Emulateur+Frontal.zip.004 [2010/12/02 13:47:11 | 030,000,000 | ---- | M] () -- C:\IntégraleNES+Emulateur+Frontal.zip.005 [2010/12/02 13:27:26 | 030,000,000 | ---- | M] () -- C:\IntégraleNES+Emulateur+Frontal.zip.006 [2010/12/02 13:27:51 | 024,613,229 | ---- | M] () -- C:\IntégraleNES+Emulateur+Frontal.zip.007 [2010/03/30 11:41:21 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010/12/19 08:00:26 | 150,199,361 | ---- | M] () -- C:\JDJV_EMISSION_04-12-10_WEBRip.mp4 [2010/12/19 07:56:25 | 152,087,231 | ---- | M] () -- C:\JDJV_EMISSION_18-12-10_HD_WEBRip.mp4 [2010/12/19 07:40:21 | 083,519,327 | ---- | M] () -- C:\JDJV_EMISSION_20-11-10_WEBRip.flv [2010/12/19 07:51:39 | 147,195,144 | ---- | M] () -- C:\JDJV_EMISSION_27-11-10_WEBRip_HD.mp4 [2010/12/19 08:04:11 | 147,105,710 | ---- | M] () -- C:\JDJV__10-12-11_HD_WEBRip.mp4 [2011/02/10 18:09:17 | 104,942,494 | ---- | M] () -- C:\Jesper_Kyd_Assassins_Creed_Brotherhood_OST_2010_wAx.rar [2011/01/01 12:18:33 | 734,637,818 | ---- | M] () -- C:\KARRON-The.Rebound.2010.TRUEFRENCH.DVDRiP.MD.XviD-SERENiTY.avi [2010/12/14 06:18:49 | 163,868,428 | ---- | M] () -- C:\Katanagatari Original Soundtrack Vol.1.rar [2006/09/29 20:05:38 | 000,022,016 | ---- | M] () -- C:\KB925749.cab [2010/11/29 23:50:07 | 100,610,880 | ---- | M] () -- C:\KD-Mary Stayed Out All Night OST.zip [2010/12/01 04:11:34 | 044,872,812 | ---- | M] () -- C:\Kill_Bill Vol.I - VA.rar [2011/03/20 11:26:59 | 733,749,248 | ---- | M] () -- C:\La.Tour.Au.Dela.Des.Nuages.2009.FRENCH.DVDRiP.XViD-RLD.FUCK.avi [2010/12/04 04:02:07 | 012,640,192 | ---- | M] () -- C:\laboiteperdue.mp3 [2011/02/02 03:18:47 | 150,693,054 | ---- | M] () -- C:\Larousse du Jeu Echecs.pdf [2010/12/02 02:02:03 | 2911,115,148 | ---- | M] () -- C:\Le Dernier Maître De L'air VFF.mkv [2011/02/21 09:34:45 | 733,167,616 | ---- | M] () -- C:\les contes de terremer.avi [2010/12/09 20:14:20 | 000,043,103 | ---- | M] () -- C:\lolsnaps_com.htm [2010/12/18 08:21:13 | 695,851,008 | ---- | M] () -- C:\Loving You 1000 Times.E01.HDTV.Xvid-Ental.avi [2010/12/18 07:53:37 | 000,066,257 | ---- | M] () -- C:\loving-you-1000.htm [2010/01/08 00:36:42 | 022,226,575 | ---- | M] (Macrovision Corporation) -- C:\MagicTune Premium_1.0.122.exe [2010/12/11 23:37:39 | 000,056,386 | ---- | M] () -- C:\Marry.Me.Mary.E09.101207.HDTV.XViD-HANrel-[WITH S2]-v2-naweo.srt [2010/12/20 18:41:47 | 000,065,347 | ---- | M] () -- C:\Marry.Me.Mary.E10.101213.HDTV.XViD-HANrel-[WITH S2]zlgobp.srt [2010/12/25 20:29:27 | 000,055,302 | ---- | M] () -- C:\Marry.Me.Mary.E11.101213.HDTV.XViD-HANrel-[WITH S2]blollp.srt [2010/12/25 20:29:13 | 000,059,403 | ---- | M] () -- C:\Marry.Me.Mary.E12.101214.HDTV.XViD-HANrel-[WITH S2]noptm.srt [2010/12/25 20:29:02 | 000,061,110 | ---- | M] () -- C:\Marry.Me.Mary.E13.101220.HDTV.XviD-HANrel-[WITH S2]bboox.srt [2010/12/25 20:29:06 | 000,069,270 | ---- | M] () -- C:\Marry.Me.Mary.E14.101221.HDTV.XViD-HANrel-[WITH S2]nttko.srt [2011/01/06 03:36:00 | 000,066,495 | ---- | M] () -- C:\Marry.Me.Mary.E15.101227.HDTV.XViD-HANrel-[WITH S2]-v2-nddpk.srt [2011/01/06 03:35:54 | 000,048,176 | ---- | M] () -- C:\Marry.Me.Mary.E16.101228.HDTV.XViD-HANrel-[WITH S2]ffgyojw.srt [2010/11/15 11:49:25 | 002,969,121 | ---- | M] () -- C:\MBLAQ - Running & Running (Fugitive OST).mp3 [2011/02/24 09:03:42 | 724,840,448 | ---- | M] () -- C:\Mexican pie.avi [2011/03/17 17:46:57 | 199,178,240 | ---- | M] () -- C:\Mirmo. 01. L'Arrivée de Mirmo.avi [2011/03/17 17:57:38 | 199,174,144 | ---- | M] () -- C:\Mirmo. 02. Bons baisers de Riruma.avi [2011/02/02 05:14:06 | 021,210,262 | ---- | M] () -- C:\Mono.2008_Up.By.OrgY-cgD-.rar [2011/02/02 05:09:52 | 016,661,508 | ---- | M] () -- C:\Mono.Delu._Up.By.OrgY-cgD-.rar [2011/01/01 15:34:31 | 734,101,504 | ---- | M] () -- C:\Mords-moi.sans.hesitation.FRENCH.DVDRIP.XviD.avi [2010/03/30 11:41:21 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2011/01/10 19:47:55 | 000,070,496 | ---- | M] () -- C:\MWTMP.E02.X264.720p-HANrel.ViKi.srt [2011/01/29 06:11:31 | 000,067,185 | ---- | M] () -- C:\MWTMP.E07.X264.720p-HANrel.ViKi.srt [2011/01/29 06:12:05 | 000,062,317 | ---- | M] () -- C:\MWTMP.E08.X264.720p-HANrel.ViKi.srt [2010/11/29 23:38:45 | 005,774,555 | ---- | M] () -- C:\My_Precious-Jang_Geun-Suk_[Marry_Me,_Mary_OST].mp3 [2010/12/23 21:48:20 | 000,039,938 | ---- | M] () -- C:\N7zjtNZ.htm [2010/09/16 09:00:50 | 4238,178,914 | ---- | M] () -- C:\Nausicaa.De.La.Vallee.Du.Vent.1984.MULTi.1080p.BluRay.x264-FHD.mkv [2010/03/30 11:59:52 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2010/07/09 09:30:45 | 000,252,240 | RHS- | M] () -- C:\ntldr [2011/03/15 03:51:26 | 733,937,664 | ---- | M] () -- C:\Origine.avi [2010/11/26 03:30:29 | 000,004,185 | ---- | M] () -- C:\out.html [2010/11/29 17:20:10 | 004,981,680 | ---- | M] () -- C:\P1000650.JPG [2010/11/30 11:58:38 | 018,154,802 | ---- | M] () -- C:\P1000650.pdf [2010/11/29 17:20:32 | 004,799,962 | ---- | M] () -- C:\P1000651.JPG [2010/11/30 12:04:42 | 021,239,595 | ---- | M] () -- C:\P1000651.pdf [2011/04/22 15:11:12 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys [2011/02/27 04:03:32 | 173,692,615 | ---- | M] () -- C:\Paradise Kiss Original Soundtrack CD1__www.manga-no-haru.net_.rar [2011/02/27 03:36:15 | 120,420,466 | ---- | M] () -- C:\Paradise Kiss Original Soundtrack CD2__www.manga-no-haru.net_.rar [2010/12/20 04:43:46 | 103,809,024 | ---- | M] () -- C:\parisderniere1.part1.rar [2010/12/20 04:42:55 | 036,325,950 | ---- | M] () -- C:\parisderniere1.part2.rar [2010/11/04 23:37:38 | 057,118,601 | ---- | M] () -- C:\Patch + Crack 1.0.4.0.rar [2011/03/04 04:39:08 | 004,395,663 | ---- | M] () -- C:\Photos Fermeture alu maison moudong.rar [2011/04/22 19:21:17 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin [2011/02/18 09:41:35 | 714,359,580 | ---- | M] () -- C:\pink.wet.performance.grammy.awards.2010.hd.MPG [2010/12/25 06:06:51 | 047,708,941 | ---- | M] () -- C:\Police 10.mp4 [2011/02/22 14:58:30 | 732,491,792 | ---- | M] () -- C:\porco rosso.avi [2010/12/15 23:02:55 | 015,314,705 | ---- | M] () -- C:\ps3-media-server_ps3_media_server_1.10.51_francais_285574.exe [2011/02/25 18:42:11 | 000,081,132 | ---- | M] () -- C:\QS.Dream.High.2011-E15-communitysub_100-percent-FANS-edited_and_100-percent-QC.srt [2011/02/20 17:18:46 | 000,058,538 | ---- | M] () -- C:\QS.My.Princess.2011-E14-communitysub_100-percent-FANS-edited_and_100-percent-QC.srt [2011/02/02 09:09:12 | 103,809,024 | ---- | M] () -- C:\QVGDM.Seconde.édition_Up.By.OrgY-cgD-.part1.rar [2011/02/02 09:10:20 | 103,809,024 | ---- | M] () -- C:\QVGDM.Seconde.édition_Up.By.OrgY-cgD-.part2.rar [2011/02/02 09:08:17 | 103,809,024 | ---- | M] () -- C:\QVGDM.Seconde.édition_Up.By.OrgY-cgD-.part3.rar [2011/02/02 09:04:01 | 064,643,643 | ---- | M] () -- C:\QVGDM.Seconde.édition_Up.By.OrgY-cgD-.part4.rar [2009/09/15 23:14:48 | 051,982,698 | ---- | M] () -- C:\RDA11.mp3 [2009/09/15 23:14:52 | 061,260,430 | ---- | M] () -- C:\RDA12.mp3 [2009/09/15 23:14:58 | 077,884,418 | ---- | M] () -- C:\RDA13.mp3 [2010/12/04 02:46:07 | 088,898,877 | ---- | M] () -- C:\RDA14.mp3 [2010/10/04 18:19:08 | 000,003,544 | ---- | M] () -- C:\ReadMe.txt [2010/12/08 04:04:01 | 3069,637,060 | ---- | M] () -- C:\Resident.Evil.mkv [2011/04/22 11:39:52 | 000,000,464 | ---- | M] () -- C:\rkill.log [2011/03/19 19:32:55 | 198,647,808 | ---- | M] () -- C:\Saikano - Elle, l'Arme Ultime - 02).avi [2011/03/19 20:20:22 | 154,583,040 | ---- | M] () -- C:\Saikano - Elle, l'Arme Ultime - 03).avi [2011/03/19 18:41:07 | 188,264,448 | ---- | M] () -- C:\Saikano - Elle, l'Arme Ultime - 04).avi [2011/03/19 19:04:02 | 195,348,480 | ---- | M] () -- C:\Saikano - Elle, l'Arme Ultime - 05).avi [2011/03/19 20:28:45 | 211,867,648 | ---- | M] () -- C:\Saikano - Elle, l'Arme Ultime - 06).avi [2011/03/19 19:22:11 | 183,095,765 | ---- | M] () -- C:\Saikano - Elle, l'Arme Ultime - 07).avi [2011/03/19 18:57:07 | 182,654,976 | ---- | M] () -- C:\Saikano - Elle, l'Arme Ultime - 08) Vostf.avi [2011/03/19 19:40:59 | 238,731,264 | ---- | M] () -- C:\Saikano - Elle, l'Arme Ultime - 09 - Vostf.avi [2011/03/19 18:50:42 | 173,817,856 | ---- | M] () -- C:\Saikano - Elle, l'Arme Ultime - 10) Vostf.avi [2011/03/19 19:15:42 | 226,232,320 | ---- | M] () -- C:\Saikano - Elle, l'Arme Ultime - 11) Vostf.avi [2011/03/19 19:56:39 | 197,029,888 | ---- | M] () -- C:\Saikano - Elle, l'Arme Ultime - 12) vostfr.avi [2011/03/19 19:47:31 | 187,295,744 | ---- | M] () -- C:\Saikano - Elle, l'Arme Ultime - 13 - Vostf.avi [2011/02/02 09:08:28 | 103,809,024 | ---- | M] () -- C:\Scrabble.2009_Up.By.OrgY-cgD-.part1.rar [2011/02/02 09:11:15 | 103,809,024 | ---- | M] () -- C:\Scrabble.2009_Up.By.OrgY-cgD-.part2.rar [2011/02/02 08:53:46 | 010,775,770 | ---- | M] () -- C:\Scrabble.2009_Up.By.OrgY-cgD-.part3.rar [2010/12/29 06:25:01 | 031,811,013 | ---- | M] () -- C:\Secret Garden OST 2.zip [2010/12/29 06:28:29 | 029,876,482 | ---- | M] () -- C:\Secret Garden OST Part.1.rar [2010/12/29 06:25:28 | 029,321,996 | ---- | M] () -- C:\Secret garden OST Part.4.rar [2011/01/07 03:20:02 | 000,041,974 | ---- | M] () -- C:\secret-garden-2010-450p-x264-hanrel.htm [2010/12/30 05:15:53 | 183,496,704 | ---- | M] () -- C:\Secret.Diary.Of.A.Call.Girl.S03E01.VOSTFR.avi [2010/12/30 05:19:59 | 183,496,704 | ---- | M] () -- C:\Secret.Diary.Of.A.Call.Girl.S03E02.VOSTFR.avi [2010/12/30 05:33:04 | 241,154,048 | ---- | M] () -- C:\Secret.Diary.of.a.Call.Girl.S03E03.VOSTFR.avi [2010/12/30 05:37:11 | 180,799,678 | ---- | M] () -- C:\Secret.Diary.Of.A.Call.Girl.S03E04.VOSTFR.avi [2010/12/30 05:43:19 | 183,496,704 | ---- | M] () -- C:\Secret.Diary.of.a.Call.Girl.S03E05.VOSTFR.avi [2010/12/30 05:45:43 | 183,498,752 | ---- | M] () -- C:\Secret.Diary.of.a.Call.Girl.S03E06.VOSTFR.avi [2010/12/30 05:49:16 | 183,496,704 | ---- | M] () -- C:\Secret.Diary.Of.A.Call.Girl.S03E07.VOSTFR.avi [2010/12/30 06:08:00 | 183,496,704 | ---- | M] () -- C:\Secret.Diary.Of.A.Call.Girl.S03E08.VOSTFR.avi [2010/12/30 01:57:45 | 000,061,563 | ---- | M] () -- C:\Secret.Garden.E14.HANrel.[viikii].srt [2011/01/10 09:05:47 | 000,069,444 | ---- | M] () -- C:\Secret.Garden.E15.110101.HDTV.XViD-HANrel-[WITH S2]npoei.srt [2011/01/07 18:52:13 | 000,072,464 | ---- | M] () -- C:\Secret.Garden.E15.450p-HANrel.[viikii](1).srt [2011/01/06 03:38:32 | 000,072,464 | ---- | M] () -- C:\Secret.Garden.E15.450p-HANrel.[viikii].srt [2011/01/10 09:05:40 | 000,067,802 | ---- | M] () -- C:\Secret.Garden.E16.110102.HDTV.XViD-HANrel-[WITH S2]-v2-npweo.srt [2011/01/07 18:52:07 | 000,068,654 | ---- | M] () -- C:\Secret.Garden.E16.HANrel.