ChaotiCc`
-
Compteur de contenus
41 -
Inscription
-
Dernière visite
Tout ce qui a été posté par ChaotiCc`
-
FPS bas - Log HijackThis
ChaotiCc` a répondu à un(e) sujet de ChaotiCc` dans Analyses et éradication malwares
Salut, Je viens de faire un scan avec Antivir et il n'a trouvé aucune infection. Je te poste le rapport: Avira AntiVir Personal Date de création du fichier de rapport : mercredi 7 janvier 2009 13:04 La recherche porte sur 1150107 souches de virus. Détenteur de la licence :Avira AntiVir PersonalEdition Classic Numéro de série : 0000149996-ADJIE-0001 Plateforme : Windows XP Version de Windows :(Service Pack 3) [5.1.2600] Mode Boot : Démarré normalement Identifiant : Gaming Nom de l'ordinateur :EINSTEIN Informations de version : BUILD.DAT : 8.2.0.52 16931 Bytes 02/12/2008 14:55:00 AVSCAN.EXE : 8.1.4.10 315649 Bytes 18/11/2008 08:21:00 AVSCAN.DLL : 8.1.4.1 49921 Bytes 21/07/2008 13:44:27 LUKE.DLL : 8.1.4.5 164097 Bytes 12/06/2008 12:44:16 LUKERES.DLL : 8.1.4.0 13057 Bytes 04/07/2008 07:30:27 ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 27/10/2008 11:30:36 ANTIVIR1.VDF : 7.1.1.33 1705984 Bytes 24/12/2008 11:00:58 ANTIVIR2.VDF : 7.1.1.60 318976 Bytes 02/01/2009 11:00:58 ANTIVIR3.VDF : 7.1.1.72 114688 Bytes 05/01/2009 15:06:09 Version du moteur: 8.2.0.45 AEVDF.DLL : 8.1.0.6 102772 Bytes 14/10/2008 10:05:56 AESCRIPT.DLL : 8.1.1.19 336252 Bytes 16/12/2008 11:08:43 AESCN.DLL : 8.1.1.5 123251 Bytes 07/11/2008 15:06:41 AERDL.DLL : 8.1.1.3 438645 Bytes 04/11/2008 13:58:38 AEPACK.DLL : 8.1.3.4 393591 Bytes 11/11/2008 09:41:39 AEOFFICE.DLL : 8.1.0.33 196987 Bytes 16/12/2008 11:08:42 AEHEUR.DLL : 8.1.0.75 1524087 Bytes 16/12/2008 11:08:41 AEHELP.DLL : 8.1.2.0 119159 Bytes 16/12/2008 11:08:40 AEGEN.DLL : 8.1.1.8 323956 Bytes 16/12/2008 11:08:39 AEEMU.DLL : 8.1.0.9 393588 Bytes 14/10/2008 10:05:56 AECORE.DLL : 8.1.5.2 172405 Bytes 16/12/2008 11:08:39 AEBB.DLL : 8.1.0.3 53618 Bytes 14/10/2008 10:05:56 AVWINLL.DLL : 1.0.0.12 15105 Bytes 09/07/2008 08:40:02 AVPREF.DLL : 8.0.2.0 38657 Bytes 16/05/2008 09:27:58 AVREP.DLL : 8.0.0.2 98344 Bytes 31/07/2008 12:02:15 AVREG.DLL : 8.0.0.1 33537 Bytes 09/05/2008 11:26:37 AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:19 AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 12/06/2008 12:27:46 SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02 SMTPLIB.DLL : 1.2.0.23 28929 Bytes 12/06/2008 12:49:36 NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:07 RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 04/07/2008 07:23:16 RCTEXT.DLL : 8.0.52.1 86273 Bytes 17/07/2008 10:08:43 Configuration pour la recherche actuelle : Nom de la tâche..................: Contrôle intégral du système Fichier de configuration.........: c:\program files\avira\antivir personaledition classic\sysscan.avp Documentation....................: bas Action principale................: interactif Action secondaire................: ignorer Recherche sur les secteurs d'amorçage maître: marche Recherche sur les secteurs d'amorçage: marche Secteurs d'amorçage..............: C:, D:, Recherche dans les programmes actifs: marche Recherche en cours sur l'enregistrement: marche Recherche de Rootkits............: arrêt Fichier mode de recherche........: Sélection de fichiers intelligente Recherche sur les archives.......: marche Limiter la profondeur de récursivité: 20 Archive Smart Extensions.........: marche Heuristique de macrovirus........: marche Heuristique fichier..............: moyen Début de la recherche : mercredi 7 janvier 2009 13:04 La recherche sur les processus démarrés commence : Processus de recherche 'avscan.exe' - '1' module(s) sont contrôlés Processus de recherche 'avcenter.exe' - '1' module(s) sont contrôlés Processus de recherche 'searchfilterhost.exe' - '1' module(s) sont contrôlés Processus de recherche 'firefox.exe' - '1' module(s) sont contrôlés Processus de recherche 'alg.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'skypePM.exe' - '1' module(s) sont contrôlés Processus de recherche 'Skype.exe' - '1' module(s) sont contrôlés Processus de recherche 'searchprotocolhost.exe' - '1' module(s) sont contrôlés Processus de recherche 'Xfire.exe' - '1' module(s) sont contrôlés Processus de recherche 'WindowsSearch.exe' - '1' module(s) sont contrôlés Processus de recherche 'searchindexer.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'oodag.exe' - '1' module(s) sont contrôlés Processus de recherche 'nvsvc32.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'maconfservice.exe' - '1' module(s) sont contrôlés Processus de recherche 'lpfw.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'AppleMobileDeviceService.exe' - '1' module(s) sont contrôlés Processus de recherche 'avguard.exe' - '1' module(s) sont contrôlés Processus de recherche 'rundll32.exe' - '1' module(s) sont contrôlés Processus de recherche 'avgnt.exe' - '1' module(s) sont contrôlés Processus de recherche 'UnlockerAssistant.exe' - '1' module(s) sont contrôlés Processus de recherche 'TSVNCache.exe' - '1' module(s) sont contrôlés Processus de recherche 'explorer.exe' - '1' module(s) sont contrôlés Processus de recherche 'ctfmon.exe' - '1' module(s) sont contrôlés Processus de recherche 'SDMCP.exe' - '1' module(s) sont contrôlés Processus de recherche 'spoolsv.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'lsass.exe' - '1' module(s) sont contrôlés Processus de recherche 'services.exe' - '1' module(s) sont contrôlés Processus de recherche 'winlogon.exe' - '1' module(s) sont contrôlés Processus de recherche 'csrss.exe' - '1' module(s) sont contrôlés Processus de recherche 'smss.exe' - '1' module(s) sont contrôlés '41' processus ont été contrôlés avec '41' modules La recherche sur les secteurs d'amorçage maître commence : Secteur d'amorçage maître HD0 [iNFO] Aucun virus trouvé ! Secteur d'amorçage maître HD1 [iNFO] Aucun virus trouvé ! [AVERTISSEMENT] Erreur système [21]: Le périphérique n'est pas prêt. Secteur d'amorçage maître HD2 [iNFO] Aucun virus trouvé ! [AVERTISSEMENT] Erreur système [21]: Le périphérique n'est pas prêt. Secteur d'amorçage maître HD3 [iNFO] Aucun virus trouvé ! [AVERTISSEMENT] Erreur système [21]: Le périphérique n'est pas prêt. Secteur d'amorçage maître HD4 [iNFO] Aucun virus trouvé ! [AVERTISSEMENT] Erreur système [21]: Le périphérique n'est pas prêt. La recherche sur les secteurs d'amorçage commence : Secteur d'amorçage 'C:\' [iNFO] Aucun virus trouvé ! Secteur d'amorçage 'D:\' [iNFO] Aucun virus trouvé ! La recherche sur les renvois aux fichiers exécutables (registre) commence. Le registre a été contrôlé ( '67' fichiers). La recherche sur les fichiers sélectionnés commence : Recherche débutant dans 'C:\' <HP_PAVILION> C:\hiberfil.sys [AVERTISSEMENT] Impossible d'ouvrir le fichier ! C:\pagefile.sys [AVERTISSEMENT] Impossible d'ouvrir le fichier ! C:\WINDOWS\system32\drivers\dtscsi.sys [AVERTISSEMENT] Impossible d'ouvrir le fichier ! C:\WINDOWS\system32\drivers\sptd.sys [AVERTISSEMENT] Impossible d'ouvrir le fichier ! Recherche débutant dans 'D:\' <HP_RECOVERY> Fin de la recherche : mercredi 7 janvier 2009 15:52 Temps nécessaire: 2:47:38 Heure(s) La recherche a été effectuée intégralement 34203 Les répertoires ont été contrôlés 1167772 Des fichiers ont été contrôlés 0 Des virus ou programmes indésirables ont été trouvés 0 Des fichiers ont été classés comme suspects 0 Des fichiers ont été supprimés 0 Des virus ou programmes indésirables ont été réparés 0 Les fichiers ont été déplacés dans la quarantaine 0 Les fichiers ont été renommés 4 Impossible de contrôler des fichiers 1167764 Fichiers non infectés 22201 Les archives ont été contrôlées 4 Avertissements 0 Consignes -
FPS bas - Log HijackThis
ChaotiCc` a répondu à un(e) sujet de ChaotiCc` dans Analyses et éradication malwares
Le scan est en cours Je me pose tout de même une question : Quelle est la différence entre un antivirus en ligne et un antivirus normal? En passant, il manque un crochet à la balise devant "Sous Vista (...)" -
FPS bas - Log HijackThis
ChaotiCc` a répondu à un(e) sujet de ChaotiCc` dans Analyses et éradication malwares
Salut, Voila mon rapport ComboFix: ComboFix 09-01-02.01 - Gaming 2009-01-04 20:45:26.1 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.1278.759 [GMT 1:00] Lancé depuis: c:\documents and settings\Gaming\Bureau\ChaotiCc.exe * Un nouveau point de restauration a été créé . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . c:\documents and settings\HP_Propriétaire\Application Data\MBSJPEGDecompressionPlugin7333.dll c:\documents and settings\HP_Propriétaire\Application Data\MBSLargeStreamPlugin7333.dll c:\documents and settings\HP_Propriétaire\Application Data\MBSMacSerialNumberPlugin7339.dll c:\documents and settings\HP_Propriétaire\Application Data\MBSMainPlugin7333.dll c:\documents and settings\HP_Propriétaire\Application Data\MBSProcessPlugin7333.dll c:\documents and settings\HP_Propriétaire\Application Data\MBSQTCorePlugin7333.dll c:\documents and settings\HP_Propriétaire\Application Data\MBSRegistrationPlugin7333.dll c:\documents and settings\HP_Propriétaire\Application Data\MBSWinPlugin7341.dll c:\documents and settings\HP_Propriétaire\Application Data\rbap550.dll c:\documents and settings\HP_Propriétaire\Application Data\RBInternetEncodings600.dll c:\documents and settings\HP_Propriétaire\Application Data\RBJagToolbarItem550.dll c:\documents and settings\HP_Propriétaire\Application Data\RBMD5550.dll c:\documents and settings\HP_Propriétaire\Application Data\rbqt550.DLL c:\documents and settings\HP_Propriétaire\Application Data\RBShell555.dll c:\windows\BM64fc31b6.txt c:\windows\BM64fc31b6.xml c:\windows\pskt.ini c:\windows\system32\_004623_.tmp.dll c:\windows\system32\_004624_.tmp.dll c:\windows\system32\_004625_.tmp.dll c:\windows\system32\_004626_.tmp.dll c:\windows\system32\_004633_.tmp.dll c:\windows\system32\_004634_.tmp.dll c:\windows\system32\_004635_.tmp.dll c:\windows\system32\_004636_.tmp.dll c:\windows\system32\_004637_.tmp.dll c:\windows\system32\_004638_.tmp.dll c:\windows\system32\_004639_.tmp.dll c:\windows\system32\_004640_.tmp.dll c:\windows\system32\_004641_.tmp.dll c:\windows\system32\_004642_.tmp.dll c:\windows\system32\_004643_.tmp.dll c:\windows\system32\_004644_.tmp.dll c:\windows\system32\_004645_.tmp.dll c:\windows\system32\_004646_.tmp.dll c:\windows\system32\_004647_.tmp.dll c:\windows\system32\_004649_.tmp.dll c:\windows\system32\_004652_.tmp.dll c:\windows\system32\_004653_.tmp.dll c:\windows\system32\_004657_.tmp.dll c:\windows\system32\_004658_.tmp.dll c:\windows\system32\_004659_.tmp.dll c:\windows\system32\_004660_.tmp.dll c:\windows\system32\_004661_.tmp.dll c:\windows\system32\_004662_.tmp.dll c:\windows\system32\_004663_.tmp.dll c:\windows\system32\_004664_.tmp.dll c:\windows\system32\_004666_.tmp.dll c:\windows\system32\_004667_.tmp.dll c:\windows\system32\_004668_.tmp.dll c:\windows\system32\_004669_.tmp.dll c:\windows\system32\_004670_.tmp.dll c:\windows\system32\_004671_.tmp.dll c:\windows\system32\_004672_.tmp.dll c:\windows\system32\_004673_.tmp.dll c:\windows\system32\_004674_.tmp.dll c:\windows\system32\_004675_.tmp.dll c:\windows\system32\_004676_.tmp.dll c:\windows\system32\_004677_.tmp.dll c:\windows\system32\_004680_.tmp.dll c:\windows\system32\_004681_.tmp.dll c:\windows\system32\_004682_.tmp.dll c:\windows\system32\_004684_.tmp.dll c:\windows\system32\_004685_.tmp.dll c:\windows\system32\_004686_.tmp.dll c:\windows\system32\_004687_.tmp.dll c:\windows\system32\_004689_.tmp.dll c:\windows\system32\_004692_.tmp.dll c:\windows\system32\_004693_.tmp.dll c:\windows\system32\_004697_.tmp.dll c:\windows\system32\_004698_.tmp.dll c:\windows\system32\_004700_.tmp.dll c:\windows\system32\_004702_.tmp.dll c:\windows\system32\_004703_.tmp.dll c:\windows\system32\_004706_.tmp.dll c:\windows\system32\_004707_.tmp.dll c:\windows\system32\_004708_.tmp.dll c:\windows\system32\_004709_.tmp.dll c:\windows\system32\_004712_.tmp.dll c:\windows\system32\_004713_.tmp.dll c:\windows\system32\_004714_.tmp.dll c:\windows\system32\_004715_.tmp.dll c:\windows\system32\_004716_.tmp.dll c:\windows\system32\_004721_.tmp.dll c:\windows\system32\_004723_.tmp.dll c:\windows\system32\ahewyedi.ini c:\windows\system32\egmksbik.ini c:\windows\system32\hposwia_p01d.dll c:\windows\system32\HRqBIkkj.ini c:\windows\system32\HRqBIkkj.ini2 c:\windows\system32\Nnnmmnmp.ini c:\windows\system32\Nnnmmnmp.ini2 c:\windows\system32\obcrinyk.ini c:\windows\system32\OpAdNUtv.ini c:\windows\system32\OpAdNUtv.ini2 c:\windows\system32\pwvyfnsu.ini c:\windows\system32\tmp.reg . ((((((((((((((((((((((((((((((((((((((( Pilotes/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_NPF -------\Legacy_VFILT -------\Service_VFILT ((((((((((((((((((((((((((((( Fichiers créés du 2008-12-04 au 2009-01-04 )))))))))))))))))))))))))))))))))))) . 2009-01-04 19:05 . 2009-01-04 19:11 <REP> d-------- c:\program files\SUPERAntiSpyware 2009-01-04 19:05 . 2009-01-04 19:05 <REP> d-------- c:\documents and settings\Gaming\Application Data\SUPERAntiSpyware.com 2009-01-04 19:05 . 2009-01-04 19:05 <REP> d-------- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com 2009-01-04 16:03 . 2009-01-04 20:59 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware 2009-01-03 18:46 . 2009-01-03 18:46 <REP> d-------- C:\_OTMoveIt 2009-01-02 11:14 . 2009-01-02 11:14 0 --ah----- c:\windows\system32\drivers\Msft_Kernel_LHidFilt_01005.Wdf 2009-01-01 19:21 . 2009-01-01 19:21 <REP> d-------- c:\documents and settings\All Users\Application Data\LightScribe 2009-01-01 19:11 . 2009-01-01 20:18 <REP> d-------- c:\documents and settings\Gaming\Application Data\Nero 2009-01-01 17:19 . 2009-01-01 17:19 4,767 --a------ c:\windows\Irremote.ini 2009-01-01 16:54 . 2009-01-01 16:54 <REP> d-------- c:\program files\Windows Sidebar 2009-01-01 16:40 . 2009-01-01 16:45 <REP> d-------- c:\documents and settings\Gaming\Application Data\vlc 2009-01-01 16:17 . 2009-01-01 17:11 <REP> d-------- c:\program files\Nero 2009-01-01 16:16 . 2009-01-01 18:36 <REP> d-------- c:\program files\Fichiers communs\Nero 2009-01-01 16:16 . 2009-01-01 16:35 <REP> d-------- c:\documents and settings\All Users\Application Data\Nero 2009-01-01 15:50 . 2009-01-01 17:13 <REP> d-------- c:\documents and settings\Gaming\Application Data\VMware 2009-01-01 15:40 . 2009-01-04 20:59 <REP> d-------- c:\documents and settings\LocalService\Application Data\VMware 2009-01-01 15:38 . 2008-10-28 23:07 399,920 --a------ c:\windows\system32\vmnat.exe 2009-01-01 15:38 . 2008-10-28 23:08 326,192 --a------ c:\windows\system32\vmnetdhcp.exe 2009-01-01 15:38 . 2008-10-28 17:03 55,856 -ra------ c:\windows\system32\vnetinst.dll 2009-01-01 15:38 . 2008-10-28 23:08 26,288 --a------ c:\windows\system32\drivers\vmnetuserif.sys 2009-01-01 15:38 . 2008-10-28 17:03 16,560 -ra------ c:\windows\system32\drivers\vmnetadapter.sys 2009-01-01 15:37 . 2008-10-28 23:08 723,504 --a------ c:\windows\system32\vnetlib.dll 2009-01-01 15:37 . 2008-10-28 17:03 50,736 -ra------ c:\windows\system32\vmnetbridge.dll 2009-01-01 15:37 . 2008-10-28 17:03 31,280 -ra------ c:\windows\system32\drivers\vmnetbridge.sys 2009-01-01 15:37 . 2008-10-28 17:03 18,736 -ra------ c:\windows\system32\drivers\vmnet.sys 2009-01-01 15:36 . 2008-10-28 23:08 23,216 --a------ c:\windows\system32\drivers\VMkbd.sys 2009-01-01 15:31 . 2009-01-04 20:59 <REP> d-------- c:\documents and settings\All Users\Application Data\VMware 2009-01-01 15:28 . 2009-01-01 15:28 <REP> d-------- c:\program files\VMware 2008-12-31 15:44 . 2008-12-31 15:44 <REP> d-------- c:\documents and settings\HP_Propriétaire\Application Data\TuneUp Software 2008-12-31 13:00 . 2008-12-31 13:00 <REP> d-------- c:\documents and settings\Jean\Application Data\Sony 2008-12-31 12:52 . 2009-01-02 22:44 <REP> d-------- c:\windows\SxsCaPendDel 2008-12-31 10:45 . 2008-12-31 10:45 <REP> d-------- c:\documents and settings\Jean\Application Data\TuneUp Software 2008-12-30 21:19 . 2008-12-30 21:19 <REP> d-------- c:\program files\Cobian Backup 9 2008-12-30 17:51 . 2009-01-04 20:59 14,047 --a------ c:\windows\system32\oodbs.lor 2008-12-30 17:26 . 2008-12-30 17:26 2,331,008 --a------ c:\windows\system32\TUKernel.exe 2008-12-30 16:25 . 2008-12-30 16:25 0 --a------ c:\windows\oodcnt.INI 2008-12-30 15:06 . 2008-12-30 15:12 <REP> d-------- c:\windows\system32\oodag 2008-12-30 15:01 . 2008-12-30 15:01 <REP> d-------- c:\program files\OO Software 2008-12-30 13:08 . 2008-12-30 13:08 603,904 --a------ c:\windows\system32\TUProgSt.exe 2008-12-30 13:08 . 2008-12-30 13:08 360,192 --a------ c:\windows\system32\TuneUpDefragService.exe 2008-12-30 13:08 . 2008-12-11 13:31 27,904 --a------ c:\windows\system32\uxtuneup.dll 2008-12-30 12:25 . 2008-12-30 12:25 <REP> d-------- c:\documents and settings\Gaming\Application Data\TuneUp Software 2008-12-30 12:24 . 2008-12-31 13:10 <REP> d-------- c:\program files\TuneUp Utilities 2009 2008-12-30 12:24 . 2008-12-30 12:24 <REP> d-------- c:\documents and settings\All Users\Application Data\TuneUp Software 2008-12-30 12:22 . 2008-12-30 12:22 <REP> d--hs---- c:\documents and settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357} 2008-12-30 11:24 . 2008-04-08 06:39 974,848 -ra------ c:\windows\system32\hpost_p01d.dll 2008-12-30 11:24 . 2008-04-16 05:05 372,736 -ra------ c:\windows\system32\hppldcoi.dll 2008-12-30 11:24 . 2008-04-16 05:05 309,760 -ra------ c:\windows\system32\difxapi.dll 2008-12-30 11:24 . 2008-02-28 11:08 303,104 -ra------ c:\windows\system32\hposc_p01a.dll 2008-12-30 11:21 . 2008-12-30 11:21 <REP> d-------- c:\documents and settings\Jean\Application Data\HPAppData 2008-12-30 10:36 . 2008-12-30 11:30 188,817 --a------ c:\windows\hpoins31.dat 2008-12-30 10:36 . 2008-06-17 10:23 1,691 --------- c:\windows\hpomdl31.dat 2008-12-30 09:53 . 2008-12-30 11:27 <REP> d-------- c:\documents and settings\Jean\Application Data\HP 2008-12-29 17:41 . 2008-12-29 17:40 410,984 --a------ c:\windows\system32\deploytk.dll 2008-12-29 17:05 . 2008-12-29 17:05 <REP> d-------- c:\program files\Secunia 2008-12-29 15:22 . 2008-12-30 16:55 <REP> d-------- C:\ToolBar SD 2008-12-29 12:38 . 2008-12-30 13:14 133 --a------ c:\windows\system32\09wutili.sys 2008-12-28 17:36 . 2008-12-06 11:13 1,203,770 --------- c:\windows\system32\dllcache\sysmain.sdb 2008-12-28 16:44 . 2009-01-04 19:27 <REP> d-------- c:\documents and settings\Gaming\Application Data\HPAppData 2008-12-28 12:41 . 2008-12-28 12:53 <REP> d-------- c:\windows\ServicePackFiles 2008-12-28 12:25 . 2008-12-30 16:30 1,393 --a------ c:\windows\imsins.BAK 2008-12-27 11:49 . 1998-10-09 14:17 384,784 --a------ c:\windows\system32\wsecedit.dll 2008-12-27 11:49 . 1998-09-30 12:24 242,448 --a------ c:\windows\system32\scedll.dll 2008-12-27 11:49 . 1998-09-30 12:26 49,936 --a------ c:\windows\system32\SeCEdit.exe 2008-12-27 11:49 . 1998-03-31 16:37 29,968 --a------ c:\windows\system32\Rshx32_5.dll 2008-12-27 11:48 . 2008-12-27 11:48 <REP> d-------- c:\program files\Security Tab 2008-12-26 16:46 . 2008-12-26 16:46 <REP> d-------- c:\documents and settings\All Users\Application Data\Elaborate Bytes 2008-12-26 16:43 . 2008-12-26 16:43 <REP> d-------- c:\program files\Elaborate Bytes 2008-12-26 16:37 . 2008-12-26 16:37 <REP> d-------- c:\documents and settings\Gaming\Application Data\SlySoft 2008-12-26 16:29 . 2008-12-26 16:46 48 ---hs---- c:\windows\SED3E5943.tmp 2008-12-25 15:26 . 2008-12-25 15:26 <REP> d-------- c:\documents and settings\All Users\Application Data\Ubisoft 2008-12-25 13:57 . 2001-08-23 17:20 6,912 --a------ c:\windows\system32\drivers\serscan.sys 2008-12-25 13:57 . 2001-08-23 17:20 6,912 --a------ c:\windows\system32\dllcache\serscan.sys 2008-12-25 13:23 . 2008-12-25 13:23 <REP> d-------- c:\documents and settings\All Users\Application Data\WEBREG 2008-12-25 13:04 . 2008-12-25 13:24 <REP> d-------- c:\documents and settings\Gaming\Application Data\HP 2008-12-25 13:02 . 2008-04-08 06:39 271,704 -ra------ c:\windows\system32\hpzids01.dll 2008-12-25 13:02 . 2008-06-06 20:49 118,272 --a------ c:\windows\system32\hpz3l692.dll 2008-12-25 13:02 . 2008-04-16 05:05 49,920 -ra------ c:\windows\system32\drivers\HPZid412.sys 2008-12-25 13:02 . 2008-04-16 05:05 16,496 -ra------ c:\windows\system32\drivers\HPZipr12.sys 2008-12-25 13:01 . 2008-04-16 05:05 21,568 -ra------ c:\windows\system32\drivers\HPZius12.sys 2008-12-25 12:53 . 2008-12-25 12:53 <REP> d-------- c:\documents and settings\All Users\Application Data\HP Product Assistant 2008-12-23 21:31 . 2008-12-23 21:31 <REP> d--h----- c:\windows\system32\GroupPolicy 2008-12-23 21:31 . 2001-08-28 13:00 499,200 --a------ c:\windows\system32\gpedit.dll 2008-12-23 21:31 . 2002-08-29 10:44 284,160 --a------ c:\windows\system32\appmgr.dll 2008-12-23 21:31 . 2002-08-29 10:44 185,856 --a------ c:\windows\system32\gptext.dll 2008-12-23 21:31 . 2002-08-29 10:44 165,376 --a------ c:\windows\system32\appmgmts.dll 2008-12-23 21:31 . 2001-08-28 13:00 119,296 --a------ c:\windows\system32\fde.dll 2008-12-23 21:31 . 2002-08-29 10:44 70,144 --a------ c:\windows\system32\fdeploy.dll 2008-12-23 21:31 . 2001-08-28 13:00 34,352 --a------ c:\windows\system32\gpedit.msc 2008-12-23 17:41 . 