Mon rapport HijackThis...

[Moust]

Salut !

 

Voilà le rapport que m'a sorti HijackThis :

 

Logfile of HijackThis v1.99.1

Scan saved at 11:40:07, on 18/07/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.5730.0011)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Intel\Wireless\Bin\EvtEng.exe

C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\ATK0100\HControl.exe

C:\WINDOWS\system32\igfxtray.exe

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\igfxpers.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\sm56hlpr.exe

C:\WINDOWS\stsystra.exe

C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe

C:\Program Files\Wireless Console 2\wcourier.exe

C:\Program Files\ASUS\ATK Media\DMEDIA.EXE

C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe

C:\Program Files\ASUS\Splendid\ACMON.exe

C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe

C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe

C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe

C:\WINDOWS\system32\ACEngSvr.exe

C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe

C:\Program Files\QuickTime\qttask.exe

C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe

C:\WINDOWS\ATK0100\ATKOSD.exe

C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe

C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe

C:\Program Files\Microsoft Money\System\mnyexpr.exe

C:\Program Files\MSN Messenger\MsnMsgr.Exe

C:\Program Files\Messenger\msmsgs.exe

C:\WINDOWS\system32\ctfmon.exe

C:\WINDOWS\system32\acovcnt.exe

C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe

C:\Program Files\AntiVir PersonalEdition Classic\sched.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Inventel\Gateway\wlancfg.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe

C:\Program Files\MSN Messenger\usnsvc.exe

C:\Program Files\Windows Media Player\wmplayer.exe

C:\Program Files\Lavasoft\Ad-Aware 2007\Ad-Aware2007.exe

C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe

C:\Hijackthis\scanner.exe.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://orange.fr/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)

O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)

O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe

O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe

O4 - HKLM\..\Run: [sMSERIAL] C:\WINDOWS\sm56hlpr.exe

O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe

O4 - HKLM\..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe

O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE

O4 - HKLM\..\Run: [ABLKSR] C:\WINDOWS\ABLKSR\ABLKSR.exe

O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe"

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [ACMON] C:\Program Files\ASUS\Splendid\ACMON.exe

O4 - HKLM\..\Run: [intelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"

O4 - HKLM\..\Run: [intelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless

O4 - HKLM\..\Run: [EOUApp] "C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe"

O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized

O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"

O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL

O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O11 - Options group: [iNTERNATIONAL] International*

O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com

O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab

O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab

O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB

O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab

O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab

O16 - DPF: {8731163E-77B9-4F91-9122-F112521C28AF} (MMSPlayerX Class) - http://mmt.bouyguestelecom.fr/mmawap/jsp/c...r/mmsPlayer.cab

O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game03.zylom.com/activex/zylomgamesplayer.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab

O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL

O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\FICHIE~1\MICROS~1\OFFICE12\MSOXMLMF.DLL

O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe

O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: ASP.NET State Service (aspnet_state) - Unknown owner - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing)

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)

O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)

O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe

O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe

O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe

 

 

=> Alors, y a-t-il quelquechose de... "mauvais" ?

Si oui quoi ?

 

Merci !

[Thanos]

salut et bienvenue

 

Rien de mauvais à priori sur ce rapport .Comment fonctionne ton pc?

Par contre, il va falloir choisir entre les deux antivirus présents sur ton pc!!

Je te conseille de lire ce comparatif très intéressant de Malekal Morte afin de te faire une idée quant à l'efficacité de ces deux antivirus > http://forum.malekal.com/ftopic3528.php

C'est une étude indépendante et sérieuse! Je ne saurais que te conseiller de désinstaller avast et d'installer Antivir afin de protéger ton pc au mieux. Il faut aussi installer un parefeu car celui de Windows n'est pas efficace! >

 

Voila quelques liens pour des pare-feux gratuits

 

Zone Alarm (2 versions )

Lien de téléchargement de la version FREE : http://dl2.zonelabs.com/bin/free/3301_fr/z..._737_000_fr.exe

Lien de téléchargement de la version PRO : http://www.zonelabs.com/store/content/cata...lid=dbtopnav_za

La version pro est payante après une période d'essai.