[viikii].srt [2011/01/17 19:05:10 | 000,060,954 | ---- | M] () -- C:\Secret.Garden.E17.110108.HDTV.XViD-HANrel-[WITH S2]-v2-wwpetl.srt [2011/01/17 19:05:15 | 000,052,761 | ---- | M] () -- C:\Secret.Garden.E18.110109.HDTV.XViD-HANrel-[WITH S2]bvwpt.srt [2011/02/18 20:31:55 | 957,255,502 | ---- | M] () -- C:\shes.out.of.my.league vostfr.2010.bdrip.xvid.avi [2010/12/26 14:03:56 | 728,789,548 | ---- | M] () -- C:\Skyline.2010.FRENCH.BDRIP.XviD.avi [2011/01/07 06:10:40 | 743,335,936 | ---- | M] () -- C:\Spécial investigation - Caïds des cités le nouveau grand banditisme.avi [2010/12/24 04:36:47 | 000,072,060 | ---- | M] () -- C:\SSSG.E12.srt [2010/12/29 02:41:22 | 000,051,087 | ---- | M] () -- C:\SSSG.E13.srt [2011/03/16 11:23:25 | 000,001,220 | ---- | M] () -- C:\sti.log [2011/03/19 02:31:19 | 1470,346,439 | ---- | M] () -- C:\Summer Wars.mkv [2010/12/18 00:56:52 | 000,112,535 | ---- | M] () -- C:\super connard.jpg [2011/02/02 05:21:12 | 103,809,024 | ---- | M] () -- C:\Super.Echec.3D.2_Up.By.OrgY-cgD-.part1.rar [2011/02/02 05:20:47 | 103,809,024 | ---- | M] () -- C:\Super.Echec.3D.2_Up.By.OrgY-cgD-.part2.rar [2011/02/02 05:13:31 | 023,795,949 | ---- | M] () -- C:\Super.Echec.3D.2_Up.By.OrgY-cgD-.part3.rar [2011/02/23 05:29:34 | 303,367,237 | ---- | M] () -- C:\Super.Street.Fighter.II.Turbo.HD.Remix.by.ef92.rar [2010/12/01 04:12:30 | 094,800,888 | ---- | M] () -- C:\S_D-OST.by.atout001.for.DP.rar [2010/11/20 16:47:54 | 183,357,440 | ---- | M] () -- C:\tbbt.4x9.hdtv.xvid.fqm.vostfr.avi [2011/02/01 02:13:20 | 000,943,553 | ---- | M] () -- C:\totalrecorderprofessionaleditionv5.1crackcss.zip [2011/02/02 05:07:37 | 011,497,983 | ---- | M] () -- C:\Trivial Pursuit Genus Edition Deluxe Français.rar [2011/02/02 05:31:35 | 420,120,468 | ---- | M] () -- C:\TrivialPD_Up.By.OrgY-cgD-.rar [2011/01/01 17:02:13 | 731,932,672 | ---- | M] () -- C:\Trop.loin.pour.toi.FRENCH.DVDRiP.XViD.avi [2006/10/01 17:00:50 | 000,753,960 | ---- | M] (Microsoft Corporation) -- C:\umdf.exe [2010/12/29 08:39:23 | 573,054,042 | ---- | M] () -- C:\Un mariage pour no& [2010/12/26 13:42:32 | 734,003,200 | ---- | M] () -- C:\Uze_mOii - Maître Air VFF.part01.rar [2010/12/29 06:32:07 | 031,248,664 | ---- | M] () -- C:\V.A - Secret Garden OST Part 2.rar [2010/11/15 17:06:26 | 733,808,640 | ---- | M] () -- C:\vbc-tog.avi [2010/12/22 02:46:21 | 000,368,899 | ---- | M] () -- C:\WhenSpringComes.zip [2006/10/02 17:04:46 | 000,596,288 | ---- | M] (Microsoft Corporation) -- C:\WindowsXP-MSCompPackV1-x86.exe [2006/10/18 20:04:40 | 000,493,568 | ---- %2
  8. scarves
    plop alors un petit compte rendu il s'avere que suite au commandes en debut d'instruction j'ai retrouvé les programmes et menu dans demarrer ainsi que les fichiers de mon disuqe dur mais par contre je n'arrive pas du tout à faire analyser le pc tout d'abord ça plante explorer bloque ya des lenteurs du coup j'ai essayer via mozilla firefox de lancer le scan eset ça à commencer puis le pc rebooter tout seul et ainsi de suite .... puis j'ai fait la manip en mode sans echec avec prise en charge reseau et la ça bloque depuis 2heures sur le scan à 44 % ça ne finit pas il me dit par contre 2 menaces detectées win32/toolbar.mywebSearch application une variante de win32/Packed.themida application C:\Call_Of_Duty_Modern_Warfare_2_CrackRAZOR.rar une variante de Win32/Packed.Themida application C:\Documents and Settings\pitta\Mes documents\Téléchargements\Webfetti.exe Win32/Toolbar.MyWebSearch application donc avec explorer rien ne fonctionne toujours soucis d'ouverture d'onglet / freeze de pc / j'arrirve pas à faire analyser le pc correctement
  9. scarves
    hello merci pour la reponse alors voici ce que ça donne par contre je ne vois rien aucune donnée sur mon disque dur ni les programmes que j'avais en faisaint "demarrer -- tous les programmes" ya rien qui s'affiche Mais ya plus le truc recovery mode du debut Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Version de la base de données: 6418 Windows 5.1.2600 Service Pack 3 (Safe Mode) Internet Explorer 8.0.6001.18702 22/04/2011 11:34:13 mbam-log-2011-04-22 (11-34-13).txt Type d'examen: Examen rapide Elément(s) analysé(s): 156496 Temps écoulé: 6 minute(s), 18 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 2 Elément(s) de données du Registre infecté(s): 1 Dossier(s) infecté(s): 1 Fichier(s) infecté(s): 7 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Gfuvaguzeya (Trojan.Hiloti) -> Value: Gfuvaguzeya -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\uvEWQXCeAJwf (Trojan.FakeAlert) -> Value: uvEWQXCeAJwf -> Quarantined and deleted successfully. Elément(s) de données du Registre infecté(s): HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr (PUM.Hijack.TaskManager) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. Dossier(s) infecté(s): c:\documents and settings\pitta\menu démarrer\programmes\windows recovery (Trojan.FakeAV) -> Quarantined and deleted successfully. Fichier(s) infecté(s): c:\WINDOWS\slui2rf.dll (Trojan.Hiloti) -> Quarantined and deleted successfully. c:\documents and settings\all users\application data\uvewqxceajwf.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\documents and settings\all users\application data\18079540.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\documents and settings\pitta\local settings\Temp\cwmasrexon.tmp (Trojan.Hiloti) -> Quarantined and deleted successfully. c:\documents and settings\pitta\Bureau\windows recovery.lnk (Trojan.FakeAV) -> Quarantined and deleted successfully. c:\documents and settings\pitta\menu démarrer\programmes\windows recovery\uninstall windows recovery.lnk (Trojan.FakeAV) -> Quarantined and deleted successfully. c:\documents and settings\pitta\menu démarrer\programmes\windows recovery\windows recovery.lnk (Trojan.FakeAV) -> Quarantined and deleted successfully. ensuite le rapport security check Results of screen317's Security Check version 0.99.10 Windows XP Service Pack 3 Internet Explorer 8 `````````````````````````````` Antivirus/Firewall Check: Avira AntiVir Personal - Free Antivirus Antivirus up to date! ``````````````````````````````` Anti-malware/Other Utilities Check: Malwarebytes' Anti-Malware Java 6 Update 10 Java 6 Update 23 Out of date Java installed! Adobe Flash Player 10.1.102.64 Adobe Reader 9.4.3 - Français Out of date Adobe Reader installed! ```````````````````````````````` Process Check: objlist.exe by Laurent Avira Antivir avgnt.exe Avira Antivir avguard.exe ``````````End of Log````````````
  10. scarves
    re alors ça à evolué mais en pire en faite maintenant j'ai un virus très pénible "Windows recovery". Je me suis douté d'un truc car ça me mettais que mon disque dur avait des problème, et que je devais redémarré. Je l'ai fait ... et ça m'a lancé ensuite un scan de ce fameux logiciel windows recovery tout en anglais (d'où mon interpellation). Evidement ce fameux logiciel me disait de cliquer pour qu'ensuite je télécharger etc ... ce que je n'ai pas fait. Mon fond d'écran a été supprimé, une des partie de mon disque dur est invisible, pas mal d'icones ont été supprimé de mon bureau c'est une vrai galere la help pleaz
  11. scarves
    bonjour j'ai remarqué depuis quelques temps que je me faisais à chaque fois redirigé vers un site gomeo quand je faisais des recherches sur le net , ce qui ne m'a pas alerter plus qu'autre chose ...........mais c'est devenue vraiment agaçant à partir du moment ou je n'arrivais plus à ouvrir des onglets explorer apres ça a été l'engrenage des ralentissements pc /windows avec des problemes de demarrage/ lenteur etc etc .... Pour resumer c'est un peu le "bordel" enfin bon voila j'aimerais avoir quelques conseils et la demarche à suivre pour eradiquer ce virus goméo voir les autres s'il y en a sur mon pc j'ai vu qu'il y avait d'autres post sur ce virus aussi merci d'avance Cordialement niko
  12. scarves
    alors j'ai enfin terminer le scan ça a été long Search Navipromo version 3.6.6 commencé le 05/10/2008 à 11:29:42,46 !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!! !!! Postez ce rapport sur le forum pour le faire analyser !!! !!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!! Outil exécuté depuis C:\Program Files\navilog1 Session actuelle : "scarves" Mise à jour le 29.09.2008 à 17h30 par IL-MAFIOSO Microsoft Windows XP [version 5.1.2600] Internet Explorer : 7.0.5730.11 Système de fichiers : NTFS Recherche executé en mode normal *** Recherche Programmes installés *** *** Recherche dossiers dans "C:\WINDOWS" *** *** Recherche dossiers dans "C:\Program Files" *** *** Recherche dossiers dans "C:\Documents and Settings\All Users\windows\menudm~1" *** *** Recherche dossiers dans "C:\Documents and Settings\All Users\windows" *** *** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\scarves\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1.NIK\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\scarves\locals~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1.NIK\locals~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\scarves\windows\menudm~1" *** *** Recherche avec Catchme-rootkit/stealth malware detector par gmer *** pour + d'infos : http://www.gmer.net *** Recherche avec GenericNaviSearch *** !!! Tous ces résultats peuvent révéler des fichiers légitimes !!! !!! A vérifier impérativement avant toute suppression manuelle !!! * Recherche dans "C:\WINDOWS\system32" * * Recherche dans "C:\Documents and Settings\scarves\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\ADMINI~1.NIK\locals~1\applic~1" * *** Recherche fichiers *** *** Recherche clés spécifiques dans le Registre *** *** Module de Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Recherche nouveaux fichiers Instant Access : 2)Recherche Heuristique : * Dans "C:\WINDOWS\system32" : * Dans "C:\Documents and Settings\scarves\locals~1\applic~1" : * Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" : * Dans "C:\DOCUME~1\ADMINI~1.NIK\locals~1\applic~1" : 3)Recherche Certificats : Certificat Egroup trouvé ! Certificat Electronic-Group absent ! Certificat Montorgueil absent ! Certificat OOO-Favorit absent ! Certificat Sunny-Day-Design-Ltd absent ! 4)Recherche fichiers connus : *** Analyse terminée le 05/10/2008 à 11:36:21,34 *** ensuite --------------------\\ Lop S&D 4.2.4-5 XP/Vista Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2 X86-based PC ( Multiprocessor Free : Intel® Pentium® 4 CPU 3.00GHz ) BIOS : BIOS Date: 02/03/05 22:39:18 Ver: 08.00.10 USER : scarves ( Administrator ) BOOT : Normal boot Antivirus : ESET NOD32 Antivirus 3.0 3.0 (Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total : 43 Go Free : 13 Go D:\ (Local Disk) - NTFS - Total : 73 Go Free : 0 Go E:\ (Local Disk) - NTFS - Total : 72 Go Free : 1 Go F:\ (CD or DVD) - CDFS - Total : 0 Go Free : 0 Go J:\ (Local Disk) - NTFS - Total : 87 Go Free : 1 Go K:\ (Local Disk) - NTFS - Total : 102 Go Free : 5 Go L:\ (Local Disk) - NTFS - Total : 189 Go Free : 2 Go M:\ (CD or DVD) "C:\Lop SD" ( MAJ : 02-10-2008|23:42 ) Option : [2] ( 05/10/2008|11:17 ) \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@advertstream[1].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@advertstream[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@adultfriendfinder[1].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@advertising[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@adin.bigpoint[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@bigpoint[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@fr.seafight.bigpoint[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@fr1.seafight.bigpoint[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@banner.cotedazurpalace[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@cotedazurpalace[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@adopt.euroclick[1].