2008-12-23 17:41 <REP> d-------- c:\program files\Eidos Interactive 2008-12-19 08:40 . 2008-12-31 09:56 <REP> d-------- c:\documents and settings\Jean\Tracing 2008-12-17 20:14 . 2008-12-17 20:14 <REP> d-------- c:\program files\Windows Live SkyDrive 2008-12-16 12:06 . 2008-12-16 12:06 <REP> d-------- c:\program files\Avira 2008-12-16 12:06 . 2008-12-16 12:06 <REP> d-------- c:\documents and settings\All Users\Application Data\Avira 2008-12-14 19:24 . 2008-12-15 14:02 <REP> d-------- C:\UT2004Demo 2008-12-12 13:43 . 2008-12-15 14:04 <REP> d-------- c:\program files\DLFreeTools 2008-12-12 13:28 . 2008-12-15 14:04 <REP> d-------- c:\program files\MD5 Checksum 2008-12-11 21:37 . 2008-12-11 21:37 42,320 --a------ c:\windows\system32\xfcodec.dll 2008-12-10 15:17 . 2008-12-10 15:17 7,808 --a------ c:\windows\system32\drivers\psi_mf.sys 2008-12-09 22:57 . 2008-12-09 22:57 <REP> d-------- c:\documents and settings\HP_Propriétaire\Application Data\Panasonic 2008-12-09 21:04 . 2008-12-09 21:04 <REP> d-------- c:\documents and settings\Gaming\Application Data\Malwarebytes 2008-12-09 21:04 . 2008-12-09 21:04 <REP> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes 2008-12-07 20:07 . 2008-12-21 17:38 <REP> d-------- c:\documents and settings\Gaming\Application Data\Atari 2008-12-07 20:04 . 2008-12-07 20:04 <REP> d-------- c:\documents and settings\Gaming\Application Data\Leadertech 2008-12-07 19:06 . 2008-12-07 19:12 <REP> d-------- c:\program files\WinFlip . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2009-01-04 20:01 --------- d-----w c:\program files\DNA 2009-01-04 20:01 --------- d-----w c:\documents and settings\Gaming\Application Data\DNA 2009-01-04 19:43 --------- d-----w c:\documents and settings\Gaming\Application Data\Xfire 2009-01-04 19:43 --------- d-----w c:\documents and settings\Gaming\Application Data\Skype 2009-01-04 18:02 --------- d-----w c:\program files\Fichiers communs\Wise Installation Wizard 2009-01-04 18:02 --------- d-----w c:\documents and settings\Gaming\Application Data\BitTorrent 2009-01-04 17:38 --------- d-----w c:\documents and settings\Gaming\Application Data\skypePM 2009-01-03 17:46 --------- d-----w c:\program files\Bonjour 2009-01-02 21:44 --------- d-----w c:\program files\LeechGet 2007 2009-01-02 21:42 --------- d-----w c:\program files\Real Pool 2009-01-02 10:04 --------- d-----w c:\program files\ma-config.com 2009-01-02 10:04 --------- d-----w c:\documents and settings\All Users\Application Data\ma-config.com 2009-01-02 09:55 --------- d-----w c:\documents and settings\Gaming\Application Data\codeblocks 2009-01-01 15:15 --------- d---a-w c:\program files\Fichiers communs\LightScribe 2009-01-01 14:44 --------- d-----w c:\program files\Valve 2008-12-31 17:01 --------- d-----w c:\program files\ALLCapture Enterprise 3.0 2008-12-31 15:12 --------- d-----w c:\program files\BitKinex 2008-12-31 14:42 --------- d-----w c:\program files\Eraser 2008-12-31 14:42 --------- d-----w c:\documents and settings\Jean\Application Data\OpenOffice.org2 2008-12-31 13:18 --------- d--h--w c:\program files\InstallShield Installation Information 2008-12-31 13:18 --------- d-----w c:\program files\MSI 2008-12-31 13:18 --------- d-----w c:\documents and settings\All Users\Application Data\DriverScanner 2008-12-31 13:17 --------- d-----w c:\program files\Uniblue 2008-12-31 13:17 --------- d-----w c:\program files\Sony Ericsson 2008-12-31 13:16 --------- d-----w c:\program files\Trust 2008-12-31 13:16 --------- d-----w c:\program files\TBX Player 2008-12-31 13:16 --------- d-----w c:\program files\SnIco Edit 2008-12-31 13:16 --------- d-----w c:\documents and settings\All Users\Application Data\River Past G5 2008-12-31 12:22 --------- d-----w c:\program files\SoundSpectrum 2008-12-31 12:22 --------- d-----w c:\program files\Premium Booster 2008-12-31 12:22 --------- d-----w c:\program files\MP3 WAV Converter 2008-12-31 12:21 --------- d-----w c:\program files\Fichiers communs\Adobe 2008-12-31 12:16 --------- d-----w c:\program files\FlashGet 2008-12-31 12:13 --------- d-----w c:\program files\AviSynth 2.5 2008-12-31 12:12 --------- d-----w c:\program files\EZ Boosters 2008-12-31 12:09 --------- d-----w c:\program files\Scroll 2008-12-31 12:06 --------- d-----w c:\program files\Free Audio Pack 2008-12-31 12:02 --------- d-----w c:\program files\Sony 2008-12-31 11:58 --------- d-----w c:\program files\BT Softphone 2 2008-12-31 11:50 --------- d-----w c:\program files\Magic Video Converter 2008-12-31 11:47 --------- d-----w c:\program files\Easy Internet signup 2008-12-30 21:04 --------- d-----w c:\documents and settings\Gaming\Application Data\Hamachi 2008-12-30 20:49 --------- d-----w c:\documents and settings\Gaming\Application Data\LimeWire 2008-12-30 10:27 --------- d-----w c:\program files\HP 2008-12-30 09:54 --------- d-----w c:\documents and settings\All Users\Application Data\HP 2008-12-29 17:05 --------- d-----w c:\program files\vixy.net 2008-12-29 16:39 --------- d-----w c:\program files\Java 2008-12-29 14:41 --------- d-----w c:\program files\MSN Messenger 2008-12-29 12:37 --------- d-----w c:\program files\DeskSpace 2008-12-29 12:36 --------- d-----w c:\documents and settings\HP_Propriétaire\Application Data\Skype 2008-12-28 15:28 --------- d-----w c:\program files\SystemRequirementsLab 2008-12-28 15:27 --------- d-----w c:\documents and settings\Gaming\Application Data\SystemRequirementsLab 2008-12-27 21:30 --------- d-----w c:\program files\BearFlix 2008-12-27 11:16 --------- d-----w c:\program files\Activision 2008-12-27 10:39 --------- d-----w c:\program files\Mafia 2008-12-26 15:29 --------- d-----w c:\program files\SlySoft 2008-12-25 14:27 --------- d-----w c:\program files\Ubisoft 2008-12-25 11:59 --------- d-----w c:\program files\Hewlett-Packard 2008-12-23 20:51 --------- d-----w c:\program files\Microsoft Bootvis 2008-12-22 18:08 --------- d-----w c:\documents and settings\All Users\Application Data\TrackMania 2008-12-21 16:37 --------- d-----w c:\program files\Codemasters 2008-12-17 12:05 --------- d-s---w c:\program files\Xfire 2008-12-15 13:04 --------- d-----w c:\program files\ALLCapture 3.0 Trial 2008-12-12 14:53 --------- d-----w c:\documents and settings\Gaming\Application Data\InstallShield Installation Information 2008-12-08 14:51 --------- d-----w c:\program files\Call of Duty Game of the Year Edition 2008-12-08 12:19 --------- d-----w c:\program files\Yahoo! 2008-12-07 18:51 --------- d-----w c:\program files\Atari 2008-12-07 14:13 --------- d-----w c:\documents and settings\Gaming\Application Data\ntr 2008-12-01 15:33 --------- d-----w c:\program files\ZooZ Control Host 2008-11-29 17:53 --------- d-----w c:\program files\Microsoft Games 2008-11-29 12:42 --------- d-----w c:\program files\Realtek AC97 2008-11-25 17:19 --------- d-----w c:\program files\iTunes 2008-11-25 17:19 --------- d-----w c:\documents and settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6} 2008-11-25 17:18 --------- d-----w c:\program files\iPod 2008-11-25 17:18 --------- d-----w c:\program files\Fichiers communs\Apple 2008-11-25 17:16 --------- d-----w c:\program files\QuickTime 2008-11-23 12:14 --------- d-----w c:\program files\Driver Sweeper 2008-11-23 11:53 --------- d-----w c:\program files\Pcsx2_0.9.4 2008-11-19 19:46 --------- d-----w c:\program files\Thief - Deadly Shadows 2008-11-18 14:24 --------- d-----w c:\program files\Jugaari 2008-11-13 20:06 --------- d-----w c:\program files\Fichiers communs\Skype 2008-11-11 11:29 278,728 ----a-w c:\windows\system32\drivers\atksgt.sys 2008-11-11 11:29 25,416 ----a-w c:\windows\system32\drivers\lirsgt.sys 2008-11-11 11:20 --------- d-----w c:\program files\Nobilis 2008-11-09 15:46 --------- d-----w c:\program files\GTA2 2008-11-08 17:45 --------- d-----w c:\program files\ElcomSoft 2008-11-08 12:07 65,492 -c--a-w c:\windows\BricoPackUninst.cmd 2008-11-08 12:07 5,802 ----a-w c:\windows\BricoPackFoldersDelete.cmd 2008-11-07 13:23 32,000 ----a-w c:\windows\system32\drivers\usbaapl.sys 2008-11-05 18:49 --------- d-----w c:\program files\WorldOfGoo 2008-10-30 12:02 286,720 ----a-w c:\windows\iun507.exe 2008-10-29 15:54 357 ----a-w c:\documents and settings\Gaming\.cb_layout.bin 2008-10-10 13:46 69,632 ----a-w c:\windows\KHALMNPR.Exe 2008-09-30 18:22 22,328 ----a-w c:\documents and settings\Gaming\Application Data\PnkBstrK.sys 2008-03-13 14:21 32 ----a-w c:\documents and settings\All Users\Application Data\ezsid.dat 2008-01-24 16:19 726,035 -c--a-w c:\program files\Hamachi.rar 2008-01-22 17:24 592 ----a-w c:\documents and settings\Gaming\FLASH0 Plein.bat 2008-01-20 10:51 548 ----a-w c:\documents and settings\Gaming\Réparateur de connexion.bat 2008-01-14 18:37 344 ----a-w c:\documents and settings\Gaming\NetSend.bat 2008-01-01 19:44 1,852 ----a-w c:\documents and settings\Gaming\owned.bat 2007-09-12 09:19 8,784 ----a-w c:\program files\mozilla firefox\plugins\ractrlkeyhook.dll 2007-09-12 09:22 245,408 ----a-w c:\program files\mozilla firefox\plugins\unicows.dll 2006-07-08 07:13 323,584 -csha-w c:\windows\ircrem.exe 2004-08-05 18:00 60,416 --sha-w c:\windows\BricoPacks\SysFiles\80_msimn.exe . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseSVN] @="{30351346-7B7D-4FCC-81B4-1E394CA267EB}" [HKEY_CLASSES_ROOT\CLSID\{30351346-7B7D-4FCC-81B4-1E394CA267EB}] 2008-02-16 11:35 536576 --a------ c:\program files\TortoiseSVN\bin\tortoisesvn.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseSVN] @="{30351347-7B7D-4FCC-81B4-1E394CA267EB}" [HKEY_CLASSES_ROOT\CLSID\{30351347-7B7D-4FCC-81B4-1E394CA267EB}] 2008-02-16 11:35 536576 --a------ c:\program files\TortoiseSVN\bin\tortoisesvn.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseSVN] @="{30351348-7B7D-4FCC-81B4-1E394CA267EB}" [HKEY_CLASSES_ROOT\CLSID\{30351348-7B7D-4FCC-81B4-1E394CA267EB}] 2008-02-16 11:35 536576 --a------ c:\program files\TortoiseSVN\bin\tortoisesvn.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseSVN] @="{3035134B-7B7D-4FCC-81B4-1E394CA267EB}" [HKEY_CLASSES_ROOT\CLSID\{3035134B-7B7D-4FCC-81B4-1E394CA267EB}] 2008-02-16 11:35 536576 --a------ c:\program files\TortoiseSVN\bin\tortoisesvn.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseSVN] @="{3035134C-7B7D-4FCC-81B4-1E394CA267EB}" [HKEY_CLASSES_ROOT\CLSID\{3035134C-7B7D-4FCC-81B4-1E394CA267EB}] 2008-02-16 11:35 536576 --a------ c:\program files\TortoiseSVN\bin\tortoisesvn.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseSVN] @="{3035134D-7B7D-4FCC-81B4-1E394CA267EB}" [HKEY_CLASSES_ROOT\CLSID\{3035134D-7B7D-4FCC-81B4-1E394CA267EB}] 2008-02-16 11:35 536576 --a------ c:\program files\TortoiseSVN\bin\tortoisesvn.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseSVN] @="{3035134E-7B7D-4FCC-81B4-1E394CA267EB}" [HKEY_CLASSES_ROOT\CLSID\{3035134E-7B7D-4FCC-81B4-1E394CA267EB}] 2008-02-16 11:35 536576 --a------ c:\program files\TortoiseSVN\bin\tortoisesvn.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2008-06-29 4608] "BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2008-12-15 342848] "LightScribe Control Panel"="c:\program files\Fichiers communs\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] "SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2009-01-04 1809648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2004-04-14 233472] "hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-10-07 13574144] "UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2006-09-07 15872] "KBD"="c:\hp\KBD\KBD.EXE" [2005-02-03 61440] "hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-03-13 81920] "avgnt"="c:\program files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-06-12 266497] "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2008-10-10 c:\windows\KHALMNPR.Exe] c:\documents and settings\Gaming\Menu D‚marrer\Programmes\D‚marrage\ Personal Firewall.lnk - c:\program files\Lavasoft\Personal Firewall\lpfw.exe [2008-06-21 91648] Raccourci vers avgnt.lnk - c:\program files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-12-16 266497] c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2008-03-25 214360] Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2008-08-27 809488] Raccourci vers Personal Firewall.lnk - c:\program files\Lavasoft\Personal Firewall\lpfw.exe [2008-06-21 91648] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoResolveTrack"= 1 (0x1) [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon] 2008-12-03 14:56 352256 c:\program files\SUPERAntiSpyware\SASWINLO.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn] 2008-11-07 16:41 72208 c:\program files\Fichiers communs\Logitech\Bluetooth\LBTWLgn.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\MCPClient] 2005-01-31 14:13 49152 c:\progra~1\FICHIE~1\Stardock\MCPStub.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WBSrv] 2007-11-02 11:47 120056 c:\program files\Stardock\Object Desktop\WindowBlinds\WbSrv.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit] 2007-10-18 20:47 75064 c:\windows\system32\LMIinit.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.MFZ0"= MyFlashZip0.ax "VIDC.XFR1"= xfcodec.dll [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk /r \??\s:\0autocheck autochk *\0lsdelete\0OODBS [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] @="" [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Gamma Loader.lnk] backup=c:\windows\pss\Adobe Gamma Loader.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Hamachi.lnk] backup=c:\windows\pss\Hamachi.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^HP Digital Imaging Monitor.lnk] backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk] backup=c:\windows\pss\Lancement rapide d'Adobe Reader.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^LUMIX Simple Viewer.lnk] backup=c:\windows\pss\LUMIX Simple Viewer.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk] backup=c:\windows\pss\Microsoft Office.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^Gaming^Menu Démarrer^Programmes^Démarrage^Air Mouse.lnk] backup=c:\windows\pss\Air Mouse.lnkStartup [HKLM\~\startupfolder\C:^Documents and Settings^Gaming^Menu Démarrer^Programmes^Démarrage^Daemon Tools.lnk] backup=c:\windows\pss\Daemon Tools.lnkStartup [HKLM\~\startupfolder\C:^Documents and Settings^Pierre-Louis.EINSTEIN^Menu Démarrer^Programmes^Démarrage^Adobe Gamma.lnk] backup=c:\windows\pss\Adobe Gamma.lnkStartup [HKLM\~\startupfolder\C:^Documents and Settings^Pierre-Louis.EINSTEIN^Menu Démarrer^Programmes^Démarrage^BudgetAssistantDesktop.lnk] backup=c:\windows\pss\BudgetAssistantDesktop.lnkStartup [HKLM\~\startupfolder\C:^Documents and Settings^Pierre-Louis.EINSTEIN^Menu Démarrer^Programmes^Démarrage^Hamachi.lnk] backup=c:\windows\pss\hamachi.lnkStartup [HKLM\~\startupfolder\C:^Documents and Settings^Pierre-Louis.EINSTEIN^Menu Démarrer^Programmes^Démarrage^IMVU.lnk] backup=c:\windows\pss\IMVU.lnkStartup [HKLM\~\startupfolder\C:^Documents and Settings^Pierre-Louis.EINSTEIN^Menu Démarrer^Programmes^Démarrage^Silica Calendar.lnk] backup=c:\windows\pss\Silica Calendar.lnkStartup [HKLM\~\startupfolder\C:^Documents and Settings^Pierre-Louis.EINSTEIN^Menu Démarrer^Programmes^Démarrage^Xfire.lnk] backup=c:\windows\pss\Xfire.lnkStartup HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dimension HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\STYLEXP HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VoipBuster HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Voipwise HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\µTorrent [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\1A:Stardock TrayMonitor] --a------ 2003-02-14 02:57 81920 c:\program files\Fichiers communs\Stardock\TrayServer.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AWMON] --a------ 2005-05-25 11:12 517632 c:\progra~1\Lavasoft\AD-AWA~1\Ad-Watch.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent] --a------ 2008-12-16 21:16 637232 c:\program files\BitTorrent\bittorrent.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe] --a------ 2008-04-14 03:33 15360 c:\windows\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools] --a------ 2005-12-10 15:57 133016 c:\program files\DAEMON Tools\daemon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Eraser] --a------ 2003-07-25 11:15 536576 c:\program files\Eraser\eraser.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Home Theater SchSvr] --a------ 2005-07-18 18:12 106496 c:\program files\Fichiers communs\InterVideo\SchSvr\SchSvr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update] -ra------ 2002-12-17 10:40 49152 c:\program files\Hewlett-Packard\HP Software Update\hpwuSchd.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPDJ Taskbar Utility] --a------ 2003-03-11 11:08 172032 c:\windows\system32\spool\drivers\w32x86\3\hpztsb08.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPHUPD08] --a------ 2005-06-02 07:35 49152 c:\program files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv] --a------ 1998-05-07 17:04 52736 c:\windows\system\hpsysdrv.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] --a------ 2008-11-20 13:20 290088 c:\program files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JaaduConnect] --a------ 2008-10-30 03:20 598016 c:\program files\Jugaari\Jaadu Connect\JaaduConnect.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KBD] --a------ 2005-02-03 00:44 61440 c:\hp\KBD\kbd.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LSBWatcher] --a------ 2005-05-11 01:50 253952 c:\hp\drivers\hplsbwatcher\LSBurnWatcher.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] --a------ 2008-12-02 22:41 3882312 c:\program files\Windows Live\Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] --a------ 2006-01-12 15:40 155648 c:\windows\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon] --a------ 2008-10-07 13:33 13574144 c:\windows\system32\nvcpl.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] --a------ 2008-11-04 10:30 413696 c:\program files\QuickTime\QTTask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Recguard] --a------ 2004-04-14 21:43 233472 c:\windows\SMINST\Recguard.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl] --a------ 2006-02-14 13:09 69632 c:\program files\ASUS\ASUS Remote\RemoteControlAppl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] -ra------ 2008-09-23 14:17 21755688 c:\program files\Skype\Phone\Skype.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snpstd] --a------ 2003-12-31 15:39 40960 c:\windows\vsnpstd.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] --a------ 2007-03-14 02:43 83608 c:\program files\Java\jre1.6.0_01\bin\jusched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] --a------ 2008-01-04 19:35 68856 c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant] --a------ 2006-09-07 18:19 15872 c:\program files\Unlocker\UnlockerAssistant.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WINREMOTE] --a------ 2005-07-18 17:05 262144 c:\program files\InterVideo\Common\Bin\WinRemote.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcxMonitor] --a------ 2004-09-07 21:47 57344 c:\windows\ALCXMNTR.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "mi-raysat_3dsmax8"=2 (0x2) "WinVNC4"=2 (0x2) "LightScribeService"=2 (0x2) "gusvc"=3 (0x3) "WMPNetworkSvc"=3 (0x3) "usnjsvc"=3 (0x3) "StyleXPService"=2 (0x2) "StarWindService"=2 (0x2) "rcp_service"=3 (0x3) "ircengnt"=2 (0x2) "IDriverT"=3 (0x3) "FLEXnet Licensing Service"=3 (0x3) "ctm"=2 (0x2) "Autodesk Licensing Service"=2 (0x2) "Adobe LM Service"=3 (0x3) "WLSetupSvc"=3 (0x3) "SandraTheSrv"=3 (0x3) "SandraDataSrv"=3 (0x3) "RServer3"=3 (0x3) "NNServ"=2 (0x2) "idsvc"=3 (0x3) "C-DillaSrv"=2 (0x2) "Fax"=3 (0x3) "winvnc"=2 (0x2) "LBTServ"=3 (0x3) "CCALib8"=2 (0x2) "Ventrilo"=2 (0x2) "BitKinex"=2 (0x2) "Apple Mobile Device"=2 (0x2) "Slave"=2 (0x2) "Creative Service for CDROM Access"=2 (0x2) "CPUCooLServer"=2 (0x2) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "ctfmon.exe"=c:\windows\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" "vmware-tray"="c:\program files\VMware\VMware Workstation\vmware-tray.exe" [HKEY_LOCAL_MACHINE\software\microsoft\security center] "FirewallOverride"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Xfire\\Xfire.exe"= "c:\\Program Files\\Valve\\Steam\\SteamApps\\made_4_chaos\\condition zero\\hl.exe"= "c:\\Program Files\\Valve\\Steam\\SteamApps\\made_4_chaos\\counter-strike source\\hl2.exe"= "c:\\Program Files\\Valve\\Steam\\SteamApps\\made_4_chaos\\counter-strike\\hl.exe"= "c:\\Program Files\\Windows Media Player\\wmplayer.exe"= "c:\\Program Files\\Valve\\Steam\\SteamApps\\made_4_chaos\\half-life 2 deathmatch\\hl2.exe"= "c:\\Program Files\\VentSrv\\ventrilo_srv.exe"= "c:\\Program Files\\Valve\\Steam\\steamapps\\made_4_chaos\\source dedicated server\\srcds.exe"= "c:\\Program Files\\Valve\\Steam\\steamapps\\made_4_chaos\\half-life 2\\hl2.exe"= "c:\\Program Files\\Mozilla Firefox\\firefox.exe"= "c:\\Program Files\\Octoshape Streaming Services\\Pierre-Louis\\OctoshapeClient.