Aller au contenu

Titelive

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    10

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par Titelive

  1. Titelive

    LoadTool

    Titelive a répondu à un(e) sujet de Titelive dans Sécurisation, prévention

    OK je considère que loadtool est fiable et l'ajoute aux exceptions. merci
  2. Titelive
    Bonjour Je voudrais télécharger loadtool qui me parait pratique mais mon antivirus avast l'intercepte et le supprime car il y détecte le malware " filerepmetagen". J'ai envoyé un mail sur le sujet à avast mais je n'ai pas eu de réponse et l'antivirus continue toujours à s'opposer au téléchargement. Utilisez-vous cet application sans problème ? Merci
  3. Titelive
    Bonjour Gof Pour ce qui concerne le comportement de l'internaute sur le net je suis tout à fait d'accord avec toi, mais je suis père de famille et mes premiers virus à la maison ce sont mes enfants. J'ai beau les briffer mais il me font de ces trucs !!! heureusement que kaspersky m'intercepte parfois les fichiers attachés d'msn messenger plombés qu'ils se refilent par exemple entre copains. Pour la BDR je l'ai sauvegardée avant de faire des modifs. Les messages d'erreurs à la réinstallation de itunes et quicktime sont l'impossibilité de trouver 2 applications itunes.msi et quicktime.msi rendant la suppression des anciennes versions inopérante. C'est pour ça que j'essaie de virer tout ce qui a attrait à ces softs y compris dans la BDR pour repartir à zéro. Mais si tu as une autre solution je suis preneur. Je n'ai sans doute pas optimisé la config de mon kaspersky. IL faudrait que je trouve de l'aide. Pour Firefox, je l'avais désinstallé et refait des essais avec une ancienne version mais le problème de lenteur était le même. J'ai également fait des essais avec mon PC portable professionnel et firefox 3.5 beta en remplaçant mon pc problématique et là je n'ai pas eu de ralentissement. IE me sert uniquement aux mises à jour microsoft mais bon je virerai toutes les barres d'outils pour voir si ça impacte la réactivité des ouvertures des page web.
  4. Titelive
    Bonjour Gof et merci pour ton dévouement En fait je ne perçois pas d'amélioration sur la vitesse d'affichage des pages internet. A part ça mon PC est globalement plutôt réactif. Par contre je te fais part d'un indice qui peut être t'aidera. J'utilise JV16 pour nettoyer en profondeur ma BDR. Depuis peu il ne parvient pas à la fin de sa procédure de nettoyage. Il semble buter sur un élément. J'ai fait un essai avec windows docteur qui lui se ferme spontanément sans doute sur le même élément. Il y a peu également, j'ai du désinstaller Itunes et Quicktime qui présentaient des vulnérabilités. Bien que j'ai utilisé la procédure normale par ajout/suppr de prog il est resté un tas de clefs notamment dans la BDR qui m'empêchent de réinstaller les versions corrigées Itunes et Quicktime. Est ce que JV16 buterait sur un élément de ces 2 applications ou resterait il quelque chose de malsain dans ma BDR ? Qu'en penses tu ? J'essaie de virer manuellement tout ce qui a attrait à Itunes et Quicktime dans ma BDR. J'aimerais que tu me donne ton avis sur mon antivirus/firewall qui est kaspersky (KIS2009). Je suis un peu déçu de son efficacité. J'ai vu que vous préconisiez chez zébulon Antivir mais à quel antimalware vous l'associez ? En fait qu'utilises tu comme application de sécurité ? Est ce que tu crois qu'il serait utile de passer un coup d'Antivir en mode sans échec ?
  5. Titelive
    Logfile of random's system information tool 1.06 (written by random/random) Run by Les Gregs at 2009-06-14 20:29:43 Microsoft Windows XP Professionnel Service Pack 3 System drive E: has 41 GB (53%) free of 76 GB Total RAM: 767 MB (58% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 20:30:39, on 14/06/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: E:\WINDOWS\System32\smss.exe E:\WINDOWS\system32\winlogon.exe E:\WINDOWS\system32\services.exe E:\WINDOWS\system32\lsass.exe E:\WINDOWS\system32\svchost.exe E:\WINDOWS\System32\svchost.exe E:\WINDOWS\system32\svchost.exe E:\WINDOWS\system32\spoolsv.exe E:\Program Files\Bonjour\mDNSResponder.exe E:\Program Files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe E:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe E:\Program Files\Java\jre6\bin\jqs.exe E:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe E:\WINDOWS\system32\nvsvc32.exe E:\WINDOWS\System32\svchost.exe E:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe E:\WINDOWS\system32\wscntfy.exe E:\WINDOWS\Explorer.EXE E:\WINDOWS\SOUNDMAN.EXE E:\WINDOWS\system32\RUNDLL32.EXE E:\WINDOWS\System32\LVCOMSX.EXE E:\WINDOWS\system32\rundll32.exe E:\WINDOWS\system32\ctfmon.exe E:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe E:\WINDOWS\System32\svchost.exe E:\Program Files\Windows Live\Messenger\msnmsgr.exe E:\Program Files\Windows Live\Contacts\wlcomm.exe E:\Program Files\Mozilla Firefox 3.5 Beta 4\firefox.exe E:\Documents and Settings\Les Gregs\Bureau\Sécurité\méthode éradication zébulon\RSIT.exe E:\Program Files\Trend Micro\HijackThis\Les Gregs.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=66006 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=66006 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://login.live.com/ppsecure/sha1auth.srf?lc=1036 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - E:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - E:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - E:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - E:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - E:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE E:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE E:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [LVCOMSX] E:\WINDOWS\System32\LVCOMSX.EXE O4 - HKLM\..\Run: [AVP] "E:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "E:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKCU\..\Run: [ctfmon.exe] E:\WINDOWS\system32\ctfmon.exe O8 - Extra context menu item: Ajouter à Kaspersky Anti-Bannière - E:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://E:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Statistiques de la protection du trafic Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - E:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\WINDOWS\System32\shdocvw.dll O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\WINDOWS\System32\shdocvw.dll O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1240676432375 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1240849341828 O23 - Service: Apple Mobile Device - Apple Inc. - E:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Kaspersky Internet Security (avp) - Kaspersky Lab - E:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - E:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Capture Device Service - InterVideo Inc. - E:\Program Files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - E:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - E:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - E:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - E:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - E:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - E:\Program Files\ma-config.com\maconfservice.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - E:\WINDOWS\system32\nvsvc32.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - E:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe -- End of file - 7356 bytes ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - E:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}] IEVkbdBHO Class - E:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll [2008-11-11 62728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}] Search Helper - E:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - E:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-28 35840] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-28 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - E:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll [2008-04-01 352256] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SoundMan"=E:\WINDOWS\SOUNDMAN.EXE [2007-04-16 577536] "NvCplDaemon"=E:\WINDOWS\system32\NvCpl.dll [2008-09-18 13574144] "nwiz"=nwiz.exe /install [] "NvMediaCenter"=E:\WINDOWS\system32\NvMcTray.dll [2008-09-18 86016] "LVCOMSX"=E:\WINDOWS\System32\LVCOMSX.EXE [2005-07-19 221184] "AVP"=E:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2009-04-16 206088] "Adobe Reader Speed Launcher"=E:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=E:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] E:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVP] E:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2009-04-16 206088] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray] E:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2009-01-30 57344] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPSON Stylus C84 Series] E:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0D2.EXE [2003-09-12 99840] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Kernel and Hardware Abstraction Layer] E:\WINDOWS\KHALMNPR.EXE [2008-12-18 76304] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechSoftwareUpdate] E:\Program Files\Logitech\Video\ManifestEngine.exe [2005-06-08 196608] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoRepair] E:\Program Files\Logitech\Video\ISStart.exe [2005-06-08 458752] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoTray] E:\Program Files\Logitech\Video\LogiTray.exe [2005-06-08 217088] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon] E:\WINDOWS\system32\NvCpl.dll [2008-09-18 13574144] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ORAHSSSessionManager] E:\Program Files\OrangeHSS\SessionManager\SessionManager.exe [2007-12-12 107248] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PowerArchiver Tray] E:\Program Files\PowerArchiver\PASTARTER.EXE [2009-03-19 507200] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] E:\Program Files\QuickTime\QTTask.exe -atboottime [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSTray] E:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe [2006-07-21 126976] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant] E:\Program Files\Unlocker\UnlockerAssistant.exe [2008-05-02 15872] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UVS11 Preload] E:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [2007-03-03 341488] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UVS12 Preload] E:\Program Files\Corel\Corel VideoStudio 12\uvPL.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Veoh] E:\Program Files\Veoh Networks\Veoh\VeohClient.exe [2008-04-01 3587120] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Synchronizer.lnk] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech Desktop Messenger.lnk] F:\PROGRA~1\Logitech\DESKTO~1\8876480\Program\LDMConf.exe [2007-02-06 450560] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech SetPoint.lnk] E:\PROGRA~1\Logitech\SetPoint\SetPoint.exe [2009-02-19 809488] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^WinZip Quick Pick.lnk] E:\PROGRA~1\WinZip\WZQKPICK.EXE [2007-08-03 394856] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\E:^Documents and Settings^Les Gregs^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.4.lnk] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "SeaPort"=2 "RichVideo"=2 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon] E:\WINDOWS\system32\klogon.dll [2008-11-11 218376] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn] e:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll [2009-02-19 72208] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - E:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=323 "NoDriveAutoRun"=67108863 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= "NoDriveAutoRun"= "NoDriveTypeAutoRun"= "NoDrives"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "E:\Program Files\CyberLink\PowerDVD\PowerDVD.exe"="E:\Program Files\CyberLink\PowerDVD\PowerDVD.exe:*:Enabled:CyberLink PowerDVD" "E:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe"="E:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe:*:enabled:CSS" "E:\Program Files\Bonjour\mDNSResponder.exe"="E:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "E:\Program Files\ma-config.com\maconfservice.exe"="E:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice" "E:\Program Files\Windows Live\Messenger\wlcsdk.exe"="E:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "E:\Program Files\Windows Live\Messenger\msnmsgr.exe"="E:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "E:\Program Files\Windows Live\Messenger\wlcsdk.exe"="E:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "E:\Program Files\Windows Live\Messenger\msnmsgr.exe"="E:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" ======List of files/folders created in the last 1 months====== 2009-06-14 16:48:33 ----A---- E:\WINDOWS\ntbtlog.txt 2009-06-14 15:26:30 ----SHD---- E:\Config.Msi 2009-06-14 15:24:47 ----SHD---- E:\RECYCLER 2009-06-14 13:25:42 ----D---- E:\Documents and Settings\Les Gregs\Application Data\Malwarebytes 2009-06-14 13:25:36 ----D---- E:\Program Files\Malwarebytes' Anti-Malware 2009-06-14 13:25:36 ----D---- E:\Documents and Settings\All Users\Application Data\Malwarebytes 2009-06-14 13:17:31 ----A---- E:\ComboFix.txt 2009-06-14 13:13:32 ----A---- E:\DeQuarantine.txt 