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@adopt.euroclick[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@partypoker[1].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@2xmoinscher[1].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@www.2xmoinscher[2].txt \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ --------------------\\ Listing des dossiers dans APPLIC~1 [19/10/2005|20:00] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft Outil exécuté depuis C:\Program Files\navilog1 Session actuelle : "scarves" Mise à jour le 29.09.2008 à 17h30 par IL-MAFIOSO Microsoft Windows XP [version 5.1.2600] Internet Explorer : 7.0.5730.11 Système de fichiers : NTFS Mode suppression automatique avec prise en charge résultats Catchme et GNS Nettoyage exécuté au redémarrage de l'ordinateur *** fsbl1.txt non trouvé *** (Assurez-vous que Catchme n'avait rien trouvé lors de la recherche) *** Suppression avec sauvegardes résultats GenericNaviSearch *** * Suppression dans "C:\WINDOWS\System32" * * Suppression dans "C:\Documents and Settings\scarves\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\ADMINI~1.NIK\locals~1\applic~1" * *** Suppression dossiers dans "C:\WINDOWS" *** *** Suppression dossiers dans "C:\Program Files" *** *** Suppression dossiers dans "C:\Documents and Settings\All Users\windows\menudm~1" *** *** Suppression dossiers dans "C:\Documents and Settings\All Users\windows" *** *** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\scarves\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1.NIK\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\scarves\locals~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1.NIK\locals~1\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\scarves\windows\menudm~1" *** *** Suppression fichiers *** *** Suppression fichiers temporaires *** Nettoyage contenu C:\WINDOWS\Temp effectué ! Nettoyage contenu C:\Documents and Settings\scarves\locals~1\Temp effectué ! *** Traitement Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Suppression avec sauvegardes nouveaux fichiers Instant Access : 2)Recherche, création sauvegardes et suppression Heuristique : * Dans "C:\WINDOWS\system32" * * Dans "C:\Documents and Settings\scarves\locals~1\applic~1" * * Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" * * Dans "C:\DOCUME~1\ADMINI~1.NIK\locals~1\applic~1" * *** Sauvegarde du Registre vers dossier Safebackup *** sauvegarde du Registre réalisée avec succès ! *** Nettoyage Registre *** Nettoyage Registre Ok *** Certificats *** Certificat Egroup supprimé ! Certificat Electronic-Group absent ! Certificat Montorgueil absent ! Certificat OOO-Favorit absent ! Certificat Sunny-Day-Design-Ltdt absent ! *** Nettoyage terminé le 05/10/2008 à 11:48:49,75 *** et le scan apres en mode windows sans echec Avira AntiVir Personal Report file date: dimanche 5 octobre 2008 12:05 Scanning for 1658825 virus strains and unwanted programs. Licensed to: Avira AntiVir PersonalEdition Classic Serial number: 0000149996-ADJIE-0001 Platform: Windows XP Windows version: (Service Pack 2) [5.1.2600] Boot mode: Save mode Username: Administrateur Computer name: NIKARE Version information: BUILD.DAT : 8.1.0.331 16934 Bytes 12/08/2008 11:46:00 AVSCAN.EXE : 8.1.4.7 315649 Bytes 26/06/2008 08:57:53 AVSCAN.DLL : 8.1.4.0 40705 Bytes 26/05/2008 07:56:40 LUKE.DLL : 8.1.4.5 164097 Bytes 12/06/2008 12:44:19 LUKERES.DLL : 8.1.4.0 12033 Bytes 26/05/2008 07:58:52 ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 10:33:34 ANTIVIR1.VDF : 7.0.5.1 8182784 Bytes 24/06/2008 13:54:15 ANTIVIR2.VDF : 7.0.6.217 3773440 Bytes 26/09/2008 09:58:21 ANTIVIR3.VDF : 7.0.6.243 186368 Bytes 04/10/2008 09:58:21 Engineversion : 8.1.1.35 AEVDF.DLL : 8.1.0.5 102772 Bytes 25/02/2008 09:58:21 AESCRIPT.DLL : 8.1.0.76 319867 Bytes 05/10/2008 09:58:27 AESCN.DLL : 8.1.0.23 119156 Bytes 10/07/2008 12:44:49 AERDL.DLL : 8.1.1.2 438644 Bytes 05/10/2008 09:58:27 AEPACK.DLL : 8.1.2.3 364918 Bytes 05/10/2008 09:58:26 AEOFFICE.DLL : 8.1.0.25 196986 Bytes 05/10/2008 09:58:25 AEHEUR.DLL : 8.1.0.59 1438071 Bytes 05/10/2008 09:58:24 AEHELP.DLL : 8.1.0.15 115063 Bytes 10/07/2008 12:44:48 AEGEN.DLL : 8.1.0.36 315764 Bytes 05/10/2008 09:58:23 AEEMU.DLL : 8.1.0.7 430452 Bytes 31/07/2008 08:33:21 AECORE.DLL : 8.1.1.11 172406 Bytes 05/10/2008 09:58:22 AEBB.DLL : 8.1.0.1 53617 Bytes 10/07/2008 12:44:48 AVWINLL.DLL : 1.0.0.12 15105 Bytes 09/07/2008 08:40:05 AVPREF.DLL : 8.0.2.0 38657 Bytes 16/05/2008 09:28:01 AVREP.DLL : 8.0.0.2 98344 Bytes 05/10/2008 09:58:22 AVREG.DLL : 8.0.0.1 33537 Bytes 09/05/2008 11:26:40 AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23 AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 12/06/2008 12:27:49 SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02 SMTPLIB.DLL : 1.2.0.23 28929 Bytes 12/06/2008 12:49:40 NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10 RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 12/06/2008 13:48:07 RCTEXT.DLL : 8.0.52.0 86273 Bytes 27/06/2008 13:34:37 Configuration settings for the scan: Jobname..........................: Local Drives Configuration file...............: c:\program files\avira\antivir personaledition classic\alldrives.avp Logging..........................: low Primary action...................: repair Secondary action.................: delete Scan master boot sector..........: on Scan boot sector.................: on Boot sectors.....................: C:, D:, E:, J:, K:, L:, A:, F:, M:, Process scan.....................: on Scan registry....................: on Search for rootkits..............: on Scan all files...................: All files Scan archives....................: on Recursion depth..................: 20 Smart extensions.................: on Macro heuristic..................: on File heuristic...................: medium Start of the scan: dimanche 5 octobre 2008 12:05 Starting search for hidden objects. The driver could not be initialized. The scan of running processes will be started Scan process 'avscan.exe' - '1' Module(s) have been scanned Scan process 'avcenter.exe' - '1' Module(s) have been scanned Scan process 'explorer.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'aawservice.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'lsass.exe' - '1' Module(s) have been scanned Scan process 'services.exe' - '1' Module(s) have been scanned Scan process 'winlogon.exe' - '1' Module(s) have been scanned Scan process 'csrss.exe' - '1' Module(s) have been scanned Scan process 'smss.exe' - '1' Module(s) have been scanned 12 processes with 12 modules were scanned Starting master boot sector scan: Master boot sector HD0 [iNFO] No virus was found! Master boot sector HD1 [iNFO] No virus was found! Master boot sector HD2 [iNFO] No virus was found! Start scanning boot sectors: Boot sector 'C:\' [iNFO] No virus was found! Boot sector 'D:\' [iNFO] No virus was found! Boot sector 'E:\' [iNFO] No virus was found! Boot sector 'J:\' [iNFO] No virus was found! Boot sector 'K:\' [iNFO] No virus was found! Boot sector 'L:\' [iNFO] No virus was found! Boot sector 'A:\' [iNFO] In the drive 'A:\' no data medium is inserted! Starting to scan the registry. The registry was scanned ( '65' files ). Starting the file scan: Begin scan in 'C:\' C:\pagefile.sys [WARNING] The file could not be opened! C:\Documents and Settings\scarves\Local Settings\Temporary Internet Files\Content.IE5\K5QCL8AA\._file[1].exe [DETECTION] Is the TR/Obfuscated.GX.2051 Trojan [NOTE] A backup was created as '494e931e.qua' ( QUARANTINE ) [NOTE] Attempting to perform action using the ARK lib. [NOTE] The driver could not be initialized. [NOTE] The file was deleted! C:\Documents and Settings\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK.rar [0] Archive type: RAR --> Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 [iII] Crack No-CD & KeyGen\Doom 3 KeyGen -RELOADED\RLD-D3KG.EXE [DETECTION] Is the TR/Agent.2657 Trojan [NOTE] A backup was created as '4957933d.qua' ( QUARANTINE ) [NOTE] Attempting to perform action using the ARK lib. [WARNING] The file could not be copied to the quarantine directory. [WARNING] Error in ARK lib [NOTE] The file was deleted! C:\Documents and Settings\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 [iII] Crack No-CD & KeyGen\Doom 3 KeyGen -RELOADED\RLD-D3KG.EXE [DETECTION] Is the TR/Agent.2657 Trojan [NOTE] A backup was created as '492c931b.qua' ( QUARANTINE ) [NOTE] Attempting to perform action using the ARK lib. [NOTE] The driver could not be initialized. [NOTE] The file was deleted! C:\Program Files\mIRC.FF.ST.exe [DETECTION] Is the TR/Crypt.XPACK.Gen Trojan [NOTE] A backup was created as '493a9396.qua' ( QUARANTINE ) [NOTE] Attempting to perform action using the ARK lib. [WARNING] The file could not be copied to the quarantine directory. [WARNING] Error in ARK lib [NOTE] The file was deleted! C:\WINDOWS\system32\drivers\sptd.sys [WARNING] The file could not be opened! Begin scan in 'D:\' D:\Program Files\jeux +\Doom.3.CRACK.rar [0] Archive type: RAR --> Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 [iII] Crack No-CD & KeyGen\Doom 3 KeyGen -RELOADED\RLD-D3KG.EXE [DETECTION] Is the TR/Agent.2657 Trojan [NOTE] A backup was created as '4957ad07.qua' ( QUARANTINE ) [NOTE] Attempting to perform action using the ARK lib. [NOTE] The driver could not be initialized. [NOTE] The file was deleted! D:\Program Files\NFSU 2 codecs\Need For Speed Underground.rar [0] Archive type: RAR --> 3DSetup\3DSetup.exe [1] Archive type: OVL --> Object [DETECTION] Contains code of the W32/Parite.B Windows virus --> eauninstall.exe [1] Archive type: OVL --> Object [DETECTION] Contains code of the W32/Parite.B Windows virus --> Speed.exe [DETECTION] Is the TR/Crypt.XDR.Gen Trojan [NOTE] A backup was created as '494dad1e.qua' ( QUARANTINE ) [NOTE] Attempting to perform action using the ARK lib. [WARNING] The file could not be copied to the quarantine directory. [WARNING] Error in ARK lib [NOTE] The file was deleted! Begin scan in 'E:\' <Disque local> Begin scan in 'J:\' <disque local 2> Begin scan in 'K:\' <disque local 2> K:\BitDefender Plus v10 + Keygen CORE + Patch.zip [0] Archive type: ZIP --> BitDefender Plus v10 + Keygen CORE + Patch/exe1.exe [DETECTION] Is the TR/Agent.1221632 Trojan --> BitDefender Plus v10 + Keygen CORE + Patch/keygen1.exe [DETECTION] Is the TR/Agent.1221632 Trojan --> BitDefender Plus v10 + Keygen CORE + Patch/runfirst.exe [DETECTION] Is the TR/Agent.1221632 Trojan --> BitDefender Plus v10 + Keygen CORE + Patch/update.exe [DETECTION] Is the TR/Agent.1221632 Trojan [NOTE] A backup was created as '495cb4a6.qua' ( QUARANTINE ) [NOTE] Attempting to perform action using the ARK lib. [NOTE] The driver could not be initialized. [NOTE] The file was deleted! Begin scan in 'L:\' <disque local 3> Begin scan in 'A:\' Search path A:\ could not be opened! System error [21]: Le périphérique n'est pas prêt. Begin scan in 'F:\' <YUGI_POC_KAIBA> Begin scan in 'M:\' Search path M:\ could not be opened! System error [21]: Le périphérique n'est pas prêt. End of the scan: dimanche 5 octobre 2008 17:45 Used time: 5:39:34 Hour(s) The scan has been done completely. 