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\HLSW\\hlsw.exe"= "c:\\Program Files\\DnD Networks\\Onyx\\lib\\Nadeo\\TMOSN\\TrackmaniaServer.exe"= "c:\\Program Files\\Valve\\Steam\\steamapps\\made_4_chaos\\source sdk base\\hl2.exe"= "c:\\WINDOWS\\system32\\dpvsetup.exe"= "c:\\WINDOWS\\system32\\dxdiag.exe"= "c:\\WINDOWS\\system32\\dpnsvr.exe"= "c:\\Program Files\\Valve\\Steam\\steamapps\\made_4_chaos\\garrysmod\\hl2.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\MAIET\\Gunz\\GunzLauncher.exe"= "c:\\Program Files\\BitTorrent\\bittorrent.exe"= "c:\\Program Files\\Valve\\Steam\\steam.exe"= "c:\\WINDOWS\\system32\\mshta.exe"= "c:\\WINDOWS\\system32\\dplaysvr.exe"= "c:\\Program Files\\XLink Kai Evolution VII\\kaiLaunch.exe"= "c:\\Program Files\\XLink Kai Evolution VII\\kaiEngine.exe"= "c:\\Program Files\\RealVNC\\VNC4\\vncviewer.exe"= "c:\\Program Files\\RealVNC\\VNC4\\winvnc4.exe"= "c:\\WINDOWS\\system32\\PnkBstrA.exe"= "c:\\WINDOWS\\system32\\PnkBstrB.exe"= "c:\\Program Files\\UltraVNC\\winvnc.exe"= "c:\\Program Files\\UltraVNC\\vncviewer.exe"= "c:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe"= "c:\\Program Files\\Hamachi\\hamachi.exe"= "c:\\Program Files\\Microsoft Games\\Age of Empires III\\age3.exe"= "c:\\Program Files\\Windows Resource Kits\\Tools\\rpings.exe"= "c:\\Program Files\\Valve\\Steam\\steamapps\\common\\trackmania nations forever\\TmForever.exe"= "c:\\Program Files\\EA GAMES\\Battlefield 2\\BF2.exe"= "c:\\Program Files\\Sony Ericsson\\Update Service\\Update Service.exe"= "c:\\Program Files\\DNA\\btdna.exe"= "c:\\Program Files\\Lavasoft\\Personal Firewall\\lpfw.exe"= "c:\\Program Files\\EA GAMES\\Command and Conquer Generals\\game.dat"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpsapp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxs08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpse.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqsudi.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\VMware\\VMware Workstation\\vmware-authd.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "3724:TCP"= 3724:TCP:Blizzard Downloader "6112:TCP"= 6112:TCP:Blizzard Downloader "11000:TCP"= 11000:TCP:Archlord "11002:TCP"= 11002:TCP:Archlord "11008:TCP"= 11008:TCP:Archlord "11000:UDP"= 11000:UDP:Archlord "11002:UDP"= 11002:UDP:Archlord "11008:UDP"= 11008:UDP:Archlord "427:UDP"= 427:UDP:SLP_Port(427) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings] "AllowInboundEchoRequest"= 1 (0x1) R0 RVSDISK;RVSDISK;c:\windows\system32\drivers\RVSDISK.sys [2008-04-25 11904] R0 RVSYSTEM;RVSYSTEM;c:\windows\system32\drivers\RVSYSTEM.sys [2008-04-25 38272] R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [2008-12-04 8944] R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2008-12-04 55024] R3 iJoyKB;ZooZ Control Keyboard;c:\windows\system32\drivers\iJoyKB.sys [2008-12-01 5632] R3 iJoyM;ZooZ Control Mouse;c:\windows\system32\drivers\iJoyM.sys [2008-12-01 5504] R3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [2008-12-04 7408] R3 vhidmini;ZooZ Control Joystick;c:\windows\system32\drivers\iJoy.sys [2008-12-01 5632] R3 WinMTBus;WinMount Bus;c:\windows\system32\drivers\WinMTBus.sys [2008-08-01 196224] R4 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2007-11-06 46112] R4 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0;c:\program files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe [2008-12-05 935208] R4 ntrconnect;NTRconnect;c:\program files\NTR global\NTRconnect\NTRconnect.exe [2007-10-18 114688] R4 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service;c:\windows\system32\TUProgSt.exe [2008-12-30 603904] R4 vmci;VMware vmci;c:\windows\system32\drivers\vmci.sys [2008-10-28 54960] S0 AmdAcpi;AmdAcpi Bus Filter Driver; [x] S1 amdtools;AMD Special Tools Driver; [x] S3 3xHybrid;3xHybrid service;c:\windows\system32\drivers\3xHybrid.sys [2005-10-10 946816] S3 ADBLOCK.DLL;Lavasoft Firewall PlugIn (ADBLOCK.DLL);c:\program files\Lavasoft\Personal Firewall\Kernel\adblock.dll [2008-06-21 33504] S3 ARP.DLL;Lavasoft Firewall PlugIn (ARP.DLL);c:\program files\Lavasoft\Personal Firewall\Kernel\arp.dll [2008-06-21 17632] S3 CONTENT.DLL;Lavasoft Firewall PlugIn (CONTENT.DLL);c:\program files\Lavasoft\Personal Firewall\Kernel\content.dll [2008-06-21 4928] S3 DLPortIO;DriverLINX Port I/O Driver;\??\c:\documents and settings\Pierre-Louis.EINSTEIN\Bureau\TBX pro\SpotFX\DLPortIO.SYS --> c:\documents and settings\Pierre-Louis.EINSTEIN\Bureau\TBX pro\SpotFX\DLPortIO.SYS [?] S3 DNSCACHE.DLL;Lavasoft Firewall PlugIn (DNSCACHE.DLL);c:\program files\Lavasoft\Personal Firewall\Kernel\dnscache.dll [2008-06-21 14208] S3 FTPFILT.DLL;Lavasoft Firewall PlugIn (FTPFILT.DLL);c:\program files\Lavasoft\Personal Firewall\Kernel\ftpfilt.dll [2008-06-21 9056] S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [2008-06-14 13352] S3 HTMLFILT.DLL;Lavasoft Firewall PlugIn (HTMLFILT.DLL);c:\program files\Lavasoft\Personal Firewall\Kernel\htmlfilt.dll [2008-06-21 11584] S3 HTTPFILT.DLL;Lavasoft Firewall PlugIn (HTTPFILT.DLL);c:\program files\Lavasoft\Personal Firewall\Kernel\httpfilt.dll [2008-06-21 13280] S3 IMAPFILT.DLL;Lavasoft Firewall PlugIn (IMAPFILT.DLL);c:\program files\Lavasoft\Personal Firewall\Kernel\imapfilt.dll [2008-06-21 7232] S3 libusb0;LibUsb-Win32 - Kernel Driver 11/20/2005, 20051120;c:\windows\system32\drivers\libusb0.sys [2008-03-29 29184] S3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2008-12-19 195752] S3 MAILFILT.DLL;Lavasoft Firewall PlugIn (MAILFILT.DLL);c:\program files\Lavasoft\Personal Firewall\Kernel\mailfilt.dll [2008-06-21 14784] S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?] S3 mirrorv3;mirrorv3;c:\windows\system32\drivers\rminiv3.sys [2006-11-01 3328] S3 NNTPFILT.DLL;Lavasoft Firewall PlugIn (NNTPFILT.DLL);c:\program files\Lavasoft\Personal Firewall\Kernel\nntpfilt.dll [2008-06-21 6784] S3 PEEK5;PEEK5 Protocol Driver;\??\c:\docume~1\Gaming\Bureau\WINAIR~1\PEEK5.SYS --> c:\docume~1\Gaming\Bureau\WINAIR~1\PEEK5.SYS [?] S3 POP3FILT.DLL;Lavasoft Firewall PlugIn (POP3FILT.DLL);c:\program files\Lavasoft\Personal Firewall\Kernel\pop3filt.dll [2008-06-21 10016] S3 PROTECT.DLL;Lavasoft Firewall PlugIn (PROTECT.DLL);c:\program files\Lavasoft\Personal Firewall\Kernel\protect.dll [2008-06-21 16992] S3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [2008-12-10 7808] S3 PsSdk30;PsSdk30;\??\c:\windows\system32\Drivers\PsSdk30.drv --> c:\windows\system32\Drivers\PsSdk30.drv [?] S3 RTCore32;RTCore32;\??\c:\docume~1\Gaming\LOCALS~1\Temp\Rar$EX00.875\RTCore32.sys --> c:\docume~1\Gaming\LOCALS~1\Temp\Rar$EX00.875\RTCore32.sys [?] S3 sdAuxService;PC Tools Auxiliary Service;c:\program files\Spyware Doctor\pctsAuxs.exe [2008-08-31 337800] S3 SECRET.DLL;Lavasoft Firewall PlugIn (SECRET.DLL);c:\program files\Lavasoft\Personal Firewall\Kernel\secret.dll [2008-06-21 9728] S3 w300mgmt;Sony Ericsson W300 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\w300mgmt.sys [2008-06-14 87824] S3 w300obex;Sony Ericsson W300 USB WMC OBEX Interface;c:\windows\system32\drivers\w300obex.sys [2008-06-14 85696] S3 WN5401;Liteon Wireless LAN PCI 802.11 a/b/g adapter WN5401A;c:\windows\system32\drivers\wn5401.sys [2005-10-10 449920] S3 z520bus;Sony Ericsson 520 driver (WDM);c:\windows\system32\drivers\z520bus.sys [2008-08-07 57648] S3 z520mdfl;Sony Ericsson 520 USB WMC Modem Filter;c:\windows\system32\drivers\z520mdfl.sys [2008-08-07 8336] S3 z520mdm;Sony Ericsson 520 USB WMC Modem Drivers;c:\windows\system32\drivers\z520mdm.sys [2008-08-07 93488] S3 z520mgmt;Sony Ericsson 520 USB WMC Device Management Drivers;c:\windows\system32\drivers\z520mgmt.sys [2008-08-07 84928] S3 z520obex;Sony Ericsson 520 USB WMC OBEX Interface Drivers;c:\windows\system32\drivers\z520obex.sys [2008-08-07 82864] S4 ctm;Convar task manager; [x] S4 ircengnt;ircengnt; [x] S4 LavasoftFirewall;Lavasoft Personal Firewall Service;c:\program files\Lavasoft\Personal Firewall\lpfw.exe [2008-06-21 91648] S4 LMIInfo;LogMeIn Kernel Information Provider;\??\c:\program files\LogMeIn\x86\RaInfo.sys --> c:\program files\LogMeIn\x86\RaInfo.sys [?] S4 LMIRfsClientNP;LMIRfsClientNP; [x] S4 vnccom;vnccom;c:\windows\system32\drivers\vnccom.SYS [2007-12-03 6016] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 HPService REG_MULTI_SZ HPSLPSVC hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{20fcd53a-afd9-11dd-8760-0002e342e887}] \Shell\AutoRun\command - I:\setupSNK.exe [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}] "c:\program files\Fichiers communs\LightScribe\LSRunOnce.exe" . Contenu du dossier 'Tâches planifiées' 2009-01-04 c:\windows\Tasks\1-Click Maintenance.job - c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-11 21:36] 2008-12-30 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34] 2009-01-03 c:\windows\Tasks\NeroLiveEpgUpdate-EINSTEIN_Gaming.job - c:\program files\Nero\Nero 9\Nero Live\NeroLive.exe [2008-10-27 09:59] . - - - - ORPHELINS SUPPRIMES - - - - Notify-awtustq - awtustq.dll MSConfigStartUp-BT Softphone 2 - c:\program files\BT Softphone 2\BTSoftphone2.exe MSConfigStartUp-FLMOFFICE4DMOUSE - c:\program files\Trust\MI-2500X OPTICAL MOUSE\Mouse32a.exe MSConfigStartUp-MSMSGS - c:\program files\Messenger\msmsgs.exe MSConfigStartUp-New - c:\progra~1\NEWDOT~1\NEWDOT~1.DLL MSConfigStartUp-Orb - c:\program files\Orb Networks\Orb\bin\OrbTray.exe MSConfigStartUp-Uniblue SpeedUpMyPC - c:\program files\Uniblue\SpeedUpMyPC 3\SpeedUpMyPC.exe MSConfigStartUp-Uniblue SpyEraser - c:\program files\Uniblue\SpyEraser\SpyEraser.exe MSConfigStartUp-xstzoalwr - c:\documents and settings\gaming\local settings\application data\xstzoalwr.exe . ------- Examen supplémentaire ------- . mWindow Title = uInternet Settings,ProxyOverride = *.local IE: &Tout télécharger avec FlashGet - c:\program files\FlashGet\jc_all.htm IE: &Télécharger avec FlashGet - c:\program files\FlashGet\jc_link.htm IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\documents and settings\Pierre-Louis.EINSTEIN\Menu Démarrer\Programmes\IMVU\Run IMVU.lnk IE: {{DE365254-2F9B-4908-9E3A-7AAA6EC90BCC} - {EC83A912-7EF4-410D-9CC7-3BDAA709CA71} - c:\program files\WinAVI FLV Converter\FLVTune.dll LSP: c:\program files\VMware\VMware Workstation\vsocklib.dll Trusted Zone: asia.msi.com.tw Trusted Zone: global.msi.com.tw Trusted Zone: www.msi.com.tw TCP: {FFDF520C-4E39-4EB9-9C92-B39F49517F43} = 195.238.2.21,195.238.2.22 O16 -: {8167C273-DF59-4416-B647-C8BB2C7EE83E} - hxxp://liveupdate.msi.com.tw/autobios/LOnline/install.cab O16 -: {E6ACF817-0A85-4EBE-9F0A-096C6488CFEA} - hxxps://www.ntrconnect.com/main/mod/setup/ntractivex118_24.cab O16 -: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} - hxxps://secure.gopetslive.com/dev/GoPetsWeb.cab FF - ProfilePath - c:\documents and settings\Gaming\Application Data\Mozilla\Firefox\Profiles\4z9xbqsn.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1396957&SearchSource=3&q= FF - prefs.js: browser.search.selectedEngine - Mininova FF - prefs.js: browser.startup.homepage - chrome://fastdial/content/fastdial.html FF - component: c:\documents and settings\Gaming\Application Data\Mozilla\Firefox\Profiles\4z9xbqsn.default\extensions\{3cd775d5-7299-4335-94eb-5e82d0e61b22}\components\FFAlert.dll FF - component: c:\documents and settings\Gaming\Application Data\Mozilla\Firefox\Profiles\4z9xbqsn.default\extensions\piclens@cooliris.com\components\coolirisstub.dll FF - plugin: c:\documents and settings\Gaming\Application Data\Mozilla\Firefox\Profiles\4z9xbqsn.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}\plugins\nphardwaredetection.dll FF - plugin: c:\program files\ma-config.com\nphardwaredetection.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npbittorrent.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npCortona.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npijjiFFPlugin1.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npoctoshape.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npRACtrl.dll FF - plugin: c:\program files\Veoh Networks\Veoh\Plugins\noreg\NPVeohVersion.dll FF - plugin: c:\program files\Yahoo!\Common\npyaxmpb.dll ATTENTION: FIREFOX POLICES IS IN FORCE FF - user.js: network.http.max-persistent-connections-per-server - 4 . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-01-04 21:01:09 Windows 5.1.2600 Service Pack 3 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** [HKEY_LOCAL_MACHINE\System\ControlSet003\Services\PsSdk30] "ImagePath"="\??\c:\windows\system32\Drivers\PsSdk30.drv" . --------------------- LOCKED REGISTRY KEYS --------------------- [HKEY_USERS\S-1-5-21-3601220017-2494414139-1306248022-1013\Software\Microsoft\MessengerService\GroupStateCacheU\E*NULL*o*NULL*D*NULL*"!] "Name"=hex:45,00,6f,00,44,00,22,21,00,00 "Collapsed"=hex:01,00,00,00 [HKEY_USERS\S-1-5-21-3601220017-2494414139-1306248022-1013\Software\SecuROM\License information*NULL*] @Allowed: (Read) (RestrictedCode) @Allowed: (Read) (RestrictedCode) "datasecu"=hex:01,fb,cd,69,9c,f2,cd,68,69,79,cc,e3,41,46,16,6b,5c,0a,2b,aa,10,\ 6d,a9,7c,4c,cf,74,2e,43,22,67,85,d6,6a,43,7d,86,7a,08,f6,8d,34,4e,4a,6c,b8,\ 5a,53,41,7e,73,93,9c,a2,c4,79,69,72,3b,d8,4b,9a,d3,e3,a2,66,ec,d5,3c,08,71,\ 1a,c9,e1,53,0c,26,35,b1,33,d8,84,9f,00,52,b8,0e,bd,6e,ac,44,ef,42,45,b9,37,\ ac,0a,c5,b5,f0,5d,9f,42,80,f3,d5,fd,ea,22,53,d4,3a,bc,2e,b8,39,11,e0,92,18,\ 10,21,53,61,8f,be,e5,49,e8,df,75,3a,00,90,20,ae,f2,85,ef,5a,65,5a,89,5f,e8,\ b4,26,f5,f6,3a,3f,14,66,c4,85,9a,1a,5a,96,6f,dc,67,af,e8,cb,2f,3d,52,0f,41,\ df,13,1e,6e,f8,68,69,47,6e,77,b2,08,f3,95,62,0c,69,55,7c,0d,b3,53,22,7d,2e,\ 6e,7a,a5,b1,64,ff,e4,b5,f3,01,a0,93,f2,2e,d0,79,e4,cc,b0,9b,1d,5d,9c,2f,ed,\ 52,8e,ba,97,16,c5,3c,7b,60,16,24,ae,d8,85,91,bf,ad,d4,e9,75,44,ef,ca,d8,29,\ 1a,a2,7a,b6,3d,fb,68,04,56,0c,d4,a8,78,76,57,e3,70,ab,1d,c4,d7,e6,3f,38,ca,\ 6e,f0,54,82,b2,d9,bc,9d,0f,ab,a9,a9,27,0b,4b,29,19,44,2b,20,a9,91,8a,4c,7e,\ 8e,73,09,0b,0b,6b,db,1d,4c,c5,b4,a6,e5,47,a9,e3,aa,a4,88,0d,cc,36,ba,d7,ca,\ 67,b9,23,ee,16,d5,b8,0c,8c,0a,c1,a5,c1,34,4d,f7,52,f1,f3,c7,54,9d,7a,d8,59,\ 46,62,d9,5d,77,af,0e,19,96,b3,dc,b8,9c,70,e3,2e,80,ad,bf,4c,63,dd,20,80,e5,\ 39,be,a6,bd,ba,6e,4b,de,16,ab,a6,1d,9d,9a,fc,73,9c,66,18,6b,99,99,2a,c7,5b,\ b4,6c,b8,7c,00,7e,e4,38,bf,7f,51,30,f1,ed,da,41,25,9c,3b,a4,f3,06,8f,0a,66,\ 62,3e,8a,c6,5a,5e,d4,34,a7,cf,f1,e6,45,af,62,ee,4d,d7,22,e6,45,df,22 "rkeysecu"=hex:6a,53,47,d2,ad,97,9b,b6,9f,2c,d7,4e,38,7e,cb,f4 [HKEY_USERS\S-1-5-21-3601220017-2494414139-1306248022-1013\Software\Sony Creative Software\M*NULL*e*NULL*d*NULL*i*NULL*a*NULL* *NULL*M*NULL*a*NULL*n*NULL*a*NULL*g*NULL*e*NULL*r*NULL* *NULL*f*NULL*o*NULL*r*NULL* *NULL*P*NULL*S*NULL*P*NULL*"!] @Allowed: (Read) (RestrictedCode) @Allowed: (Read) (RestrictedCode) [HKEY_USERS\S-1-5-21-3601220017-2494414139-1306248022-1013\Software\Sony Creative Software\M*NULL*e*NULL*d*NULL*i*NULL*a*NULL* *NULL*M*NULL*a*NULL*n*NULL*a*NULL*g*NULL*e*NULL*r*NULL* *NULL*f*NULL*o*NULL*r*NULL* *NULL*P*NULL*S*NULL*P*NULL*"!\2.5] "Percents"="" "Increment"=".001466" [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*NULL*] "OODEFRAG11.00.00.01WORKSTATION"="998176A7FBC6C166864CD1AEC44839D3517766FEA63BFE915408EF9DE254F5CFDFF4555FE51 F19D3948D0DB7CA63C20E1964D31ABB15FEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74 C FEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CA6A0AC4980AC7933A6A0AC4980AC7933 A 6A0AC4980AC7933A9C6AECB7A5D1407715ECAA270D02C554E4B0E79BDC7A55C4232F6371FB85FA14 E F14AF51A1ADEE24EA2250B0E29E082C8B6B3FA644E38FA86A1AE711A8B6EE7831029539104C298A8 3 5385DB60D6FB95C265A53744C448BD5C3C0BB78718CA7D6B2582F497348D71CE72EB9A7E4387AB04 4 23C4C755307D08BCE29A51C6C4E0EA963EEEB3ACC0CFB5B04605527F6F44E0DEBED4EBE0B5C16154 5 C54EC4CF516D39CD9BA7A594EB5772AD1E759109E1E7CE975CE234A61CEA0760B74CCA5524F1B4AB B FDF7066942D691B6D0162CA212067CA340625017A174335D4AA2DA62183CC809693B265E32BF48F0 7 094CE2CACF351B7FA52968A3781BED9E8535A7E802A63FB70878D4CC58ED50DBB175640FE33C6349 4 52A547925EEF96A6FA72579BC90CE04C5676A6429662AD6C108436A0A0DFB168F2672A3A1AC34020 E 8D8EE02725899F8D17DB6709CBC887E2A803C2A9044DA15F82CE4B8B15998341D249BCEF2FE1BB55 A A4169B5BD76A3440545439C9BE6FFADFA7FC9D9A76F105505389210CDFED0781D1361600C7AE92E2 E D4F70073D4142536F4EFA3C00B67AECC5361D71F9B13512CC59332E464962D6A0D97477D3B9D3350 1 83E6F28461BF0F3EF46A4DF215CC04C399CC7AB3BF3095236FEE3EB852DD9CBAA0FC8F3203C30C67 6 C353C91DE9D8949E03EEE102D4E4A0EDF0D72C59BD1D06079DAD4DDBE3AE8CC97AC50C568BB84D0E E 690B01BFD15662D0819E7C38675098BA23FA7E4F19E1DEC4838D9F1EFE0D34D8B23F5138134E7F3B 0 2C1FDDE98CCEF5F7E2FB17E1C63F197736CD28184EEB2060272EE6E30F92E6B475091DC22ABD43B1 6 8F362EC290BE0636DA39A72CA96CB1C37D6A4C8A56970210AF220F08869BF29732EFD150BFE1DA0C 3 ACFBB9970656BEAB07B50C594CA759C3CBFE98EAB7A80379DE6724BFC5AB53A5EB678352A8918E8C B FA8CCA183A0C34C39AF4C19A0FB0ABCEC6AB7F850D878512B42FAA74A46E39076726C8793C649F89 8 B4AEE8AD5A7AE35DFAD7B4B43993B1030C76B9DE879D68AE1D930068A6EACC48C1BA76533D87E35A 5 BC9276A9052B0C37B8A9286B9BC27431F3B5BD446E2C21BEA8C246708FDFA530B1DCE04F39A9A87B 1 25F4D250702573FD652D56BFEF4BCE1CB5A8136691754BBF83418A9780C805072C777F3431DB919F 8 C336660B602B5FEE4B9B9657F081A8923860115A2F1F308F6347192CA01570660BFB0054CB73BF12 B ACC031F3A5F7991CB2F4048738636" . --------------------- DLLs chargées dans les processus actifs --------------------- - - - - - - - > 'winlogon.exe'(1612) c:\program files\SUPERAntiSpyware\SASWINLO.dll c:\program files\fichiers communs\logitech\bluetooth\LBTWlgn.dll c:\windows\system32\LMIinit.dll c:\program files\fichiers communs\logitech\bluetooth\LBTServ.dll c:\progra~1\FICHIE~1\Stardock\mcpstub.dll c:\program files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll . ------------------------ Autres processus actifs ------------------------ . c:\program files\Lavasoft\Ad-Aware\aawservice.exe c:\program files\Avira\AntiVir PersonalEdition Classic\sched.exe c:\program files\Avira\AntiVir PersonalEdition Classic\avguard.exe c:\program files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe c:\program files\Java\jre6\bin\jqs.exe c:\program files\Fichiers communs\LightScribe\LSSrvc.exe c:\windows\system32\nvsvc32.exe c:\windows\system32\oodag.exe c:\windows\system32\PnkBstrA.exe c:\windows\system32\vmnat.exe c:\windows\system32\vmnetdhcp.exe c:\program files\VMware\VMware Workstation\vmware-authd.exe c:\progra~1\FICHIE~1\Stardock\SDMCP.exe c:\program files\TortoiseSVN\bin\TSVNCache.exe c:\program files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.exe c:\windows\system32\wbem\wmiapsrv.exe c:\windows\system32\wscntfy.exe c:\windows\system32\msiexec.exe c:\windows\system32\rundll32.exe c:\windows\system32\msiexec.exe . ************************************************************************** . Heure de fin: 2009-01-04 21:15:09 - La machine a redémarré [Gaming] ComboFix-quarantined-files.txt 2009-01-04 20:14:32 Avant-CF: 79.967.711.232 octets libres Après-CF: 79,852,994,560 octets libres 819 --- E O F --- 2008-12-30 15:30:48 Je signale aussi qu'il ne faut pas appuyer sur 1 lancer le scan, il lance le programme, met une boite d'avertissement, je clique oui, et c'est parti. ----EDIT---- Heuuu, il est pas très gentil ComboFix... Il m'a fait une emmerde avec Lavasoft Personal Firewall... "Lavasoft Personal Firewall driver configuration was invalid and could not be corrected." Il me conseille de le désinstaller et de le réinstaller. -
FPS bas - Log HijackThis
ChaotiCc` a répondu à un(e) sujet de ChaotiCc` dans Analyses et éradication malwares
Par rapport à mes pages (ce ne sont que certains sites) qui ne se chargent pas, ce n'est pas une "connectivité limitée ou inexistante", mais Firefox qui m'affiche "Connexion réinitialisée", "Délai d'attente dépassé" (comme il vient juste de m'arriver avec le forum) ou "Connexion interrompue". Souvent Firefox affiche d'abord la page genre sans images, pour ensuite m'afficher le message. Des fois je me dis que je devrais rafraichir la page parce que les images ne se chargent pas et la, le message s'affiche aussi... -
FPS bas - Log HijackThis
ChaotiCc` a répondu à un(e) sujet de ChaotiCc` dans Analyses et éradication malwares
Bon... Même en mode sans échec, MBAM est excessivement lent. Malheureusement maintenant je n'aurais pas le temps de le laisser tourner... Tu m'avais conseillé SUPERAntiSpyware pour cette raison... Pourquoi refaire un scan avec MBAM? :/ -
FPS bas - Log HijackThis
ChaotiCc` a répondu à un(e) sujet de ChaotiCc` dans Analyses et éradication malwares
Y'a pas une option pour supprimer son message? J'ai reposté mon précedent parce que je pensais qu'il était pas posté (j'étais sur la 1ere page ^^') -
FPS bas - Log HijackThis
ChaotiCc` a répondu à un(e) sujet de ChaotiCc` dans Analyses et éradication malwares