2009-06-14 13:12:22 ----SD---- E:\ComboFix 2009-06-14 12:22:46 ----D---- E:\rsit 2009-06-13 05:54:49 ----A---- E:\Boot.bak 2009-06-13 05:54:43 ----RASHD---- E:\cmdcons 2009-06-13 05:47:09 ----A---- E:\WINDOWS\zip.exe 2009-06-13 05:47:09 ----A---- E:\WINDOWS\SWXCACLS.exe 2009-06-13 05:47:09 ----A---- E:\WINDOWS\SWSC.exe 2009-06-13 05:47:09 ----A---- E:\WINDOWS\SWREG.exe 2009-06-13 05:47:09 ----A---- E:\WINDOWS\sed.exe 2009-06-13 05:47:09 ----A---- E:\WINDOWS\PEV.exe 2009-06-13 05:47:09 ----A---- E:\WINDOWS\NIRCMD.exe 2009-06-13 05:47:09 ----A---- E:\WINDOWS\grep.exe 2009-06-13 05:47:02 ----D---- E:\WINDOWS\ERDNT 2009-06-13 05:46:58 ----D---- E:\Qoobox 2009-06-11 20:49:53 ----HDC---- E:\WINDOWS\$NtUninstallKB970238$ 2009-06-11 20:49:41 ----HDC---- E:\WINDOWS\$NtUninstallKB968537$ 2009-06-11 20:49:24 ----HDC---- E:\WINDOWS\$NtUninstallKB961501$ 2009-06-11 20:49:04 ----HDC---- E:\WINDOWS\$NtUninstallKB969898$ 2009-06-06 12:20:53 ----D---- E:\Program Files\jv16 PowerTools 2008 2009-06-06 10:56:26 ----D---- E:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage 2009-06-06 07:26:06 ----D---- E:\Program Files\Misc. Support Library (Spybot - Search & Destroy) 2009-06-04 07:28:43 ----D---- E:\Program Files\iPod 2009-05-30 13:31:03 ----D---- E:\Program Files\FreshDevices 2009-05-29 21:07:22 ----D---- E:\Program Files\Mozilla Firefox 3.5 Beta 4 2009-05-29 19:17:08 ----D---- E:\Program Files\Lavasoft 2009-05-24 08:35:54 ----RSHD---- E:\_Backup.RC 2009-05-24 08:33:47 ----D---- E:\Program Files\Fichiers communs\AntiVirus 2009-05-16 13:55:11 ----D---- E:\Program Files\Realtek AC97 2009-05-16 11:02:49 ----D---- E:\Documents and Settings\Les Gregs\Application Data\Logitech 2009-05-16 11:02:33 ----D---- E:\Documents and Settings\All Users\Application Data\LogiShrd 2009-05-16 11:01:08 ----HDC---- E:\WINDOWS\$NtUninstallWdf01005$ 2009-05-16 10:59:15 ----A---- E:\WINDOWS\system32\BtCoreIf.dll 2009-05-16 10:59:11 ----A---- E:\WINDOWS\system32\KemXML.dll 2009-05-16 10:59:11 ----A---- E:\WINDOWS\system32\KemWnd.dll 2009-05-16 10:59:11 ----A---- E:\WINDOWS\system32\KemUtil.dll 2009-05-16 10:59:11 ----A---- E:\WINDOWS\system32\kemutb.dll 2009-05-16 10:58:45 ----D---- E:\Documents and Settings\All Users\Application Data\Logitech 2009-05-16 10:58:41 ----D---- E:\Program Files\Fichiers communs\Logishrd 2009-05-15 23:57:32 ----D---- E:\Program Files\Anti Keylogger Elite ======List of files/folders modified in the last 1 months====== 2009-06-14 20:28:44 ----D---- E:\WINDOWS\Temp 2009-06-14 19:38:34 ----D---- E:\WINDOWS\Prefetch 2009-06-14 19:21:40 ----D---- E:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2009-06-14 19:19:25 ----D---- E:\Program Files\Mozilla Thunderbird 2009-06-14 16:59:30 ----D---- E:\Program Files\PowerArchiver 2009-06-14 16:57:39 ----D---- E:\WINDOWS\system32\CatRoot 2009-06-14 16:55:39 ----D---- E:\WINDOWS\system32\CatRoot2 2009-06-14 16:55:16 ----D---- E:\WINDOWS 2009-06-14 15:26:33 ----SHD---- E:\WINDOWS\Installer 2009-06-14 15:26:33 ----D---- E:\Program Files 2009-06-14 15:26:30 ----SD---- E:\WINDOWS\Tasks 2009-06-14 15:25:29 ----HD---- E:\WINDOWS\inf 2009-06-14 15:25:29 ----DC---- E:\WINDOWS\system32\DRVSTORE 2009-06-14 14:38:20 ----D---- E:\WINDOWS\system32 2009-06-14 14:14:23 ----D---- E:\WINDOWS\system32\drivers 2009-06-14 14:13:05 ----RSD---- E:\WINDOWS\Fonts 2009-06-14 13:14:37 ----A---- E:\WINDOWS\system.ini 2009-06-14 13:14:16 ----D---- E:\WINDOWS\system 2009-06-14 08:47:47 ----A---- E:\WINDOWS\win.ini 2009-06-14 07:35:26 ----D---- E:\WINDOWS\Minidump 2009-06-13 08:15:22 ----D---- E:\WINDOWS\Debug 2009-06-13 06:00:35 ----D---- E:\WINDOWS\system32\config 2009-06-13 05:58:22 ----D---- E:\WINDOWS\AppPatch 2009-06-13 05:58:19 ----D---- E:\Program Files\Fichiers communs 2009-06-13 05:54:49 ----RASH---- E:\boot.ini 2009-06-13 05:47:08 ----SHD---- E:\System Volume Information 2009-06-13 05:47:08 ----D---- E:\WINDOWS\system32\Restore 2009-06-11 20:57:46 ----D---- E:\Program Files\Internet Explorer 2009-06-11 20:54:47 ----D---- E:\Documents and Settings\All Users\Application Data\Microsoft Help 2009-06-11 20:50:19 ----RSHDC---- E:\WINDOWS\system32\dllcache 2009-06-11 20:50:03 ----HD---- E:\WINDOWS\$hf_mig$ 2009-06-08 19:22:45 ----AC---- E:\WINDOWS\NeroDigital.ini 2009-06-08 18:10:29 ----D---- E:\Program Files\Smart Projects 2009-06-07 15:02:57 ----D---- E:\Program Files\CCleaner 2009-06-07 08:52:44 ----D---- E:\WINDOWS\Help 2009-06-07 08:51:54 ----D---- E:\WINDOWS\system32\ReinstallBackups 2009-06-06 14:41:50 ----D---- E:\Documents and Settings\Les Gregs\Application Data\Vso 2009-06-06 14:40:43 ----A---- E:\WINDOWS\RtlRack.ini 2009-06-06 12:17:15 ----HD---- E:\Program Files\InstallShield Installation Information 2009-06-06 12:17:04 ----D---- E:\Documents and Settings\All Users\Application Data\Ulead Systems 2009-06-05 20:38:12 ----D---- E:\Documents and Settings\Les Gregs\Application Data\Apple Computer 2009-06-04 07:28:42 ----D---- E:\Program Files\Fichiers communs\Apple 2009-06-01 18:51:12 ----A---- E:\WINDOWS\system32\MRT.exe 2009-05-30 15:29:05 ----D---- E:\Sauvegarde_base_registre 2009-05-30 13:28:32 ----D---- E:\Documents and Settings\Les Gregs\Application Data\FileZilla 2009-05-27 19:27:52 ----RSD---- E:\WINDOWS\assembly 2009-05-26 21:04:45 ----D---- E:\Program Files\Mozilla Firefox 3.1 Beta 3 2009-05-24 14:29:23 ----D---- E:\WINDOWS\WinSxS 2009-05-17 19:27:26 ----D---- E:\Program Files\WinTV 2009-05-17 19:27:02 ----D---- E:\WINDOWS\system32\hauppauge 2009-05-17 19:10:20 ----A---- E:\WINDOWS\HCWPNP.INI 2009-05-16 11:34:58 ----SD---- E:\Documents and Settings\Les Gregs\Application Data\Microsoft 2009-05-16 10:58:26 ----D---- E:\Program Files\Logitech ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 AmdK8;AMD Athlon64 Processor Driver; E:\WINDOWS\System32\DRIVERS\AmdK8.sys [2004-10-21 35840] R1 ElbyCDIO;ElbyCDIO Driver; E:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2009-02-17 24232] R1 klif;Kaspersky Lab Driver; E:\WINDOWS\system32\DRIVERS\klif.sys [2009-04-16 226832] R1 StarOpen;StarOpen; E:\WINDOWS\system32\drivers\StarOpen.sys [2009-06-04 5632] R2 {95808DC4-FA4A-4c74-92FE-5B863F82066B};{95808DC4-FA4A-4c74-92FE-5B863F82066B}; \??\E:\Program Files\CyberLink\PowerDVD\000.fcl [] R2 Aspi32;Aspi32; E:\WINDOWS\System32\drivers\aspi32.sys [2008-05-06 16512] R2 CdaC15BA;CdaC15BA; \??\E:\WINDOWS\system32\drivers\CdaC15BA.SYS [] R2 LBeepKE;LBeepKE; E:\WINDOWS\System32\Drivers\LBeepKE.sys [2008-12-18 10384] R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); E:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-09-24 4122368] R3 ElbyCDFL;ElbyCDFL; E:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760] R3 GEARAspiWDM;GEAR ASPI Filter Driver; E:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400] R3 HCWBT8XX;Hauppauge WinTV 848/9 WDM Video Driver; E:\WINDOWS\system32\drivers\HCWBT8XX.sys [2006-01-25 472644] R3 hidusb;Pilote de classe HID Microsoft; E:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 KLFLTDEV;Kaspersky Lab KLFltDev; E:\WINDOWS\system32\DRIVERS\klfltdev.sys [2008-03-13 26640] R3 klim5;Kaspersky Anti-Virus NDIS Filter; E:\WINDOWS\system32\DRIVERS\klim5.sys [2008-04-30 24592] R3 L8042Kbd;Logitech SetPoint Keyboard Driver; E:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2008-12-18 20240] R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; E:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2008-12-18 35472] R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; E:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2008-12-18 37392] R3 LVUSBSta;Logitech USB Monitor Filter; E:\WINDOWS\system32\drivers\lvusbsta.sys [2005-05-27 22016] R3 mouhid;Pilote HID de souris; E:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288] R3 nv;nv; E:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2008-09-18 6132576] R3 nvnetbus;NVIDIA Network Bus Enumerator; E:\WINDOWS\System32\DRIVERS\nvnetbus.sys [2004-11-24 12928] R3 Pcouffin;VSO Software pcouffin; E:\WINDOWS\System32\Drivers\Pcouffin.sys [2009-04-29 47360] R3 PID_0920;Logitech QuickCam Express(PID_0920); E:\WINDOWS\System32\DRIVERS\LV532AV.SYS [2005-01-31 163328] R3 usbdtv;LITE-ON DVB-T (PID=F001) receiver; E:\WINDOWS\System32\Drivers\usbdtv.sys [2005-06-07 31232] R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; E:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Concentrateur USB2; E:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; E:\WINDOWS\System32\DRIVERS\usbohci.sys [2008-04-13 17152] R3 usbprint;Classe d'imprimantes USB Microsoft; E:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856] R3 USBSTOR;Pilote de stockage de masse USB; E:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] R3 Wdf01000;Wdf01000; E:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000] S1 DumaNT;NVIDIA Stereo Helper Service; E:\WINDOWS\System32\DRIVERS\dumant.sys [] S1 InCDPass;InCDPass; E:\WINDOWS\System32\DRIVERS\InCDPass.sys [] S1 incdrm;InCD Reader; E:\WINDOWS\system32\drivers\incdrm.sys [] S1 kbdhid;Pilote HID de clavier; E:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14720] S2 AKEProtect;AKEProtect; \??\E:\Program Files\Anti Keylogger Elite\AKEProtect.sys [] S3 61883;Pilote d'unité 61883; E:\WINDOWS\system32\DRIVERS\61883.sys [2008-04-13 48128] S3 Arp1394;Protocole client ARP 1394; E:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800] S3 Avc;Périphérique AVC; E:\WINDOWS\system32\DRIVERS\avc.sys [2008-04-13 38912] S3 catchme;catchme; \??\E:\DOCUME~1\LESGRE~1\LOCALS~1\Temp\catchme.sys [] S3 CCDECODE;Décodeur sous-titre fermé; E:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 driverhardwarev2;driverhardwarev2; \??\E:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [] S3 DstAud;DstAud; E:\WINDOWS\System32\DRIVERS\DstAud.sys [2001-12-05 8901] S3 DstVid;DstVid; E:\WINDOWS\System32\DRIVERS\DstVid.sys [2001-12-05 11237] S3 DTVFW;LITE-ON DVB-T USB adapter firmware; E:\WINDOWS\system32\DRIVERS\dtvfw.sys [2005-05-12 22016] S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS [] S3 MPE;Filtre BDA MPE; E:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232] S3 MSDV;Microsoft DV Camera and VCR; E:\WINDOWS\system32\DRIVERS\msdv.sys [2008-04-13 51200] S3 MSICPL;MSICPL; \??\G:\install4\MSICPL.sys [] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; E:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;Codec NABTS/FEC VBI; E:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; E:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 NIC1394;Pilote réseau 1394; E:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824] S3 NTACCESS;NTACCESS; \??\G:\NTACCESS.sys [] S3 NVENETFD;NVIDIA nForce Networking Controller Driver; E:\WINDOWS\System32\DRIVERS\NVENETFD.sys [2004-11-24 33408] S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\E:\WINDOWS\system32\PCAMPR5.SYS [] S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\E:\WINDOWS\system32\PCANDIS5.SYS [] S3 SetupNTGLM7X;SetupNTGLM7X; \??\G:\NTGLM7X.sys [] S3 SLIP;Détrameur décalage BDA; E:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 SONYPVU1;Pilote de filtrage Sony USB (SONYPVU1); E:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552] S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); E:\WINDOWS\system32\DRIVERS\ss_bus.sys [2005-08-30 58320] S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; E:\WINDOWS\system32\DRIVERS\ss_mdfl.sys [2005-08-30 8304] S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; E:\WINDOWS\system32\DRIVERS\ss_mdm.sys [2005-08-30 94000] S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); E:\WINDOWS\system32\DRIVERS\sscdbus.sys [2007-07-03 80552] S3 sscdmdfl;SAMSUNG Mobile Modem Filter; E:\WINDOWS\system32\DRIVERS\sscdmdfl.sys [2007-07-03 11944] S3 sscdmdm;SAMSUNG Mobile Modem Drivers; E:\WINDOWS\system32\DRIVERS\sscdmdm.sys [2007-07-03 106792] S3 streamip;BDA IPSink; E:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 SynasUSB;SynasUSB; E:\WINDOWS\system32\drivers\SynasUSB.sys [2007-10-24 23288] S3 TSP;TSP; \??\E:\WINDOWS\system32\drivers\klif.sys [] S3 USBAAPL;Apple Mobile USB Driver; E:\WINDOWS\System32\Drivers\usbaapl.sys [2009-03-06 36864] S3 usbccgp;Pilote parent générique USB Microsoft; E:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 usbscan;Pilote de scanneur USB; E:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 WpdUsb;WpdUsb; E:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528] S3 WSTCODEC;Codec Teletext standard; E:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; E:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] S4 InCDfs;InCD File System; E:\WINDOWS\system32\drivers\InCDfs.sys [] S4 IntelIde;IntelIde; E:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; E:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-05-29 144712] R2 avp;Kaspersky Internet Security; E:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2009-04-16 206088] R2 Bonjour Service;Service Bonjour; E:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888] R2 Capture Device Service;Capture Device Service; E:\Program Files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168] R2 FTRTSVC;France Telecom Routing Table Service; E:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [2007-12-11 65536] R2 JavaQuickStarterService;Java Quick Starter; E:\Program Files\Java\jre6\bin\jqs.exe [2009-03-28 152984] R2 LightScribeService;LightScribeService Direct Disc Labeling Service; E:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [2005-07-25 53248] R2 NVSvc;NVIDIA Display Driver Service; E:\WINDOWS\system32\nvsvc32.exe [2008-09-18 163908] R2 UleadBurningHelper;Ulead Burning Helper; E:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe [2007-03-03 67056] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; E:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S3 aspnet_state;Service d'état ASP.NET; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; E:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 idsvc;Windows CardSpace; E:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 iPod Service;Service de l’iPod; E:\Program Files\iPod\bin\iPodService.exe [2009-05-30 541992] S3 LBTServ;Logitech Bluetooth Service; E:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe [2009-02-19 121360] S3 maconfservice;Ma-Config Service; E:\Program Files\ma-config.com\maconfservice.exe [2009-03-15 216232] S3 odserv;Microsoft Office Diagnostics Service; E:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712] S3 ose;Office Source Engine; E:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; E:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016] S4 NetTcpPortSharing;Service de partage de ports Net.Tcp; E:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] S4 RichVideo;Cyberlink RichVideo Service(CRVS); E:\Program Files\CyberLink\Shared files\RichVideo.exe [2007-02-07 173616] S4 SeaPort;SeaPort; E:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656] -----------------EOF-----------------