Tuto de Tesgaz pour la version pro : http://speedweb1.free.fr/frames2.php?page=tuto1

Tuto de Odsen pour la version free : http://benoit.aun.free.fr/securite-facile-php/zonealarm.php

 

Kerio

Lien de téléchargement : http://www.sunbelt-software.com/evaluation/440/kerio.exe

Tuto de Malekal_morte : http://www.malekal.com/kerio_firewall.html

 

Jetico

Lien de téléchargement éditeur : http://www.jetico.com/

Lien de téléchargement sur Zebulon (en fr) : http://telechargement.zebulon.fr/license-1-225.html

Tuto de Odsen (lien site) : http://benoit.aun.free.fr/securite-facile-php/jetico.php

Tuto de Odsen (lien zeb) : http://forum.zebulon.fr/index.php?showtopic=93489

 

Outpost firewall free

Lien de téléchargement éditeur : http://www.agnitum.com/products/outpostfree/download.php

Tuto de Odsen (lien site) : http://securite-facile.ovh.org/outpost.php

 

La liste n'est pas exhaustive, il en existe d'autres gratuits, et d'autres avec plus de fonctions payants. Télécharge l'exécutable d'installation du pare-feu que tu auras choisi. Déconnecte toi, débranche physiquement ta connexion, et lance l'installation de ton pare-feu. Puis reconnecte toi et suis les instructions supplémentaires s'il y en a. Aide toi des tutos.

 

Je te conseille Zone Alarme ou Kério en version gratuite pour commencer, tu pourras en changer par la suite pour un pare-feu plus élaboré quand tu auras le temps de t'y plonger. Un pare-feu bien configuré, est garant de la sécurité du pc et de ta tranquilité .

[Moust]

Yep !

 

Déjà merci de ton aide.

On en sait tant que ça sur ce que j'ai sur mon PC rien qu'avec ce rapport !?

Cool !

 

J'ai désinstallé Avast. En guise de log' de sécurité, il ne me reste plus que :

- Antivir

- Ccleaner

- Ad-Aware

- Spybot : Search and Destroy

- a-squared

 

C'est bon ?

Il y en a des inutiles ? Des manquants ?

Je vais prendre Kerio, le nom m'emballe !

 

Et si j'en suis venu à faire ce "test" HijackThis, c'est que j'ai un gros soucis. Enfin tout est relatif.

Pour résumer, tout autre navigateur que IE rame d'une manière inimaginable, ne répond pas 75% du temps, et fait même planter tout ce qui est ouvert à coté : MSN, VLC Media Player...

C'est un vrai calvaire.

Que ce soit Firefox, quelque soit la version, ou Opera, quelque soit la version, le soucis reste le même.

 

J'étais allé chercher de l'aide sur un forum "spécial Mozilla", ils m'ont bien aidé, mais n'ont pas pu solutionner le soucis. Mais vu qu'Opera plante de la même manière, le soucis ne vient surement pas de Firefox.

Ca fait trois jours que je parcours le net à la recherche d'aide, on m'a fait faire des scans par centaines, et tout et tout, mais ça n'a rien changé...

 

Voilà !

[Thanos]

C'est bon ?

Il y en a des inutiles ? Des manquants ?

Non rien d'autre à virer Je te posterait quleques conseils supplémentaire en fin de discussion.

 

Le plantage ne se fait pas avec IE alors? bizarre...

Par précaution, poste ce rapport >

 

Télécharge et lance DiagHelp comme montré dans ce tutoriel> http://www.malekal.com/DiagHelp/DiagHelp.php

Ne lance que l'option 1 et poste le rapport stp.Attention: n'oublie pas d'appuyer sur une touche lorsque cela te sera demandé à la fin du rapport Catchme.