19223 Scanning directories 382267 Files were scanned 12 viruses and/or unwanted programs were found 0 Files were classified as suspicious: 7 files were deleted 0 files were repaired 7 files were moved to quarantine 0 files were renamed 2 Files cannot be scanned 382253 Files not concerned 4361 Archives were scanned 5 Warnings 7 Notes et le dernier hijack this sa donne quoi maintenant Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 17:59:47, on 05/10/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16705) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\RunDll32.exe C:\Program Files\ASUS\Probe\AsusProb.exe C:\Program Files\ASUS\WLAN Card Utilities\Center.exe C:\WINDOWS\system32\rundll32.exe D:\programmes et set up\msnplus\MsgPlus.exe D:\programmes et set up\Quicktime\qttask.exe D:\programmes et set up\Daemon tool\DAEMON Tools\daemon.exe C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Veoh Networks\Veoh\VeohClient.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Logitech\SetPoint\KEM.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Portrait Displays\MagicTune\DTHtml.exe C:\Program Files\ITE\ITE IT8212 ATA RAID Controller\RaidMgr.exe D:\programmes et set up\WinZip\WZQKPICK.EXE D:\programmes et set up\Rainlendar\Rainlendar.exe C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE D:\programmes et set up\Rainmeter\Rainmeter.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\Portrait Displays\MagicTune\dtsrvc.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\WINDOWS\system32\WgaTray.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\Documents and Settings\scarves\Local Settings\Temporary Internet Files\Content.IE5\JCVQHUWB\HiJackThis[1].exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://recherche.neuf.fr/ie/default.html R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://recherche.neuf.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://recherche.neuf.fr/ie/default.html R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O1 - Hosts: 80.239.180.111 eu.logon.worldofwarcraft.com O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [ASUS Probe] C:\Program Files\ASUS\Probe\AsusProb.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [Control Center] C:\Program Files\ASUS\WLAN Card Utilities\Center.exe O4 - HKLM\..\Run: [bDSwitchAgent] "C:\progra~1\softwin\bitdef~2\bdswitch.exe" O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKLM\..\Run: [MessengerPlus3] "D:\programmes et set up\msnplus\MsgPlus.exe" O4 - HKLM\..\Run: [QuickTime Task] "D:\programmes et set up\Quicktime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Anti-Blaxx Manager] H:\Programmes files\Serious sam2\Anti-Blaxx\Anti-Blaxx.exe O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [DAEMON Tools] "D:\programmes et set up\Daemon tool\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [TotalRecorderScheduler] "C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe" O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe /boot O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [MessengerPlus3] "D:\programmes et set up\msnplus\MsgPlus.exe" /WinStart O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [bitComet] "C:\Program Files\BitComet\BitComet.exe" /tray O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: Rainlendar.lnk = D:\programmes et set up\Rainlendar\Rainlendar.exe O4 - Startup: Rainmeter.lnk = D:\programmes et set up\Rainmeter\Rainmeter.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe O4 - Global Startup: MagicTune.lnk = C:\Program Files\Portrait Displays\MagicTune\DTHtml.exe O4 - Global Startup: RAID Manager.lnk = ? O4 - Global Startup: WinZip Quick Pick.lnk = D:\programmes et set up\WinZip\WZQKPICK.EXE O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: Yahoo! Dominoes - http://origin.games.yahoo.net/games/clients/y/dot9_x.cab O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {4E218431-2F07-40BD-A9D3-035324C1F13F} (DyynoX Class) - http://webserver.dyyno.com/DyynoClient/DyynoCAB.CAB O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} (EARTPatchX Class) - http://files.ea.com/downloads/rtpatch/v2/EARTPX.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppD...ap/PhtPkMSN.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} - O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Portrait Displays Display Tune Service (DTSRVC) - Unknown owner - C:\Program Files\Portrait Displays\MagicTune\dtsrvc.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe -- End of file - 12140 bytes
  13. scarves
    apres avec suppression --------------------\\ Lop S&D 4.2.4-5 XP/Vista Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2 X86-based PC ( Multiprocessor Free : Intel® Pentium® 4 CPU 3.00GHz ) BIOS : BIOS Date: 02/03/05 22:39:18 Ver: 08.00.10 USER : scarves ( Administrator ) BOOT : Normal boot Antivirus : ESET NOD32 Antivirus 3.0 3.0 (Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total : 43 Go Free : 13 Go D:\ (Local Disk) - NTFS - Total : 73 Go Free : 0 Go E:\ (Local Disk) - NTFS - Total : 72 Go Free : 1 Go F:\ (CD or DVD) - CDFS - Total : 0 Go Free : 0 Go J:\ (Local Disk) - NTFS - Total : 87 Go Free : 1 Go K:\ (Local Disk) - NTFS - Total : 102 Go Free : 5 Go L:\ (Local Disk) - NTFS - Total : 189 Go Free : 2 Go M:\ (CD or DVD) "C:\Lop SD" ( MAJ : 02-10-2008|23:42 ) Option : [2] ( 05/10/2008|11:17 ) \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@advertstream[1].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@advertstream[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@adultfriendfinder[1].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@advertising[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@adin.bigpoint[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@bigpoint[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@fr.seafight.bigpoint[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@fr1.seafight.bigpoint[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@banner.cotedazurpalace[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@cotedazurpalace[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@adopt.euroclick[1].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@adopt.euroclick[2].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@partypoker[1].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@2xmoinscher[1].txt Supprime! - C:\DOCUME~1\scarves\Cookies\scarves@www.2xmoinscher[2].txt \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ --------------------\\ Listing des dossiers dans APPLIC~1 [19/10/2005|20:00] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft [02/10/2008|08:13] C:\DOCUME~1\ADMINI~1.NIK\APPLIC~1\Adobe [02/10/2008|08:13] C:\DOCUME~1\ADMINI~1.NIK\APPLIC~1\BitDefender [02/10/2008|08:17] C:\DOCUME~1\ADMINI~1.NIK\APPLIC~1\Microsoft [07/03/2007|06:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [29/09/2005|23:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead [14/10/2005|00:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [02/10/2008|04:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender [20/04/2008|05:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ESET [22/09/2006|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [05/10/2008|08:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\idkhadyj [05/10/2008|06:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft [05/10/2008|08:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes [09/10/2005|17:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus! [16/04/2008|11:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [18/07/2008|21:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS [08/11/2006|16:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA [21/09/2005|00:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles [03/01/2007|13:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage [18/08/2008|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\POP3Profiles [05/10/2008|06:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Simply Super Software [20/04/2008|06:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy [05/10/2008|07:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP [31/05/2008|05:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ubisoft [30/09/2005|00:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [27/11/2007|18:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller [20/09/2005|23:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [12/11/2006|04:24] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [20/09/2005|23:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft [24/09/2008|00:52] C:\DOCUME~1\scarves\APPLIC~1\.BitTornado [27/01/2008|03:45] C:\DOCUME~1\scarves\APPLIC~1\Adobe [12/05/2008|02:01] C:\DOCUME~1\scarves\APPLIC~1\AdobeUM [22/11/2006|20:11] C:\DOCUME~1\scarves\APPLIC~1\Ahead [14/10/2005|00:34] C:\DOCUME~1\scarves\APPLIC~1\Apple Computer [02/10/2008|04:40] C:\DOCUME~1\scarves\APPLIC~1\BitDefender [15/11/2006|08:06] C:\DOCUME~1\scarves\APPLIC~1\BSplayer [27/12/2007|06:03] C:\DOCUME~1\scarves\APPLIC~1\Creative [08/11/2007|05:50] C:\DOCUME~1\scarves\APPLIC~1\DivX [20/07/2008|07:11] C:\DOCUME~1\scarves\APPLIC~1\dvdcss [06/07/2008|16:33] C:\DOCUME~1\scarves\APPLIC~1\dyyno-vlc [22/09/2006|20:26] C:\DOCUME~1\scarves\APPLIC~1\Google [21/09/2005|01:18] C:\DOCUME~1\scarves\APPLIC~1\Help [10/03/2007|08:07] C:\DOCUME~1\scarves\APPLIC~1\Ideazon [20/09/2005|23:45] C:\DOCUME~1\scarves\APPLIC~1\Identities [31/05/2008|05:10] C:\DOCUME~1\scarves\APPLIC~1\InstallShield [14/02/2008|21:38] C:\DOCUME~1\scarves\APPLIC~1\Lavasoft [21/09/2005|04:24] C:\DOCUME~1\scarves\APPLIC~1\Logitech [11/06/2006|04:25] C:\DOCUME~1\scarves\APPLIC~1\Macromedia [05/10/2008|08:17] C:\DOCUME~1\scarves\APPLIC~1\Malwarebytes [03/03/2007|08:03] C:\DOCUME~1\scarves\APPLIC~1\Media Player Classic [05/01/2008|05:47] C:\DOCUME~1\scarves\APPLIC~1\Microsoft [05/01/2008|05:47] C:\DOCUME~1\scarves\APPLIC~1\Microsoft Games [22/09/2008|06:00] C:\DOCUME~1\scarves\APPLIC~1\Mozilla [21/09/2005|01:55] C:\DOCUME~1\scarves\APPLIC~1\Rainlendar [11/09/2008|01:02] C:\DOCUME~1\scarves\APPLIC~1\Real [22/09/2005|16:25] C:\DOCUME~1\scarves\APPLIC~1\SecuROM [05/10/2008|06:48] C:\DOCUME~1\scarves\APPLIC~1\Simply Super Software [15/10/2005|16:08] C:\DOCUME~1\scarves\APPLIC~1\STOIK [01/10/2008|02:44] C:\DOCUME~1\scarves\APPLIC~1\Sun [21/07/2008|20:38] C:\DOCUME~1\scarves\APPLIC~1\teamspeak2 [20/12/2006|22:35] C:\DOCUME~1\scarves\APPLIC~1\U3 [31/05/2008|05:23] C:\DOCUME~1\scarves\APPLIC~1\Ubisoft [20/06/2008|04:56] C:\DOCUME~1\scarves\APPLIC~1\uTorrent [19/10/2005|17:33] C:\DOCUME~1\scarves\APPLIC~1\vlc [11/05/2007|19:34] C:\DOCUME~1\scarves\APPLIC~1\Vso [26/12/2007|06:50] C:\DOCUME~1\scarves\APPLIC~1\Yahoo! --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks [05/10/2008 08:56][--ah-----] C:\WINDOWS\tasks\SA.DAT [28/08/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini --------------------\\ Listing des dossiers dans C:\Program Files [26/12/2007|19:59] C:\Program Files\Adobe [22/11/2006|19:43] C:\Program Files\Ahead [21/09/2005|04:05] C:\Program Files\ASUS [06/06/2007|09:07] C:\Program Files\Audacity [24/10/2005|23:27] C:\Program Files\avisplit [30/11/2007|16:28] C:\Program Files\BitComet [02/10/2008|04:39] C:\Program Files\BitDefender [23/09/2005|18:03] C:\Program Files\Canon [20/09/2005|23:39] C:\Program Files\ComPlus Applications [12/06/2006|09:20] C:\Program Files\Creative [21/09/2005|01:09] C:\Program Files\directx [04/12/2007|19:42] C:\Program Files\DivX [07/05/2008|19:46] C:\Program Files\Dyyno [25/09/2008|07:03] C:\Program Files\eMule [20/04/2008|05:30] C:\Program Files\ESET [05/10/2008|06:23] C:\Program Files\Fichiers communs [02/02/2007|01:18] C:\Program Files\Google [25/09/2005|18:35] C:\Program Files\HardwareOC BenchTools [03/04/2008|03:27] C:\Program Files\HighCriteria [10/09/2008|10:29] C:\Program Files\InstallShield Installation Information [20/09/2005|23:47] C:\Program Files\Intel [29/08/2008|16:42] C:\Program Files\Internet Explorer [05/10/2008|05:35] C:\Program Files\ioazzzc [20/09/2005|23:54] C:\Program Files\ITE [01/10/2008|02:36] C:\Program Files\Java [04/12/2007|19:43] C:\Program Files\K-Lite Codec Pack [11/01/2008|22:28] C:\Program Files\KONAMI [05/10/2008|06:24] C:\Program Files\Lavasoft [21/09/2005|04:22] C:\Program Files\Logitech [05/10/2008|08:17] C:\Program Files\Malwarebytes' Anti-Malware [20/09/2005|23:53] C:\Program Files\Marvell [30/08/2008|03:03] C:\Program Files\Messenger [10/01/2007|18:45] C:\Program Files\MessengerPlus! 