  6. Titelive
    fichier systemlook SystemLook v1.0 by jpshortstuff (22.05.09) Log created at 19:02 on 14/06/2009 by Les Gregs (Administrator - Elevation successful) ========== dir ========== e:\WINDOWS\Fonts - Parameters: "/s" ---Files--- !DigitalGraphicLabs.html --a--- 1120 bytes [00:17 09/05/2003] [00:17 09/05/2003] !license.txt --a--- 1858 bytes [18:09 10/05/2003] [18:09 10/05/2003] 1001freefonts.txt --a--- 129 bytes [10:11 06/09/2004] [10:11 06/09/2004] 21205___.TTF ------ 49403 bytes [22:02 06/02/2007] [09:54 31/12/1997] 2120A___.TTF ------ 18251 bytes [11:53 27/06/2007] [08:54 31/12/1997] 35191___.TTF ------ 79767 bytes [22:02 06/02/2007] [09:54 31/12/1997] 40240___.TTF ------ 48703 bytes [22:02 06/02/2007] [09:56 31/12/1997] 46152___.TTF ------ 59938 bytes [22:02 06/02/2007] [09:54 31/12/1997] 50416___.TTF ------ 40051 bytes [22:02 06/02/2007] [09:58 31/12/1997] 5041A___.TTF ------ 31737 bytes [11:53 27/06/2007] [08:58 31/12/1997] 51253___.TTF ------ 51446 bytes [22:02 06/02/2007] [10:28 31/12/1997] 52162___.TTF ------ 103472 bytes [22:02 06/02/2007] [09:55 31/12/1997] 54151___.TTF ------ 64963 bytes [22:02 06/02/2007] [09:58 31/12/1997] 5415A___.TTF ------ 39335 bytes [11:53 27/06/2007] [08:58 31/12/1997] 57930___.TTF ------ 89082 bytes [22:02 06/02/2007] [10:28 31/12/1997] 57961___.TTF ------ 172969 bytes [22:02 06/02/2007] [09:57 31/12/1997] 59250___.TTF ------ 106990 bytes [22:02 06/02/2007] [09:57 31/12/1997] 63193___.TTF ------ 39265 bytes [22:02 06/02/2007] [08:48 15/01/1998] 65659___.TTF ------ 30164 bytes [22:02 06/02/2007] [09:56 31/12/1997] 70214___.TTF ------ 31808 bytes [22:02 06/02/2007] [09:56 31/12/1997] 70729___.TTF ------ 60935 bytes [22:02 06/02/2007] [09:58 31/12/1997] 75678___.TTF ------ 27430 bytes [22:02 06/02/2007] [09:55 31/12/1997] 75749___.TTF ------ 47297 bytes [22:02 06/02/2007] [09:56 31/12/1997] 78640___.TTF ------ 85455 bytes [22:02 06/02/2007] [09:54 31/12/1997] 78936___.TTF ------ 45114 bytes [22:02 06/02/2007] [09:55 31/12/1997] 8514fix.fon ---h-c 10976 bytes [13:52 06/02/2007] [12:00 28/09/2001] 8514fixe.fon ---h-c 10976 bytes [13:52 06/02/2007] [12:00 28/09/2001] 8514fixg.fon ---h-c 11520 bytes [13:52 06/02/2007] [12:00 28/09/2001] 8514fixr.fon ---h-c 10976 bytes [13:52 06/02/2007] [12:00 28/09/2001] 8514fixt.fon ---h-c 11488 bytes [13:52 06/02/2007] [12:00 28/09/2001] 8514oem.fon ---h-c 12288 bytes [13:52 06/02/2007] [12:00 28/09/2001] 8514oeme.fon ---h-c 13248 bytes [13:52 06/02/2007] [12:00 28/09/2001] 8514oemg.fon ---h-c 12800 bytes [13:52 06/02/2007] [12:00 28/09/2001] 8514oemr.fon ---h-c 13200 bytes [13:52 06/02/2007] [12:00 28/09/2001] 8514oemt.fon ---h-c 12720 bytes [13:52 06/02/2007] [12:00 28/09/2001] 8514sys.fon ---h-c 9280 bytes [13:52 06/02/2007] [12:00 28/09/2001] 8514syse.fon ---h-c 9504 bytes [13:52 06/02/2007] [12:00 28/09/2001] 8514sysg.fon ---h-c 9856 bytes [13:52 06/02/2007] [12:00 28/09/2001] 8514sysr.fon ---h-c 10064 bytes [13:52 06/02/2007] [12:00 28/09/2001] 8514syst.fon ---h-c 9792 bytes [13:52 06/02/2007] [12:00 28/09/2001] 85775.fon ---h-c 12304 bytes [13:52 06/02/2007] [12:00 28/09/2001] 85855.fon ---h-c 12256 bytes [13:52 06/02/2007] [12:00 28/09/2001] 85f1257.fon ---h-c 10976 bytes [13:52 06/02/2007] [12:00 28/09/2001] 85s1257.fon ---h-c 9472 bytes [13:52 06/02/2007] [12:00 28/09/2001] 89198___.TTF ------ 62921 bytes [22:02 06/02/2007] [09:58 31/12/1997] AGENCYB.TTF --a--- 60656 bytes [09:43 19/11/2002] [09:43 19/11/2002] AGENCYR.TTF --a--- 58920 bytes [09:43 19/11/2002] [09:43 19/11/2002] ALGER.TTF --a--- 75272 bytes [11:42 29/10/1999] [11:42 29/10/1999] alsscrp.ttf --a--- 39064 bytes [15:17 13/03/1999] [15:17 13/03/1999] ANTQUAB.TTF --a--- 151000 bytes [15:18 12/11/1998] [15:18 12/11/1998] ANTQUABI.TTF --a--- 150416 bytes [15:18 12/11/1998] [15:18 12/11/1998] ANTQUAI.TTF --a--- 149092 bytes [15:18 12/11/1998] [15:18 12/11/1998] app775.fon ---h-c 35808 bytes [13:52 06/02/2007] [12:00 28/09/2001] app850.fon ---h-c 36672 bytes [13:52 06/02/2007] [12:00 28/09/2001] app852.fon ---h-c 36656 bytes [13:52 06/02/2007] [12:00 28/09/2001] app855.fon ---h-c 37296 bytes [13:52 06/02/2007] [12:00 28/09/2001] app857.fon ---h-c 36672 bytes [13:52 06/02/2007] [12:00 28/09/2001] app866.fon ---h-c 37472 bytes [13:52 06/02/2007] [12:00 28/09/2001] ARBLI___.TTF --a--- 65544 bytes [23:42 24/10/1997] [23:42 24/10/1997] arial.ttf --a--- 367112 bytes [08:50 24/08/1995] [10:39 17/07/2004] arialbd.ttf --a--- 352224 bytes [21:22 05/05/1999] [10:39 17/07/2004] arialbi.ttf --a--- 226748 bytes [12:00 28/09/2001] [12:00 28/09/2001] ariali.ttf --a--- 207808 bytes [12:00 28/09/2001] [12:00 28/09/2001] ARIALN.TTF --a--- 175956 bytes [18:25 14/08/2008] [18:25 14/08/2008] ARIALNB.TTF --a--- 180740 bytes [18:25 14/08/2008] [18:25 14/08/2008] ARIALNBI.TTF --a--- 180084 bytes [18:25 14/08/2008] [18:25 14/08/2008] ARIALNI.TTF --a--- 181124 bytes [18:25 14/08/2008] [18:25 14/08/2008] ARIALUNI.TTF --a--- 23275812 bytes [16:44 18/11/2002] [16:44 18/11/2002] ariblk.ttf --a--- 118832 bytes [12:00 28/09/2001] [18:58 01/01/2007] ARLRDBD.TTF --a--- 45260 bytes [11:13 18/08/1999] [11:13 18/08/1999] armybeans.ttf --a--- 43412 bytes [06:20 24/03/1999] [06:20 24/03/1999] BASKVILL.TTF --a--- 54976 bytes [11:13 18/08/1999] [11:13 18/08/1999] BAUHS93.TTF --a--- 46176 bytes [11:13 18/08/1999] [11:13 18/08/1999] BELL.TTF --a--- 84840 bytes [11:13 18/08/1999] [11:13 18/08/1999] BELLB.TTF --a--- 82580 bytes [11:13 18/08/1999] [11:13 18/08/1999] BELLI.TTF --a--- 82192 bytes [11:13 18/08/1999] [11:13 18/08/1999] BERNHC.TTF --a--- 70656 bytes [11:13 18/08/1999] [11:13 18/08/1999] BKANT.TTF --a--- 155528 bytes [15:18 12/11/1998] [15:18 12/11/1998] BOD_B.TTF --a--- 74440 bytes [13:42 27/11/2002] [13:42 27/11/2002] BOD_BI.TTF --a--- 85308 bytes [13:42 27/11/2002] [13:42 27/11/2002] BOD_BLAI.TTF --a--- 83816 bytes [13:42 27/11/2002] [13:42 27/11/2002] BOD_BLAR.TTF --a--- 73616 bytes [13:42 27/11/2002] [13:42 27/11/2002] BOD_CB.TTF --a--- 74092 bytes [13:42 27/11/2002] [13:42 27/11/2002] BOD_CBI.TTF --a--- 81072 bytes [13:42 27/11/2002] [13:42 27/11/2002] BOD_CI.TTF --a--- 80536 bytes [13:42 27/11/2002] [13:42 27/11/2002] BOD_CR.TTF --a--- 80580 bytes [13:42 27/11/2002] [13:42 27/11/2002] BOD_I.TTF --a--- 89940 bytes [13:42 27/11/2002] [13:42 27/11/2002] BOD_PSTC.TTF --a--- 91592 bytes [13:42 27/11/2002] [13:42 27/11/2002] BOD_R.TTF --a--- 77884 bytes [13:42 27/11/2002] [13:42 27/11/2002] BOOKOS.TTF --a--- 160940 bytes [00:30 05/11/1998] [00:30 05/11/1998] BOOKOSB.TTF --a--- 154576 bytes [00:30 05/11/1998] [00:30 05/11/1998] BOOKOSBI.TTF --a--- 162460 bytes [00:30 05/11/1998] [00:30 05/11/1998] BOOKOSI.TTF --a--- 161020 bytes [12:53 18/08/1999] [12:53 18/08/1999] BradBunR.ttf --a--- 40368 bytes [18:03 14/02/2000] [18:03 14/02/2000] BRADHITC.TTF --a--- 105296 bytes [08:55 15/10/1999] [08:55 15/10/1999] bradybunch.txt --a--- 1998 bytes [18:49 14/02/2000] [18:49 14/02/2000] BRITANIC.TTF --a--- 40728 bytes [11:13 18/08/1999] [11:13 18/08/1999] BRLNSB.TTF --a--- 96880 bytes [12:41 14/07/1998] [12:41 14/07/1998] BRLNSDB.TTF --a--- 96852 bytes [12:41 14/07/1998] [12:41 14/07/1998] BRLNSR.TTF --a--- 97284 bytes [12:41 14/07/1998] [12:41 14/07/1998] BROADW.TTF --a--- 60372 bytes [15:04 03/05/2002] [15:04 03/05/2002] BRUSHSCI.TTF --a--- 53456 bytes [11:13 18/08/1999] [11:13 18/08/1999] BSSYM7.TTF --a--- 54412 bytes [11:42 12/12/2003] [11:42 12/12/2003] CALIBRI.TTF --a--- 352736 bytes [10:12 11/09/2006] [10:12 11/09/2006] CALIBRIB.TTF --a--- 351544 bytes [10:12 11/09/2006] [10:12 11/09/2006] CALIBRII.TTF --a--- 362524 bytes [10:12 11/09/2006] [10:12 11/09/2006] CALIBRIZ.TTF --a--- 367620 bytes [10:12 11/09/2006] [10:12 11/09/2006] CALIFB.TTF --a--- 80620 bytes [12:42 14/07/1998] [12:42 14/07/1998] CALIFI.TTF --a--- 98748 bytes [12:42 14/07/1998] [12:42 14/07/1998] CALIFR.TTF --a--- 105300 bytes [12:42 14/07/1998] [12:42 14/07/1998] CALIST.TTF --a--- 80148 bytes [14:31 02/04/1999] [14:31 02/04/1999] CALISTB.TTF --a--- 85080 bytes [14:32 02/04/1999] [14:32 02/04/1999] CALISTBI.TTF --a--- 84960 bytes [14:32 02/04/1999] [14:32 02/04/1999] CALISTI.TTF --a--- 59372 bytes [14:32 02/04/1999] [14:32 02/04/1999] CAMBRIA.TTC --a--- 1090456 bytes [19:12 26/09/2006] [19:12 26/09/2006] CAMBRIAB.TTF --a--- 331916 bytes [19:12 26/09/2006] [19:12 26/09/2006] CAMBRIAI.TTF --a--- 336812 bytes [12:14 09/08/2006] [12:14 09/08/2006] CAMBRIAZ.TTF --a--- 326024 bytes [12:13 09/08/2006] [12:13 09/08/2006] CANDARA.TTF --a--- 161644 bytes [12:13 09/08/2006] [12:13 09/08/2006] CANDARAB.TTF --a--- 164904 bytes [12:13 09/08/2006] [12:13 09/08/2006] CANDARAI.TTF --a--- 167764 bytes [12:13 09/08/2006] [12:13 09/08/2006] CANDARAZ.TTF --a--- 165928 bytes [12:13 09/08/2006] [12:13 09/08/2006] Candles Chrome.ttf --a--- 130744 bytes [09:52 06/10/2003] [09:52 06/10/2003] Candles_.TTF --a--- 65128 bytes [09:52 06/10/2003] [09:52 06/10/2003] CANDYRAN.TTF --a--- 33340 bytes [13:35 14/06/1998] [13:35 14/06/1998] CASTELAR.TTF --a--- 48252 bytes [08:55 15/10/1999] [08:55 15/10/1999] casual.ttf --a--- 24904 bytes [11:34 18/08/1997] [11:34 18/08/1997] casual.txt --a--- 900 bytes [18:26 19/08/1997] [18:26 19/08/1997] CENSCBK.TTF --a--- 162380 bytes [14:07 17/03/1999] [14:07 17/03/1999] CENTAUR.TTF --a--- 82760 bytes [08:55 15/10/1999] [08:55 15/10/1999] CENTURY.TTF --a--- 165248 bytes [09:26 12/11/2002] [09:26 12/11/2002] cga40737.fon ---h-c 7216 bytes [13:52 06/02/2007] [12:00 28/09/2001] cga40850.fon ---h-c 6352 bytes [12:00 28/09/2001] [12:00 28/09/2001] cga40852.fon ---h-c 6672 bytes [13:52 06/02/2007] [12:00 28/09/2001] cga40857.fon ---h-c 6672 bytes [13:52 06/02/2007] [12:00 28/09/2001] cga40866.fon ---h-c 7232 bytes [13:52 06/02/2007] [12:00 28/09/2001] cga40869.fon ---h-c 7216 bytes [13:52 06/02/2007] [12:00 28/09/2001] cga40woa.fon ---h-c 6336 bytes [12:00 28/09/2001] [12:00 28/09/2001] cga80737.fon ---h-c 5168 bytes [13:52 06/02/2007] [12:00 28/09/2001] cga80850.fon ---h-c 4320 bytes [12:00 28/09/2001] [12:00 28/09/2001] cga80852.fon ---h-c 5200 bytes [13:52 06/02/2007] [12:00 28/09/2001] cga80857.fon ---h-c 4640 bytes [13:52 06/02/2007] [12:00 28/09/2001] cga80866.fon ---h-c 5168 bytes [13:52 06/02/2007] [12:00 28/09/2001] cga80869.fon ---h-c 5168 bytes [13:52 06/02/2007] [12:00 28/09/2001] cga80woa.fon ---h-c 4304 bytes [12:00 28/09/2001] [12:00 28/09/2001] CHILLER.TTF --a--- 96452 bytes [08:55 15/10/1999] [08:55 15/10/1999] CHOPS___.TTF --a--- 37552 bytes [08:50 08/09/1999] [08:50 08/09/1999] CHUBBY.TTF --a--- 20340 bytes [00:09 28/11/1998] [00:09 28/11/1998] COLONNA.TTF --a--- 54952 bytes [11:13 18/08/1999] [11:13 18/08/1999] comic.ttf --a--- 127596 bytes [21:22 05/05/1999] [10:39 17/07/2004] comicbd.ttf --a--- 113316 bytes [21:22 05/05/1999] [21:22 05/05/1999] CONSOLA.TTF --a--- 98520 bytes [10:32 18/01/2006] [10:32 18/01/2006] CONSOLAB.TTF --a--- 100436 bytes [10:32 18/01/2006] [10:32 18/01/2006] CONSOLAI.TTF --a--- 104144 bytes [10:32 18/01/2006] [10:32 18/01/2006] CONSOLAZ.TTF --a--- 110268 bytes [10:32 18/01/2006] [10:32 18/01/2006] CONSTAN.TTF --a--- 313880 bytes [12:13 09/08/2006] [12:13 09/08/2006] CONSTANB.TTF --a--- 317724 bytes [12:13 09/08/2006] [12:13 09/08/2006] CONSTANI.TTF --a--- 306000 bytes [12:13 09/08/2006] [12:13 09/08/2006] CONSTANZ.TTF --a--- 313044 bytes [12:13 09/08/2006] [12:13 09/08/2006] COOPBL.TTF --a--- 80388 bytes [11:13 18/08/1999] [11:13 18/08/1999] COPRGTB.TTF --a--- 61552 bytes [11:13 18/08/1999] [11:13 18/08/1999] COPRGTL.TTF --a--- 62716 bytes [11:13 18/08/1999] [11:13 18/08/1999] CORBEL.TTF --a--- 205016 bytes [12:13 09/08/2006] [12:13 09/08/2006] CORBELB.TTF --a--- 210788 bytes [12:13 09/08/2006] [12:13 09/08/2006] CORBELI.TTF --a--- 209852 bytes [12:13 09/08/2006] [12:13 09/08/2006] CORBELZ.TTF --a--- 217308 bytes [12:13 09/08/2006] [12:13 09/08/2006] coue1257.fon ---h-c 23440 bytes [13:52 06/02/2007] [12:00 28/09/2001] couf1257.fon ---h-c 31760 bytes [13:52 06/02/2007] [12:00 28/09/2001] cour.ttf --a--- 303296 bytes [12:00 28/09/2001] [12:00 28/09/2001] courbd.ttf --a--- 312920 bytes [12:00 28/09/2001] [12:00 28/09/2001] courbi.ttf --a--- 236148 bytes [12:00 28/09/2001] [12:00 28/09/2001] coure.fon ---h-- 23408 bytes [12:00 28/09/2001] [12:00 28/09/2001] couree.fon ---h-c 23440 bytes [13:52 06/02/2007] [12:00 28/09/2001] coureg.fon ---h-c 25024 bytes [13:52 06/02/2007] [12:00 28/09/2001] courer.fon ---h-c 23440 bytes [13:52 06/02/2007] [12:00 28/09/2001] couret.fon ---h-c 25024 bytes [13:52 06/02/2007] [12:00 28/09/2001] courf.fon ---h-c 31712 bytes [12:00 28/09/2001] [12:00 28/09/2001] courfe.fon ---h-c 31776 bytes [13:52 06/02/2007] [12:00 28/09/2001] courfg.fon ---h-c 33344 bytes [13:52 06/02/2007] [12:00 28/09/2001] courfr.fon ---h-c 31808 bytes [13:52 06/02/2007] [12:00 28/09/2001] courft.fon ---h-c 33360 bytes [13:52 06/02/2007] [12:00 28/09/2001] couri.ttf --a--- 245032 bytes [12:00 28/09/2001] [12:00 28/09/2001] CURLZ___.TTF --a--- 69480 bytes [16:28 02/02/2000] [16:28 02/02/2000] DejaVuCondensedSans.ttf --a--- 512728 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuCondensedSansBold.ttf --a--- 499360 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuCondensedSansBoldOblique.ttf --a--- 461852 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuCondensedSansOblique.ttf --a--- 459772 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuCondensedSerif.ttf --a--- 223164 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuCondensedSerifBold.ttf --a--- 215032 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuCondensedSerifBoldItalic.ttf --a--- 224868 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuCondensedSerifItalic.ttf --a--- 233412 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuMonoSans.ttf --a--- 303436 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuMonoSansBold.ttf --a--- 288964 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuMonoSansBoldOblique.ttf --a--- 210444 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuMonoSansOblique.ttf --a--- 216556 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuSans.ttf --a--- 581372 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuSansBold.ttf --a--- 539972 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuSansBoldOblique.ttf --a--- 493548 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuSansExtraLight.ttf --a--- 309960 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuSansOblique.ttf --a--- 496200 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuSerif.ttf --a--- 254520 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuSerifBold.ttf --a--- 238012 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuSerifBoldItalic.ttf --a--- 224064 bytes [16:23 28/10/2007] [16:23 28/10/2007] DejaVuSerifItalic.ttf --a--- 232792 bytes [16:23 28/10/2007] [16:23 28/10/2007] dos737.fon ---h-c 36336 bytes [13:52 06/02/2007] [12:00 28/09/2001] dosapp.fon ---h-c 36656 bytes [12:00 28/09/2001] [12:00 28/09/2001] ec.TTF --a--- 46376 bytes [03:39 24/10/2004] [03:39 24/10/2004] ecl.TTF --a--- 65500 bytes [03:35 24/10/2004] [03:35 24/10/2004] ecl_cour.TTF --a--- 65704 bytes [03:36 24/10/2004] [03:36 24/10/2004] ecolier.rtf --a--- 11136 bytes [13:21 30/04/2001] [13:21 30/04/2001] ec_cour.TTF --a--- 46664 bytes [03:35 24/10/2004] [03:35 24/10/2004] ec_co_pt.TTF --a--- 72800 bytes [03:36 24/10/2004] [03:36 24/10/2004] ec_cp.TTF --a--- 55116 bytes [03:35 24/10/2004] [03:35 24/10/2004] ega40737.fon ---h-c 9248 bytes [13:52 06/02/2007] [12:00 28/09/2001] ega40850.fon ---h-c 8384 bytes [12:00 28/09/2001] [12:00 28/09/2001] ega40852.fon ---h-c 8368 bytes [13:52 06/02/2007] [12:00 28/09/2001] ega40857.fon ---h-c 8704 bytes [13:52 06/02/2007] [12:00 28/09/2001] ega40866.fon ---h-c 9232 bytes [13:52 06/02/2007] [12:00 28/09/2001] ega40869.fon ---h-c 9248 bytes [13:52 06/02/2007] [12:00 28/09/2001] ega40woa.fon ---h-c 8368 bytes [12:00 28/09/2001] [12:00 28/09/2001] ega80737.fon ---h-c 6192 bytes [13:52 06/02/2007] [12:00 28/09/2001] ega80850.fon ---h-c 5328 bytes [12:00 28/09/2001] [12:00 28/09/2001] ega80852.fon ---h-c 5344 bytes [13:52 06/02/2007] [12:00 28/09/2001] ega80857.fon ---h-c 5648 bytes [13:52 06/02/2007] [12:00 28/09/2001] ega80866.fon ---h-c 5280 bytes [13:52 06/02/2007] [12:00 28/09/2001] ega80869.fon ---h-c 6192 bytes [13:52 06/02/2007] [12:00 28/09/2001] ega80woa.fon ---h-c 5312 bytes [12:00 28/09/2001] [12:00 28/09/2001] ELEPHNT.TTF --a--- 51652 bytes [10:40 24/06/1999] [10:40 24/06/1999] ELEPHNTI.TTF --a--- 54324 bytes [10:40 24/06/1999] [10:40 24/06/1999] English_.ttf -ra--- 93508 bytes [11:16 03/02/1997] [11:16 03/02/1997] ENGR.TTF --a--- 49768 bytes [11:23 25/06/1999] [11:23 25/06/1999] ENGRFE__.TTF --a--- 39140 bytes [21:19 19/09/2006] [21:19 19/09/2006] ENGRFS__.TTF --a--- 59504 bytes [21:19 19/09/2006] [21:19 19/09/2006] ENGRTH__.TTF --a--- 23168 bytes [21:19 19/09/2006] [21:19 19/09/2006] ENGRTN__.TTF --a--- 25004 bytes [21:19 19/09/2006] [21:19 19/09/2006] ENGRTT__.TTF --a--- 24780 bytes [21:19 19/09/2006] [21:19 19/09/2006] ENGRT___.TTF --a--- 5716 bytes [21:19 19/09/2006] [21:19 19/09/2006] ERASBD.TTF --a--- 57508 bytes [14:07 17/03/1999] [14:07 17/03/1999] ERASDEMI.TTF --a--- 59996 bytes [14:07 17/03/1999] [14:07 17/03/1999] ERASLGHT.TTF --a--- 68656 bytes [14:07 17/03/1999] [14:07 17/03/1999] ERASMD.TTF --a--- 60772 bytes [14:07 17/03/1999] [14:07 17/03/1999] estre.ttf --a--- 79744 bytes [12:00 28/09/2001] [12:00 28/09/2001] FELIXTI.TTF --a--- 45952 bytes [15:22 23/04/1999] [15:22 23/04/1999] FONTOCID.TTF --a--- 41932 bytes [13:05 18/01/2008] [13:05 18/01/2008] FORTE.TTF --a--- 61776 bytes [16:17 21/11/2002] [16:17 21/11/2002] FRABK.TTF --a--- 152700 bytes [13:32 10/01/2001] [13:32 10/01/2001] FRABKIT.TTF --a--- 169620 bytes [13:32 10/01/2001] [13:32 10/01/2001] FRADM.TTF --a--- 142932 bytes [15:22 23/04/1999] [15:22 23/04/1999] FRADMCN.TTF --a--- 116940 bytes [15:22 23/04/1999] [15:22 23/04/1999] FRADMIT.TTF --a--- 135904 bytes [15:22 23/04/1999] [15:22 23/04/1999] FRAHV.TTF --a--- 139400 bytes [15:22 23/04/1999] [15:22 23/04/1999] FRAHVIT.TTF --a--- 152700 bytes [15:22 23/04/1999] [15:22 23/04/1999] framd.ttf --a--- 135984 bytes [12:00 28/09/2001] [12:00 28/09/2001] FRAMDCN.TTF --a--- 132516 bytes [19:02 05/05/1999] [19:02 05/05/1999] framdit.ttf --a--- 152844 bytes [12:00 28/09/2001] [12:00 28/09/2001] FREESCPT.TTF --a--- 69876 bytes [08:55 15/10/1999] [08:55 15/10/1999] FRSCRIPT.TTF --a--- 58580 bytes [15:22 23/04/1999] [15:22 23/04/1999] FTLTLT.TTF --a--- 83580 bytes [11:13 18/08/1999] [11:13 18/08/1999] GARA.TTF --a--- 198072 bytes [11:06 02/04/2004] [11:06 02/04/2004] GARABD.TTF --a--- 199772 bytes [11:05 02/04/2004] [11:05 02/04/2004] GARAIT.TTF --a--- 189464 bytes [11:05 02/04/2004] [11:05 02/04/2004] gautami.ttf --a--- 214936 bytes [12:00 28/09/2001] [12:00 28/09/2001] georgia.ttf --a--- 155068 bytes [12:00 28/09/2001] [10:39 17/07/2004] georgiab.ttf --a--- 141032 bytes [12:00 28/09/2001] [12:00 28/09/2001] georgiai.ttf --a--- 157388 bytes [12:00 28/09/2001] [12:00 28/09/2001] georgiaz.ttf --a--- 159736 bytes [12:00 28/09/2001] [12:00 28/09/2001] GIGI.TTF --a--- 142072 bytes [08:55 15/10/1999] [08:55 15/10/1999] GILBI___.TTF --a--- 71496 bytes [14:07 17/03/1999] [14:07 17/03/1999] GILB____.TTF --a--- 68304 bytes [14:07 17/03/1999] [14:07 17/03/1999] GILC____.TTF --a--- 60320 bytes [14:32 02/04/1999] [14:32 02/04/1999] GILI____.TTF --a--- 69436 bytes [14:07 17/03/1999] [14:07 17/03/1999] GILLUBCD.TTF --a--- 72408 bytes [14:32 02/04/1999] [14:32 02/04/1999] GILSANUB.TTF --a--- 73136 bytes [14:32 02/04/1999] [14:32 02/04/1999] GIL_____.TTF --a--- 67416 bytes [14:07 17/03/1999] [14:07 17/03/1999] GLECB.TTF --a--- 72676 bytes [11:13 18/08/1999] [11:13 18/08/1999] GlobalMonospace.CompositeFont --a--- 26040 bytes [14:39 18/04/2006] [14:39 18/04/2006] GlobalSansSerif.CompositeFont --a--- 26489 bytes [13:53 29/06/2006] [13:53 29/06/2006] GlobalSerif.CompositeFont --a--- 29779 bytes [14:39 18/04/2006] [14:39 18/04/2006] GlobalUserInterface.CompositeFont --a--- 30808 bytes [13:58 29/06/2006] [13:58 29/06/2006] GLSNECB.TTF --a--- 84668 bytes [14:32 02/04/1999] [14:32 02/04/1999] GOODDC__.TTF --a--- 34628 bytes [15:25 01/06/1999] [15:25 01/06/1999] GOODDOGC.TXT --a--- 922 bytes [19:25 19/05/1998] [19:25 19/05/1998] GOODDOGP.TXT --a--- 995 bytes [19:25 19/05/1998] [19:25 19/05/1998] GOODDP__.TTF --a--- 31668 bytes [15:25 01/06/1999] [15:25 01/06/1999] GOODGIRL.TTF --a--- 28312 bytes [10:25 21/04/2000] [10:25 21/04/2000] GOTHIC.TTF --a--- 137568 bytes [15:39 12/11/1998] [15:39 12/11/1998] GOTHICB.TTF --a--- 129676 bytes [15:39 12/11/1998] [15:39 12/11/1998] GOTHICBI.TTF --a--- 139084 bytes [15:39 12/11/1998] [15:39 12/11/1998] GOTHICI.TTF --a--- 148520 bytes [15:39 12/11/1998] [15:39 12/11/1998] GOUDOS.TTF --a--- 81376 bytes [11:13 18/08/1999] [11:13 18/08/1999] GOUDOSB.TTF --a--- 82796 bytes [11:13 18/08/1999] [11:13 18/08/1999] GOUDOSI.TTF --a--- 80280 bytes [11:13 18/08/1999] [11:13 18/08/1999] GOUDYSTO.TTF --a--- 55956 bytes [15:05 03/05/2002] [15:05 03/05/2002] Guitar Pro 5.ttf --a--- 64304 bytes [17:21 14/02/2009] [16:37 16/05/2006] HARLOWSI.TTF --a--- 55060 bytes [08:55 15/10/1999] [08:55 15/10/1999] HARNGTON.TTF --a--- 70440 bytes [11:14 18/08/1999] [11:14 18/08/1999] HATTEN.TTF --a--- 108664 bytes [14:12 14/11/1998] [14:12 14/11/1998] HELSINKI.TTF --a--- 23052 bytes [08:26 04/04/2007] [08:26 04/04/2007] HELSM___.TTF --a--- 12388 bytes [17:03 15/09/2007] [17:03 15/09/2007] HELSS___.TTF --a--- 60592 bytes [08:26 04/04/2007] [08:26 04/04/2007] HELST___.TTF --a--- 21312 bytes [08:26 04/04/2007] [08:26 04/04/2007] HTOWERT.TTF --a--- 92736 bytes [12:42 14/07/1998] [12:42 14/07/1998] HTOWERTI.TTF --a--- 74712 bytes [12:42 14/07/1998] [12:42 14/07/1998] impact.ttf --a--- 137448 bytes [12:00 28/09/2001] [19:14 01/01/2007] IMPRISHA.TTF --a--- 60488 bytes [11:14 18/08/1999] [11:14 18/08/1999] INFROMAN.TTF --a--- 74968 bytes [08:55 15/10/1999] [08:55 15/10/1999] INK2CHOR.TTF --a--- 41524 bytes [10:41 27/06/2007] [10:41 27/06/2007] INK2METR.TTF --a--- 14288 bytes [17:03 15/09/2007] [17:03 15/09/2007] INK2SCRI.TTF --a--- 76096 bytes [11:00 21/04/2007] [11:00 21/04/2007] INK2SPEC.TTF --a--- 73268 bytes [09:27 27/04/2007] [09:27 27/04/2007] INK2TEXT.TTF --a--- 26188 bytes [08:54 27/04/2007] [08:54 27/04/2007] INKPEN2_.TTF --a--- 29500 bytes [11:00 21/04/2007] [11:00 21/04/2007] ITCBLKAD.TTF --a--- 132372 bytes [08:55 15/10/1999] [08:55 15/10/1999] ITCEDSCR.TTF --a--- 64056 bytes [08:55 15/10/1999] [08:55 15/10/1999] ITCKRIST.TTF --a--- 59712 bytes [08:55 15/10/1999] [08:55 15/10/1999] JazzCord.ttf --a--- 124856 bytes [21:19 19/09/2006] [21:19 19/09/2006] JazzPerc.ttf --a--- 26748 bytes [21:19 19/09/2006] [21:19 19/09/2006] JazzText.ttf --a--- 57676 bytes [21:19 19/09/2006] [21:19 19/09/2006] Jazzte__.ttf --a--- 30668 bytes [21:19 19/09/2006] [21:19 19/09/2006] Jazz____.ttf --a--- 61864 bytes [21:19 19/09/2006] [21:19 19/09/2006] Jellyka Castle s Queen ReadMe - LisezMoi.txt --a--- 10436 bytes [13:16 04/05/2008] [13:16 04/05/2008] Jellyka_Castle _s_Queen.ttf --a--- 323352 bytes [21:29 16/05/2008] [21:29 16/05/2008] JOKERMAN.TTF --a--- 69752 bytes [08:56 15/10/1999] [08:56 15/10/1999] JUICE___.TTF --a--- 62884 bytes [08:56 15/10/1999] [08:56 15/10/1999] JustAnotherFont.TTF --a--- 25876 bytes [19:01 13/12/1998] [19:01 13/12/1998] kartika.ttf ------ 121452 bytes [08:27 07/02/2007] [10:39 17/07/2004] KUNSTLER.TTF --a--- 63392 bytes [08:56 15/10/1999] [08:56 15/10/1999] latha.ttf --a--- 73292 bytes [12:00 28/09/2001] [12:00 28/09/2001] LATINWD.TTF --a--- 44824 bytes [11:14 18/08/1999] [11:14 18/08/1999] LBRITE.TTF --a--- 70748 bytes [09:26 27/10/1999] [09:26 27/10/1999] LBRITED.TTF --a--- 66724 bytes [09:26 27/10/1999] [09:26 27/10/1999] LBRITEDI.TTF --a--- 71456 bytes [09:26 27/10/1999] [09:26 27/10/1999] LBRITEI.TTF --a--- 71000 bytes [09:26 27/10/1999] [09:26 27/10/1999] LCALLIG.TTF --a--- 55464 bytes [14:34 27/10/1999] [14:34 27/10/1999] LFAX.TTF --a--- 61912 bytes [09:26 27/10/1999] [09:26 27/10/1999] LFAXD.TTF --a--- 62100 bytes [09:26 27/10/1999] [09:26 27/10/1999] LFAXDI.TTF --a--- 71472 bytes [09:26 27/10/1999] [09:26 27/10/1999] LFAXI.TTF --a--- 67420 bytes [09:26 27/10/1999] [09:26 27/10/1999] LHANDW.TTF --a--- 62484 bytes [14:34 27/10/1999] [14:34 27/10/1999] LSANS.TTF --a--- 64608 bytes [10:09 15/11/1999] [10:09 15/11/1999] LSANSD.TTF --a--- 59976 bytes [10:09 15/11/1999] [10:09 15/11/1999] LSANSDI.TTF --a--- 66320 bytes [10:09 15/11/1999] [10:09 15/11/1999] LSANSI.TTF --a--- 65412 bytes [10:09 15/11/1999] [10:09 15/11/1999] LTYPE.TTF --a--- 55984 bytes [09:29 18/11/1999] [09:29 18/11/1999] LTYPEB.TTF --a--- 52868 bytes [09:29 18/11/1999] [09:29 18/11/1999] LTYPEBO.TTF --a--- 54620 bytes [09:29 18/11/1999] [09:29 18/11/1999] LTYPEO.TTF --a--- 65412 bytes [09:29 18/11/1999] [09:29 18/11/1999] lucon.ttf --a--- 115068 bytes [12:00 28/09/2001] [12:00 28/09/2001] l_10646.ttf --a--- 323980 bytes [12:00 28/09/2001] [12:00 28/09/2001] M-ReadMe.pdf --a--- 23783 bytes [12:26 13/05/2005] [12:26 13/05/2005] MAESP___.TTF --a--- 18424 bytes [22:17 30/10/2006] [22:17 30/10/2006] MAESTBI_.ttf --a--- 34032 bytes [06:31 10/11/2006] [06:31 10/11/2006] MAESTB__.ttf --a--- 32888 bytes [06:32 10/11/2006] [06:32 10/11/2006] MAESTI__.ttf --a--- 34036 bytes [06:32 10/11/2006] [06:32 10/11/2006] MAESTRO_.TTF --a--- 63696 bytes [22:17 30/10/2006] [22:17 30/10/2006] MAESTT__.ttf --a--- 33368 bytes [06:32 10/11/2006] [06:32 10/11/2006] MAESW___.TTF --a--- 63660 bytes [22:16 30/10/2006] [22:16 30/10/2006] MAGNETOB.TTF --a--- 65284 bytes [12:42 14/07/1998] [12:42 14/07/1998] MAIAN.TTF --a--- 61384 