[Moust]

Voilà ce que ça m'a donné :

 

DiagHelp version v1.1.2 - http://www.malekal.com

excute le 18/07/2007 à 15:21:14,60

 

 

Liste des derniers fichies modifies/crees dans windir\system32

C:\WINDOWS\System32/drivers\sptddrv1.sys -->13/07/2007 00:52:45

C:\WINDOWS\System32/drivers\NSDriver.sys -->04/06/2007 15:18:48

C:\WINDOWS\System32/drivers\AWRTRD.sys -->04/06/2007 15:17:02

C:\WINDOWS\System32/drivers\AWRTPD.sys -->04/06/2007 15:14:56

C:\WINDOWS\System32/drivers\update.sys -->23/04/2007 12:32:54

C:\WINDOWS\System32/drivers\avipbb.sys -->20/03/2007 09:55:45

C:\WINDOWS\System32/drivers\ssmdrv.sys -->01/03/2007 10:34:36

 

C:\WINDOWS\System32\wpa.dbl -->18/07/2007 14:58:15

C:\WINDOWS\System32\acovcnt.exe -->18/07/2007 14:57:44

C:\WINDOWS\System32\CONFIG.NT -->18/07/2007 13:45:43

C:\WINDOWS\System32\PerfStringBackup.INI -->17/07/2007 21:27:28

C:\WINDOWS\System32\perfh00C.dat -->17/07/2007 21:27:28

C:\WINDOWS\System32\perfh009.dat -->17/07/2007 21:27:28

C:\WINDOWS\System32\perfc00C.dat -->17/07/2007 21:27:28

C:\WINDOWS\System32\perfc009.dat -->17/07/2007 21:27:28

C:\WINDOWS\System32\d3d8caps.dat -->15/07/2007 22:07:39

C:\WINDOWS\System32\FNTCACHE.DAT -->01/07/2007 10:31:16

C:\WINDOWS\System32\MRT.exe -->28/06/2007 09:57:28

C:\WINDOWS\System32\jupdate-1.6.0_01-b06.log -->02/06/2007 12:35:36

C:\WINDOWS\System32\schannel.dll -->25/04/2007 16:22:36

C:\WINDOWS\System32\LegitCheckControl.DLL -->24/04/2007 11:32:06

C:\WINDOWS\System32\ssldivx.dll -->23/04/2007 02:15:20

C:\WINDOWS\System32\libdivx.dll -->23/04/2007 02:15:20

C:\WINDOWS\System32\msi.dll -->18/04/2007 18:14:18

C:\WINDOWS\System32\wups.dll -->16/04/2007 22:47:36

C:\WINDOWS\System32\wuaucpl.cpl.mui -->16/04/2007 22:47:26

C:\WINDOWS\System32\wuapi.dll.mui -->16/04/2007 22:46:54

C:\WINDOWS\System32\wuaueng.dll -->16/04/2007 22:45:54

C:\WINDOWS\System32\wuapi.dll -->16/04/2007 22:45:48

C:\WINDOWS\System32\wucltui.dll -->16/04/2007 22:45:42

C:\WINDOWS\System32\wuaueng.dll.mui -->16/04/2007 22:45:42

C:\WINDOWS\System32\wuaucpl.cpl -->16/04/2007 22:45:40

 

C:\WINDOWS\WindowsUpdate.log -->18/07/2007 15:14:09

C:\WINDOWS\wiadebug.log -->18/07/2007 14:57:52

C:\WINDOWS\wiaservc.log -->18/07/2007 14:57:51

C:\WINDOWS\bootstat.dat -->18/07/2007 14:56:55

C:\WINDOWS\SchedLgU.Txt -->18/07/2007 14:55:45

C:\WINDOWS\nsreg.dat -->16/07/2007 19:27:14

C:\WINDOWS\mozver.dat -->16/07/2007 19:26:57

C:\WINDOWS\win.ini -->16/07/2007 19:25:38

C:\WINDOWS\NeroDigital.ini -->16/07/2007 18:22:32

C:\WINDOWS\mozregistry.dat -->16/07/2007 11:43:53

C:\WINDOWS\cdplayer.ini -->19/05/2007 19:16:50

C:\WINDOWS\system.ini -->11/03/2007 16:02:02

C:\WINDOWS\TIGryImg.ini -->10/01/2007 20:08:18

C:\WINDOWS\WMSysPr9.prx -->22/12/2006 19:52:30

C:\WINDOWS\setupapi.log.0.old -->20/12/2006 19:26:10

 