3 [28/12/2006|14:33] C:\Program Files\metronimo [20/09/2005|23:42] C:\Program Files\microsoft frontpage [29/09/2005|17:31] C:\Program Files\Microsoft Office [29/09/2005|17:31] C:\Program Files\Microsoft Visual Studio [29/09/2005|17:31] C:\Program Files\Microsoft Works [29/09/2005|17:32] C:\Program Files\Microsoft.NET [05/10/2008|09:00] C:\Program Files\mIRC [24/10/2005|23:27] C:\Program Files\Movie Joiner(2) [21/09/2005|00:12] C:\Program Files\Movie Maker [03/10/2008|07:29] C:\Program Files\Mozilla Firefox [20/09/2005|23:39] C:\Program Files\MSN [20/09/2005|23:39] C:\Program Files\MSN Gaming Zone [14/11/2007|12:17] C:\Program Files\MSN Messenger [12/04/2007|20:37] C:\Program Files\MSXML 4.0 [20/03/2006|13:27] C:\Program Files\MUSICMATCH [30/09/2005|01:55] C:\Program Files\Nero [15/01/2007|09:02] C:\Program Files\Net Pro Anti Popup [21/09/2005|00:11] C:\Program Files\NetMeeting [14/01/2008|10:09] C:\Program Files\Neuf [18/07/2008|21:19] C:\Program Files\NOS [29/09/2005|17:38] C:\Program Files\OfficeUpdate11 [13/06/2007|13:24] C:\Program Files\Outlook Express [19/09/2008|14:01] C:\Program Files\Overnet [08/11/2005|18:11] C:\Program Files\Paltalk Messenger [21/09/2005|00:03] C:\Program Files\Portrait Displays [03/04/2008|03:17] C:\Program Files\Ratajik Software [07/07/2006|11:05] C:\Program Files\Real [20/09/2005|23:39] C:\Program Files\Services en ligne [30/09/2005|00:34] C:\Program Files\Sierra [10/08/2008|17:35] C:\Program Files\Sierra Entertainment [10/01/2007|18:35] C:\Program Files\Softwin [20/04/2008|05:52] C:\Program Files\Spybot - Search & Destroy [05/10/2008|06:48] C:\Program Files\Trojan Remover [25/09/2005|01:48] C:\Program Files\Ubisoft [20/09/2005|23:45] C:\Program Files\Uninstall Information [20/06/2008|04:27] C:\Program Files\uTorrent [21/09/2005|13:56] C:\Program Files\Valve [27/11/2007|18:43] C:\Program Files\Veoh Networks [23/11/2006|11:57] C:\Program Files\Webteh [14/11/2007|09:18] C:\Program Files\Windows Live [12/11/2006|03:58] C:\Program Files\Windows Media Connect 2 [14/12/2006|21:18] C:\Program Files\Windows Media Player [21/09/2005|00:11] C:\Program Files\Windows NT [20/09/2005|23:39] C:\Program Files\WindowsUpdate [13/09/2007|03:32] C:\Program Files\WowCartographe [20/09/2005|23:42] C:\Program Files\xerox [26/12/2007|16:19] C:\Program Files\Yahoo! --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs [01/10/2005|19:02] C:\Program Files\Fichiers communs\Adobe [26/12/2007|06:56] C:\Program Files\Fichiers communs\Ahead [02/10/2008|08:18] C:\Program Files\Fichiers communs\BitDefender [25/10/2007|06:53] C:\Program Files\Fichiers communs\Blizzard Entertainment [29/09/2005|17:31] C:\Program Files\Fichiers communs\DESIGNER [21/09/2005|23:26] C:\Program Files\Fichiers communs\DirectX [20/09/2005|23:59] C:\Program Files\Fichiers communs\InstallShield [01/10/2008|02:35] C:\Program Files\Fichiers communs\Java [21/09/2005|04:22] C:\Program Files\Fichiers communs\Logitech [14/11/2007|09:19] C:\Program Files\Fichiers communs\Microsoft Shared [20/09/2005|23:39] C:\Program Files\Fichiers communs\MSSoap [08/12/2006|15:30] C:\Program Files\Fichiers communs\NSV [04/03/2007|19:03] C:\Program Files\Fichiers communs\Nullsoft [21/09/2005|00:35] C:\Program Files\Fichiers communs\ODBC [11/09/2008|01:02] C:\Program Files\Fichiers communs\Real [20/09/2005|23:39] C:\Program Files\Fichiers communs\Services [12/04/2007|12:45] C:\Program Files\Fichiers communs\Softwin [21/09/2005|00:35] C:\Program Files\Fichiers communs\SpeechEngines [13/06/2007|13:24] C:\Program Files\Fichiers communs\System [14/11/2007|09:17] C:\Program Files\Fichiers communs\WindowsLiveInstaller [05/10/2008|06:23] C:\Program Files\Fichiers communs\Wise Installation Wizard --------------------\\ Process ( 58 Processes ) MsgPlus.exe ~ [PID:388] --------------------\\ Recherche avec S_Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Recherche de Fichiers / Dossiers Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Verification du Registre ..... OK ! --------------------\\ Verification du fichier Hosts Fichier Hosts PROPRE --------------------\\ Recherche de fichiers avec Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-10-05 11:18:29 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 0 --------------------\\ Recherche d'autres infections --------------------\\ Cracks & Keygens .. C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\DOOM 3 INSTRUCTION COMPLETTE CONFIG.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK.rar C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\DOOM 3 INSTRUCTION COMPLETTE CONFIG.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14] C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Bmp2Avi C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\C00P C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Chainsaw Only Mod C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Cheat Codes - Complete.doc C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\DOOM 3 Minimizer v1.1 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Plus 9 Trainer PiZZADOX C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Server Connect Tool C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Trainer Plus +14 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Upgrade Pack C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 [iII] Crack No-CD & KeyGen C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Fight Club Mod C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\FPS Config C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Rocket DM C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\UEQ Mod C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Bmp2Avi\documentation C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Bmp2Avi\pjBmp2Avi.exe C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Bmp2Avi\documentation\dialog.gif C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Bmp2Avi\documentation\icon.gif C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Bmp2Avi\documentation\pjBmp2Avi.html C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Bmp2Avi\documentation\Thumbs.db C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\C00P\pak005.pk4 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Chainsaw Only Mod\chainsawonly C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Chainsaw Only Mod\Chainsaws Only readme.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Chainsaw Only Mod\chainsawonly\pak000.pk4 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\DOOM 3 Minimizer v1.1\DOOM.3.Minimizer.v1.1-CiTRON-X C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\DOOM 3 Minimizer v1.1\DOOM.3.Minimizer.v1.1-CiTRON-X\cix-d3m.nfo C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\DOOM 3 Minimizer v1.1\DOOM.3.Minimizer.v1.1-CiTRON-X\cix-d3m.rar C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\DOOM 3 Minimizer v1.1\DOOM.3.Minimizer.v1.1-CiTRON-X\cix-d3m.sfv C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Plus 9 Trainer PiZZADOX\pizzadox.nfo C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Plus 9 Trainer PiZZADOX\pzddom3t C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Plus 9 Trainer PiZZADOX\pzddom3t.sfv C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Plus 9 Trainer PiZZADOX\pzddom3t\pizzadox.nfo C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Plus 9 Trainer PiZZADOX\pzddom3t\pztrain.exe C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Server Connect Tool\Doom3.Connecttool.exe C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Server Connect Tool\readme.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Trainer Plus +14\mo-d3fix.exe C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Trainer Plus +14\mo-d3fix.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Upgrade Pack\pak005.pk4 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Upgrade Pack\rvl-d3up_Info.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 [iII] Crack No-CD & KeyGen\Doom 3 KeyGen -RELOADED C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 [iII] Crack No-CD & KeyGen\Doom III NoCD -RELOADED C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 [iII] Crack No-CD & KeyGen\Doom 3 KeyGen -RELOADED\reloaded_INFO.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 [iII] Crack No-CD & KeyGen\Doom 3 KeyGen -RELOADED\RLD-D3KG.EXE C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 [iII] Crack No-CD & KeyGen\Doom III NoCD -RELOADED\Doom3.exe C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Fight Club Mod\Fightclub readme.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Fight Club Mod\Fightclubv1 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Fight Club Mod\Fightclubv1\pak000.pk4 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\FPS Config\autoexec.cfg C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\FPS Config\readme.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\Mod Version C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\pk4 Version C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\readme.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\screenshot-imp.jpg C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\screenshot-pinky.jpg C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\Mod Version\Nitro C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\Mod Version\Nitro_Doom.bat C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\Mod Version\Nitro\DoomConfig.cfg C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\Mod Version\Nitro\pak000.pk4 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\pk4 Version\pak666.pk4 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Rocket DM\RocketDM C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Rocket DM\RocketDM readme.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Rocket DM\RocketDM\pak000.pk4 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\UEQ Mod\readme.