bytes [06:53 24/06/1999] [06:53 24/06/1999] mangal.ttf --a--- 143864 bytes [12:00 28/09/2001] [12:00 28/09/2001] marlett.ttf ---h-- 24124 bytes [12:00 28/09/2001] [12:00 28/09/2001] MATURASC.TTF --a--- 51296 bytes [11:14 18/08/1999] [11:14 18/08/1999] micross.ttf --a--- 461672 bytes [12:00 28/09/2001] [19:25 01/01/2007] MISTRAL.TTF --a--- 191716 bytes [11:14 18/08/1999] [11:14 18/08/1999] MOD20.TTF --a--- 62612 bytes [11:14 18/08/1999] [11:14 18/08/1999] modern.fon --a--- 8704 bytes [12:00 28/09/2001] [12:00 28/09/2001] MSMINCHO.TTF --a--- 9081312 bytes [11:23 03/07/1998] [11:23 03/07/1998] MTCORSVA.TTF --a--- 157360 bytes [13:52 10/11/1998] [13:52 10/11/1998] mvboli.ttf --a--- 40500 bytes [12:00 28/09/2001] [12:00 28/09/2001] NIAGENG.TTF --a--- 95904 bytes [12:42 14/07/1998] [12:42 14/07/1998] NIAGSOL.TTF --a--- 74012 bytes [12:42 14/07/1998] [12:42 14/07/1998] OCRAEXT.TTF --a--- 55400 bytes [08:33 24/06/1999] [08:33 24/06/1999] Old Script.ttf --a--- 42652 bytes [13:38 06/06/2004] [13:38 06/06/2004] OLDENGL.TTF --a--- 93068 bytes [08:56 15/10/1999] [08:56 15/10/1999] ONYX.TTF --a--- 81044 bytes [11:14 18/08/1999] [11:14 18/08/1999] opens___.ttf --a--- 111620 bytes [10:07 28/05/2008] [10:07 28/05/2008] OPUSCSC_.ttf --a--- 37052 bytes [10:41 27/06/2007] [10:41 27/06/2007] OPUSCS__.ttf --a--- 32192 bytes [10:41 27/06/2007] [10:41 27/06/2007] OPUSC___.TTF --a--- 45456 bytes [10:41 27/06/2007] [10:41 27/06/2007] OPUSFBE_.ttf --a--- 9976 bytes [08:26 04/04/2007] [08:26 04/04/2007] OPUSFB__.ttf --a--- 44728 bytes [08:26 04/04/2007] [08:26 04/04/2007] OPUSFS__.ttf --a--- 21800 bytes [20:22 13/08/2007] [20:22 13/08/2007] OPUSJAPC.TTF --a--- 41628 bytes [08:26 04/04/2007] [08:26 04/04/2007] OPUSM___.ttf --a--- 12724 bytes [17:03 15/09/2007] [17:03 15/09/2007] OPUSNN__.ttf --a--- 20948 bytes [08:26 04/04/2007] [08:26 04/04/2007] OPUSO___.ttf --a--- 13052 bytes [08:26 04/04/2007] [08:26 04/04/2007] OPUSPC__.TTF --a--- 45796 bytes [10:41 27/06/2007] [10:41 27/06/2007] OPUSP___.TTF --a--- 45636 bytes [08:26 04/04/2007] [08:26 04/04/2007] OPUSROMC.ttf --a--- 22016 bytes [08:26 04/04/2007] [08:26 04/04/2007] OPUSSE__.ttf --a--- 41292 bytes [08:26 04/04/2007] [08:26 04/04/2007] OPUSS___.TTF --a--- 70120 bytes [08:26 04/04/2007] [08:26 04/04/2007] OPUSTEXT.TTF --a--- 25860 bytes [08:26 04/04/2007] [08:26 04/04/2007] OPUS____.TTF --a--- 27848 bytes [08:26 04/04/2007] [08:26 04/04/2007] pala.ttf --a--- 489884 bytes [12:00 28/09/2001] [12:00 28/09/2001] palab.ttf --a--- 434004 bytes [12:00 28/09/2001] [12:00 28/09/2001] palabi.ttf --a--- 344288 bytes [12:00 28/09/2001] [12:00 28/09/2001] palai.ttf --a--- 430800 bytes [12:00 28/09/2001] [12:00 28/09/2001] PALSCRI.TTF --a--- 51404 bytes [12:57 29/06/1999] [12:57 29/06/1999] PAPYRUS.TTF --a--- 163476 bytes [14:19 10/05/2002] [14:19 10/05/2002] PARCHM.TTF --a--- 151256 bytes [08:56 15/10/1999] [08:56 15/10/1999] PE.TTF --a--- 57768 bytes [21:19 19/09/2006] [21:19 19/09/2006] PERBI___.TTF --a--- 75620 bytes [06:54 29/06/1999] [06:54 29/06/1999] PERB____.TTF --a--- 58512 bytes [06:54 29/06/1999] [06:54 29/06/1999] PERI____.TTF --a--- 76080 bytes [06:54 29/06/1999] [06:54 29/06/1999] PERTIBD.TTF --a--- 48320 bytes [10:17 28/06/1999] [10:17 28/06/1999] PERTILI.TTF --a--- 43800 bytes [10:17 28/06/1999] [10:17 28/06/1999] PER_____.TTF --a--- 60216 bytes [10:15 29/06/1999] [10:15 29/06/1999] PLAYBILL.TTF --a--- 46164 bytes [11:14 18/08/1999] [11:14 18/08/1999] POORICH.TTF --a--- 76588 bytes [08:56 15/10/1999] [08:56 15/10/1999] PORCELAI.TTF --a--- 129660 bytes [12:26 13/05/2005] [12:26 13/05/2005] PRISTINA.TTF --a--- 82680 bytes [08:56 15/10/1999] [08:56 15/10/1999] raavi.ttf --a--- 57348 bytes [12:00 28/09/2001] [12:00 28/09/2001] RAGE.TTF --a--- 132600 bytes [08:33 24/06/1999] [08:33 24/06/1999] RAVIE.TTF --a--- 74416 bytes [12:42 14/07/1998] [12:42 14/07/1998] README.TXT --a--- 610 bytes [13:18 13/07/1999] [13:18 13/07/1999] REFSAN.TTF --a--- 220172 bytes [10:59 06/05/1999] [10:59 06/05/1999] REFSPCL.TTF --a--- 53288 bytes [14:14 03/09/1998] [14:14 03/09/1998] ROCCB___.TTF --a--- 59444 bytes [09:55 29/06/1999] [09:55 29/06/1999] ROCC____.TTF --a--- 55824 bytes [09:55 29/06/1999] [09:55 29/06/1999] ROCK.TTF --a--- 72272 bytes [09:56 29/06/1999] [09:56 29/06/1999] ROCKB.TTF --a--- 68780 bytes [09:56 29/06/1999] [09:56 29/06/1999] ROCKBI.TTF --a--- 73700 bytes [09:56 29/06/1999] [09:56 29/06/1999] ROCKEB.TTF --a--- 49168 bytes [12:57 29/06/1999] [12:57 29/06/1999] ROCKI.TTF --a--- 76756 bytes [09:56 29/06/1999] [09:56 29/06/1999] roman.fon --a--- 13312 bytes [12:00 28/09/2001] [12:00 28/09/2001] RPRSCHOR.ttf --a--- 65948 bytes [10:41 27/06/2007] [10:41 27/06/2007] RPRSMET_.ttf --a--- 16864 bytes [17:03 15/09/2007] [17:03 15/09/2007] RPRSREH_.ttf --a--- 43424 bytes [08:26 04/04/2007] [08:26 04/04/2007] RPRSSCRP.ttf --a--- 71092 bytes [08:26 04/04/2007] [08:26 04/04/2007] RPRSSPEC.ttf --a--- 79148 bytes [10:07 23/08/2007] [10:07 23/08/2007] RPRSSTMP.ttf --a--- 120912 bytes [10:15 06/04/2007] [10:15 06/04/2007] RPRSTEXT.ttf --a--- 36984 bytes [21:41 05/06/2007] [21:41 05/06/2007] RPRSTITL.ttf --a--- 223748 bytes [14:45 28/04/2007] [14:45 28/04/2007] RPRS____.ttf --a--- 34616 bytes [10:21 20/08/2007] [10:21 20/08/2007] SCHLBKB.TTF --a--- 168756 bytes [14:07 17/03/1999] [14:07 17/03/1999] SCHLBKBI.TTF --a--- 160964 bytes [14:07 17/03/1999] [14:07 17/03/1999] SCHLBKI.TTF --a--- 163164 bytes [14:07 17/03/1999] [14:07 17/03/1999] script.fon --a--- 12288 bytes [12:00 28/09/2001] [12:00 28/09/2001] SCRIPTBL.TTF --a--- 55500 bytes [08:33 24/06/1999] [08:33 24/06/1999] SE.TTF --a--- 122972 bytes [21:19 19/09/2006] [21:19 19/09/2006] SEGOEUI.TTF --a--- 509920 bytes [13:24 28/06/2006] [13:24 28/06/2006] SEGOEUIB.TTF --a--- 490852 bytes [13:24 28/06/2006] [13:24 28/06/2006] SEGOEUII.TTF --a--- 380456 bytes [13:24 28/06/2006] [13:24 28/06/2006] SEGOEUIZ.TTF --a--- 393068 bytes [13:24 28/06/2006] [13:24 28/06/2006] sere1257.fon ---h-c 59024 bytes [13:52 06/02/2007] [12:00 28/09/2001] serf1257.fon ---h-c 84080 bytes [13:52 06/02/2007] [12:00 28/09/2001] serife.fon ---h-- 57936 bytes [12:00 28/09/2001] [12:00 28/09/2001] serifee.fon ---h-c 59952 bytes [13:52 06/02/2007] [12:00 28/09/2001] serifeg.fon ---h-c 60752 bytes [13:52 06/02/2007] [12:00 28/09/2001] serifer.fon ---h-c 63296 bytes [13:52 06/02/2007] [12:00 28/09/2001] serifet.fon ---h-c 61024 bytes [13:52 06/02/2007] [12:00 28/09/2001] seriff.fon ---h-c 81728 bytes [12:00 28/09/2001] [12:00 28/09/2001] seriffe.fon ---h-c 85360 bytes [13:52 06/02/2007] [12:00 28/09/2001] seriffg.fon ---h-c 86256 bytes [13:52 06/02/2007] [12:00 28/09/2001] seriffr.fon ---h-c 90736 bytes [13:52 06/02/2007] [12:00 28/09/2001] serifft.fon ---h-c 84848 bytes [13:52 06/02/2007] [12:00 28/09/2001] SHOWG.TTF --a--- 52316 bytes [12:42 14/07/1998] [12:42 14/07/1998] shruti.ttf --a--- 234280 bytes [12:00 28/09/2001] [12:00 28/09/2001] smae1257.fon ---h-c 24672 bytes [13:52 06/02/2007] [12:00 28/09/2001] smaf1257.fon ---h-c 19904 bytes [13:52 06/02/2007] [12:00 28/09/2001] smalle.fon ---h-- 26112 bytes [12:00 28/09/2001] [12:00 28/09/2001] smallee.fon ---h-c 24784 bytes [13:52 06/02/2007] [12:00 28/09/2001] smalleg.fon ---h-c 28912 bytes [13:52 06/02/2007] [12:00 28/09/2001] smaller.fon ---h-c 24832 bytes [13:52 06/02/2007] [12:00 28/09/2001] smallet.fon ---h-c 29200 bytes [13:52 06/02/2007] [12:00 28/09/2001] smallf.fon ---h-c 21504 bytes [13:52 06/02/2007] [12:00 28/09/2001] smallfe.fon ---h-c 19600 bytes [13:52 06/02/2007] [12:00 28/09/2001] smallfg.fon ---h-c 23120 bytes [13:52 06/02/2007] [12:00 28/09/2001] smallfr.fon ---h-c 19760 bytes [13:52 06/02/2007] [12:00 28/09/2001] smallft.fon ---h-c 23008 bytes [13:52 06/02/2007] [12:00 28/09/2001] SNAP____.TTF --a--- 63196 bytes [08:56 15/10/1999] [08:56 15/10/1999] ssee1257.fon ---h-c 65456 bytes [13:52 06/02/2007] [12:00 28/09/2001] ssef1257.fon ---h-c 90336 bytes [13:52 06/02/2007] [12:00 28/09/2001] sserife.fon --a--- 64656 bytes [21:22 05/05/1999] [21:22 05/05/1999] sserifee.fon ---h-c 66464 bytes [13:52 06/02/2007] [12:00 28/09/2001] sserifeg.fon ---h-c 65328 bytes [13:52 06/02/2007] [12:00 28/09/2001] sserifer.fon ---h-c 68848 bytes [13:52 06/02/2007] [12:00 28/09/2001] sserifet.fon ---h-c 64400 bytes [13:52 06/02/2007] [12:00 28/09/2001] sseriff.fon ---h-c 89856 bytes [12:00 28/09/2001] [12:00 28/09/2001] sseriffe.fon ---h-c 92032 bytes [13:52 06/02/2007] [12:00 28/09/2001] sseriffg.fon ---h-c 90288 bytes [13:52 06/02/2007] [12:00 28/09/2001] sseriffr.fon ---h-c 98256 bytes [13:52 06/02/2007] [12:00 28/09/2001] sserifft.fon ---h-c 89456 bytes [13:52 06/02/2007] [12:00 28/09/2001] STENCIL.TTF --a--- 55596 bytes [11:14 18/08/1999] [11:14 18/08/1999] sylfaen.ttf --a--- 221676 bytes [12:00 28/09/2001] [12:00 28/09/2001] symbol.ttf --a--- 69464 bytes [12:00 28/09/2001] [12:00 28/09/2001] symbole.fon ---h-- 56336 bytes [12:00 28/09/2001] [12:00 28/09/2001] tahoma.ttf --a--- 383804 bytes [12:00 28/09/2001] [19:26 01/01/2007] tahomabd.ttf --a--- 355680 bytes [12:00 28/09/2001] [19:26 01/01/2007] TAMBURO_.TTF --a--- 24524 bytes [21:19 19/09/2006] [21:19 19/09/2006] TCBI____.TTF --a--- 73856 bytes [06:54 29/06/1999] [06:54 29/06/1999] TCB_____.TTF --a--- 74656 bytes [06:54 29/06/1999] [06:54 29/06/1999] TCCB____.TTF --a--- 66020 bytes [14:11 25/06/1999] [14:11 25/06/1999] TCCEB.TTF --a--- 74708 bytes [09:42 19/11/2002] [09:42 19/11/2002] TCCM____.TTF --a--- 66804 bytes [14:11 25/06/1999] [14:11 25/06/1999] TCMI____.TTF --a--- 78236 bytes [06:54 29/06/1999] [06:54 29/06/1999] TCM_____.TTF --a--- 76252 bytes [06:54 29/06/1999] [06:54 29/06/1999] TEMPSITC.TTF --a--- 76100 bytes [08:56 15/10/1999] [08:56 15/10/1999] times.ttf --a--- 409280 bytes [12:00 28/09/2001] [10:39 17/07/2004] timesbd.ttf --a--- 398372 bytes [12:00 28/09/2001] [10:39 17/07/2004] timesbi.ttf --a--- 239692 bytes [12:00 28/09/2001] [12:00 28/09/2001] timesi.ttf --a--- 248368 bytes [12:00 28/09/2001] [12:00 28/09/2001] trebuc.ttf --a--- 134108 bytes [12:00 28/09/2001] [10:39 17/07/2004] trebucbd.ttf --a--- 123096 bytes [12:00 28/09/2001] [12:00 28/09/2001] trebucbi.ttf --a--- 131188 bytes [12:00 28/09/2001] [12:00 28/09/2001] trebucit.ttf --a--- 139288 bytes [12:00 28/09/2001] [12:00 28/09/2001] TT0131M_.TTF ------ 44960 bytes [22:02 06/02/2007] [09:50 31/12/1997] TT0246M_.TTF ------ 38396 bytes [22:02 06/02/2007] [09:50 31/12/1997] TT0362M_.TTF ------ 51728 bytes [22:02 06/02/2007] [08:48 15/01/1998] TT0610M_.TTF ------ 126680 bytes [22:02 06/02/2007] [09:51 31/12/1997] TT0952M_.TTF ------ 50140 bytes [22:02 06/02/2007] [09:52 31/12/1997] tt1040m_.ttf --a--- 64488 bytes [10:14 29/03/1993] [10:14 29/03/1993] TT1044M_.TTF ------ 89380 bytes [22:02 06/02/2007] [09:52 31/12/1997] TT1139M_.TTF ------ 57224 bytes [22:02 06/02/2007] [09:52 31/12/1997] TT1221M_.TTF ------ 51364 bytes [22:02 06/02/2007] [09:53 31/12/1997] TT7009M_.TTF ------ 100616 bytes [22:02 06/02/2007] [09:53 31/12/1997] TT9832L_.TTF ------ 90472 bytes [22:02 06/02/2007] [09:53 31/12/1997] tunga.ttf --a--- 148624 bytes [12:00 28/09/2001] [19:24 01/01/2007] verdana.ttf --a--- 171792 bytes [12:00 28/09/2001] [10:39 17/07/2004] verdanab.ttf --a--- 137616 bytes [12:00 28/09/2001] [12:00 28/09/2001] verdanai.ttf --a--- 155076 bytes [12:00 28/09/2001] [12:00 28/09/2001] verdanaz.ttf --a--- 154800 bytes [12:00 28/09/2001] [12:00 28/09/2001] vga737.fon ---h-c 5168 bytes [13:52 06/02/2007] [12:00 28/09/2001] vga775.fon ---h-c 5168 bytes [13:52 06/02/2007] [12:00 28/09/2001] vga850.fon ---h-- 5232 bytes [12:00 28/09/2001] [12:00 28/09/2001] vga852.fon ---h-c 6160 bytes [13:52 06/02/2007] [12:00 28/09/2001] vga855.fon ---h-c 5120 bytes [13:52 06/02/2007] [12:00 28/09/2001] vga857.fon ---h-c 5552 bytes [13:52 06/02/2007] [12:00 28/09/2001] vga860.fon ---h-c 5184 bytes [13:52 06/02/2007] [12:00 28/09/2001] vga863.fon ---h-c 5200 bytes [13:52 06/02/2007] [12:00 28/09/2001] vga865.fon ---h-c 5184 bytes [13:52 06/02/2007] [12:00 28/09/2001] vga866.fon ---h-c 6128 bytes [13:52 06/02/2007] [12:00 28/09/2001] vga869.fon ---h-c 5184 bytes [13:52 06/02/2007] [12:00 28/09/2001] vgaf1257.fon ---h-c 5376 bytes [13:52 06/02/2007] [12:00 28/09/2001] vgafix.fon ---h-- 5360 bytes [12:00 28/09/2001] [12:00 28/09/2001] vgafixe.fon ---h-c 5376 bytes [13:52 06/02/2007] [12:00 28/09/2001] vgafixg.fon ---h-c 6112 bytes [13:52 06/02/2007] [12:00 28/09/2001] vgafixr.fon ---h-c 5600 bytes [13:52 06/02/2007] [12:00 28/09/2001] vgafixt.fon ---h-c 6112 bytes [13:52 06/02/2007] [12:00 28/09/2001] vgaoem.fon ---h-c 5168 bytes [12:00 28/09/2001] [12:00 28/09/2001] vgas1257.fon ---h-c 6656 bytes [13:52 06/02/2007] [12:00 28/09/2001] vgasys.fon ---h-- 7280 bytes [12:00 28/09/2001] [12:00 28/09/2001] vgasyse.fon ---h-c 6608 bytes [13:52 06/02/2007] [12:00 28/09/2001] vgasysg.fon ---h-c 7008 bytes [13:52 06/02/2007] [12:00 28/09/2001] vgasysr.fon ---h-c 6912 bytes [13:52 06/02/2007] [12:00 28/09/2001] vgasyst.fon ---h-c 6912 bytes [13:52 06/02/2007] [12:00 28/09/2001] VINERITC.TTF --a--- 104372 bytes [08:56 15/10/1999] [08:56 15/10/1999] VIVALDII.TTF --a--- 64748 bytes [08:56 15/10/1999] [08:56 15/10/1999] VLADIMIR.TTF --a--- 54308 bytes [08:56 15/10/1999] [08:56 15/10/1999] vrinda.ttf ------ 252820 bytes [08:27 07/02/2007] [10:39 17/07/2004] webdings.ttf --a--- 118752 bytes [12:00 28/09/2001] [12:00 28/09/2001] wingding.ttf --a--- 81000 bytes [12:00 28/09/2001] [12:00 28/09/2001] WINGDNG2.TTF --a--- 65788 bytes [15:22 22/01/2002] [15:22 22/01/2002] WINGDNG3.TTF --a--- 35328 bytes [15:22 22/01/2002] [15:22 22/01/2002] wst_czec.fon --a--- 18880 bytes [12:00 28/09/2001] [12:00 28/09/2001] wst_engl.fon --a--- 18880 bytes [12:00 28/09/2001] [12:00 28/09/2001] wst_fren.fon --a--- 18880 bytes [12:00 28/09/2001] [12:00 28/09/2001] wst_germ.fon --a--- 18880 bytes [12:00 28/09/2001] [12:00 28/09/2001] wst_ital.fon --a--- 18880 bytes [12:00 28/09/2001] [12:00 28/09/2001] wst_span.fon --a--- 18880 bytes [12:00 28/09/2001] [12:00 28/09/2001] wst_swed.fon --a--- 18880 bytes [12:00 28/09/2001] [12:00 28/09/2001] WYORDB.TTF --a--c 93432 bytes [22:37 06/02/2007] [17:47 11/04/1999] e:\WINDOWS\Fonts\PSType1 d----- [18:22 03/06/2008] PORCELAI.FON --a--- 44560 bytes [12:26 13/05/2005] [12:26 13/05/2005] PORCELAI.PFB --a--- 129403 bytes [12:26 13/05/2005] [12:26 13/05/2005] PORCELAI.PFM --a--- 678 bytes [12:26 13/05/2005] [12:26 13/05/2005] -=End Of File=-