Voila déjà le log de nettoyage de SmitfraudFix. Je réinstalle MBAM et redémarre en mode sans échec... SmitFraudFix v2.388 Rapport fait à 15:30:04,18, dim. 04/01/2009 Executé à partir de C:\Documents and Settings\Gaming\Bureau\Downloads\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT Le type du système de fichiers est NTFS Fix executé en mode sans echec »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» Arret des processus »»»»»»»»»»»»»»»»»»»»»»»» hosts 127.0.0.1 localhost »»»»»»»»»»»»»»»»»»»»»»»» VACFix VACFix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix S!Ri's WS2Fix: LSP not Found. »»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix GenericRenosFix by S!Ri »»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés C:\WINDOWS\config.ini supprimé C:\Documents and Settings\Gaming\Application Data\Skinux\ supprimé »»»»»»»»»»»»»»»»»»»»»»»» IEDFix IEDFix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» Agent.OMZ.Fix Agent.OMZ.Fix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» 404Fix 404Fix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» RK »»»»»»»»»»»»»»»»»»»»»»»» DNS HKLM\SYSTEM\CCS\Services\Tcpip\..\{FFDF520C-4E39-4EB9-9C92-B39F49517F43}: NameServer=195.238.2.21,195.238.2.22 HKLM\SYSTEM\CS1\Services\Tcpip\..\{DE246E2C-8697-44FE-A5BB-FA04D12D4DEC}: DhcpNameServer=15.243.128.51 15.243.160.51 HKLM\SYSTEM\CS1\Services\Tcpip\..\{FFDF520C-4E39-4EB9-9C92-B39F49517F43}: DhcpNameServer=192.168.1.1 HKLM\SYSTEM\CS2\Services\Tcpip\..\{FFDF520C-4E39-4EB9-9C92-B39F49517F43}: NameServer=195.238.2.21,195.238.2.22 HKLM\SYSTEM\CS3\Services\Tcpip\..\{FFDF520C-4E39-4EB9-9C92-B39F49517F43}: NameServer=195.238.2.21,195.238.2.22 HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1 »»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "System"="" "Startup"="MCPSystemStartup" »»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre Nettoyage terminé. »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» Fin -
FPS bas - Log HijackThis
ChaotiCc` a répondu à un(e) sujet de ChaotiCc` dans Analyses et éradication malwares
Oh noes! Revoila MBAM... Je le ferai en mode sans échec cette fois ^^ Premier rapport: SmitFraudFix v2.388 Rapport fait à 14:57:24,25, dim. 04/01/2009 Executé à partir de C:\Program Files\SUPERAntiSpyware\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT Le type du système de fichiers est NTFS Fix executé en mode normal »»»»»»»»»»»»»»»»»»»»»»»» Process C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\PROGRA~1\FICHIE~1\Stardock\SDMCP.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Lavasoft\Personal Firewall\lpfw.exe C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\NTR global\NTRconnect\NTRconnect.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\oodag.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\TUProgSt.exe C:\WINDOWS\system32\vmnat.exe C:\Program Files\VMware\VMware Workstation\vmware-authd.exe C:\WINDOWS\system32\vmnetdhcp.exe C:\Program Files\TortoiseSVN\bin\TSVNCache.exe C:\windows\system\hpsysdrv.exe C:\Program Files\Unlocker\UnlockerAssistant.exe C:\HP\KBD\KBD.EXE C:\Program Files\DNA\btdna.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe K:\HiJackThis.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\WINDOWS\SYSTEM32\NOTEPAD.EXE C:\WINDOWS\system32\cmd.exe C:\WINDOWS\system32\wbem\wmiprvse.exe »»»»»»»»»»»»»»»»»»»»»»»» hosts »»»»»»»»»»»»»»»»»»»»»»»» C:\ »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS C:\WINDOWS\config.ini PRESENT ! »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32 »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Gaming »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Gaming\LOCALS~1\Temp »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Gaming\Application Data C:\Documents and Settings\Gaming\Application Data\Skinux PRESENT ! »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Gaming\Favoris »»»»»»»»»»»»»»»»»»»»»»»» Bureau »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0] "Source"="About:Home" "SubscribedURL"="About:Home" "FriendlyName"="Ma page d'accueil" »»»»»»»»»»»»»»»»»»»»»»»» o4Patch !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! o4Patch Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» IEDFix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! IEDFix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» Agent.OMZ.Fix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! »»»»»»»»»»»»»»»»»»»»»»»» VACFix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! VACFix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» 404Fix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! 404Fix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="" »»»»»»»»»»»»»»»»»»»»»»»» Winlogon !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "Userinit"="C:\\WINDOWS\\system32\\userinit.exe," "System"="" "Startup"="MCPSystemStartup" »»»»»»»»»»»»»»»»»»»»»»»» RK »»»»»»»»»»»»»»»»»»»»»»»» DNS Description: Wireless LAN PCI 802.11 a/b/g adapter WN5401A - Miniport d'ordonnancement de paquets DNS Server Search Order: 195.238.2.21 DNS Server Search Order: 195.238.2.22 HKLM\SYSTEM\CCS\Services\Tcpip\..\{FFDF520C-4E39-4EB9-9C92-B39F49517F43}: NameServer=195.238.2.21,195.238.2.22 HKLM\SYSTEM\CS1\Services\Tcpip\..\{DE246E2C-8697-44FE-A5BB-FA04D12D4DEC}: DhcpNameServer=15.243.128.51 15.243.160.51 HKLM\SYSTEM\CS1\Services\Tcpip\..\{FFDF520C-4E39-4EB9-9C92-B39F49517F43}: DhcpNameServer=192.168.1.1 HKLM\SYSTEM\CS2\Services\Tcpip\..\{FFDF520C-4E39-4EB9-9C92-B39F49517F43}: NameServer=195.238.2.21,195.238.2.22 HKLM\SYSTEM\CS3\Services\Tcpip\..\{FFDF520C-4E39-4EB9-9C92-B39F49517F43}: NameServer=195.238.2.21,195.238.2.22 HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1 »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll »»»»»»»»»»»»»»»»»»»»»»»» Fin Tu m'avais dit que le fichier process.exe n'était pas un virus, AntiVir n'a pas détecté ce fichier mais par contre il a détecté C:/Program Files/SUPERAntiSpyware/SmitfraudFix/Agent.OMZ.Fix.exe et je lui ai dit de mettre en quarantaine. J'ai vu ensuite que SmitfraudFix n'a pas trouvé C:/Program Files/SUPERAntiSpyware/SmitfraudFix/Agent.OMZ.Fix.exe.... Que dois-je faire? -
FPS bas - Log HijackThis
ChaotiCc` a répondu à un(e) sujet de ChaotiCc` dans Analyses et éradication malwares
Ca y est! Enfin Mes rapports : SuperAntiSpyware : SUPERAntiSpyware Scan Log http://www.superantispyware.com Generated 01/02/2009 at 09:52 PM Application Version : 4.24.1004 Core Rules Database Version : 3693 Trace Rules Database Version: 1669 Scan type : Complete Scan Total Scan Time : 02:02:47 Memory items scanned : 557 Memory threats detected : 0 Registry items scanned : 8858 Registry threats detected : 29 File items scanned : 50120 File threats detected : 80 Adware.Vundo Variant HKU\S-1-5-21-3601220017-2494414139-1306248022-1012\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6C54318-5AC7-477D-B0A7-49AF5189300C} Adware.Tracking Cookie C:\Documents and Settings\Gaming\Cookies\gaming@bluestreak[2].txt C:\Documents and Settings\Gaming\Cookies\gaming@atdmt[2].txt C:\Documents and Settings\Gaming\Cookies\gaming@mediaplex[2].txt C:\Documents and Settings\Gaming\Cookies\gaming@apmebf[1].txt C:\Documents and Settings\Gaming\Cookies\gaming@doubleclick[1].txt .doubleclick.net [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] ad.yieldmanager.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .tradedoubler.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .tradedoubler.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .tradedoubler.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .tradedoubler.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] ad.yieldmanager.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] ad.yieldmanager.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] ad.yieldmanager.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] 2.go.globaladsales.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .serving-sys.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .serving-sys.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .serving-sys.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .serving-sys.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .serving-sys.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .bs.serving-sys.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .serving-sys.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .estat.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .atdmt.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .xiti.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .weborama.fr [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .smartadserver.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .advertstream.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .advertstream.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .advertstream.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .advertstream.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .advertstream.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .adtech.de [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .adviva.net [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] .bluestreak.com [ C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\colb8h77.default\cookies.txt ] C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@stat.blogorama[1].txt C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@media-convert[1].txt C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@adv.surinter[3].txt C:\Documents and Settings\HP_Propriétaire\Cookies\hp_propriétaire@adv.surinter[1].txt be.sitestat.com [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] be.sitestat.com [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .xiti.com [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .bluestreak.com [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .doubleclick.net [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] adserver.rozenbergads.com [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .adserver.adremedy.com [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .adserver.adremedy.com [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .mediaplex.com [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .statcounter.com [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .statcounter.com [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .overture.com [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .2o7.net [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .weborama.fr [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .247realmedia.com [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .247realmedia.com [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .tradedoubler.com [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .valueclick.net [ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Profiles\default\mfzbr4nv.slt\cookies.txt ] .fastclick.net [ C:\Documents and Settings\Invité\Application Data\Mozilla\Profiles\default\gpjc10cw.slt\cookies.txt ] .azjmp.com [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] .azjmp.com [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] .statcounter.com [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] .tribalfusion.com [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] .microsofteup.112.2o7.net [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] .2o7.net [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] .2o7.net [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] .2o7.net [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] statse.webtrendslive.com [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] statse.webtrendslive.com [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] .cs.sexcounter.com [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] .cs.sexcounter.com [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] www.ourfreeporn.com [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] .cs.sexcounter.com [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] .cs.sexcounter.com [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] .xiti.com [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] www.sexedenfer.com [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] www.sexedenfer.com [ C:\WINDOWS\Mozilla\Profiles\default\ernfx6bv.slt\cookies.txt ] Unclassified.Oreans32 HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_OREANS32 HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_OREANS32#NextInstance HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_OREANS32\0000 HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_OREANS32\0000#Service HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_OREANS32\0000#Legacy HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_OREANS32\0000#ConfigFlags HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_OREANS32\0000#Class HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_OREANS32\0000#ClassGUID HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_OREANS32\0000#DeviceDesc HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_OREANS32\0000#Capabilities HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_OREANS32\0000#Driver HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_OREANS32\0000\LogConf HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_OREANS32\0000\Control HKLM\SYSTEM\CurrentControlSet\Services\oreans32 HKLM\SYSTEM\CurrentControlSet\Services\oreans32#Type HKLM\SYSTEM\CurrentControlSet\Services\oreans32#Start HKLM\SYSTEM\CurrentControlSet\Services\oreans32#ErrorControl HKLM\SYSTEM\CurrentControlSet\Services\oreans32#ImagePath HKLM\SYSTEM\CurrentControlSet\Services\oreans32#DisplayName HKLM\SYSTEM\CurrentControlSet\Services\oreans32\Security HKLM\SYSTEM\CurrentControlSet\Services\oreans32\Security#Security HKLM\SYSTEM\CurrentControlSet\Services\oreans32\Enum HKLM\SYSTEM\CurrentControlSet\Services\oreans32\Enum#0 HKLM\SYSTEM\CurrentControlSet\Services\oreans32\Enum#Count HKLM\SYSTEM\CurrentControlSet\Services\oreans32\Enum#NextInstance HKLM\SYSTEM\CurrentControlSet\Services\oreans32\Enum#INITSTARTFAILED Adware.Vundo Variant/Rel HKLM\SOFTWARE\Microsoft\FCOVM HKLM\SOFTWARE\Microsoft\RemoveRP Trojan.Gen C:\WINDOWS\UNIFISH3.EXE C:\DOCUMENTS AND SETTINGS\ALL USERS\MENU DéMARRER\PROGRAMMES\LES TRUCS A PIERRE-LOUIS\HASBRO INTERACTIVE\ROLLERCOASTER TYCOON\DéSINSTALLER ROLLERCOASTER TYCOON.LNK Trojan.NewDotNet-Installer C:\PROGRAM FILES\REAL POOL\NNSUNA3_88.EXE Adware.WhenU C:\PROGRAM FILES\REAL POOL\SUNNYGAMES_WHENUSAVE_INSTALLERINST.EXE Recherche Navilog : Search Navipromo version 3.7.1 commencé le sam. 03/01/2009 à 13:01:29,76 !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!! !!! Postez ce rapport sur le forum pour le faire analyser !!! !!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!! Outil exécuté depuis C:\Program Files\navilog1 Mise à jour le 02.01.2009 à 19h00 par IL-MAFIOSO Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : AMD Athlon 64 Processor 3700+ ) BIOS : Phoenix - Award BIOS v6.00PG USER : Gaming ( Administrator ) BOOT : Normal boot Antivirus : Avira AntiVir PersonalEdition Classic 8.0.1.30 (Activated) Firewall : Lavasoft Personal Firewall 3.0 (Activated) C:\ (Local Disk) - NTFS - Total:180 Go (Free:72 Go) D:\ (Local Disk) - FAT32 - Total:5 Go (Free:2 Go) E:\ (CD or DVD) F:\ (CD or DVD) G:\ (CD or DVD) H:\ (CD or DVD) N:\ (USB) - FAT - Total:483 Mo (Free:0 Go) O:\ (USB) P:\ (USB) S:\ (USB) Recherche executé en mode normal *** Recherche Programmes installés *** *** Recherche dossiers dans "C:\WINDOWS" *** *** Recherche dossiers dans "C:\Program Files" *** *** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" *** *** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" *** *** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Gaming\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1.EIN\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1.000\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1.001\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\HP_PRO~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\INVIT~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\Jean\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\PROPRI~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Gaming\locals~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1.EIN\locals~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1.000\locals~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1.001\locals~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\HP_PRO~1\locals~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\Jean\locals~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Gaming\menudm~1\progra~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1.001\menudm~1\progra~1" *** *** Recherche dossiers dans "C:\DOCUME~1\HP_PRO~1\menudm~1\progra~1" *** *** Recherche dossiers dans "C:\DOCUME~1\INVIT~1\menudm~1\progra~1" *** *** Recherche dossiers dans "C:\DOCUME~1\Jean\menudm~1\progra~1" *** *** Recherche dossiers dans "C:\DOCUME~1\PROPRI~1\menudm~1\progra~1" *** *** Recherche avec Catchme-rootkit/stealth malware detector par gmer *** pour + d'infos : http://www.gmer.net *** Recherche avec GenericNaviSearch *** !!! Tous ces résultats peuvent révéler des fichiers légitimes !!! !!! A vérifier impérativement avant toute suppression manuelle !!! * Recherche dans "C:\WINDOWS\system32" * * Recherche dans "C:\Documents and Settings\Gaming\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\ADMINI~1.EIN\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\ADMINI~1.000\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\ADMINI~1.001\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\HP_PRO~1\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\Jean\locals~1\applic~1" * *** Recherche fichiers *** C:\WINDOWS\system32\nvs2.inf trouvé ! *** Recherche clés spécifiques dans le Registre *** !! Les clés trouvées ne sont pas forcément infectées !! *** Module de Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Recherche nouveaux fichiers Instant Access : 2)Recherche Heuristique : * Dans "C:\WINDOWS\system32" : * Dans "C:\Documents and Settings\Gaming\locals~1\applic~1" : * Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" : * Dans "C:\DOCUME~1\ADMINI~1.EIN\locals~1\applic~1" : * Dans "C:\DOCUME~1\ADMINI~1.000\locals~1\applic~1" : * Dans "C:\DOCUME~1\ADMINI~1.001\locals~1\applic~1" : * Dans "C:\DOCUME~1\HP_PRO~1\locals~1\applic~1" : * Dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" : * Dans "C:\DOCUME~1\Jean\locals~1\applic~1" : 3)Recherche Certificats : Certificat Egroup trouvé ! Certificat Electronic-Group trouvé ! Certificat Montorgueil absent ! Certificat OOO-Favorit trouvé ! Certificat Sunny-Day-Design-Ltd absent ! 