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\UEQ Mod\u-e-q-mod.jpg C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\UEQ Mod\u-e-q-mod.pk4 C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack.rar C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\Lire avant installation !.txt C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\Nod32.3.0.551.32.bits.ENG.msi C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\Nod32.3.0.551.64.bits.ENG.msi C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\Nod32Patch.exe C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\Splinter Cell 3 - Chaos Theory - Nocd\Splinter.Cell.3.-.Chaos.Theory.-.crackNoCdFix+Dev C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\Splinter Cell 3 - Chaos Theory - Nocd\Splinter.Cell.3.-.Chaos.Theory.-.crackNoCdFix+Dev\Splinter.Cell.3.-.crackNoCdFix+Dev.exe C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\Splinter Cell 3 - Chaos Theory - Nocd\Splinter.Cell.3.-.Chaos.Theory.-.crackNoCdFix+Dev\splintercell3.hold.exe C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\Splinter Cell 3 - Chaos Theory - Nocd(1)\Splinter.Cell.3.-.Chaos.Theory.-.crackNoCdFix+Dev C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\Splinter Cell 3 - Chaos Theory - Nocd(1)\Splinter.Cell.3.-.Chaos.Theory.-.crackNoCdFix+Dev\Splinter.Cell.3.-.crackNoCdFix+Dev.exe [F:5573][D:285]-> C:\DOCUME~1\scarves\LOCALS~1\Temp [F:2404][D:0]-> C:\DOCUME~1\scarves\Cookies [F:757][D:36]-> C:\DOCUME~1\scarves\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - 05/10/2008|11:12 - Option : [1] 2 - "C:\Lop SD\LopR_2.txt" - 05/10/2008|11:19 - Option : [2] --------------------\\ Fin du rapport a 11:19:28
  14. scarves
    merci de m'avoir repondu aussi vite alors voici le rapport de lop --------------------\\ Lop S&D 4.2.4-5 XP/Vista Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2 X86-based PC ( Multiprocessor Free : Intel® Pentium® 4 CPU 3.00GHz ) BIOS : BIOS Date: 02/03/05 22:39:18 Ver: 08.00.10 USER : scarves ( Administrator ) BOOT : Normal boot Antivirus : ESET NOD32 Antivirus 3.0 3.0 (Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total : 43 Go Free : 13 Go D:\ (Local Disk) - NTFS - Total : 73 Go Free : 0 Go E:\ (Local Disk) - NTFS - Total : 72 Go Free : 1 Go F:\ (CD or DVD) - CDFS - Total : 0 Go Free : 0 Go J:\ (Local Disk) - NTFS - Total : 87 Go Free : 1 Go K:\ (Local Disk) - NTFS - Total : 102 Go Free : 5 Go L:\ (Local Disk) - NTFS - Total : 189 Go Free : 2 Go M:\ (CD or DVD) "C:\Lop SD" ( MAJ : 02-10-2008|23:42 ) Option : [1] ( 05/10/2008|11:09 ) --------------------\\ Listing des dossiers dans APPLIC~1 [19/10/2005|20:00] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft [02/10/2008|08:13] C:\DOCUME~1\ADMINI~1.NIK\APPLIC~1\Adobe [02/10/2008|08:13] C:\DOCUME~1\ADMINI~1.NIK\APPLIC~1\BitDefender [02/10/2008|08:17] C:\DOCUME~1\ADMINI~1.NIK\APPLIC~1\Microsoft [07/03/2007|06:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [29/09/2005|23:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead [14/10/2005|00:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [02/10/2008|04:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender [20/04/2008|05:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ESET [22/09/2006|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [05/10/2008|08:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\idkhadyj [05/10/2008|06:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft [05/10/2008|08:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes [09/10/2005|17:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus! [16/04/2008|11:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [18/07/2008|21:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS [08/11/2006|16:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA [21/09/2005|00:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles [03/01/2007|13:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage [18/08/2008|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\POP3Profiles [05/10/2008|06:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Simply Super Software [20/04/2008|06:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy [05/10/2008|07:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP [31/05/2008|05:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ubisoft [30/09/2005|00:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [27/11/2007|18:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller [20/09/2005|23:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [12/11/2006|04:24] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [20/09/2005|23:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft [24/09/2008|00:52] C:\DOCUME~1\scarves\APPLIC~1\.BitTornado [27/01/2008|03:45] C:\DOCUME~1\scarves\APPLIC~1\Adobe [12/05/2008|02:01] C:\DOCUME~1\scarves\APPLIC~1\AdobeUM [22/11/2006|20:11] C:\DOCUME~1\scarves\APPLIC~1\Ahead [14/10/2005|00:34] C:\DOCUME~1\scarves\APPLIC~1\Apple Computer [02/10/2008|04:40] C:\DOCUME~1\scarves\APPLIC~1\BitDefender [15/11/2006|08:06] C:\DOCUME~1\scarves\APPLIC~1\BSplayer [27/12/2007|06:03] C:\DOCUME~1\scarves\APPLIC~1\Creative [08/11/2007|05:50] C:\DOCUME~1\scarves\APPLIC~1\DivX [20/07/2008|07:11] C:\DOCUME~1\scarves\APPLIC~1\dvdcss [06/07/2008|16:33] C:\DOCUME~1\scarves\APPLIC~1\dyyno-vlc [22/09/2006|20:26] C:\DOCUME~1\scarves\APPLIC~1\Google [21/09/2005|01:18] C:\DOCUME~1\scarves\APPLIC~1\Help [10/03/2007|08:07] C:\DOCUME~1\scarves\APPLIC~1\Ideazon [20/09/2005|23:45] C:\DOCUME~1\scarves\APPLIC~1\Identities [31/05/2008|05:10] C:\DOCUME~1\scarves\APPLIC~1\InstallShield [14/02/2008|21:38] C:\DOCUME~1\scarves\APPLIC~1\Lavasoft [21/09/2005|04:24] C:\DOCUME~1\scarves\APPLIC~1\Logitech [11/06/2006|04:25] C:\DOCUME~1\scarves\APPLIC~1\Macromedia [05/10/2008|08:17] C:\DOCUME~1\scarves\APPLIC~1\Malwarebytes [03/03/2007|08:03] C:\DOCUME~1\scarves\APPLIC~1\Media Player Classic [05/01/2008|05:47] C:\DOCUME~1\scarves\APPLIC~1\Microsoft [05/01/2008|05:47] C:\DOCUME~1\scarves\APPLIC~1\Microsoft Games [22/09/2008|06:00] C:\DOCUME~1\scarves\APPLIC~1\Mozilla [21/09/2005|01:55] C:\DOCUME~1\scarves\APPLIC~1\Rainlendar [11/09/2008|01:02] C:\DOCUME~1\scarves\APPLIC~1\Real [22/09/2005|16:25] C:\DOCUME~1\scarves\APPLIC~1\SecuROM [05/10/2008|06:48] C:\DOCUME~1\scarves\APPLIC~1\Simply Super Software [15/10/2005|16:08] C:\DOCUME~1\scarves\APPLIC~1\STOIK [01/10/2008|02:44] C:\DOCUME~1\scarves\APPLIC~1\Sun [21/07/2008|20:38] C:\DOCUME~1\scarves\APPLIC~1\teamspeak2 [20/12/2006|22:35] C:\DOCUME~1\scarves\APPLIC~1\U3 [31/05/2008|05:23] C:\DOCUME~1\scarves\APPLIC~1\Ubisoft [20/06/2008|04:56] C:\DOCUME~1\scarves\APPLIC~1\uTorrent [19/10/2005|17:33] C:\DOCUME~1\scarves\APPLIC~1\vlc [11/05/2007|19:34] C:\DOCUME~1\scarves\APPLIC~1\Vso [26/12/2007|06:50] C:\DOCUME~1\scarves\APPLIC~1\Yahoo! --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks [05/10/2008 08:56][--ah-----] C:\WINDOWS\tasks\SA.DAT [28/08/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini --------------------\\ Listing des dossiers dans C:\Program Files [26/12/2007|19:59] C:\Program Files\Adobe [22/11/2006|19:43] C:\Program Files\Ahead [21/09/2005|04:05] C:\Program Files\ASUS [06/06/2007|09:07] C:\Program Files\Audacity [24/10/2005|23:27] C:\Program Files\avisplit [30/11/2007|16:28] C:\Program Files\BitComet [02/10/2008|04:39] C:\Program Files\BitDefender [23/09/2005|18:03] C:\Program Files\Canon [20/09/2005|23:39] C:\Program Files\ComPlus Applications [12/06/2006|09:20] C:\Program Files\Creative [21/09/2005|01:09] C:\Program Files\directx [04/12/2007|19:42] C:\Program Files\DivX [07/05/2008|19:46] C:\Program Files\Dyyno [25/09/2008|07:03] C:\Program Files\eMule [20/04/2008|05:30] C:\Program Files\ESET [05/10/2008|06:23] C:\Program Files\Fichiers communs [02/02/2007|01:18] C:\Program Files\Google [25/09/2005|18:35] C:\Program Files\HardwareOC BenchTools [03/04/2008|03:27] C:\Program Files\HighCriteria [10/09/2008|10:29] C:\Program Files\InstallShield Installation Information [20/09/2005|23:47] C:\Program Files\Intel [29/08/2008|16:42] C:\Program Files\Internet Explorer [05/10/2008|05:35] C:\Program Files\ioazzzc [20/09/2005|23:54] C:\Program Files\ITE [01/10/2008|02:36] C:\Program Files\Java [04/12/2007|19:43] C:\Program Files\K-Lite Codec Pack [11/01/2008|22:28] C:\Program Files\KONAMI [05/10/2008|06:24] C:\Program Files\Lavasoft [21/09/2005|04:22] C:\Program Files\Logitech [05/10/2008|08:17] C:\Program Files\Malwarebytes' Anti-Malware [20/09/2005|23:53] C:\Program Files\Marvell [30/08/2008|03:03] C:\Program Files\Messenger [10/01/2007|18:45] C:\Program Files\MessengerPlus! 3 [28/12/2006|14:33] C:\Program Files\metronimo [20/09/2005|23:42] C:\Program Files\microsoft frontpage [29/09/2005|17:31] C:\Program Files\Microsoft Office [29/09/2005|17:31] C:\Program Files\Microsoft Visual Studio [29/09/2005|17:31] C:\Program Files\Microsoft Works [29/09/2005|17:32] C:\Program Files\Microsoft.NET [05/10/2008|09:00] C:\Program Files\mIRC [24/10/2005|23:27] C:\Program Files\Movie Joiner(2) [21/09/2005|00:12] C:\Program Files\Movie Maker [03/10/2008|07:29] C:\Program Files\Mozilla Firefox [20/09/2005|23:39] C:\Program Files\MSN [20/09/2005|23:39] C:\Program Files\MSN Gaming Zone [14/11/2007|12:17] C:\Program Files\MSN Messenger [12/04/2007|20:37] C:\Program Files\MSXML 4.0 [20/03/2006|13:27] C:\Program Files\MUSICMATCH [30/09/2005|01:55] C:\Program Files\Nero [15/01/2007|09:02] C:\Program Files\Net Pro Anti Popup [21/09/2005|00:11] C:\Program Files\NetMeeting [14/01/2008|10:09] C:\Program Files\Neuf [18/07/2008|21:19] C:\Program Files\NOS [29/09/2005|17:38] C:\Program Files\OfficeUpdate11 [13/06/2007|13:24] C:\Program Files\Outlook Express [19/09/2008|14:01] C:\Program Files\Overnet [08/11/2005|18:11] C:\Program Files\Paltalk Messenger [21/09/2005|00:03] C:\Program Files\Portrait Displays [03/04/2008|03:17] C:\Program Files\Ratajik Software [07/07/2006|11:05] C:\Program Files\Real [20/09/2005|23:39] C:\Program Files\Services en ligne [30/09/2005|00:34] C:\Program Files\Sierra [10/08/2008|17:35] C:\Program Files\Sierra Entertainment [10/01/2007|18:35] C:\Program Files\Softwin [20/04/2008|05:52] C:\Program Files\Spybot - Search & Destroy [05/10/2008|06:48] C:\Program Files\Trojan Remover [25/09/2005|01:48] C:\Program Files\Ubisoft [20/09/2005|23:45] C:\Program Files\Uninstall Information [20/06/2008|04:27] C:\Program Files\uTorrent [21/09/2005|13:56] C:\Program Files\Valve [27/11/2007|18:43] C:\Program Files\Veoh Networks [23/11/2006|11:57] C:\Program Files\Webteh [14/11/2007|09:18] C:\Program Files\Windows Live [12/11/2006|03:58] C:\Program Files\Windows Media Connect 2 [14/12/2006|21:18] C:\Program Files\Windows Media Player [21/09/2005|00:11] C:\Program Files\Windows NT [20/09/2005|23:39] C:\Program Files\WindowsUpdate [13/09/2007|03:32] C:\Program Files\WowCartographe [20/09/2005|23:42] C:\Program Files\xerox [26/12/2007|16:19] C:\Program Files\Yahoo! --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs [01/10/2005|19:02] C:\Program Files\Fichiers communs\Adobe [26/12/2007|06:56] C:\Program Files\Fichiers communs\Ahead [02/10/2008|08:18] C:\Program