 

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 8875-FCE6

 

Répertoire de C:\WINDOWS\system32

 

05/08/2004 14:00 6 144 csrss.exe

1 fichier(s) 6 144 octets

0 Rép(s) 19 070 897 152 octets libres

 

Contenu de Downloaded Program Files

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 8875-FCE6

 

Répertoire de C:\WINDOWS\Downloaded Program Files

 

17/07/2007 21:11 <REP> .

17/07/2007 21:11 <REP> ..

21/09/2004 15:09 36 864 coltrans.ax

01/04/2007 15:03 <REP> CONFLICT.1

21/09/2004 15:10 163 840 CoreExecutive.dll

05/09/2006 23:39 65 desktop.ini

21/09/2004 15:10 36 864 DownloadersWI.dll

07/06/2006 10:09 1 249 erma.inf

13/04/2007 02:14 382 344 GAME_UNO1.dll

17/01/2007 15:44 316 GAME_UNO1.INF

21/09/2004 15:10 90 112 HtmlParser.dll

21/09/2004 15:10 53 248 HTMLSourceFilter.ax

13/04/2007 15:27 367 LegitCheckControl.inf

16/11/2005 11:52 490 Medialogic.INF

21/09/2004 15:11 57 344 MelodySourceParser.ax

29/05/2003 15:00 160 864 messengerstatsclient.dll

22/02/2007 23:41 304 544 MessengerStatsPAClient.dll

29/05/2003 15:00 84 064 minesweeper.dll

21/09/2004 15:11 81 920 MPO.dll

29/05/2003 15:00 77 408 msgrchkr.dll

21/09/2004 15:12 229 376 Parsers.dll

21/09/2004 15:12 36 864 PlayerServer.dll

21/09/2004 15:11 94 208 PNGSource.ax

21/09/2004 15:12 32 768 RegType_IE.dll

21/09/2004 15:13 25 600 scg.ax

21/09/2004 15:13 147 456 SMILInetCtrl.dll

21/09/2004 15:14 28 326 SMILViewer_DX6.inf

21/09/2004 15:11 57 344 StreamControl.ax

09/11/2006 14:36 5 019 swflash.inf

21/09/2004 15:13 110 592 VideoCompositor.ax

21/09/2004 15:13 36 864 WBMPSource.ax

21/09/2004 15:10 45 056 xmlparse.dll

21/09/2004 15:10 65 536 xmltok.dll

29/08/2006 14:17 161 976 zylomgamesplayer.dll

15/09/2006 10:53 244 ZylomGamesPlayer.inf

32 fichier(s) 2 609 132 octets

 

Répertoire de C:\WINDOWS\Downloaded Program Files\CONFLICT.1

 

01/04/2007 15:03 <REP> .

01/04/2007 15:03 <REP> ..

28/02/2007 14:21 130 472 MineSweeper.dll

28/02/2007 14:21 131 472 msgrchkr.dll

2 fichier(s) 261 944 octets

 

Total des fichiers listés :

34 fichier(s) 2 871 076 octets

5 Rép(s) 19 070 892 032 octets libres

 

Recherche de rootkit! (Merci S!Ri)

 

Recherche d'infections connues

 

Export des clefs sensibles..