  7. Titelive
    rapport combofix ComboFix 09-06-13.09 - Les Gregs 14/06/2009 13:13.2 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.3.1252.33.1036.18.767.450 [GMT 2:00] Lancé depuis: e:\documents and settings\Les Gregs\Bureau\Sécurité\ComboFix.exe Commutateurs utilisés :: e:\documents and settings\Les Gregs\Bureau\CFScript.txt AV: Kaspersky Internet Security *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0} FW: Kaspersky Internet Security *disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0} . - Mode FONCTIONNALITES REDUITES - . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . e:\windows\system\msvbvm60.dll e:\windows\system32\muzapp.exe . ((((((((((((((((((((((((((((( Fichiers créés du 2009-05-14 au 2009-06-14 )))))))))))))))))))))))))))))))))))) . 2009-06-14 10:22 . 2009-06-14 10:23 -------- d-----w- E:\rsit 2009-06-13 07:24 . 2009-06-13 07:24 -------- d-----w- e:\program files\CleanUp! 2009-06-11 18:43 . 2009-04-30 21:16 12800 -c----w- e:\windows\system32\dllcache\xpshims.dll 2009-06-11 18:43 . 2009-04-30 21:16 246272 -c----w- e:\windows\system32\dllcache\ieproxy.dll 2009-06-06 10:20 . 2009-06-06 10:22 -------- d-----w- e:\program files\jv16 PowerTools 2008 2009-06-06 05:26 . 2009-06-06 05:26 -------- d-----w- e:\program files\Misc. Support Library (Spybot - Search & Destroy) 2009-06-04 05:28 . 2009-06-04 05:28 -------- d-----w- e:\program files\iPod 2009-06-04 05:15 . 2009-06-04 05:15 75048 ----a-w- e:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 8.2.0.23\SetupAdmin.exe 2009-06-04 04:03 . 2009-06-07 07:04 84526 ----a-w- e:\windows\system32\perfc040.dat 2009-06-04 04:03 . 2009-06-07 07:04 510324 ----a-w- e:\windows\system32\perfh040.dat 2009-05-30 11:31 . 2009-05-30 11:31 -------- d-----w- e:\program files\FreshDevices 2009-05-29 19:07 . 2009-06-14 11:06 -------- d-----w- e:\program files\Mozilla Firefox 3.5 Beta 4 2009-05-29 17:17 . 2009-06-06 08:24 -------- d-----w- e:\program files\Lavasoft 2009-05-24 19:51 . 2009-05-24 19:51 -------- d-----w- e:\documents and settings\Les Gregs\Local Settings\Application Data\Xenocode 2009-05-24 12:15 . 2009-05-24 12:15 -------- d-----w- e:\documents and settings\Default User\Application Data\Avanquest 2009-05-24 06:35 . 2009-05-24 06:35 -------- d-sh--r- E:\_Backup.RC 2009-05-24 06:33 . 2009-05-24 12:28 -------- d-----w- e:\program files\Fichiers communs\AntiVirus 2009-05-16 11:55 . 2009-05-16 11:55 -------- d-----w- e:\program files\Realtek AC97 2009-05-16 09:02 . 2009-05-16 09:02 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\Logitech 2009-05-16 09:02 . 2009-05-16 09:02 -------- d-----w- e:\documents and settings\All Users\Application Data\LogiShrd 2009-05-16 09:01 . 2008-12-18 21:43 10384 ----a-w- e:\windows\system32\drivers\LBeepKE.sys 2009-05-16 08:59 . 2009-02-18 22:26 301656 ----a-w- e:\windows\system32\BtCoreIf.dll 2009-05-16 08:59 . 2009-02-18 22:27 84496 ----a-w- e:\windows\system32\KemXML.dll 2009-05-16 08:59 . 2009-02-18 22:27 117264 ----a-w- e:\windows\system32\KemWnd.dll 2009-05-16 08:59 . 2009-02-18 22:27 145936 ----a-w- e:\windows\system32\KemUtil.dll 2009-05-16 08:59 . 2009-02-18 22:27 170512 ----a-w- e:\windows\system32\kemutb.dll 2009-05-16 08:58 . 2009-05-16 08:58 -------- d-----w- e:\documents and settings\All Users\Application Data\Logitech 2009-05-16 08:58 . 2009-05-16 09:00 -------- d-----w- e:\program files\Fichiers communs\Logishrd 2009-05-15 21:57 . 2009-05-15 22:00 -------- d-----w- e:\program files\Anti Keylogger Elite . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2009-06-14 08:21 . 2007-02-08 15:08 -------- d-----w- e:\program files\Mozilla Thunderbird 2009-06-14 05:30 . 2007-02-22 10:58 -------- d-----w- e:\documents and settings\All Users\Application Data\Kaspersky Lab 2009-06-13 13:40 . 2009-06-13 13:40 0 ----a-w- e:\documents and settings\Les Gregs\ntuser.tmp 2009-06-13 10:24 . 2007-02-22 10:58 99735584 --sha-w- e:\windows\system32\drivers\fidbox.dat 2009-06-13 10:24 . 2007-02-22 10:58 4820768 --sha-w- e:\windows\system32\drivers\fidbox2.dat 2009-06-13 10:24 . 2007-02-22 10:58 455108 --sha-w- e:\windows\system32\drivers\fidbox2.idx 2009-06-13 10:24 . 2007-02-22 10:58 1340996 --sha-w- e:\windows\system32\drivers\fidbox.idx 2009-06-13 10:20 . 2007-02-07 08:46 -------- d-----w- e:\program files\PowerArchiver 2009-06-11 18:54 . 2008-12-19 23:53 -------- d-----w- e:\documents and settings\All Users\Application Data\Microsoft Help 2009-06-08 16:10 . 2008-12-23 11:02 -------- d-----w- e:\program files\Smart Projects 2009-06-07 13:02 . 2007-08-18 09:58 -------- d-----w- e:\program files\CCleaner 2009-06-06 12:41 . 2007-02-25 10:01 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\Vso 2009-06-06 10:17 . 2007-02-06 16:55 -------- d--h--w- e:\program files\InstallShield Installation Information 2009-06-06 10:17 . 2007-02-06 22:01 -------- d-----w- e:\documents and settings\All Users\Application Data\Ulead Systems 2009-06-05 18:38 . 2007-09-08 17:53 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\Apple Computer 2009-06-04 19:41 . 2008-09-23 18:07 5632 ----a-w- e:\windows\system32\drivers\StarOpen.sys 2009-06-04 05:29 . 2008-12-29 14:36 -------- d-----w- e:\program files\iTunes 2009-06-04 05:28 . 2008-10-19 10:56 -------- d-----w- e:\program files\Fichiers communs\Apple 2009-06-04 04:34 . 2007-02-09 18:19 107752 ----a-w- e:\documents and settings\Les Gregs\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-06-03 17:25 . 2008-10-31 07:30 1 ----a-w- e:\documents and settings\Les Gregs\Application Data\OpenOffice.org\3\user\uno_packages\cache\stamp.sys 2009-05-30 11:28 . 2008-10-24 14:59 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\FileZilla 2009-05-26 19:04 . 2009-03-21 13:10 -------- d-----w- e:\program files\Mozilla Firefox 3.1 Beta 3 2009-05-20 17:01 . 2008-01-06 06:23 105395 ----a-w- e:\windows\system32\drivers\klin.dat 2009-05-20 17:01 . 2008-01-06 06:23 94643 ----a-w- e:\windows\system32\drivers\klick.dat 2009-05-17 17:27 . 2007-02-06 17:33 -------- d-----w- e:\program files\WinTV 2009-05-16 09:01 . 2009-05-16 09:01 0 ---ha-w- e:\windows\system32\drivers\Msft_Kernel_LHidFilt_01005.Wdf 2009-05-16 09:01 . 2009-05-16 09:01 0 ---ha-w- e:\windows\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf 2009-05-16 09:01 . 2009-05-16 09:01 0 ---ha-w- e:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf 2009-05-16 08:58 . 2007-02-06 17:25 -------- d-----w- e:\program files\Logitech 2009-05-13 05:04 . 2004-08-23 17:16 915456 ----a-w- e:\windows\system32\wininet.dll 2009-05-12 16:22 . 2009-05-12 16:21 -------- d-----w- e:\program files\Savvy TV 2009-05-08 19:43 . 2007-02-23 12:40 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\Ulead Systems 2009-05-08 17:31 . 2009-05-08 17:31 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\InstallShield 2009-05-08 08:47 . 2007-09-29 06:48 -------- d-----w- e:\documents and settings\All Users\Application Data\DVD Shrink 2009-05-07 15:33 . 2001-09-28 12:00 348672 ----a-w- e:\windows\system32\localspl.dll 2009-05-03 15:30 . 2008-12-25 09:02 1324 ----a-w- e:\windows\system32\d3d9caps.dat 2009-04-30 20:02 . 2009-04-30 20:02 663552 ----a-w- e:\windows\system32\nvcuvid.dll 2009-04-30 20:02 . 2009-04-30 20:02 1579630 ----a-w- e:\windows\system32\nvdata.bin 2009-04-30 20:02 . 2009-04-30 20:02 1314816 ----a-w- e:\windows\system32\nvcuvenc.dll 2009-04-30 20:02 . 2007-02-06 16:58 457248 ----a-w- e:\windows\system32\nvudisp.exe 2009-04-29 19:38 . 2008-12-20 00:01 -------- d-----w- e:\program files\Microsoft Works 2009-04-29 17:52 . 2007-09-27 20:06 47360 -c--a-w- e:\documents and settings\Les Gregs\Application Data\pcouffin.sys 2009-04-29 17:52 . 2007-09-27 20:06 47360 -c--a-w- e:\documents and settings\Les Gregs\Application Data\pcouffin.sys 2009-04-29 17:52 . 2007-09-27 20:06 47360 ----a-w- e:\windows\system32\drivers\pcouffin.sys 2009-04-29 17:52 . 2008-03-07 18:45 -------- d-----w- e:\program files\VSO 2009-04-28 17:14 . 2009-04-28 17:14 -------- d-----w- e:\program files\Xilisoft 2009-04-26 22:42 . 2007-02-06 16:54 457248 ----a-w- e:\windows\system32\NVUNINST.EXE 2009-04-24 12:13 . 2001-09-28 12:00 84526 ----a-w- e:\windows\system32\perfc00C.dat 2009-04-24 12:13 . 2001-09-28 12:00 510324 ----a-w- e:\windows\system32\perfh00C.dat 2009-04-24 08:14 . 2009-04-24 08:14 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\LiteOn 2009-04-19 19:50 . 2001-09-28 12:00 1847296 ----a-w- e:\windows\system32\win32k.sys 2009-04-19 14:09 . 2009-04-19 14:09 -------- d-----w- e:\documents and settings\All Users\Application Data\Messenger Plus! 2009-04-19 12:37 . 2009-04-19 12:37 -------- d-----w- e:\program files\Messenger Plus! Live 2009-04-19 10:14 . 2009-04-19 10:14 -------- d-----w- e:\program files\Windows Live 2009-04-19 07:59 . 2009-04-19 07:54 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\WIPE 2009-04-19 07:43 . 2009-04-19 07:42 -------- d-----w- e:\program files\splus 2009-04-18 21:53 . 2009-04-18 21:53 -------- d-----w- e:\program files\Microsoft Silverlight 2009-04-18 21:52 . 2009-04-18 21:52 -------- d-----w- e:\program files\Microsoft Sync Framework 2009-04-17 16:01 . 2009-03-21 11:45 -------- d-----w- e:\program files\Microsoft 2009-04-16 21:00 . 2009-04-16 21:00 206088 ----a-w- e:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.506\avp.exe 2009-04-16 21:00 . 2009-04-16 21:00 226832 ----a-w- e:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.506\XP\klif.sys 2009-04-15 16:47 . 2009-04-15 16:25 -------- d-----w- e:\program files\OrangeHSS 2009-04-15 14:53 . 2007-02-07 00:20 585216 ----a-w- e:\windows\system32\rpcrt4.dll 2009-04-04 13:03 . 2007-11-24 13:33 2560 ----a-w- e:\windows\_MSRSTRT.EXE 2009-03-28 08:28 . 2008-10-30 18:34 410984 ----a-w- e:\windows\system32\deploytk.dll 2009-03-28 08:27 . 2009-03-28 08:22 152576 ----a-w- e:\documents and settings\Les Gregs\Application Data\Sun\Java\jre1.6.0_13\lzma.dll 2009-03-24 18:47 . 2009-03-24 18:47 86576 ----a-w- e:\documents and settings\Les Gregs\Application Data\Microsoft\Services Windows Live\Raccourci Galerie de Photos Windows Live.exe 2009-03-24 18:47 . 2009-03-24 18:47 392728 ----a-w- e:\documents and settings\Les Gregs\Application Data\Microsoft\Services Windows Live\Services Windows Live.dll 2009-03-24 18:47 . 2009-03-24 18:47 132672 ----a-w- e:\documents and settings\Les Gregs\Application Data\Microsoft\Services Windows Live\Raccourci Windows Live Messenger.exe 2009-03-23 18:45 . 2007-12-14 23:14 8457 ----a-w- e:\windows\system32\SpoonUninstall-dBpoweramp DSP Effects.dat 2009-03-23 18:44 . 2009-03-23 18:44 13281 ----a-w- e:\windows\system32\SpoonUninstall-dBpoweramp Music Converter.dat 2009-03-23 18:44 . 2007-02-19 09:37 2433400 ----a-w- e:\windows\system32\SpoonUninstall.exe 2009-03-21 09:24 . 2009-03-21 09:24 152576 ----a-w- e:\documents and settings\Les Gregs\Application Data\Sun\Java\jre1.6.0_11\lzma.dll 2009-03-19 14:32 . 2009-03-19 14:32 23400 ----a-w- e:\documents and settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}\x86\x86\GEARAspiWDM.sys 2009-03-19 14:32 . 2008-10-19 11:07 23400 ----a-w- e:\windows\system32\drivers\GEARAspiWDM.sys 2008-03-15 10:50 . 2008-03-15 10:50 23 --sha-w- e:\windows\system32\cdfedfdcc_z.dll 2009-01-31 07:17 . 2009-01-31 07:17 23 --sha-w- e:\windows\system32\edafdaa6_x.dll 2006-05-03 09:06 . 2007-08-29 16:11 163328 --sha-r- e:\windows\system32\flvDX.dll 2007-02-21 10:47 . 2007-08-29 16:11 31232 --sha-r- e:\windows\system32\msfDX.dll . ((((((((((((((((((((((((((((( SnapShot@2009-06-13_04.04.29 ))))))))))))))))))))))))))))))))))))))))) . + 2009-06-14 05:29 . 2009-06-14 05:29 16384 e:\windows\Temp\Perflib_Perfdata_7e0.dat + 2009-01-18 15:05 . 2009-01-18 15:05 675840 e:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0100000010\9.1.0\JP2KLib.dll + 2008-12-18 15:48 . 2008-12-18 15:48 3645440 e:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0100000010\9.1.0\authplay.dll + 2009-02-27 15:37 . 2009-02-27 15:37 20403568 e:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0100000010\9.1.0\AcroRd32.dll . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="e:\windows\system32\ctfmon.exe" [2008-04-14 15360] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"="e:\windows\system32\NvCpl.dll" [2008-09-17 13574144] "NvMediaCenter"="e:\windows\system32\NvMcTray.dll" [2008-09-17 86016] "LVCOMSX"="e:\windows\System32\LVCOMSX.EXE" [2005-07-19 221184] "AVP"="e:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [2009-04-16 206088] "iTunesHelper"="e:\program files\iTunes\iTunesHelper.exe" [2009-05-30 292136] "Adobe Reader Speed Launcher"="e:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696] "SoundMan"="SOUNDMAN.EXE" - e:\windows\soundman.exe [2007-04-16 577536] "nwiz"="nwiz.exe" - e:\windows\system32\nwiz.exe [2008-09-17 1657376] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn] 2009-02-18 22:30 72208 ----a-w- e:\program files\Fichiers communs\Logishrd\Bluetooth\LBTWLgn.