4)Recherche autres dossiers et fichiers connus : C:\WINDOWS\system32\HRqBIkkj.ini2 trouvé ! Infection Vundo possible non traitée par cet outil ! C:\WINDOWS\system32\Nnnmmnmp.ini2 trouvé ! Infection Vundo possible non traitée par cet outil ! C:\WINDOWS\system32\OpAdNUtv.ini2 trouvé ! Infection Vundo possible non traitée par cet outil ! *** Analyse terminée le sam. 03/01/2009 à 13:24:09,18 *** Désinfection Navilog : LUClean Navipromo version 3.7.1 commencé le sam. 03/01/2009 à 14:35:13,14 Outil exécuté depuis C:\Program Files\navilog1 Mise à jour le 02.01.2009 à 19h00 par IL-MAFIOSO Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : AMD Athlon 64 Processor 3700+ ) BIOS : Phoenix - Award BIOS v6.00PG USER : Gaming ( Administrator ) BOOT : Normal boot Antivirus : Avira AntiVir PersonalEdition Classic 8.0.1.30 (Activated) Firewall : Lavasoft Personal Firewall 3.0 (Activated) C:\ (Local Disk) - NTFS - Total:180 Go (Free:72 Go) D:\ (Local Disk) - FAT32 - Total:5 Go (Free:2 Go) E:\ (CD or DVD) F:\ (CD or DVD) G:\ (CD or DVD) H:\ (CD or DVD) N:\ (USB) - FAT - Total:483 Mo (Free:0 Go) O:\ (USB) P:\ (USB) S:\ (USB) Mode suppression automatique avec prise en charge résultats Catchme et GNS Nettoyage exécuté au redémarrage de l'ordinateur *** fsbl1.txt non trouvé *** (Assurez-vous que Catchme n'avait rien trouvé lors de la recherche) *** Suppression avec sauvegardes résultats GenericNaviSearch *** * Suppression dans "C:\WINDOWS\System32" * * Suppression dans "C:\Documents and Settings\Gaming\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\ADMINI~1.EIN\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\ADMINI~1.000\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\ADMINI~1.001\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\HP_PRO~1\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\Jean\locals~1\applic~1" * *** Suppression dossiers dans "C:\WINDOWS" *** *** Suppression dossiers dans "C:\Program Files" *** *** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" *** *** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1" *** *** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\Gaming\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1.EIN\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1.000\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1.001\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\HP_PRO~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\INVIT~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\Jean\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\PROPRI~1\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\Gaming\locals~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1.EIN\locals~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1.000\locals~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1.001\locals~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\HP_PRO~1\locals~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\Jean\locals~1\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\Gaming\menudm~1\progra~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1.001\menudm~1\progra~1" *** *** Suppression dossiers dans "C:\DOCUME~1\HP_PRO~1\menudm~1\progra~1" *** *** Suppression dossiers dans "C:\DOCUME~1\INVIT~1\menudm~1\progra~1" *** *** Suppression dossiers dans "C:\DOCUME~1\Jean\menudm~1\progra~1" *** *** Suppression dossiers dans "C:\DOCUME~1\PROPRI~1\menudm~1\progra~1" *** *** Suppression fichiers *** C:\WINDOWS\system32\nvs2.inf supprimé ! *** Suppression fichiers temporaires *** Nettoyage contenu C:\WINDOWS\Temp effectué ! Nettoyage contenu C:\Documents and Settings\Gaming\locals~1\Temp effectué ! *** Traitement Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Suppression avec sauvegardes nouveaux fichiers Instant Access : 2)Recherche, création sauvegardes et suppression Heuristique : * Dans "C:\WINDOWS\system32" * * Dans "C:\Documents and Settings\Gaming\locals~1\applic~1" * * Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" * * Dans "C:\DOCUME~1\ADMINI~1.EIN\locals~1\applic~1" * * Dans "C:\DOCUME~1\ADMINI~1.000\locals~1\applic~1" * * Dans "C:\DOCUME~1\ADMINI~1.001\locals~1\applic~1" * * Dans "C:\DOCUME~1\HP_PRO~1\locals~1\applic~1" * * Dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" * * Dans "C:\DOCUME~1\Jean\locals~1\applic~1" * *** Sauvegarde du Registre vers dossier Safebackup *** sauvegarde du Registre réalisée avec succès ! *** Nettoyage Registre *** Nettoyage Registre Ok *** Certificats *** Certificat Egroup supprimé ! Certificat Electronic-Group supprimé ! Certificat Montorgueil absent ! Certificat OOO-Favorit supprimé ! Certificat Sunny-Day-Design-Ltdt absent ! *** Recherche autres dossiers et fichiers connus *** C:\WINDOWS\system32\HRqBIkkj.ini2 trouvé ! Infection Vundo possible non traitée par cet outil ! C:\WINDOWS\system32\Nnnmmnmp.ini2 trouvé ! Infection Vundo possible non traitée par cet outil ! C:\WINDOWS\system32\OpAdNUtv.ini2 trouvé ! Infection Vundo possible non traitée par cet outil ! *** Nettoyage terminé le sam. 03/01/2009 à 16:12:56,48 *** OTMoveIT 3 : ========== PROCESSES ========== Process explorer.exe killed successfully. Unable to kill process: rlvknlg.exe Unable to kill process: SOUNDMAN.EXE Unable to kill process: HPWuSchd2.exe Unable to kill process: mDNSResponder.exe ========== FILES ========== File/Folder c:\windows\system32\rlvknlg.exe not found. File/Folder C:\WINDOWS\SOUNDMAN.EXE not found. File/Folder C:\Program Files\HP\HP Software Update\HPWuSchd2.exe not found. File/Folder C:\Program Files\Bonjour\mDNSResponder.exe not found. ========== REGISTRY ========== Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\RelevantKnowledge not found. ========== COMMANDS ========== File delete failed. C:\DOCUME~1\Gaming\LOCALS~1\Temp\etilqs_z2Pkr9pOvRJvnA3BlmZE scheduled to be deleted on reboot. File delete failed. C:\DOCUME~1\Gaming\LOCALS~1\Temp\hpodvd09.log scheduled to be deleted on reboot. File delete failed. C:\DOCUME~1\Gaming\LOCALS~1\Temp\hpqtra000.log scheduled to be deleted on reboot. File delete failed. C:\DOCUME~1\Gaming\LOCALS~1\Temp\_hphtra07.log scheduled to be deleted on reboot. User's Temp folder emptied. User's Temporary Internet Files folder emptied. User's Internet Explorer cache folder emptied. Local Service Temp folder emptied. File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot. Local Service Temporary Internet Files folder emptied. File delete failed. C:\WINDOWS\temp\HPSLPS021.log scheduled to be deleted on reboot. File delete failed. C:\WINDOWS\temp\JET359.tmp scheduled to be deleted on reboot. File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_334.dat scheduled to be deleted on reboot. File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_f4.dat scheduled to be deleted on reboot. Windows Temp folder emptied. Java cache emptied. File delete failed. C:\Documents and Settings\Gaming\Local Settings\Application Data\Mozilla\Firefox\Profiles\4z9xbqsn.default\Cache\_CACHE_001_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Gaming\Local Settings\Application Data\Mozilla\Firefox\Profiles\4z9xbqsn.default\Cache\_CACHE_002_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Gaming\Local Settings\Application Data\Mozilla\Firefox\Profiles\4z9xbqsn.default\Cache\_CACHE_003_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Gaming\Local Settings\Application Data\Mozilla\Firefox\Profiles\4z9xbqsn.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Gaming\Local Settings\Application Data\Mozilla\Firefox\Profiles\4z9xbqsn.default\urlclassifier3.sqlite scheduled to be deleted on reboot. FireFox cache emptied. Temp folders emptied. Explorer started successfully OTMoveIt3 by OldTimer - Version 1.0.7.2 log created on 01042009_141417 Files moved on Reboot... File C:\DOCUME~1\Gaming\LOCALS~1\Temp\etilqs_z2Pkr9pOvRJvnA3BlmZE not found! C:\DOCUME~1\Gaming\LOCALS~1\Temp\hpodvd09.log moved successfully. C:\DOCUME~1\Gaming\LOCALS~1\Temp\hpqtra000.log moved successfully. C:\DOCUME~1\Gaming\LOCALS~1\Temp\_hphtra07.log moved successfully. File move failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be moved on reboot. C:\WINDOWS\temp\HPSLPS021.log moved successfully. File C:\WINDOWS\temp\JET359.tmp not found! C:\WINDOWS\temp\Perflib_Perfdata_334.dat moved successfully. C:\WINDOWS\temp\Perflib_Perfdata_f4.dat moved successfully. C:\Documents and Settings\Gaming\Local Settings\Application Data\Mozilla\Firefox\Profiles\4z9xbqsn.default\Cache\_CACHE_001_ moved successfully. C:\Documents and Settings\Gaming\Local Settings\Application Data\Mozilla\Firefox\Profiles\4z9xbqsn.default\Cache\_CACHE_002_ moved successfully. C:\Documents and Settings\Gaming\Local Settings\Application Data\Mozilla\Firefox\Profiles\4z9xbqsn.default\Cache\_CACHE_003_ moved successfully. C:\Documents and Settings\Gaming\Local Settings\Application Data\Mozilla\Firefox\Profiles\4z9xbqsn.default\Cache\_CACHE_MAP_ moved successfully. C:\Documents and Settings\Gaming\Local Settings\Application Data\Mozilla\Firefox\Profiles\4z9xbqsn.default\urlclassifier3.sqlite moved successfully. Rapport HijackThis : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:28:50, on 4/01/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16762) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\PROGRA~1\FICHIE~1\Stardock\SDMCP.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Lavasoft\Personal Firewall\lpfw.exe C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\NTR global\NTRconnect\NTRconnect.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\oodag.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\TUProgSt.exe C:\WINDOWS\system32\vmnat.exe C:\Program Files\VMware\VMware Workstation\vmware-authd.exe C:\WINDOWS\system32\vmnetdhcp.exe C:\Program Files\TortoiseSVN\bin\TSVNCache.exe C:\windows\system\hpsysdrv.exe C:\Program Files\Unlocker\UnlockerAssistant.exe C:\HP\KBD\KBD.EXE C:\Program Files\DNA\btdna.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\system32\msiexec.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe K:\HiJackThis.exe C:\WINDOWS\notepad.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://as.starware.com/dp/search?x=wKX1ILE...USNTLEl4Y4Q4w== R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - Default URLSearchHook is missing O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file) O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: IeMonitorBho Class - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - (no file) O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: WinAVI FLVSense - {E8DF67A1-B618-4F3F-9E7C-CBE175ADEF5B} - C:\Program Files\WinAVI FLV Converter\FLVTune.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [unlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" -H O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount O4 - HKCU\..\Run: [bitTorrent DNA] "C:\Program Files\DNA\btdna.exe" O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - Startup: Raccourci vers avgnt.lnk = C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: &Tout télécharger avec FlashGet - C:\Program Files\FlashGet\jc_all.htm O8 - Extra context menu item: &Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Pierre-Louis.EINSTEIN\Menu Démarrer\Programmes\IMVU\Run IMVU.lnk (file missing) O9 - Extra button: Sélection intelligente HP - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O9 - Extra button: WinAVI FLV Manager - {DE365254-2F9B-4908-9E3A-7AAA6EC90BCC} - C:\Program Files\WinAVI FLV Converter\FLVTune.dll O9 - Extra 'Tools' menuitem: WinAVI FLV Manager - {DE365254-2F9B-4908-9E3A-7AAA6EC90BCC} - C:\Program Files\WinAVI FLV Converter\FLVTune.dll O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (file missing) O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (file missing) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: (no name) - cmdmapping - (no file) (HKCU) O10 - Unknown file in Winsock LSP: c:\program files\vmware\vmware workstation\vsocklib.dll O10 - Unknown file in Winsock LSP: c:\program files\vmware\vmware workstation\vsocklib.dll O15 - Trusted Zone: http://asia.msi.com.tw O15 - Trusted Zone: http://global.msi.com.tw O15 - Trusted Zone: http://www.msi.com.tw O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/200612...ex/qtplugin.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {48884C41-EFAC-433D-958A-9FADAC41408E} (EGamesPlugin Class) - https://www.e-games.com.my/com/EGamesPlugin.cab O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - http://catalog.update.microsoft.com/v7/sit...b?1222973199453 O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {5F5F9FB8-878E-4455-95E0-F64B2314288A} (ijjiPlugin2 Class) - http://gamedownload.ijjimax.com/gamedownlo...Plugin11USA.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1150997827718 O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.com/cabs/acclaim_v4.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://v5.windowsupdate.microsoft.com/micr...b?1150997649140 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} - http://www.mypix.com/be/fr/importer/ImageUploader4.cab O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} (WebSDev Control) - http://liveupdate.msi.com.tw/autobios/LOnline/install.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - http://messenger.zone.msn.com/binary/ZIntro.cab53083.cab O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://bmm.imgag.com/imgag/cp/install/crusher-bef.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {E6ACF817-0A85-4EBE-9F0A-096C6488CFEA} - https://www.ntrconnect.com/main/mod/setup/n...tivex118_24.cab O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{FFDF520C-4E39-4EB9-9C92-B39F49517F43}: NameServer = 195.238.2.21,195.238.2.22 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O20 - Winlogon Notify: awtustq - awtustq.dll (file missing) O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing) O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Lavasoft Personal Firewall Service (LavasoftFirewall) - Agnitum Ltd. - C:\Program Files\Lavasoft\Personal Firewall\lpfw.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe O23 - Service: NTRconnect (ntrconnect) - Net Transmit & Receive - C:\Program Files\NTR global\NTRconnect\NTRconnect.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe O23 - Service: VMware Agent Service (ufad-ws60) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-ufad.exe O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\WINDOWS\system32\vmnetdhcp.exe O23 - Service: VMware NAT Service - VMware, Inc. - C:\WINDOWS\system32\vmnat.exe -- End of file - 13744 bytes Dans le rapport HJT, ne devrais-je pas cocher les lignes suivantes? O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file) (J'utilise pas la Yahoo! Toolbar) O2 - BHO: IeMonitorBho Class - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - (no file) (Je ne vois pas c'est quoi...) O2 - BHO: WinAVI FLVSense - {E8DF67A1-B618-4F3F-9E7C-CBE175ADEF5B} - C:\Program Files\WinAVI FLV Converter\FLVTune.dll (J'utilise rarement WinAVI FLV Converter...) -
FPS bas - Log HijackThis
ChaotiCc` a répondu à un(e) sujet de ChaotiCc` dans Analyses et éradication malwares
Y'a eu un petit problème avec OTMoveIT3... Je pense avoir trouvé le problème. Le programme a freezé à la ligne HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]. Vu la syntaxe des autres commandes, je me suis dit qu'il manquait un crochet au début. Donc la commande finale serait [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]... Ai-je raison? Avant le plantage, il a réussi à killer seulement "explorer.exe" et a reussi a tout déplacer sauf "rlvknlg.exe". Merci de ton aide. -
FPS bas - Log HijackThis
ChaotiCc` a répondu à un(e) sujet de ChaotiCc` dans Analyses et éradication malwares
Salut, le scan avance lentement mais surement. J'avais oublié de dire un truc... Vundo est déjà dans la quarantaine de MBAM, il l'avait déjà viré une fois mais apparemment il est redétecté :/ Merci de ton aide, ChaotiCc -----EDIT----- C'est officiel, il a trouvé une infection -----EDIT 2----- Je ne sais pas ce qu'il se passe mais MBAM bloque sur un .doc qui ne contient que du texte :/ -
FPS bas - Log HijackThis
ChaotiCc` a répondu à un(e) sujet de ChaotiCc` dans Analyses et éradication malwares
Salut, je sais que je vais encore passer pour un impatient mais y'a rien que je puisse faire pour que le scan aille plus vite? Parce que 14h de scan pour la moitié de mon PC c'est chaud quand même... Je me dis que je devrais peut-être faire mon scan en mode sans échec. Ai-je raison? Merci de ton aide! -
FPS bas - Log HijackThis
ChaotiCc` a répondu à un(e) sujet de ChaotiCc` dans Analyses et éradication malwares
En ce qui concerne la grande quantité de cracks, winaircrack et les autres étant pour tester mon réseau et prouver à mon père que sa clé WEP ne servait à rien. Depuis on est sous sécurité par MAC... Maintenant je l'ai viré de mon PC, et j'ai aussi viré mes applications ipod (étant donné que je me le suis fait voler :/). Si je refais un scan maintenant, la sections Cracks sera quasi vierge -----EDIT----- Je défragmente avant de faire un scan (DD fragmenté à 25%), ca ira sans doute plus vite après... -----EDIT 2----- Défragmentation terminée depuis un petit temps maintenant (3,71% de fragmentation). Scan avec MBAM en cours depuis 11 heures 45 minutes, il en est à 112.000 fichiers sur les 285.000 (j'ai désinstallé plein de trucs inutiles sur mon PC). -----EDIT 3----- 132.486 fichiers, 14 heures 20 minutes 56 secondes. Toujours pas d'élément infecté. -
FPS bas - Log HijackThis
ChaotiCc` a répondu à un(e) sujet de ChaotiCc` dans Analyses et éradication malwares
Mon père a redémarré le PC ce matin pour installer l'imprimante qui foirait Je lui avais pourtant dis que je scannais... J'ai redémarré un scan maintenant, et je me demande comment faire pour que ca aille plus vite. Normalement j'utilise Ad-Aware 2008 qui fonctionne très bien, et qui scanne beaucoup plus vite. Le scan allait encore relativement vite (24.888 fichiers en 11 minutes, 43 secondes). Il y a des endroits où il va vite, d'autres où il est très lent... (Dans C:\RECYCLER, c'est monstrueux comme il est lent...) Maintenant, il est justement arrivé dans C:\RECYCLER et il m'a fait 30.030 fichier en exactement 15 minutes. Il est donc passé de 2145 fichier/min à 2002 fichier/min en moyenne. Etant donné la lenteur, n'y a-t-il pas moyen de scanner par parties? Genre d'abord le dossier Windows, puis Documents and Settings, puis le dossier Program Files et puis ce qu'il reste. Ca me faciliterait la tâche parce que la je suis parti pour minimum 24h de scan sachant que le nombre de fichiers sur mon PC s'élève à 350.000. Me voila après avoir écrit tout ca à 33318 fichiers en 24 minutes, 30 secondes toujours dans ce dossier qu'est C:\RECYCLER. Merci de votre aide -
FPS bas - Log HijackThis
ChaotiCc` a répondu à un(e) sujet de ChaotiCc` dans Analyses et éradication malwares
Bonjour, je poste déjà mes rapports ToolBar-S&D... J'éditerai pour celui de MBAM, étant donné qu'il met un peu de temps^^ Le 1er: -----------\\ ToolBar S&D 1.2.8 XP/Vista Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : AMD Athlon 64 Processor 3700+ ) BIOS : Phoenix - Award BIOS v6.00PG USER : Gaming ( Administrator ) BOOT : Normal boot Antivirus : Avira AntiVir PersonalEdition Classic 8.0.1.30 (Activated) Firewall : Lavasoft Personal Firewall 3.0 (Activated) C:\ (Local Disk) - NTFS - Total:180 Go (Free:55 Go) D:\ (Local Disk) - FAT32 - Total:5 Go (Free:2 Go) E:\ (CD or DVD) F:\ (CD or DVD) G:\ (CD or DVD) J:\ (CD or DVD) K:\ (Local Disk) - NTFS - Total:931 Go (Free:837 Go) N:\ (USB) O:\ (USB) P:\ (USB) S:\ (USB) Z:\ (Network Disk) "C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 ) Option : [1] ( lun. 29/12/2008|15:23 ) -----------\\ Recherche de Fichiers / Dossiers ... C:\Program Files\FunWebProducts C:\Program Files\FunWebProducts\ScreenSaver C:\Program Files\FunWebProducts\Shared C:\Program Files\FunWebProducts\ScreenSaver\Cache C:\Program Files\FunWebProducts\ScreenSaver\Images C:\Program Files\FunWebProducts\ScreenSaver\Cache\00191478 C:\Program Files\FunWebProducts\ScreenSaver\Cache\00193723 C:\Program Files\FunWebProducts\ScreenSaver\Cache\files.ini C:\Program Files\FunWebProducts\ScreenSaver\Images\0018FA0B.urr C:\Program Files\FunWebProducts\ScreenSaver\Images\001936D5.dat C:\Program Files\FunWebProducts\ScreenSaver\Images\00194C90.dat C:\Program Files\FunWebProducts\ScreenSaver\Images\00895950.urr C:\Program Files\FunWebProducts\ScreenSaver\Images\wrkparam.lst C:\Program Files\FunWebProducts\Shared\002E468E.dat C:\Program Files\FunWebProducts\Shared\0089B991.dat C:\Program Files\FunWebProducts\Shared\Cache C:\Program Files\FunWebProducts\Shared\Cache\CursorManiaBtn.html C:\Program Files\FunWebProducts\Shared\Cache\FunBuddyIconBtn.html C:\Program Files\FunWebProducts\Shared\Cache\MailStampBtn.html C:\Program Files\FunWebProducts\Shared\Cache\MyFunCardsIMBtn.html C:\Program Files\FunWebProducts\Shared\Cache\MyStationeryBtn.html C:\Program Files\FunWebProducts\Shared\Cache\SmileyCentralBtn.html C:\Program Files\MyWebSearch C:\Program Files\MyWebSearch\bar C:\Program Files\MyWebSearch\SrchAstt C:\Program Files\MyWebSearch\bar\1.bin C:\Program Files\MyWebSearch\bar\2.bin C:\Program Files\MyWebSearch\bar\3.bin C:\Program Files\MyWebSearch\bar\Cache C:\Program Files\MyWebSearch\bar\Game C:\Program Files\MyWebSearch\bar\History C:\Program Files\MyWebSearch\bar\Settings C:\Program Files\MyWebSearch\bar\1.bin\MWSOESTB.DLL C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL C:\Program Files\MyWebSearch\bar\3.bin\F3BKGERR.JPG C:\Program Files\MyWebSearch\bar\3.bin\F3SPACER.WMV C:\Program Files\MyWebSearch\bar\3.bin\F3WALLPP.DAT C:\Program Files\MyWebSearch\bar\3.bin\M3FFXTBR.JAR C:\Program Files\MyWebSearch\bar\3.bin\M3FFXTBR.MANIFEST C:\Program Files\MyWebSearch\bar\3.bin\M3NTSTBR.JAR C:\Program Files\MyWebSearch\bar\3.bin\MWSBAR.DLL C:\Program Files\MyWebSearch\bar\3.bin\MWSOEPLG.DLL C:\Program Files\MyWebSearch\bar\3.bin\MWSOESTB.DLL C:\Program Files\MyWebSearch\bar\3.bin\NPMYWEBS.DLL C:\Program Files\MyWebSearch\bar\Cache\002C6470 C:\Program Files\MyWebSearch\bar\Cache\002D5A98 C:\Program Files\MyWebSearch\bar\Cache\002E6C08.bin C:\Program Files\MyWebSearch\bar\Cache\002EA6A0.bin C:\Program Files\MyWebSearch\bar\Cache\002ED198.bin C:\Program Files\MyWebSearch\bar\Cache\0030A270.bin C:\Program Files\MyWebSearch\bar\Cache\0044E295.bin C:\Program Files\MyWebSearch\bar\Cache\0044E44A.bin C:\Program Files\MyWebSearch\bar\Cache\0044E554.bin C:\Program Files\MyWebSearch\bar\Cache\0044E803.bin C:\Program Files\MyWebSearch\bar\Cache\00CEC113.bin C:\Program Files\MyWebSearch\bar\Cache\00CEC336.bin C:\Program Files\MyWebSearch\bar\Cache\00CEC6EF.bin C:\Program Files\MyWebSearch\bar\Cache\0220B5AD C:\Program Files\MyWebSearch\bar\Cache\files.ini C:\Program Files\MyWebSearch\bar\Game\CHECKERS.F3S C:\Program Files\MyWebSearch\bar\Game\CHESS.F3S C:\Program Files\MyWebSearch\bar\Game\REVERSI.F3S C:\Program Files\MyWebSearch\bar\History\search2 C:\Program Files\MyWebSearch\bar\Settings\prevcfg2.htm C:\Program Files\MyWebSearch\bar\Settings\s_pid.dat C:\Program Files\MyWebSearch\SrchAstt\1.bin C:\Program Files\MyWebSearch\SrchAstt\2.bin C:\Program Files\MyWebSearch\SrchAstt\3.bin C:\Program Files\PCHealthCenter C:\Program Files\PCHealthCenter\0.gif C:\Program Files\PCHealthCenter\1.gif C:\Program Files\PCHealthCenter\1.ico C:\Program Files\PCHealthCenter\2.gif C:\Program Files\PCHealthCenter\2.ico C:\Program Files\PCHealthCenter\3.gif C:\Program Files\PCHealthCenter\sc.html C:\WINDOWS\iun6002.exe C:\Program Files\MSN Messenger\riched20.dll -----------\\ Extensions (Gaming) - {29c4afe1-db19-4298-8785-fcc94d1d6c1d} => splitbrowser (Gaming) - {29c4afe1-db19-4298-8785-fcc94d1d6c1d} => splitbrowser (Gaming) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar (Gaming) - {3cd775d5-7299-4335-94eb-5e82d0e61b22} => mediagen (Gaming) - {54BB9F3F-07E5-486c-9B39-C7398B99391C} => textlink (Gaming) - {89f8dde0-010a-11da-8cd6-0800200c9a66} => extuninstallapi (Gaming) - {89f8dde0-010a-11da-8cd6-0800200c9a66} => ym_notifier (Gaming) - {89f8dde0-010a-11da-8cd6-0800200c9a66} => extuninstallapi (Gaming) - {89f8dde0-010a-11da-8cd6-0800200c9a66} => ym_notifier (Gaming) - {987311C6-B504-4aa2-90BF-60CC49808D42} => bugmenot (Gaming) - {b1d89840-39fe-11db-a98b-0800200c9a66} => jvf (Gaming) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper (Gaming) - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} => adblockplus (Gaming) - {daf44bf7-a45e-4450-979c-91cf07434c3d} => extendedstatusbar (Gaming) - {DDC359D1-844A-42a7-9AA1-88A850A938A8} => chrome (Gaming) - {DDC359D1-844A-42a7-9AA1-88A850A938A8} => chrome (Gaming) - {e4a8a97b-f2ed-450b-b12d-ee082ba24781} => greasemonkey (Gaming) - {f592709f-ff4a-4862-b659-4afabda56312} => mininova (HP_Propri‚taire) - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} => adblockplus (Jean) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper (Jean) - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} => adblockplus -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896" "Url"="http://go.microsoft.com/fwlink/?LinkID=68928"'>http://go.microsoft.com/fwlink/?LinkID=68928" "Url"="http://go.microsoft.com/fwlink/?LinkID=44406"'>http://go.microsoft.com/fwlink/?LinkID=44406" "Url"="http://go.microsoft.com/fwlink/?LinkID=68929"'>http://go.microsoft.com/fwlink/?LinkID=68929" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"'>http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome" "Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"'>http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"'>http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"'>http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home" --------------------\\ Recherche d'autres infections C:\WINDOWS\System32\nvs2.inf ==> EGDACCESS <== C:\WINDOWS\system32\HRqBIkkj.ini C:\WINDOWS\system32\HRqBIkkj.ini2 C:\WINDOWS\system32\Nnnmmnmp.ini C:\WINDOWS\system32\Nnnmmnmp.ini2 C:\WINDOWS\system32\OpAdNUtv.ini C:\WINDOWS\system32\OpAdNUtv.ini2 ==> VUNDO <== --------------------\\ Cracks & Keygens .. C:\DOCUME~1\Gaming\Application Data\BitTorrent\EA.Games.Generic.Multi.Keygen.v140-FFF.torrent C:\DOCUME~1\Gaming\Application Data\BitTorrent\Photoshop CS4 (Keygen and tutorial).rar.torrent C:\DOCUME~1\Gaming\Application Data\BitTorrent\Photoshop CS4 Extended (Activation Tutorial + Keygens + Screenshots).rar.torrent C:\DOCUME~1\Gaming\Application Data\BitTorrent\WinRAR 3.71 With Keygen CORE.,.zip.torrent C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\airmon-ng C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\AUTHORS C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\ChangeLog C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\evalrev C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\INSTALLING C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\LICENSE C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\Makefile C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\Makefile.airpcap C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\Makefile.cygwin C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\Makefile.NetBSD C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\Makefile.OpenBSD C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\Makefile.osx C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\Makefile.other C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\README C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\test C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\VERSION C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\Aircrack-ng GUI.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\airdecap-ng.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\aireplay-ng.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\airodump-ng-airpcap.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\Comment d‚crypter une cl‚s WEP sous Windows - LaPageDuJour.URL C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\cygwin1.dll C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\Drivers C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\ivstools.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\kstats.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\makeivs.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\msvcr70.dll C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\packetforge-ng.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\PEEK.DLL C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\PEEK5.SYS C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\wpcap.dll C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\wzcook.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\Drivers\ar5211.sys C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\Drivers\net5211.inf C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\aircrack-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\aircrack-ng.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\aircrack-ptw-lib.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\aircrack-ptw-lib.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airdecap-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\aireplay-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airtun-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\common.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\crc.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\crctable.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\crypto.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\crypto.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\ivstools.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\kstats.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\packetforge-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\pcap.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\sha1-mmx.S C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\uniqueiv.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\version.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\airodump-ng-airpcap.dsp C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\airodump-ng-airpcap.dsw C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\airodump-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\airodump-ng.dsp C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\airodump-ng.ico C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\airodump-ng.rc C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\capture.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\capture_airpcap.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\console.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\console.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\INSTALLING.txt C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\pcap.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\resource.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\timeval.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\uniqueiv.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\version.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\airodump-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\airodump-ng.dsp C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\airodump-ng.dsw C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\airodump-ng.ico C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\airodump-ng.rc C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\capture.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\capture.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\console.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\console.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\pcap.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\resource.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\timeval.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\uniqueiv.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\version.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng.sln C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Aircrack-ng.csproj C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Aircrack-ng.csproj.user C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Form1.cs C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Form1.Designer.cs C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Form1.resx C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Program.cs C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Properties C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Properties\AssemblyInfo.cs C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Properties\Resources.Designer.cs C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Properties\Resources.resx C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Properties\Settings.Designer.cs C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Properties\Settings.settings C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\console.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\console.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\resource.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\wzcook.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\wzcook.dsp C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\wzcook.dsw C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\wzcook.ico C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\wzcook.rc C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\test\makeivs.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\test\password.lst C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\test\wep.open.system.authentication.cap C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\test\wep.shared.key.authentication.cap C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\test\wpa.cap C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\test\wpa2.eapol.cap C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Guide de piratage d'un reseau WIFI domestique (ou commentexploserune clef WEP) sous Windows.pdf C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\etherchange.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\ethereal-setup-0.99.0.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\iperf.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WlanDrv C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros30112 C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros421 C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\ModŠle.txt C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\WLAN_ATHEROS_V5.0.0.107_XP.EXE C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros30112\ar5211.sys C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros30112\net5211.inf C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros30112\readme.htm C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros421\ar5211.sys C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros421\net5211.inf C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros421\readme.htm C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\airdecap.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\airodump.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\cygwin1.dll C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Lang C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\logo.jpg C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\MSVCR70.DLL C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\PEEK.DLL C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\PEEK5.SYS C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\README.txt C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\tayst.cap C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\tayst.txt C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Temp C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\test.cap C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\test.txt C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Updater C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Updater.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Updater.ini C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\WinAircrack.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\WinAircrack.ini C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\wzcook.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Lang\english.ini C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Lang\francais.ini C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Lang\spanish.ini C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Lang\system.ini.txt C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Temp\check.upd C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Temp\Download.tmp C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Updater\Data.upd C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WlanDrv\WlanDrv.exe C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\Crack.7z C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\EA Games Keygen.exe C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\EA Games Keygen.rar C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\KeyGens.zip C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\Multikeygen (9).exe C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\sims2.mdf C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\sims2.mds C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\Sony Multikeygen.exe C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\TSBin C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\vtl-bf2k.exe C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\TSBin\SD4 Hide.exe C:\DOCUME~1\Gaming\Bureau\Downloads\aircrack-ng-0.9.3-win.zip C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2 C:\DOCUME~1\Gaming\Bureau\Downloads\crack1_brushes_by_hawksmont.zip C:\DOCUME~1\Gaming\Bureau\Downloads\crack2_brushes_by_hawksmont.zip C:\DOCUME~1\Gaming\Bureau\Downloads\crack3_brushes_by_hawksmont.zip C:\DOCUME~1\Gaming\Bureau\Downloads\WinAircrackPack_by_sheppard.rar C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\AirPaint-v1.0.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\BattleAtSea.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Bejeweled 2.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Bejeweled_2.rar C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Belote_Expert_Online_1.2.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Blackjack 21.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Bomberman.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Bomberman.rar C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Dynolicious.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\iJezzball.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\iJezzball.rar C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\iNetworkTest.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\IQ_boost.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Martys.Magic.Card.v1.0.0-VNMagicTeam.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\MobilFinder_1.0.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\MochaVNC.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\MotoRacer.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\MyWeather.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Poker.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\SunCompass.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\VNC.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\X-Plane_PhYzIcX.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\accelerate.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\arrow_dark.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\arrow_in_dark.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\arrow_in_light.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\arrow_light.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\arrow_out_dark.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\arrow_out_light.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\beep.wav C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\calibrating.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\calibration.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\calibration_bg.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\cal_facedown.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\cal_faceup.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\cal_success.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\CodeResources C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\Default.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dist_bargraph_03.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dist_bargraph_06.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dist_bargraph_09.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dist_bargraph_12.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dist_bargraph_15.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dist_bargraph_18.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dump.bin C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dynolicious C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dynolicious_icon.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dyno_instructions.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dyno_tool_ride.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dyno_tool_skid.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dyno_tool_slip.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dyno_tool_stopwatch.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dyno_tool_wrench.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\go_60.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\grayButton.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\Info.plist C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\MainWindow.nib C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\mini.JPG C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\mini2.jpg C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\PkgInfo C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\please_wait.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\press_start.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\ResourceRules.plist C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\test_complete.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\thisendup2.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\thisendup3.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\tracktest_bg1.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\tracktest_icon.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\van.jpg C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\_CodeSignature C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\_CodeSignature\CodeResources C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\howto.txt C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Library C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\alert.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\cal.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\clockdemo.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\configureIntelliScreen C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\Default.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\icon.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\Info.plist C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\IntelliDialIcon.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\intelliDialLogo.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\intelliLogo.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\IntelliScreenConfig C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\intelliSpring C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\intelliUnSpring C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\license.txt C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\lock.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\missingperson.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\news.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\refresh.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\skin.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\sports.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\weatherUnderground.gif C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Library\Intelliborn C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Library\Intelliborn\intelliScreen C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\intelliConfig.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\intelliLayout.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\intelliweather.xmlColorado Springs C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\intelliweather.xmlState College,PA C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\license.key C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_de.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_en.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_es.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_fr.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_it.