 

Liste des fichiers en exception sur le pare-feu XP SP2

 

"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\\Program Files\\Messenger\\MSMSGS.EXE"="C:\\Program Files\\Messenger\\MSMSGS.EXE:*:Enabled:Windows Messenger"

"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"

"C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"

"C:\\Program Files\\mIRC\\mirc.exe"="C:\\Program Files\\mIRC\\mirc.exe:*:Enabled:mIRC"

"C:\\WINDOWS\\system32\\svchost.exe"="C:\\WINDOWS\\system32\\svchost.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\12exmodul32d.4.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\12exmodul32d.4.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\18exmodul32d.4.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\18exmodul32d.4.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\97exmodul32d.4.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\97exmodul32d.4.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\60exmodul32d.4.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\60exmodul32d.4.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\90exmodul32d.4.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\90exmodul32d.4.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\76exmodul32d.4.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\76exmodul32d.4.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\38exmodul32d.4.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\38exmodul32d.4.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\19exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\19exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\25exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\25exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\71exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\71exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\15exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\15exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\84exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\84exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\34exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\34exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\46exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\46exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\79exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\79exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\57exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\57exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\35exmodul32d.6.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\35exmodul32d.6.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exmodul32d.6.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exmodul32d.6.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\59exmodul32d.6.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\59exmodul32d.6.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\37exmodul32d.6.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\37exmodul32d.6.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exmodul32d.6.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exmodul32d.6.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\26exmodul32d.6.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\26exmodul32d.6.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\54exmodul32d.6.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\54exmodul32d.6.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\28exmodul32d.7.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\28exmodul32d.7.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\86exmodul32d.7.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\86exmodul32d.7.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exmodul32d.8.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exmodul32d.8.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\34exmodul32d.8.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\34exmodul32d.8.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\4exmodul32d.8.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\4exmodul32d.8.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\47exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\47exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\29exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\29exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3.exe"="C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3.exe:*:Enabled:Age of Empires 3"

"C:\\WINDOWS\\System32\\dpvsetup.exe"="C:\\WINDOWS\\System32\\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"

"C:\\WINDOWS\\System32\\rundll32.exe"="C:\\WINDOWS\\System32\\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\16exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\16exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\90exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\90exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\39exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\39exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\59exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\59exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\64exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\64exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\7exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\7exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\62exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\62exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\68exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\68exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\17exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\17exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\37exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\37exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\88exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\88exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\52exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\52exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\24exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\24exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\96exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\96exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\17exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\17exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\67exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\67exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\31exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\31exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\33exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\33exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\11exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\11exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\75exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\75exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\22exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\22exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\1exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\1exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\49exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\49exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\45exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\45exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\79exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\79exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\24exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\24exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\5exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\5exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\83exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\83exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\14exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\14exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\77exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\77exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3x.exe"="C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs"

"C:\\StubInstaller.exe"="C:\\StubInstaller.exe:*:Enabled:LimeWire swarmed installer"

"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\86exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\86exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\44exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\44exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\20exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\20exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\2exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\2exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\16exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\16exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\53exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\53exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\63exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\63exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\84exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\84exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\80exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\80exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\3exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\3exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\18exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\18exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\47exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\47exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\27exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\27exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\36exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\36exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\58exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\58exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\77exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\77exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\43exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\43exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\96exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\96exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\19exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\19exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\99exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\99exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\81exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\81exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\11exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\11exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\46exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\46exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\42exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\42exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\15exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\15exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\93exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\93exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\76exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\76exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\54exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\54exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\87exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\87exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\33exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\33exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\90exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\90exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\17exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\17exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\57exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\57exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\89exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\89exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\49exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\49exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\26exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\26exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\1exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\1exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\61exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\61exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\48exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\48exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\91exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\91exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\14exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\14exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\8exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\8exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\60exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\60exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\94exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\94exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\62exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\62exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\52exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\52exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\45exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\45exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\10exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\10exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\23exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\23exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\22exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\22exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\14exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\14exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\86exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\86exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\57exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\57exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\82exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\82exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\45exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\45exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\7exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\7exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\79exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\79exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\92exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\92exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\91exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\91exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\46exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\46exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\1exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\1exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\36exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\36exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\87exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\87exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\31exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\31exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\49exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\49exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\64exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\64exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\29exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\29exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\10exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\10exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\58exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\58exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\23exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\23exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\66exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\66exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\19exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\19exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\25exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\25exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\56exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\56exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\12exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\12exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\21exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\21exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\20exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\20exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\94exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\94exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\93exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\93exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\9exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\9exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\96exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\96exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\2exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\2exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\61exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\61exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\83exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\83exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\73exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\73exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\98exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\98exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\67exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\67exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\4exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\4exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\8exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\8exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\98exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\98exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\61exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\61exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\7exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\7exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\3exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\3exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\73exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\73exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\38exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\38exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\99exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\99exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\20exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\20exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\31exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\31exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\5exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\5exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\64exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\64exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\84exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\84exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exinjs.p.exe:*:Enabled:Microsoft Update"