Files\Fichiers communs\BitDefender [25/10/2007|06:53] C:\Program Files\Fichiers communs\Blizzard Entertainment [29/09/2005|17:31] C:\Program Files\Fichiers communs\DESIGNER [21/09/2005|23:26] C:\Program Files\Fichiers communs\DirectX [20/09/2005|23:59] C:\Program Files\Fichiers communs\InstallShield [01/10/2008|02:35] C:\Program Files\Fichiers communs\Java [21/09/2005|04:22] C:\Program Files\Fichiers communs\Logitech [14/11/2007|09:19] C:\Program Files\Fichiers communs\Microsoft Shared [20/09/2005|23:39] C:\Program Files\Fichiers communs\MSSoap [08/12/2006|15:30] C:\Program Files\Fichiers communs\NSV [04/03/2007|19:03] C:\Program Files\Fichiers communs\Nullsoft [21/09/2005|00:35] C:\Program Files\Fichiers communs\ODBC [11/09/2008|01:02] C:\Program Files\Fichiers communs\Real [20/09/2005|23:39] C:\Program Files\Fichiers communs\Services [12/04/2007|12:45] C:\Program Files\Fichiers communs\Softwin [21/09/2005|00:35] C:\Program Files\Fichiers communs\SpeechEngines [13/06/2007|13:24] C:\Program Files\Fichiers communs\System [14/11/2007|09:17] C:\Program Files\Fichiers communs\WindowsLiveInstaller [05/10/2008|06:23] C:\Program Files\Fichiers communs\Wise Installation Wizard --------------------\\ Process ( 58 Processes ) iexplore.exe ~ [PID:3696] MsgPlus.exe ~ [PID:388] --------------------\\ Recherche avec S_Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Recherche de Fichiers / Dossiers Lop C:\DOCUME~1\scarves\Cookies\scarves@advertstream[1].txt C:\DOCUME~1\scarves\Cookies\scarves@advertstream[2].txt C:\DOCUME~1\scarves\Cookies\scarves@adultfriendfinder[1].txt C:\DOCUME~1\scarves\Cookies\scarves@advertising[2].txt C:\DOCUME~1\scarves\Cookies\scarves@adin.bigpoint[2].txt C:\DOCUME~1\scarves\Cookies\scarves@bigpoint[2].txt C:\DOCUME~1\scarves\Cookies\scarves@fr.seafight.bigpoint[2].txt C:\DOCUME~1\scarves\Cookies\scarves@fr1.seafight.bigpoint[2].txt C:\DOCUME~1\scarves\Cookies\scarves@banner.cotedazurpalace[2].txt C:\DOCUME~1\scarves\Cookies\scarves@cotedazurpalace[2].txt C:\DOCUME~1\scarves\Cookies\scarves@adopt.euroclick[1].txt C:\DOCUME~1\scarves\Cookies\scarves@adopt.euroclick[2].txt C:\DOCUME~1\scarves\Cookies\scarves@partypoker[1].txt C:\DOCUME~1\scarves\Cookies\scarves@fr.seafight.bigpoint[2].txt C:\DOCUME~1\scarves\Cookies\scarves@fr1.seafight.bigpoint[2].txt C:\DOCUME~1\scarves\Cookies\scarves@2xmoinscher[1].txt C:\DOCUME~1\scarves\Cookies\scarves@www.2xmoinscher[2].txt --------------------\\ Verification du Registre ..... OK ! --------------------\\ Verification du fichier Hosts Fichier Hosts PROPRE --------------------\\ Recherche de fichiers avec Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-10-05 11:10:39 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 0 --------------------\\ Recherche d'autres infections --------------------\\ Cracks & Keygens .. C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\DOOM 3 INSTRUCTION COMPLETTE CONFIG.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK.rar C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\DOOM 3 INSTRUCTION COMPLETTE CONFIG.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14] C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Bmp2Avi C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\C00P C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Chainsaw Only Mod C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Cheat Codes - Complete.doc C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\DOOM 3 Minimizer v1.1 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Plus 9 Trainer PiZZADOX C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Server Connect Tool C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Trainer Plus +14 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Upgrade Pack C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 [iII] Crack No-CD & KeyGen C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Fight Club Mod C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\FPS Config C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Rocket DM C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\UEQ Mod C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Bmp2Avi\documentation C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Bmp2Avi\pjBmp2Avi.exe C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Bmp2Avi\documentation\dialog.gif C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Bmp2Avi\documentation\icon.gif C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Bmp2Avi\documentation\pjBmp2Avi.html C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Bmp2Avi\documentation\Thumbs.db C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\C00P\pak005.pk4 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Chainsaw Only Mod\chainsawonly C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Chainsaw Only Mod\Chainsaws Only readme.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Chainsaw Only Mod\chainsawonly\pak000.pk4 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\DOOM 3 Minimizer v1.1\DOOM.3.Minimizer.v1.1-CiTRON-X C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\DOOM 3 Minimizer v1.1\DOOM.3.Minimizer.v1.1-CiTRON-X\cix-d3m.nfo C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\DOOM 3 Minimizer v1.1\DOOM.3.Minimizer.v1.1-CiTRON-X\cix-d3m.rar C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\DOOM 3 Minimizer v1.1\DOOM.3.Minimizer.v1.1-CiTRON-X\cix-d3m.sfv C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Plus 9 Trainer PiZZADOX\pizzadox.nfo C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Plus 9 Trainer PiZZADOX\pzddom3t C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Plus 9 Trainer PiZZADOX\pzddom3t.sfv C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Plus 9 Trainer PiZZADOX\pzddom3t\pizzadox.nfo C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Plus 9 Trainer PiZZADOX\pzddom3t\pztrain.exe C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Server Connect Tool\Doom3.Connecttool.exe C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Server Connect Tool\readme.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Trainer Plus +14\mo-d3fix.exe C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Trainer Plus +14\mo-d3fix.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Upgrade Pack\pak005.pk4 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 Upgrade Pack\rvl-d3up_Info.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 [iII] Crack No-CD & KeyGen\Doom 3 KeyGen -RELOADED C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 [iII] Crack No-CD & KeyGen\Doom III NoCD -RELOADED C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 [iII] Crack No-CD & KeyGen\Doom 3 KeyGen -RELOADED\reloaded_INFO.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 [iII] Crack No-CD & KeyGen\Doom 3 KeyGen -RELOADED\RLD-D3KG.EXE C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Doom 3 [iII] Crack No-CD & KeyGen\Doom III NoCD -RELOADED\Doom3.exe C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Fight Club Mod\Fightclub readme.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Fight Club Mod\Fightclubv1 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Fight Club Mod\Fightclubv1\pak000.pk4 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\FPS Config\autoexec.cfg C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\FPS Config\readme.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\Mod Version C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\pk4 Version C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\readme.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\screenshot-imp.jpg C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\screenshot-pinky.jpg C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\Mod Version\Nitro C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\Mod Version\Nitro_Doom.bat C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\Mod Version\Nitro\DoomConfig.cfg C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\Mod Version\Nitro\pak000.pk4 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Nitro-Gorepatch\pk4 Version\pak666.pk4 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Rocket DM\RocketDM C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Rocket DM\RocketDM readme.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\Rocket DM\RocketDM\pak000.pk4 C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\UEQ Mod\readme.txt C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\UEQ Mod\u-e-q-mod.jpg C:\DOCUME~1\scarves\Mes documents\Doom.3.CRACK\Doom.3.CRACK\Doom 3 NOCD Crack + KeyGen + All Mods, Packs & Cheats [Trainer +14]\UEQ Mod\u-e-q-mod.pk4 C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack.rar C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\Lire avant installation !.txt C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\Nod32.3.0.551.32.bits.ENG.msi C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\Nod32.3.0.551.64.bits.ENG.msi C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\NOD32.3.0.551.32.&.64.Bits.ENG.Incl-Crack\Nod32Patch.exe C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\Splinter Cell 3 - Chaos Theory - Nocd\Splinter.Cell.3.-.Chaos.Theory.-.crackNoCdFix+Dev C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\Splinter Cell 3 - Chaos Theory - Nocd\Splinter.Cell.3.-.Chaos.Theory.-.crackNoCdFix+Dev\Splinter.Cell.3.-.crackNoCdFix+Dev.exe C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\Splinter Cell 3 - Chaos Theory - Nocd\Splinter.Cell.3.-.Chaos.Theory.-.crackNoCdFix+Dev\splintercell3.hold.exe C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\Splinter Cell 3 - Chaos Theory - Nocd(1)\Splinter.Cell.3.-.Chaos.Theory.-.crackNoCdFix+Dev C:\DOCUME~1\scarves\Mes documents\Mes fichiers re‡us\Splinter Cell 3 - Chaos Theory - Nocd(1)\Splinter.Cell.3.-.Chaos.Theory.-.crackNoCdFix+Dev\Splinter.Cell.3.-.crackNoCdFix+Dev.exe [F:5574][D:285]-> C:\DOCUME~1\scarves\LOCALS~1\Temp [F:2419][D:0]-> C:\DOCUME~1\scarves\Cookies [F:688][D:36]-> C:\DOCUME~1\scarves\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - 05/10/2008|11:12 - Option : [1] --------------------\\ Fin du rapport a 11:12:17
  15. scarves