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] @="" [HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Synchronizer.lnk] backup=e:\windows\pss\Adobe Reader Synchronizer.lnkCommon Startup [HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk] backup=e:\windows\pss\Lancement rapide d'Adobe Reader.lnkCommon Startup [HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech Desktop Messenger.lnk] backup=e:\windows\pss\Logitech Desktop Messenger.lnkCommon Startup [HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech SetPoint.lnk] backup=e:\windows\pss\Logitech SetPoint.lnkCommon Startup [HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk] backup=e:\windows\pss\Microsoft Office.lnkCommon Startup [HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^WinZip Quick Pick.lnk] backup=e:\windows\pss\WinZip Quick Pick.lnkCommon Startup [HKLM\~\startupfolder\E:^Documents and Settings^Les Gregs^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.4.lnk] backup=e:\windows\pss\OpenOffice.org 2.4.lnkStartup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "SeaPort"=2 (0x2) "RichVideo"=2 (0x2) [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 "UpdatesDisableNotify"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "e:\\Program Files\\CyberLink\\PowerDVD\\PowerDVD.exe"= "e:\\Program Files\\OrangeHSS\\Connectivity\\ConnectivityManager.exe"= "e:\\Program Files\\Bonjour\\mDNSResponder.exe"= "e:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "e:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "e:\\Program Files\\iTunes\\iTunes.exe"= R0 klbg;Kaspersky Lab Boot Guard Driver;e:\windows\system32\drivers\klbg.sys [29/01/2008 19:29 33808] R2 LBeepKE;LBeepKE;e:\windows\system32\drivers\LBeepKE.sys [16/05/2009 11:01 10384] R3 HCWBT8XX;Hauppauge WinTV 848/9 WDM Video Driver;e:\windows\system32\drivers\HCWBT8xx.sys [06/02/2007 19:34 472644] R3 KLFLTDEV;Kaspersky Lab KLFltDev;e:\windows\system32\drivers\klfltdev.sys [13/03/2008 20:02 26640] R3 klim5;Kaspersky Anti-Virus NDIS Filter;e:\windows\system32\drivers\klim5.sys [30/04/2008 19:06 24592] R3 PID_0920;Logitech QuickCam Express(PID_0920);e:\windows\system32\drivers\LV532AV.SYS [06/02/2007 19:25 163328] R3 usbdtv;LITE-ON DVB-T (PID=F001) receiver;e:\windows\system32\drivers\usbdtv.sys [24/04/2009 10:05 31232] S0 Lbd;Lbd;e:\windows\system32\DRIVERS\Lbd.sys --> e:\windows\system32\DRIVERS\Lbd.sys [?] S2 AKEProtect;AKEProtect;\??\e:\program files\Anti Keylogger Elite\AKEProtect.sys --> e:\program files\Anti Keylogger Elite\AKEProtect.sys [?] S3 DstAud;DstAud;e:\windows\system32\drivers\DstAud.sys [06/02/2007 18:59 8901] S3 DstVid;DstVid;e:\windows\system32\drivers\DstVid.sys [06/02/2007 18:59 11237] S3 DTVFW;LITE-ON DVB-T USB adapter firmware;e:\windows\system32\drivers\dtvfw.sys [24/04/2009 10:05 22016] S3 maconfservice;Ma-Config Service;e:\program files\ma-config.com\maconfservice.exe [15/03/2009 09:34 216232] S3 SetupNTGLM7X;SetupNTGLM7X;\??\g:\ntglm7x.sys --> g:\NTGLM7X.sys [?] S3 SynasUSB;SynasUSB;e:\windows\system32\drivers\synasUSB.sys [08/02/2009 16:15 23288] [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] "e:\windows\system32\rundll32.exe" "e:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP . . ------- Examen supplémentaire ------- . uStart Page = hxxp://www.google.fr/ mStart Page = about:blank uInternet Connection Wizard,ShellNext = https://login.live.com/ppsecure/sha1auth.srf?lc=1036 uSearchURL,(Default) = hxxp://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR IE: E&xport to Microsoft Excel - e:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-06-14 13:14 Windows 5.1.2600 Service Pack 3 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{95808DC4-FA4A-4c74-92FE-5B863F82066B}] "ImagePath"="\??\e:\program files\CyberLink\PowerDVD\000.fcl" . --------------------- CLES DE REGISTRE BLOQUEES --------------------- [HKEY_USERS\S-1-5-21-1606980848-1417001333-1801674531-1006\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*] "??"=hex:3e,25,3e,39,01,ed,41,c8,ac,bf,33,86,7f,4a,d7,ee,0a,d5,b2,ab,d3,1b,2f, 28,03,86,84,a2,5c,32,86,32,37,82,3d,5b,a4,b0,40,83,c3,3f,36,81,d7,75,fd,99,\ "??"=hex:92,d3,64,23,3f,d5,85,90,c8,03,db,25,80,b7,71,96 [HKEY_USERS\S-1-5-21-1606980848-1417001333-1801674531-1006\Software\SecuROM\License information*] "datasecu"=hex:4d,86,1b,58,86,51,a2,ff,1f,d5,40,23,99,9f,9f,db,6e,1a,f4,7f,82, 92,36,4e,ac,0b,3d,83,7c,f8,36,ef,98,3d,a2,e3,3a,05,fb,1f,47,32,53,da,e6,97,\ "rkeysecu"=hex:4d,80,f1,2e,bb,76,90,17,f2,3f,2c,9b,96,ff,2d,19 . --------------------- DLLs chargées dans les processus actifs --------------------- - - - - - - - > 'winlogon.exe'(1020) e:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll e:\program files\fichiers communs\logishrd\bluetooth\LBTServ.dll . Heure de fin: 2009-06-14 13:17 ComboFix-quarantined-files.txt 2009-06-14 11:17 ComboFix2.txt 2009-06-13 04:08 E:\DeQuarantine.txt Avant-CF: 42 756 517 888 octets libres Après-CF: 42 709 770 240 octets libres 249 --- E O F --- 2008-10-25 05:15 rapport malware Malwarebytes' Anti-Malware 1.37 Version de la base de données: 2275 Windows 5.1.2600 Service Pack 3 14/06/2009 14:13:05 mbam-log-2009-06-14 (14-13-05).txt Type de recherche: Examen complet (C:\|E:\|F:\|) Eléments examinés: 206895 Temps écoulé: 40 minute(s), 46 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 1 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 2 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 10 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_CLASSES_ROOT\URLSearchHook.SoftomateURLSearchHook (Adware.SoftMate) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): e:\WINDOWS\Fonts\army_beans.zip (Worm.Archive) -> Quarantined and deleted successfully. e:\WINDOWS\Fonts\brady_bunch.zip (Worm.Archive) -> Quarantined and deleted successfully. e:\WINDOWS\Fonts\candles.zip (Worm.Archive) -> Quarantined and deleted successfully. e:\WINDOWS\Fonts\candy_randy.zip (Worm.Archive) -> Quarantined and deleted successfully. e:\WINDOWS\Fonts\casual.zip (Worm.Archive) -> Quarantined and deleted successfully. e:\WINDOWS\Fonts\chubby_cheeks.zip (Worm.Archive) -> Quarantined and deleted successfully. e:\WINDOWS\Fonts\fontocide.zip (Worm.Archive) -> Quarantined and deleted successfully. e:\WINDOWS\Fonts\good_dog.zip (Worm.Archive) -> Quarantined and deleted successfully. e:\WINDOWS\Fonts\good_girl.zip (Worm.Archive) -> Quarantined and deleted successfully. e:\WINDOWS\Fonts\just_another_font.zip (Worm.Archive) -> Quarantined and deleted successfully.
  8. Titelive
    voici le contenu du fichier quarantine 2009-06-13 03:59:14 . 2009-06-13 03:59:14 9,227 ----a-w- E:\Qoobox\Quarantine\Registry_backups\tcpip.reg 2009-06-13 03:47:02 . 2009-06-13 03:52:48 153 ----a-w- E:\Qoobox\Quarantine\catchme.log 2008-11-15 10:31:43 . 2006-04-11 08:03:44 163,840 ----a-w- E:\Qoobox\Quarantine\E\WINDOWS\system32\muzapp.exe.vir 2008-09-09 20:13:21 . 2009-06-06 10:21:25 206 ----a-w- E:\Qoobox\Quarantine\E\WINDOWS\system32\eddcbdeba7_z.dll.vir 2007-09-27 20:06:37 . 2009-04-29 17:52:54 87,608 ----a-w- E:\Qoobox\Quarantine\E\Documents and Settings\Les Gregs\Application Data\inst.exe.vir 2007-02-06 22:37:19 . 2004-02-23 19:42:40 1,386,496 -c--a-w- E:\Qoobox\Quarantine\E\WINDOWS\system\MSVBVM60.DLL.vir
  9. Titelive
    merci pour ton aide j'ai constaté une lenteur anormale dans l'affichage de pages internet lors que j'en ouvre plusieurs à la fois dans différents onglets voici le rapport combofix ComboFix 09-06-12.02 - Les Gregs 13/06/2009 5:56.1 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.3.1252.33.1036.18.767.450 [GMT 2:00] Lancé depuis: e:\documents and settings\Les Gregs\Bureau\Sécurité\ComboFix.exe AV: Kaspersky Internet Security *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0} FW: Kaspersky Internet Security *disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0} . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . e:\documents and settings\Les Gregs\Application Data\inst.exe e:\windows\system\msvbvm60.dll e:\windows\system32\eddcbdeba7_z.dll e:\windows\system32\muzapp.exe . ((((((((((((((((((((((((((((( Fichiers créés du 2009-05-13 au 2009-06-13 )))))))))))))))))))))))))))))))))))) . 2009-06-11 18:43 . 2009-04-30 21:16 12800 -c----w- e:\windows\system32\dllcache\xpshims.dll 2009-06-11 18:43 . 2009-04-30 21:16 246272 -c----w- e:\windows\system32\dllcache\ieproxy.dll 2009-06-06 10:20 . 2009-06-06 10:22 -------- d-----w- e:\program files\jv16 PowerTools 2008 2009-06-06 05:26 . 2009-06-06 05:26 -------- d-----w- e:\program files\Misc. Support Library (Spybot - Search & Destroy) 2009-06-04 05:28 . 2009-06-04 05:28 -------- d-----w- e:\program files\iPod 2009-06-04 05:15 . 2009-06-04 05:15 75048 ----a-w- e:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 8.2.0.23\SetupAdmin.exe 2009-06-04 04:03 . 2009-06-07 07:04 84526 ----a-w- e:\windows\system32\perfc040.dat 2009-06-04 04:03 . 2009-06-07 07:04 510324 ----a-w- e:\windows\system32\perfh040.dat 2009-05-30 11:31 . 2009-05-30 11:31 -------- d-----w- e:\program files\FreshDevices 2009-05-29 19:07 . 2009-06-13 03:44 -------- d-----w- e:\program files\Mozilla Firefox 3.5 Beta 4 2009-05-29 17:17 . 2009-06-06 08:24 -------- d-----w- e:\program files\Lavasoft 2009-05-24 19:51 . 2009-05-24 19:51 -------- d-----w- e:\documents and settings\Les Gregs\Local Settings\Application Data\Xenocode 2009-05-24 12:15 . 2009-05-24 12:15 -------- d-----w- e:\documents and settings\Default User\Application Data\Avanquest 2009-05-24 06:35 . 2009-05-24 06:35 -------- d-sh--r- E:\_Backup.RC 2009-05-24 06:33 . 2009-05-24 12:28 -------- d-----w- e:\program files\Fichiers communs\AntiVirus 2009-05-16 11:55 . 2009-05-16 11:55 -------- d-----w- e:\program files\Realtek AC97 2009-05-16 09:02 . 2009-05-16 09:02 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\Logitech 2009-05-16 09:02 . 2009-05-16 09:02 -------- d-----w- e:\documents and settings\All Users\Application Data\LogiShrd 2009-05-16 09:01 . 2008-12-18 21:43 10384 ----a-w- e:\windows\system32\drivers\LBeepKE.sys 2009-05-16 08:59 . 2009-02-18 22:26 301656 ----a-w- e:\windows\system32\BtCoreIf.dll 2009-05-16 08:59 . 2009-02-18 22:27 84496 ----a-w- e:\windows\system32\KemXML.dll 2009-05-16 08:59 . 2009-02-18 22:27 117264 ----a-w- e:\windows\system32\KemWnd.dll 2009-05-16 08:59 . 2009-02-18 22:27 145936 ----a-w- e:\windows\system32\KemUtil.dll 2009-05-16 08:59 . 2009-02-18 22:27 170512 ----a-w- e:\windows\system32\kemutb.dll 2009-05-16 08:58 . 2009-05-16 08:58 -------- d-----w- e:\documents and settings\All Users\Application Data\Logitech 2009-05-16 08:58 . 2009-05-16 09:00 -------- d-----w- e:\program files\Fichiers communs\Logishrd 2009-05-15 21:57 . 2009-05-15 22:00 -------- d-----w- e:\program files\Anti Keylogger Elite . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2009-06-13 04:03 . 2007-02-22 10:58 -------- d-----w- e:\documents and settings\All Users\Application Data\Kaspersky Lab 2009-06-13 04:00 . 2007-02-22 10:58 99735584 --sha-w- e:\windows\system32\drivers\fidbox.dat 2009-06-13 04:00 . 2007-02-22 10:58 4820768 --sha-w- e:\windows\system32\drivers\fidbox2.dat 2009-06-13 04:00 . 2007-02-22 10:58 455108 --sha-w- e:\windows\system32\drivers\fidbox2.idx 2009-06-13 04:00 . 2007-02-22 10:58 1340996 --sha-w- e:\windows\system32\drivers\fidbox.idx 2009-06-12 21:02 . 2007-02-08 15:08 -------- d-----w- e:\program files\Mozilla Thunderbird 2009-06-12 20:30 . 2007-02-07 08:46 -------- d-----w- e:\program files\PowerArchiver 2009-06-11 18:54 . 2008-12-19 23:53 -------- d-----w- e:\documents and settings\All Users\Application Data\Microsoft Help 2009-06-08 16:10 . 2008-12-23 11:02 -------- d-----w- e:\program files\Smart Projects 2009-06-07 13:02 . 2007-08-18 09:58 -------- d-----w- e:\program files\CCleaner 2009-06-06 12:41 . 2007-02-25 10:01 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\Vso 2009-06-06 10:17 . 2007-02-06 16:55 -------- d--h--w- e:\program files\InstallShield Installation Information 2009-06-06 10:17 . 2007-02-06 22:01 -------- d-----w- e:\documents and settings\All Users\Application Data\Ulead Systems 2009-06-05 18:38 . 2007-09-08 17:53 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\Apple Computer 2009-06-04 19:41 . 2008-09-23 18:07 5632 ----a-w- e:\windows\system32\drivers\StarOpen.sys 2009-06-04 05:29 . 2008-12-29 14:36 -------- d-----w- e:\program files\iTunes 2009-06-04 05:28 . 2008-10-19 10:56 -------- d-----w- e:\program files\Fichiers communs\Apple 2009-06-04 04:34 . 2007-02-09 18:19 107752 ----a-w- e:\documents and settings\Les Gregs\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-06-03 17:25 . 2008-10-31 07:30 1 ----a-w- e:\documents and settings\Les Gregs\Application Data\OpenOffice.org\3\user\uno_packages\cache\stamp.sys 2009-05-30 11:28 . 2008-10-24 14:59 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\FileZilla 2009-05-26 19:04 . 2009-03-21 13:10 -------- d-----w- e:\program files\Mozilla Firefox 3.1 Beta 3 2009-05-20 17:01 . 2008-01-06 06:23 105395 ----a-w- e:\windows\system32\drivers\klin.dat 2009-05-20 17:01 . 2008-01-06 06:23 94643 ----a-w- e:\windows\system32\drivers\klick.dat 2009-05-17 17:27 . 2007-02-06 17:33 -------- d-----w- e:\program files\WinTV 2009-05-16 09:01 . 