"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\\Program Files\\TrackMania Nations ESWC\\TmNationsESWC.exe"="C:\\Program Files\\TrackMania Nations ESWC\\TmNationsESWC.exe:*:Enabled:TmNationsESWC"

"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"

"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype. The whole world can talk for free."

"C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Disabled:Firefox"

 

"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"

"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"

"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

 

Export de la clef SharedTaskScheduler

 

[sharedTaskScheduler]

"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"

"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"

 

Rechercher adresses sensibles dans le fichier HOSTS...

 

 

 

catchme 0.3.914 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net

Rootkit scan 2007-07-18 15:22:19

Windows 5.1.2600 Service Pack 2 NTFS

 

scanning hidden services ...

 

scanning hidden autostart entries ...

 

scanning hidden files ...

 

scan completed successfully

hidden services: 0

hidden files: 0

 

 

KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg)

 

Process list by traversal of KiWaitListHead

 

4 - System

128 - explorer.exe

180 - qttask.exe

232 - aawservice.exe

364 - avguard.exe

428 - iexplore.exe

444 - avgnt.exe

668 - msnmsgr.exe

688 - msmsgs.exe

692 - ctfmon.exe

872 - csrss.exe

896 - winlogon.exe

940 - services.exe

952 - lsass.exe

1112 - svchost.exe

1168 - svchost.exe

1228 - svchost.exe

1260 - Dot1XCfg.exe

1364 - EvtEng.exe

1396 - sched.exe

1432 - S24EvMon.exe

1496 - HControl.exe

1628 - svchost.exe

1696 - STSYSTRA.EXE

1920 - ZCfgSvc.exe

1940 - iFrmewrk.exe

2452 - WLANCFG.EXE

2612 - a2wizard.exe

3216 - a2service.exe

3220 - a2scan.exe

3232 - cmd.exe

3572 - alg.exe

3716 - iexplore.exe

 

Total number of processes = 33

NOTE: Under WinXP, this will not show all processes.

 

KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg)

 

Driver/Module list by traversal of PsLoadedModuleList

 