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_ru.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_sw.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_Zh.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Blend C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Blue C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Clear C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default_No_Dim C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Green C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Purple C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Red C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\TestDemoSkin C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Blend\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Blend\MainBGImage.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Blue\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Clear\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default\bgbg2.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default\MainBGImage.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default_No_Dim\bgbg2.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default_No_Dim\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default_No_Dim\MainBGImage.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Green\bgimagegreen.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Green\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Purple\bgimagepurple.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Purple\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Red\bgimagered.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Red\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\TestDemoSkin\bgimage.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\TestDemoSkin\bgimagegreen.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\TestDemoSkin\bgimagepurple.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\TestDemoSkin\bgimagered.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\TestDemoSkin\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\TestDemoSkin\MainBGImage.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\AirPaint-v1.0.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\BikeOrDie.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\BrainHack-v1.1.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\Chord_Pro-v1.3.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\Clock.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\CS2-v1.10.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\Fieldrunners_v1_1_.1.1.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\iChuck_(v1.1).ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\Jaadu VNC (v1.2).ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\jNetUtil-v1.1.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\mindfreek.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\MindWave-v2.0.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\RadioBox.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\Vision-v1.2.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\WifiTrak-v1.5.ipa C:\DOCUME~1\Gaming\Bureau\Photoshop Brushes\crack1_brushes_by_hawksmont.abr C:\DOCUME~1\Gaming\Bureau\Photoshop Brushes\crack2_brushes_by_hawksmont.abr C:\DOCUME~1\Gaming\Bureau\Photoshop Brushes\crack3_brushes_by_hawksmont.abr C:\DOCUME~1\Gaming\Bureau\Photoshop Brushes\IceCrackFBrushSet1.abr C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\airdecap.exe C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\airodump.exe C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\cygwin1.dll C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\fsdfsdf.cap C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\fsdfsdf.txt C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Lang C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\logo.jpg C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\MSVCR70.DLL C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\PEEK.DLL C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\PEEK5.SYS C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\README.txt C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Temp C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Thumbs.db C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\tuto WinAircrack.docx C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Updater C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\updater.bkp C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Updater.exe C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Updater.ini C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\visitez le site.url C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\WinAircrack.exe C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\WinAircrack.ini C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\wzcook.exe C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\ZbThumbnail.info C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Lang\english.ini C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Lang\francais.ini C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Lang\spanish.ini C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Lang\system.ini.txt C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Temp\check.upd C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Temp\Download.tmp C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Updater\Data.upd C:\DOCUME~1\Gaming\Mes documents\SA CRACK C:\DOCUME~1\Gaming\Mes documents\SA NON CRACK C:\DOCUME~1\Gaming\Mes documents\BitTorrent Downloads\Photoshop CS4 (Keygen and tutorial) C:\DOCUME~1\Gaming\Mes documents\BitTorrent Downloads\Photoshop CS4 (Keygen and tutorial).rar C:\DOCUME~1\Gaming\Mes documents\BitTorrent Downloads\Photoshop CS4 Extended (Activation Tutorial + Keygens + Screenshots).rar C:\DOCUME~1\Gaming\Mes documents\BitTorrent Downloads\Photoshop CS4 (Keygen and tutorial)\Keygen.exe C:\DOCUME~1\Gaming\Mes documents\BitTorrent Downloads\Photoshop CS4 (Keygen and tutorial)\README.txt C:\DOCUME~1\Gaming\Mes documents\SA CRACK\gta_sa.exe C:\DOCUME~1\Gaming\Mes documents\SA NON CRACK\gta_sa.exe 1 - "C:\ToolBar SD\TB_1.txt" - lun. 29/12/2008|15:35 - Option : [1] -----------\\ Fin du rapport a 15:35:43,84 Le second: -----------\\ ToolBar S&D 1.2.8 XP/Vista Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : AMD Athlon 64 Processor 3700+ ) BIOS : Phoenix - Award BIOS v6.00PG USER : Gaming ( Administrator ) BOOT : Normal boot Antivirus : Avira AntiVir PersonalEdition Classic 8.0.1.30 (Activated) Firewall : Lavasoft Personal Firewall 3.0 (Activated) C:\ (Local Disk) - NTFS - Total:180 Go (Free:55 Go) D:\ (Local Disk) - FAT32 - Total:5 Go (Free:2 Go) E:\ (CD or DVD) F:\ (CD or DVD) G:\ (CD or DVD) J:\ (CD or DVD) K:\ (Local Disk) - NTFS - Total:931 Go (Free:837 Go) N:\ (USB) O:\ (USB) P:\ (USB) S:\ (USB) Z:\ (Network Disk) "C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 ) Option : [2] ( lun. 29/12/2008|15:38 ) -----------\\ SUPPRESSION Supprime! - C:\Program Files\FunWebProducts\ScreenSaver Supprime! - C:\Program Files\FunWebProducts\Shared Supprime! - C:\Program Files\MyWebSearch\bar Supprime! - C:\Program Files\MyWebSearch\SrchAstt Supprime! - C:\Program Files\PCHealthCenter\0.gif Supprime! - C:\Program Files\PCHealthCenter\1.gif Supprime! - C:\Program Files\PCHealthCenter\1.ico Supprime! - C:\Program Files\PCHealthCenter\2.gif Supprime! - C:\Program Files\PCHealthCenter\2.ico Supprime! - C:\Program Files\PCHealthCenter\3.gif Supprime! - C:\Program Files\PCHealthCenter\sc.html Supprime! - C:\WINDOWS\iun6002.exe Supprime! - C:\Program Files\MSN Messenger\riched20.dll Supprime! - C:\Program Files\FunWebProducts Supprime! - C:\Program Files\MyWebSearch Supprime! - C:\Program Files\PCHealthCenter -----------\\ Recherche de Fichiers / Dossiers ... -----------\\ Extensions (Gaming) - {29c4afe1-db19-4298-8785-fcc94d1d6c1d} => splitbrowser (Gaming) - {29c4afe1-db19-4298-8785-fcc94d1d6c1d} => splitbrowser (Gaming) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar (Gaming) - {3cd775d5-7299-4335-94eb-5e82d0e61b22} => mediagen (Gaming) - {54BB9F3F-07E5-486c-9B39-C7398B99391C} => textlink (Gaming) - {89f8dde0-010a-11da-8cd6-0800200c9a66} => extuninstallapi (Gaming) - {89f8dde0-010a-11da-8cd6-0800200c9a66} => ym_notifier (Gaming) - {89f8dde0-010a-11da-8cd6-0800200c9a66} => extuninstallapi (Gaming) - {89f8dde0-010a-11da-8cd6-0800200c9a66} => ym_notifier (Gaming) - {987311C6-B504-4aa2-90BF-60CC49808D42} => bugmenot (Gaming) - {b1d89840-39fe-11db-a98b-0800200c9a66} => jvf (Gaming) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper (Gaming) - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} => adblockplus (Gaming) - {daf44bf7-a45e-4450-979c-91cf07434c3d} => extendedstatusbar (Gaming) - {DDC359D1-844A-42a7-9AA1-88A850A938A8} => chrome (Gaming) - {DDC359D1-844A-42a7-9AA1-88A850A938A8} => chrome (Gaming) - {e4a8a97b-f2ed-450b-b12d-ee082ba24781} => greasemonkey (Gaming) - {f592709f-ff4a-4862-b659-4afabda56312} => mininova (HP_Propri‚taire) - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} => adblockplus (Jean) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper (Jean) - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} => adblockplus -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Url"="http://go.microsoft.com/fwlink/?LinkID=68928" "Url"="http://go.microsoft.com/fwlink/?LinkID=44406" "Url"="http://go.microsoft.com/fwlink/?LinkID=68929" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome" "Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" "Start Page"="http://www.msn.com/" --------------------\\ Recherche d'autres infections C:\WINDOWS\System32\nvs2.inf ==> EGDACCESS <== C:\WINDOWS\system32\HRqBIkkj.ini C:\WINDOWS\system32\HRqBIkkj.ini2 C:\WINDOWS\system32\Nnnmmnmp.ini C:\WINDOWS\system32\Nnnmmnmp.ini2 C:\WINDOWS\system32\OpAdNUtv.ini C:\WINDOWS\system32\OpAdNUtv.ini2 ==> VUNDO <== --------------------\\ Cracks & Keygens .. C:\DOCUME~1\Gaming\Application Data\BitTorrent\EA.Games.Generic.Multi.Keygen.v140-FFF.torrent C:\DOCUME~1\Gaming\Application Data\BitTorrent\Photoshop CS4 (Keygen and tutorial).rar.torrent C:\DOCUME~1\Gaming\Application Data\BitTorrent\Photoshop CS4 Extended (Activation Tutorial + Keygens + Screenshots).rar.torrent C:\DOCUME~1\Gaming\Application Data\BitTorrent\WinRAR 3.71 With Keygen CORE.,.zip.torrent C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\airmon-ng C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\AUTHORS C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\ChangeLog C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\evalrev C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\INSTALLING C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\LICENSE C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\Makefile C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\Makefile.airpcap C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\Makefile.cygwin C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\Makefile.NetBSD C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\Makefile.OpenBSD C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\Makefile.osx C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\Makefile.other C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\README C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\test C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\VERSION C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\Aircrack-ng GUI.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\airdecap-ng.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\aireplay-ng.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\airodump-ng-airpcap.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\Comment d‚crypter une cl‚s WEP sous Windows - LaPageDuJour.URL C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\cygwin1.dll C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\Drivers C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\ivstools.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\kstats.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\makeivs.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\msvcr70.dll C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\packetforge-ng.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\PEEK.DLL C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\PEEK5.SYS C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\wpcap.dll C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\wzcook.exe C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\Drivers\ar5211.sys C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\bin\Drivers\net5211.inf C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\aircrack-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\aircrack-ng.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\aircrack-ptw-lib.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\aircrack-ptw-lib.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airdecap-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\aireplay-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airtun-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\common.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\crc.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\crctable.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\crypto.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\crypto.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\ivstools.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\kstats.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\packetforge-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\pcap.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\sha1-mmx.S C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\uniqueiv.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\version.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\airodump-ng-airpcap.dsp C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\airodump-ng-airpcap.dsw C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\airodump-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\airodump-ng.dsp C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\airodump-ng.ico C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\airodump-ng.rc C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\capture.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\capture_airpcap.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\console.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\console.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\INSTALLING.txt C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\pcap.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\resource.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\timeval.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\uniqueiv.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-airpcap\version.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\airodump-ng.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\airodump-ng.dsp C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\airodump-ng.dsw C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\airodump-ng.ico C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\airodump-ng.rc C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\capture.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\capture.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\console.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\console.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\pcap.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\resource.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\timeval.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\uniqueiv.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\airodump-ng-peek\version.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng.sln C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Aircrack-ng.csproj C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Aircrack-ng.csproj.user C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Form1.cs C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Form1.Designer.cs C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Form1.resx C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Program.cs C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Properties C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Properties\AssemblyInfo.cs C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Properties\Resources.Designer.cs C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Properties\Resources.resx C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Properties\Settings.Designer.cs C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\GUI\Aircrack-ng\Properties\Settings.settings C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\console.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\console.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\resource.h C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\wzcook.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\wzcook.dsp C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\wzcook.dsw C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\wzcook.ico C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\src\wzcook\wzcook.rc C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\test\makeivs.c C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\test\password.lst C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\test\wep.open.system.authentication.cap C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\test\wep.shared.key.authentication.cap C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\test\wpa.cap C:\DOCUME~1\Gaming\Bureau\aircrack-ng-0.9.3-win\test\wpa2.eapol.cap C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Guide de piratage d'un reseau WIFI domestique (ou commentexploserune clef WEP) sous Windows.pdf C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\etherchange.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\ethereal-setup-0.99.0.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\iperf.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WlanDrv C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros30112 C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros421 C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\ModŠle.txt C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\WLAN_ATHEROS_V5.0.0.107_XP.EXE C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros30112\ar5211.sys C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros30112\net5211.inf C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros30112\readme.htm C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros421\ar5211.sys C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros421\net5211.inf C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WildPacket\atheros421\readme.htm C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\airdecap.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\airodump.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\cygwin1.dll C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Lang C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\logo.jpg C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\MSVCR70.DLL C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\PEEK.DLL C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\PEEK5.SYS C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\README.txt C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\tayst.cap C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\tayst.txt C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Temp C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\test.cap C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\test.txt C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Updater C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Updater.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Updater.ini C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\WinAircrack.