2009-05-16 09:01 0 ---ha-w- e:\windows\system32\drivers\Msft_Kernel_LHidFilt_01005.Wdf 2009-05-16 09:01 . 2009-05-16 09:01 0 ---ha-w- e:\windows\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf 2009-05-16 09:01 . 2009-05-16 09:01 0 ---ha-w- e:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf 2009-05-16 08:58 . 2007-02-06 17:25 -------- d-----w- e:\program files\Logitech 2009-05-13 05:04 . 2004-08-23 17:16 915456 ----a-w- e:\windows\system32\wininet.dll 2009-05-12 16:22 . 2009-05-12 16:21 -------- d-----w- e:\program files\Savvy TV 2009-05-08 19:43 . 2007-02-23 12:40 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\Ulead Systems 2009-05-08 17:31 . 2009-05-08 17:31 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\InstallShield 2009-05-08 08:47 . 2007-09-29 06:48 -------- d-----w- e:\documents and settings\All Users\Application Data\DVD Shrink 2009-05-07 15:33 . 2001-09-28 12:00 348672 ----a-w- e:\windows\system32\localspl.dll 2009-05-03 15:30 . 2008-12-25 09:02 1324 ----a-w- e:\windows\system32\d3d9caps.dat 2009-04-30 20:02 . 2009-04-30 20:02 663552 ----a-w- e:\windows\system32\nvcuvid.dll 2009-04-30 20:02 . 2009-04-30 20:02 1579630 ----a-w- e:\windows\system32\nvdata.bin 2009-04-30 20:02 . 2009-04-30 20:02 1314816 ----a-w- e:\windows\system32\nvcuvenc.dll 2009-04-30 20:02 . 2007-02-06 16:58 457248 ----a-w- e:\windows\system32\nvudisp.exe 2009-04-29 19:38 . 2008-12-20 00:01 -------- d-----w- e:\program files\Microsoft Works 2009-04-29 17:52 . 2007-09-27 20:06 47360 -c--a-w- e:\documents and settings\Les Gregs\Application Data\pcouffin.sys 2009-04-29 17:52 . 2007-09-27 20:06 47360 -c--a-w- e:\documents and settings\Les Gregs\Application Data\pcouffin.sys 2009-04-29 17:52 . 2007-09-27 20:06 47360 ----a-w- e:\windows\system32\drivers\pcouffin.sys 2009-04-29 17:52 . 2008-03-07 18:45 -------- d-----w- e:\program files\VSO 2009-04-28 17:14 . 2009-04-28 17:14 -------- d-----w- e:\program files\Xilisoft 2009-04-26 22:42 . 2007-02-06 16:54 457248 ----a-w- e:\windows\system32\NVUNINST.EXE 2009-04-24 12:13 . 2001-09-28 12:00 84526 ----a-w- e:\windows\system32\perfc00C.dat 2009-04-24 12:13 . 2001-09-28 12:00 510324 ----a-w- e:\windows\system32\perfh00C.dat 2009-04-24 08:14 . 2009-04-24 08:14 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\LiteOn 2009-04-19 19:50 . 2001-09-28 12:00 1847296 ----a-w- e:\windows\system32\win32k.sys 2009-04-19 14:09 . 2009-04-19 14:09 -------- d-----w- e:\documents and settings\All Users\Application Data\Messenger Plus! 2009-04-19 12:37 . 2009-04-19 12:37 -------- d-----w- e:\program files\Messenger Plus! Live 2009-04-19 10:14 . 2009-04-19 10:14 -------- d-----w- e:\program files\Windows Live 2009-04-19 07:59 . 2009-04-19 07:54 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\WIPE 2009-04-19 07:43 . 2009-04-19 07:42 -------- d-----w- e:\program files\splus 2009-04-18 21:53 . 2009-04-18 21:53 -------- d-----w- e:\program files\Microsoft Silverlight 2009-04-18 21:52 . 2009-04-18 21:52 -------- d-----w- e:\program files\Microsoft Sync Framework 2009-04-17 16:01 . 2009-03-21 11:45 -------- d-----w- e:\program files\Microsoft 2009-04-16 21:00 . 2009-04-16 21:00 206088 ----a-w- e:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.506\avp.exe 2009-04-16 21:00 . 2009-04-16 21:00 226832 ----a-w- e:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.506\XP\klif.sys 2009-04-15 16:47 . 2009-04-15 16:25 -------- d-----w- e:\program files\OrangeHSS 2009-04-15 14:53 . 2007-02-07 00:20 585216 ----a-w- e:\windows\system32\rpcrt4.dll 2009-04-14 18:38 . 2009-03-27 22:24 -------- d-----w- e:\documents and settings\LocalService\Application Data\SACore 2009-04-04 13:03 . 2007-11-24 13:33 2560 ----a-w- e:\windows\_MSRSTRT.EXE 2009-03-28 08:28 . 2008-10-30 18:34 410984 ----a-w- e:\windows\system32\deploytk.dll 2009-03-28 08:27 . 2009-03-28 08:22 152576 ----a-w- e:\documents and settings\Les Gregs\Application Data\Sun\Java\jre1.6.0_13\lzma.dll 2009-03-24 18:47 . 2009-03-24 18:47 86576 ----a-w- e:\documents and settings\Les Gregs\Application Data\Microsoft\Services Windows Live\Raccourci Galerie de Photos Windows Live.exe 2009-03-24 18:47 . 2009-03-24 18:47 392728 ----a-w- e:\documents and settings\Les Gregs\Application Data\Microsoft\Services Windows Live\Services Windows Live.dll 2009-03-24 18:47 . 2009-03-24 18:47 132672 ----a-w- e:\documents and settings\Les Gregs\Application Data\Microsoft\Services Windows Live\Raccourci Windows Live Messenger.exe 2009-03-23 18:45 . 2007-12-14 23:14 8457 ----a-w- e:\windows\system32\SpoonUninstall-dBpoweramp DSP Effects.dat 2009-03-23 18:44 . 2009-03-23 18:44 13281 ----a-w- e:\windows\system32\SpoonUninstall-dBpoweramp Music Converter.dat 2009-03-23 18:44 . 2007-02-19 09:37 2433400 ----a-w- e:\windows\system32\SpoonUninstall.exe 2009-03-21 09:24 . 2009-03-21 09:24 152576 ----a-w- e:\documents and settings\Les Gregs\Application Data\Sun\Java\jre1.6.0_11\lzma.dll 2009-03-19 14:32 . 2009-03-19 14:32 23400 ----a-w- e:\documents and settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}\x86\x86\GEARAspiWDM.sys 2009-03-19 14:32 . 2008-10-19 11:07 23400 ----a-w- e:\windows\system32\drivers\GEARAspiWDM.sys 2009-03-15 08:34 . 2007-02-06 21:25 36864 ----a-w- e:\windows\gotouninstall.exe 2008-03-15 10:50 . 2008-03-15 10:50 23 --sha-w- e:\windows\system32\cdfedfdcc_z.dll 2009-01-31 07:17 . 2009-01-31 07:17 23 --sha-w- e:\windows\system32\edafdaa6_x.dll 2006-05-03 09:06 . 2007-08-29 16:11 163328 --sha-r- e:\windows\system32\flvDX.dll 2007-02-21 10:47 . 2007-08-29 16:11 31232 --sha-r- e:\windows\system32\msfDX.dll . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="e:\windows\system32\ctfmon.exe" [2008-04-14 15360] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"="e:\windows\system32\NvCpl.dll" [2008-09-17 13574144] "NvMediaCenter"="e:\windows\system32\NvMcTray.dll" [2008-09-17 86016] "LVCOMSX"="e:\windows\System32\LVCOMSX.EXE" [2005-07-19 221184] "AVP"="e:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [2009-04-16 206088] "SoundMan"="SOUNDMAN.EXE" - e:\windows\soundman.exe [2007-04-16 577536] "nwiz"="nwiz.exe" - e:\windows\system32\nwiz.exe [2008-09-17 1657376] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn] 2009-02-18 22:30 72208 ----a-w- e:\program files\Fichiers communs\Logishrd\Bluetooth\LBTWLgn.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] @="" [HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Synchronizer.lnk] backup=e:\windows\pss\Adobe Reader Synchronizer.lnkCommon Startup [HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk] backup=e:\windows\pss\Lancement rapide d'Adobe Reader.lnkCommon Startup [HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech Desktop Messenger.lnk] backup=e:\windows\pss\Logitech Desktop Messenger.lnkCommon Startup [HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech SetPoint.lnk] backup=e:\windows\pss\Logitech SetPoint.lnkCommon Startup [HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk] backup=e:\windows\pss\Microsoft Office.lnkCommon Startup [HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^WinZip Quick Pick.lnk] backup=e:\windows\pss\WinZip Quick Pick.lnkCommon Startup [HKLM\~\startupfolder\E:^Documents and Settings^Les Gregs^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.4.lnk] backup=e:\windows\pss\OpenOffice.org 2.4.lnkStartup HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ad-Watch HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CaISSDT HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eTrustPPAP HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\fssui HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OrangePlayer HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Orb HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegClean Expert Scheduler HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "SeaPort"=2 (0x2) "RichVideo"=2 (0x2) [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 "UpdatesDisableNotify"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "e:\\Program Files\\CyberLink\\PowerDVD\\PowerDVD.exe"= "e:\\Program Files\\OrangeHSS\\Connectivity\\ConnectivityManager.exe"= "e:\\Program Files\\Bonjour\\mDNSResponder.exe"= "e:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "e:\\Program Files\\iTunes\\iTunes.exe"= "e:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= R0 klbg;Kaspersky Lab Boot Guard Driver;e:\windows\system32\drivers\klbg.sys [29/01/2008 19:29 33808] R2 LBeepKE;LBeepKE;e:\windows\system32\drivers\LBeepKE.sys [16/05/2009 11:01 10384] R3 HCWBT8XX;Hauppauge WinTV 848/9 WDM Video Driver;e:\windows\system32\drivers\HCWBT8xx.sys [06/02/2007 19:34 472644] R3 KLFLTDEV;Kaspersky Lab KLFltDev;e:\windows\system32\drivers\klfltdev.sys [13/03/2008 20:02 26640] R3 klim5;Kaspersky Anti-Virus NDIS Filter;e:\windows\system32\drivers\klim5.sys [30/04/2008 19:06 24592] R3 PID_0920;Logitech QuickCam Express(PID_0920);e:\windows\system32\drivers\LV532AV.SYS [06/02/2007 19:25 163328] R3 usbdtv;LITE-ON DVB-T (PID=F001) receiver;e:\windows\system32\drivers\usbdtv.sys [24/04/2009 10:05 31232] S0 Lbd;Lbd;e:\windows\system32\DRIVERS\Lbd.sys --> e:\windows\system32\DRIVERS\Lbd.sys [?] S2 AKEProtect;AKEProtect;\??\e:\program files\Anti Keylogger Elite\AKEProtect.sys --> e:\program files\Anti Keylogger Elite\AKEProtect.sys [?] S3 DstAud;DstAud;e:\windows\system32\drivers\DstAud.sys [06/02/2007 18:59 8901] S3 DstVid;DstVid;e:\windows\system32\drivers\DstVid.sys [06/02/2007 18:59 11237] S3 DTVFW;LITE-ON DVB-T USB adapter firmware;e:\windows\system32\drivers\dtvfw.sys [24/04/2009 10:05 22016] S3 maconfservice;Ma-Config Service;e:\program files\ma-config.com\maconfservice.exe [15/03/2009 09:34 216232] S3 SetupNTGLM7X;SetupNTGLM7X;\??\g:\ntglm7x.sys --> g:\NTGLM7X.sys [?] S3 SynasUSB;SynasUSB;e:\windows\system32\drivers\synasUSB.sys [08/02/2009 16:15 23288] [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] "e:\windows\system32\rundll32.exe" "e:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP . Contenu du dossier 'Tâches planifiées' 2009-06-10 e:\windows\Tasks\AppleSoftwareUpdate.job - e:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34] . . ------- Examen supplémentaire ------- . uStart Page = hxxp://www.google.fr/ uInternet Connection Wizard,ShellNext = https://login.live.com/ppsecure/sha1auth.srf?lc=1036 uSearchURL,(Default) = hxxp://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR IE: E&xport to Microsoft Excel - e:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: {{60C3E87C-41AC-4AEE-B5BF-EB5C4D1EC0E7} - e:\program files\FreshDevices\FreshDownload\fd.exe Trusted Zone: mappy.com Trusted Zone: orange.fr Trusted Zone: weborama.fr\orange . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-06-13 06:04 Windows 5.1.2600 Service Pack 3 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{95808DC4-FA4A-4c74-92FE-5B863F82066B}] "ImagePath"="\??\e:\program files\CyberLink\PowerDVD\000.fcl" . --------------------- CLES DE REGISTRE BLOQUEES --------------------- [HKEY_USERS\S-1-5-21-1606980848-1417001333-1801674531-1006\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*] "??"=hex:3e,25,3e,39,01,ed,41,c8,ac,bf,33,86,7f,4a,d7,ee,0a,d5,b2,ab,d3,1b,2f, 28,03,86,84,a2,5c,32,86,32,37,82,3d,5b,a4,b0,40,83,c3,3f,36,81,d7,75,fd,99,\ "??"=hex:92,d3,64,23,3f,d5,85,90,c8,03,db,25,80,b7,71,96 [HKEY_USERS\S-1-5-21-1606980848-1417001333-1801674531-1006\Software\SecuROM\License information*] "datasecu"=hex:4d,86,1b,58,86,51,a2,ff,1f,d5,40,23,99,9f,9f,db,6e,1a,f4,7f,82, 92,36,4e,ac,0b,3d,83,7c,f8,36,ef,98,3d,a2,e3,3a,05,fb,1f,47,32,53,da,e6,97,\ "rkeysecu"=hex:4d,80,f1,2e,bb,76,90,17,f2,3f,2c,9b,96,ff,2d,19 . --------------------- DLLs chargées dans les processus actifs --------------------- - - - - - - - > 'winlogon.exe'(1028) e:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll e:\program files\fichiers communs\logishrd\bluetooth\LBTServ.dll - - - - - - - > 'explorer.exe'(3980) e:\windows\system32\nview.dll e:\windows\system32\NVWRSFR.DLL e:\windows\system32\webcheck.dll e:\windows\system32\WPDShServiceObj.dll e:\windows\system32\PortableDeviceTypes.dll e:\windows\system32\PortableDeviceApi.dll e:\windows\system32\eappprxy.dll . ------------------------ Autres processus actifs ------------------------ . e:\program files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe e:\program files\Bonjour\mDNSResponder.exe e:\program files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe e:\progra~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe e:\program files\Java\jre6\bin\jqs.exe e:\program files\Fichiers communs\LightScribe\LSSrvc.exe e:\windows\system32\nvsvc32.exe e:\program files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe e:\windows\system32\CF7774.exe e:\windows\system32\rundll32.exe e:\windows\system32\rundll32.exe e:\windows\system32\wscntfy.exe . ************************************************************************** . Heure de fin: 2009-06-13 6:08 - La machine a redémarré ComboFix-quarantined-files.txt 2009-06-13 04:08 Avant-CF: 43 858 677 760 octets libres Après-CF: 43 684 536 320 octets libres WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] e:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /fastdetect / NoExecute=OptIn 290 --- E O F --- 2008-10-25 05:15
  10. Titelive
    bonjour Zebulon.fr est répertorié dans la liste des forums où il y a des assistants compétents et autorisés qui comprennent et peuvent analyser des rapports ComboFix. Est ce que je peux déposer mon rapport combofix ici pour analyse ? Merci
×
×
  • Créer...