804D7000 - \WINDOWS\system32\ntkrnlpa.exe

806E2000 - \WINDOWS\system32\hal.dll

F7A88000 - \WINDOWS\system32\KDCOM.DLL

F7998000 - \WINDOWS\system32\BOOTVID.dll

F7458000 - ACPI.sys

F7A8A000 - \WINDOWS\system32\DRIVERS\WMILIB.SYS

F7447000 - pci.sys

F7588000 - ohci1394.sys

F7598000 - \WINDOWS\system32\DRIVERS\1394BUS.SYS

F75A8000 - isapnp.sys

F799C000 - compbatt.sys

F79A0000 - \WINDOWS\system32\DRIVERS\BATTC.SYS

F7B50000 - pciide.sys

F7808000 - \WINDOWS\system32\DRIVERS\PCIIDEX.SYS

F75B8000 - MountMgr.sys

F7428000 - ftdisk.sys

F79A4000 - ACPIEC.sys

F7B51000 - \WINDOWS\system32\DRIVERS\OPRGHDLR.SYS

F7810000 - PartMgr.sys

F75C8000 - VolSnap.sys

F7410000 - atapi.sys

F75D8000 - disk.sys

F75E8000 - \WINDOWS\system32\DRIVERS\CLASSPNP.SYS

F73FE000 - sr.sys

F75F8000 - avgntmgr.sys

F73E7000 - KSecDD.sys

F735A000 - Ntfs.sys

F732D000 - NDIS.sys

F731A000 - sfvfs02.sys

F7818000 - sfhlp02.sys

F7308000 - sfdrv01.sys

F72ED000 - Mup.sys

F7A90000 - \SystemRoot\system32\DRIVERS\ATKACPI.sys

F7648000 - \SystemRoot\system32\DRIVERS\intelppm.sys

F714F000 - \SystemRoot\system32\DRIVERS\ialmnt5.sys

F713B000 - \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS

F7116000 - \SystemRoot\system32\DRIVERS\HDAudBus.sys

F6FB8000 - \SystemRoot\system32\DRIVERS\w39n51.sys

F7858000 - \SystemRoot\system32\DRIVERS\usbuhci.sys

F6F95000 - \SystemRoot\system32\DRIVERS\USBPORT.SYS

F7868000 - \SystemRoot\system32\DRIVERS\usbehci.sys

F6F83000 - \SystemRoot\system32\DRIVERS\Rtlnicxp.sys

F7658000 - \SystemRoot\system32\DRIVERS\nic1394.sys

F6F72000 - \SystemRoot\system32\DRIVERS\sdbus.sys

F7878000 - \SystemRoot\system32\DRIVERS\rimmptsk.sys

F7668000 - \SystemRoot\system32\DRIVERS\rimsptsk.sys

F7678000 - \SystemRoot\system32\DRIVERS\i8042prt.sys

F7898000 - \SystemRoot\system32\DRIVERS\kbdclass.sys

F78A8000 - \SystemRoot\system32\DRIVERS\mouclass.sys

F7688000 - \SystemRoot\system32\DRIVERS\imapi.sys

F7698000 - \SystemRoot\system32\DRIVERS\cdrom.sys

F76A8000 - \SystemRoot\system32\DRIVERS\redbook.sys

F6F4F000 - \SystemRoot\system32\DRIVERS\ks.sys

F7A40000 - \SystemRoot\system32\DRIVERS\CmBatt.sys

F7C62000 - \SystemRoot\system32\DRIVERS\audstub.sys

F76B8000 - \SystemRoot\system32\DRIVERS\rasl2tp.sys

F7A48000 - \SystemRoot\system32\DRIVERS\ndistapi.sys

F6F38000 - \SystemRoot\system32\DRIVERS\ndiswan.sys

F76C8000 - \SystemRoot\system32\DRIVERS\raspppoe.sys

F76D8000 - \SystemRoot\system32\DRIVERS\raspptp.sys

F78D8000 - \SystemRoot\system32\DRIVERS\TDI.SYS

F6E5F000 - \SystemRoot\system32\DRIVERS\psched.sys

F76E8000 - \SystemRoot\system32\DRIVERS\msgpc.sys

F78E8000 - \SystemRoot\system32\DRIVERS\ptilink.sys

F78F8000 - \SystemRoot\system32\DRIVERS\raspti.sys

F7A58000 - \SystemRoot\system32\DRIVERS\hamachi.sys