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\WinAircrack.ini C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\wzcook.exe C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Lang\english.ini C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Lang\francais.ini C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Lang\spanish.ini C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Lang\system.ini.txt C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Temp\check.upd C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Temp\Download.tmp C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\winaircrackpack\WinAircrackPack\WinAircrackPack\Updater\Data.upd C:\DOCUME~1\Gaming\Bureau\CrackWepWiFi\CrackWep\Tools\WlanDrv\WlanDrv.exe C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\Crack.7z C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\EA Games Keygen.exe C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\EA Games Keygen.rar C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\KeyGens.zip C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\Multikeygen (9).exe C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\sims2.mdf C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\sims2.mds C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\Sony Multikeygen.exe C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\TSBin C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\vtl-bf2k.exe C:\DOCUME~1\Gaming\Bureau\Dossiers\KeyGens\TSBin\SD4 Hide.exe C:\DOCUME~1\Gaming\Bureau\Downloads\aircrack-ng-0.9.3-win.zip C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2 C:\DOCUME~1\Gaming\Bureau\Downloads\crack1_brushes_by_hawksmont.zip C:\DOCUME~1\Gaming\Bureau\Downloads\crack2_brushes_by_hawksmont.zip C:\DOCUME~1\Gaming\Bureau\Downloads\crack3_brushes_by_hawksmont.zip C:\DOCUME~1\Gaming\Bureau\Downloads\WinAircrackPack_by_sheppard.rar C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\AirPaint-v1.0.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\BattleAtSea.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Bejeweled 2.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Bejeweled_2.rar C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Belote_Expert_Online_1.2.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Blackjack 21.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Bomberman.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Bomberman.rar C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Dynolicious.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\iJezzball.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\iJezzball.rar C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\iNetworkTest.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\IQ_boost.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Martys.Magic.Card.v1.0.0-VNMagicTeam.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\MobilFinder_1.0.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\MochaVNC.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\MotoRacer.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\MyWeather.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\Poker.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\SunCompass.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\VNC.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\X-Plane_PhYzIcX.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\accelerate.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\arrow_dark.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\arrow_in_dark.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\arrow_in_light.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\arrow_light.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\arrow_out_dark.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\arrow_out_light.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\beep.wav C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\calibrating.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\calibration.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\calibration_bg.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\cal_facedown.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\cal_faceup.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\cal_success.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\CodeResources C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\Default.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dist_bargraph_03.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dist_bargraph_06.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dist_bargraph_09.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dist_bargraph_12.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dist_bargraph_15.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dist_bargraph_18.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dump.bin C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dynolicious C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dynolicious_icon.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dyno_instructions.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dyno_tool_ride.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dyno_tool_skid.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dyno_tool_slip.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dyno_tool_stopwatch.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\dyno_tool_wrench.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\go_60.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\grayButton.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\Info.plist C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\MainWindow.nib C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\mini.JPG C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\mini2.jpg C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\PkgInfo C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\please_wait.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\press_start.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\ResourceRules.plist C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\test_complete.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\thisendup2.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\thisendup3.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\tracktest_bg1.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\tracktest_icon.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\van.jpg C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\_CodeSignature C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\dynolicious.app\_CodeSignature\CodeResources C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\howto.txt C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Library C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\alert.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\cal.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\clockdemo.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\configureIntelliScreen C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\Default.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\icon.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\Info.plist C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\IntelliDialIcon.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\intelliDialLogo.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\intelliLogo.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\IntelliScreenConfig C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\intelliSpring C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\intelliUnSpring C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\license.txt C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\lock.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\missingperson.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\news.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\refresh.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\skin.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\sports.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Applications\IntelliScreen.app\weatherUnderground.gif C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Library\Intelliborn C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\Library\Intelliborn\intelliScreen C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\intelliConfig.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\intelliLayout.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\intelliweather.xmlColorado Springs C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\intelliweather.xmlState College,PA C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\license.key C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_de.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_en.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_es.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_fr.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_it.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_ru.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_sw.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Localizable_Zh.strings C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Blend C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Blue C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Clear C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default_No_Dim C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Green C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Purple C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Red C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\TestDemoSkin C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Blend\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Blend\MainBGImage.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Blue\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Clear\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default\bgbg2.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default\MainBGImage.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default_No_Dim\bgbg2.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default_No_Dim\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Default_No_Dim\MainBGImage.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Green\bgimagegreen.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Green\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Purple\bgimagepurple.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Purple\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Red\bgimagered.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\Red\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\TestDemoSkin\bgimage.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\TestDemoSkin\bgimagegreen.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\TestDemoSkin\bgimagepurple.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\TestDemoSkin\bgimagered.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\TestDemoSkin\intelliSkin.xml C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es\intelliscreen\private\var\mobile\Library\Intelliborn\Skins\TestDemoSkin\MainBGImage.png C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\AirPaint-v1.0.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\BikeOrDie.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\BrainHack-v1.1.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\Chord_Pro-v1.3.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\Clock.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\CS2-v1.10.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\Fieldrunners_v1_1_.1.1.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\iChuck_(v1.1).ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\Jaadu VNC (v1.2).ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\jNetUtil-v1.1.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\mindfreek.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\MindWave-v2.0.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\RadioBox.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\Vision-v1.2.ipa C:\DOCUME~1\Gaming\Bureau\Downloads\Apps Crack‚es 2\WifiTrak-v1.5.ipa C:\DOCUME~1\Gaming\Bureau\Photoshop Brushes\crack1_brushes_by_hawksmont.abr C:\DOCUME~1\Gaming\Bureau\Photoshop Brushes\crack2_brushes_by_hawksmont.abr C:\DOCUME~1\Gaming\Bureau\Photoshop Brushes\crack3_brushes_by_hawksmont.abr C:\DOCUME~1\Gaming\Bureau\Photoshop Brushes\IceCrackFBrushSet1.abr C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\airdecap.exe C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\airodump.exe C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\cygwin1.dll C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\fsdfsdf.cap C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\fsdfsdf.txt C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Lang C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\logo.jpg C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\MSVCR70.DLL C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\PEEK.DLL C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\PEEK5.SYS C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\README.txt C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Temp C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Thumbs.db C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\tuto WinAircrack.docx C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Updater C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\updater.bkp C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Updater.exe C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Updater.ini C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\visitez le site.url C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\WinAircrack.exe C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\WinAircrack.ini C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\wzcook.exe C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\ZbThumbnail.info C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Lang\english.ini C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Lang\francais.ini C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Lang\spanish.ini C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Lang\system.ini.txt C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Temp\check.upd C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Temp\Download.tmp C:\DOCUME~1\Gaming\Bureau\WinAircrackPack by sheppard\Updater\Data.upd C:\DOCUME~1\Gaming\Mes documents\SA CRACK C:\DOCUME~1\Gaming\Mes documents\SA NON CRACK C:\DOCUME~1\Gaming\Mes documents\BitTorrent Downloads\Photoshop CS4 (Keygen and tutorial) C:\DOCUME~1\Gaming\Mes documents\BitTorrent Downloads\Photoshop CS4 (Keygen and tutorial).rar C:\DOCUME~1\Gaming\Mes documents\BitTorrent Downloads\Photoshop CS4 Extended (Activation Tutorial + Keygens + Screenshots).rar C:\DOCUME~1\Gaming\Mes documents\BitTorrent Downloads\Photoshop CS4 (Keygen and tutorial)\Keygen.exe C:\DOCUME~1\Gaming\Mes documents\BitTorrent Downloads\Photoshop CS4 (Keygen and tutorial)\README.txt C:\DOCUME~1\Gaming\Mes documents\SA CRACK\gta_sa.exe C:\DOCUME~1\Gaming\Mes documents\SA NON CRACK\gta_sa.exe 1 - "C:\ToolBar SD\TB_1.txt" - lun. 29/12/2008|15:35 - Option : [1] 2 - "C:\ToolBar SD\TB_2.txt" - lun. 29/12/2008|15:55 - Option : [2] -----------\\ Fin du rapport a 15:55:27,57 Je tiens à préciser que aircrack-ng c'était pour tester la sécurité de mon réseau^^ Merci EDIT: MBAM étant extrêmement lent, je pense que je vais devoir le suspendre, mettre mon PC en veille prolongée ce soir et reprendre demain :/ RE-EDIT: En 5h28 de scan, il m'a seulement scanné 78.000 fichiers et ne m'a détecté aucun malware... Sachant que j'ai approximativement 300.000 fichiers sur mon PC, je dois encore attendre un peu plus de 3x ca... Je devrais donc attendre encore 15h. C'est vraiment très long... Je trouve ca quand même bizarre... L'antispyware que j'utilise d'habitude (Ad-Aware 2008) me scan mon PC en environs 2 heures. -
Salut à tous J'ai remarqué qu'en jouant à CSS, je tournais aux alentours de 20FPS, graphismes au max, sauf le bloom qui est désactivé. La config n'est pas le problème, j'ai largement la config pour le faire tourner. J'ai déjà fait des scans avec AntiVir, Ad-Aware 2008, etc. J'ai aussi un problème avec Firefox 3.0. Parfois des pages ne veulent pas se charger et il me met "Connexion réinitialisée" ou "Connexion interrompue". Voila mon log HijackThis : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:35:25, on 29/12/2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16762) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Lavasoft\Personal Firewall\lpfw.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\NTR global\NTRconnect\NTRconnect.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\FICHIE~1\Stardock\SDMCP.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\TortoiseSVN\bin\TSVNCache.exe C:\WINDOWS\system32\wuauclt.exe C:\windows\system\hpsysdrv.exe C:\Program Files\Unlocker\UnlockerAssistant.exe C:\HP\KBD\KBD.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\iTunes\iTunesHelper.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\DNA\btdna.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Xfire\Xfire.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\Program Files\Skype\Plugin Manager\skypePM.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Valve\Steam\steam.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Gaming\Bureau\Downloads\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://as.starware.com/dp/search?x=wKX1ILE...USNTLEl4Y4Q4w== R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - Disabled:{F156768E-81EF-470C-9057-481BA8380DBA} - (no file) O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file) O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - (no file) O2 - BHO: (no name) - {B7D6FC7E-4164-467F-81DD-86B161AA2FB8} - (no file) O2 - BHO: IeMonitorBho Class - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - (no file) O2 - BHO: WinAVI FLVSense - {E8DF67A1-B618-4F3F-9E7C-CBE175ADEF5B} - C:\Program Files\WinAVI FLV Converter\FLVTune.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar5.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE O4 - HKLM\..\Run: [unlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" -H O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [RelevantKnowledge] c:\windows\system32\rlvknlg.exe -boot O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\Ad-Watch.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [bitTorrent DNA] "C:\Program Files\DNA\btdna.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - Startup: Personal Firewall.lnk = C:\Program Files\Lavasoft\Personal Firewall\lpfw.exe O4 - Startup: Raccourci vers avgnt.lnk = C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\Xfire.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: &Tout télécharger avec FlashGet - C:\Program Files\FlashGet\jc_all.htm O8 - Extra context menu item: &Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Pierre-Louis.EINSTEIN\Menu Démarrer\Programmes\IMVU\Run IMVU.lnk (file missing) O9 - Extra button: Sélection intelligente HP - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O9 - Extra button: WinAVI FLV Manager - {DE365254-2F9B-4908-9E3A-7AAA6EC90BCC} - C:\Program Files\WinAVI FLV Converter\FLVTune.dll O9 - Extra 'Tools' menuitem: WinAVI FLV Manager - {DE365254-2F9B-4908-9E3A-7AAA6EC90BCC} - C:\Program Files\WinAVI FLV Converter\FLVTune.dll O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (file missing) O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (file missing) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O15 - Trusted Zone: http://asia.msi.com.tw O15 - Trusted Zone: http://global.msi.com.tw O15 - Trusted Zone: http://www.msi.com.tw O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/200612...ex/qtplugin.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {48884C41-EFAC-433D-958A-9FADAC41408E} (EGamesPlugin Class) - https://www.e-games.com.my/com/EGamesPlugin.cab O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - http://catalog.update.microsoft.com/v7/sit...b?1222973199453 O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {5F5F9FB8-878E-4455-95E0-F64B2314288A} (ijjiPlugin2 Class) - http://gamedownload.ijjimax.com/gamedownlo...Plugin11USA.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1150997827718 O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.com/cabs/acclaim_v4.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://v5.windowsupdate.microsoft.com/micr...b?1150997649140 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} - http://www.mypix.com/be/fr/importer/ImageUploader4.cab O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} (WebSDev Control) - http://liveupdate.msi.com.tw/autobios/LOnline/install.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - http://messenger.zone.msn.com/binary/ZIntro.cab53083.cab O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://bmm.imgag.com/imgag/cp/install/crusher-bef.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {E6ACF817-0A85-4EBE-9F0A-096C6488CFEA} - https://www.ntrconnect.com/main/mod/setup/n...tivex118_24.cab O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{FFDF520C-4E39-4EB9-9C92-B39F49517F43}: NameServer = 195.238.2.21,195.238.2.22 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: awtustq - awtustq.dll (file missing) O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Lavasoft Personal Firewall Service (LavasoftFirewall) - Agnitum Ltd. - C:\Program Files\Lavasoft\Personal Firewall\lpfw.exe O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: NTRconnect (ntrconnect) - Net Transmit & Receive - C:\Program Files\NTR global\NTRconnect\NTRconnect.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe -- End of file - 13984 bytes Y a-t-il des trucs inutiles sur mon PC? Merci d'avance