    et je post ici les resultats de malwarebytes que je viens de faire il m'a aussi demander de redemmarrer le pc Malwarebytes' Anti-Malware 1.28 Version de la base de données: 1229 Windows 5.1.2600 Service Pack 2 05/10/2008 08:36:11 mbam-log-2008-10-05 (08-36-11).txt Type de recherche: Examen rapide Eléments examinés: 86515 Temps écoulé: 15 minute(s), 1 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 22 Valeur(s) du Registre infectée(s): 1 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 3 Fichier(s) infecté(s): 63 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_CLASSES_ROOT\CLSID\{9dd4258a-7138-49c4-8d34-587879a5c7a4} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{c3bcc488-1ae7-11d4-ab82-0010a4ec2338} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{e49a9fcb-faa9-4c1f-a1c1-54920da2cca4} (Adware.EGDAccess) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{e49a9fcb-faa9-4c1f-a1c1-54920da2cca4} (Adware.EGDAccess) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9dd4258a-7138-49c4-8d34-587879a5c7a4} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b8c0220d-763d-49a4-95f4-61dfdec66ee6} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c3bcc488-1ae7-11d4-ab82-0010a4ec2338} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000000da-0786-4633-87c6-1aa7a4429ef1} (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\dpcproxy (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\logons (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\typelib (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\HOL5_VXIEWER.FULL.1 (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Classes\applications\accessdiver.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\fwbd (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\HolLol (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Inet Delivery (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mslagent (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Golden Palace Casino NEW (Trojan.DNSChanger) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SYSTEM\currentcontrolset\Services\iTunesMusic (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SYSTEM\currentcontrolset\Services\rdriv (Fake.Dropped.Malware) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\wkey (Malware.Trace) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\mwc (Malware.Trace) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\lwh0lyryin (Trojan.FakeAlert.H) -> Quarantined and deleted successfully. Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): C:\WINDOWS\mslagent (Adware.EGDAccess) -> Quarantined and deleted successfully. C:\Program Files\akl (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\system32\smp (Fake.Dropped.Malware) -> Quarantined and deleted successfully. Fichier(s) infecté(s): C:\Documents and Settings\All Users\Application Data\idkhadyj\glepmnaf.exe (Trojan.FakeAlert.H) -> Delete on reboot. C:\Documents and Settings\scarves\Local Settings\Temp\_isAF.exe (Rogue.Installer) -> Quarantined and deleted successfully. C:\WINDOWS\mslagent\2_mslagent.dll (Adware.EGDAccess) -> Quarantined and deleted successfully. C:\WINDOWS\mslagent\mslagent.exe (Adware.EGDAccess) -> Quarantined and deleted successfully. C:\WINDOWS\mslagent\uninstall.exe (Adware.EGDAccess) -> Quarantined and deleted successfully. C:\Program Files\akl\akl.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\Program Files\akl\akl.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\Program Files\akl\uninstall.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\Program Files\akl\unsetup.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\system32\smp\msrc.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\a.bat (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\base64.tmp (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\FVProtect.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\userconfig9x.dll (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\winsystem.exe (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\zip1.tmp (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\zip2.tmp (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\zip3.tmp (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\zipped.tmp (Fake.Dropped.Malware) -> Quarantined and deleted successfully. C:\WINDOWS\bdn.com (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\iTunesMusic.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\mssecu.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\akttzn.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\anticipator.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\awtoolb.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\bdn.com (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\bsva-egihsg52.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\dpcproxy.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\h@tkeysh@@k.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\hoproxy.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\hxiwlgpm.dat (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\hxiwlgpm.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\msgp.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\msnbho.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\mssecu.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\msvchost.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\mtr2.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\mwin32.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\netode.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\newsd32.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\ps1.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\psof1.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\psoft1.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\regc64.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\regm64.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\Rundl1.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\sncntr.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\ssurf022.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\ssvchost.com (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\ssvchost.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\sysreq.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\taack.dat (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\taack.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\temp#01.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\thun.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\thun32.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\VBIEWER.OCX (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\vcatchpi.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\winlogonpc.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\winsystem.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\WINWGPX.EXE (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\vbsys2.dll (Trojan.Clicker) -> Quarantined and deleted successfully. C:\WINDOWS\tmlpcert2007 (Adware.EGDAccess) -> Quarantined and deleted successfully.
  16. scarves
    bonjour j'ai un virus qui ralentit beaucoup mon pc en plus maintenant j'ai des fenetres de securité windows qui s'ouvre m'indiquant keylogger et autres et surtout TROJAN-SPY.WIN32.GREENSCREEN voila donc je viens vous voir pour un peu d'aide je vous en remercie d'avance bien sur je crois qu'il faut d'abord poster un rapport hijackthis qui est le suivant Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 07:02:25, on 05/10/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16705) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\RunDll32.exe C:\Program Files\ASUS\Probe\AsusProb.exe C:\Program Files\ASUS\WLAN Card Utilities\Center.exe D:\programmes et set up\msnplus\MsgPlus.exe D:\programmes et set up\Quicktime\qttask.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\rundll32.exe D:\programmes et set up\Daemon tool\DAEMON Tools\daemon.exe C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Veoh Networks\Veoh\VeohClient.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Logitech\SetPoint\KEM.exe C:\Program Files\Portrait Displays\MagicTune\DTHtml.exe C:\Program Files\ITE\ITE IT8212 ATA RAID Controller\RaidMgr.exe D:\programmes et set up\WinZip\WZQKPICK.EXE D:\programmes et set up\Rainlendar\Rainlendar.exe D:\programmes et set up\Rainmeter\Rainmeter.exe C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE C:\Program Files\Portrait Displays\MagicTune\dtsrvc.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\WgaTray.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Program Files\mIRC\mirc.exe C:\WINDOWS\system32\ehwbqtch.exe C:\Documents and Settings\All Users\Application Data\idkhadyj\glepmnaf.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe C:\Documents and Settings\scarves\Local Settings\Temporary Internet Files\Content.IE5\55EQQ21U\HiJackThis[1].exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://recherche.neuf.fr/ie/default.html R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://recherche.neuf.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://recherche.neuf.fr/ie/default.html R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O1 - Hosts: 80.239.180.111 eu.logon.worldofwarcraft.com O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [ASUS Probe] C:\Program Files\ASUS\Probe\AsusProb.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [Control Center] C:\Program Files\ASUS\WLAN Card Utilities\Center.exe O4 - HKLM\..\Run: [bDSwitchAgent] "C:\progra~1\softwin\bitdef~2\bdswitch.exe" O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKLM\..\Run: [MessengerPlus3] "D:\programmes et set up\msnplus\MsgPlus.exe" O4 - HKLM\..\Run: [QuickTime Task] "D:\programmes et set up\Quicktime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Anti-Blaxx Manager] H:\Programmes files\Serious sam2\Anti-Blaxx\Anti-Blaxx.exe O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [DAEMON Tools] "D:\programmes et set up\Daemon tool\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [TotalRecorderScheduler] "C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe" O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe /boot O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [MessengerPlus3] "D:\programmes et set up\msnplus\MsgPlus.exe" /WinStart O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [bitComet] "C:\Program Files\BitComet\BitComet.exe" /tray O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKLM\..\Policies\Explorer\Run: [lWh0LYryIn] C:\Documents and Settings\All Users\Application Data\idkhadyj\glepmnaf.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: Rainlendar.lnk = D:\programmes et set up\Rainlendar\Rainlendar.exe O4 - Startup: Rainmeter.lnk = D:\programmes et set up\Rainmeter\Rainmeter.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe O4 - Global Startup: MagicTune.lnk = C:\Program Files\Portrait Displays\MagicTune\DTHtml.exe O4 - Global Startup: RAID Manager.lnk = ? O4 - Global Startup: WinZip Quick Pick.lnk = D:\programmes et set up\WinZip\WZQKPICK.EXE O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: Yahoo! Dominoes - http://origin.games.yahoo.net/games/clients/y/dot9_x.cab O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {4E218431-2F07-40BD-A9D3-035324C1F13F} (DyynoX Class) - http://webserver.dyyno.com/DyynoClient/DyynoCAB.CAB O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} (EARTPatchX Class) - http://files.ea.com/downloads/rtpatch/v2/EARTPX.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppD...ap/PhtPkMSN.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} - O16 - DPF: {E49A9FCB-FAA9-4C1F-A1C1-54920DA2CCA4} - http://es6-scripts.dlv4.com/binaries/egaut..._1052_FR_XP.cab O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: Portrait Displays Display Tune Service (DTSRVC) - Unknown owner - C:\Program Files\Portrait Displays\MagicTune\dtsrvc.exe O23 - Service: Eset HTTP Server (EhttpSrv) - Unknown owner - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe -- End of file - 12014 bytes
×
×
  • Créer...