F76F8000 - \SystemRoot\system32\DRIVERS\termdd.sys

F7A98000 - \SystemRoot\system32\DRIVERS\swenum.sys

F6E06000 - \SystemRoot\system32\DRIVERS\update.sys

F7A60000 - \SystemRoot\system32\DRIVERS\mssmbios.sys

F7708000 - \SystemRoot\System32\Drivers\NDProxy.SYS

AAEBB000 - \SystemRoot\system32\drivers\sthda.sys

AAE99000 - \SystemRoot\system32\drivers\portcls.sys

F7728000 - \SystemRoot\system32\drivers\drmk.sys

AADBF000 - \SystemRoot\system32\DRIVERS\smserial.sys

F7920000 - \SystemRoot\System32\Drivers\Modem.SYS

F7A80000 - \SystemRoot\system32\drivers\MODEMCSA.sys

F7738000 - \SystemRoot\system32\DRIVERS\usbhub.sys

F7AA4000 - \SystemRoot\system32\DRIVERS\USBD.SYS

F7748000 - \SystemRoot\SYSTEM32\DRIVERS\avgntdd.sys

F7AAA000 - \SystemRoot\System32\Drivers\Fs_Rec.SYS

F7CB3000 - \SystemRoot\System32\Drivers\Null.SYS

F7AAE000 - \SystemRoot\System32\Drivers\Beep.SYS

F7958000 - \SystemRoot\System32\drivers\vga.sys

F7AB2000 - \SystemRoot\System32\Drivers\mnmdd.SYS

F7AB6000 - \SystemRoot\System32\DRIVERS\RDPCDD.sys

AAD2E000 - \SystemRoot\system32\drivers\fwdrv.sys

F7968000 - \SystemRoot\System32\Drivers\Msfs.SYS

F7978000 - \SystemRoot\System32\Drivers\Npfs.SYS

F72A5000 - \SystemRoot\system32\DRIVERS\rasacd.sys

AAD1B000 - \SystemRoot\system32\DRIVERS\ipsec.sys

AACC3000 - \SystemRoot\system32\DRIVERS\tcpip.sys

AAC73000 - \SystemRoot\system32\DRIVERS\netbt.sys

AAC52000 - \SystemRoot\system32\DRIVERS\ipnat.sys

F7758000 - \SystemRoot\system32\DRIVERS\wanarp.sys

AAC30000 - \SystemRoot\System32\drivers\afd.sys

F7768000 - \SystemRoot\system32\DRIVERS\arp1394.sys

F7778000 - \SystemRoot\system32\DRIVERS\netbios.sys

F7828000 - \SystemRoot\system32\DRIVERS\ssmdrv.sys

AAB65000 - \SystemRoot\system32\DRIVERS\rdbss.sys

AAAF6000 - \SystemRoot\system32\DRIVERS\mrxsmb.sys

AAAE5000 - \SystemRoot\system32\drivers\khips.sys

F7788000 - \SystemRoot\System32\Drivers\Fips.SYS

F7798000 - \SystemRoot\system32\DRIVERS\avipbb.sys

AAA17000 - \SystemRoot\System32\Drivers\SynMini.sys

F77B8000 - \SystemRoot\System32\Drivers\STREAM.SYS

F7880000 - \SystemRoot\System32\Drivers\SynCamd.sys

AA99C000 - \SystemRoot\System32\Drivers\SynPin.sys

A9F9D000 - \SystemRoot\System32\Drivers\SynPipe.sys

F6F14000 - \SystemRoot\System32\Drivers\SYNSAM.SYS

A9F52000 - \SystemRoot\System32\Drivers\Fastfat.SYS

F7AC0000 - \SystemRoot\System32\Drivers\SynScan.sys

AADB7000 - \SystemRoot\system32\DRIVERS\hidusb.sys

F77C8000 - \SystemRoot\system32\DRIVERS\HIDCLASS.SYS

F78B0000 - \SystemRoot\system32\DRIVERS\HIDPARSE.SYS

AADAF000 - \SystemRoot\system32\DRIVERS\mouhid.sys

A9F3A000 - \SystemRoot\System32\Drivers\dump_atapi.sys

F7AC8000 - \SystemRoot\System32\Drivers\dump_WMILIB.SYS

BF800000 - \SystemRoot\System32\win32k.sys

F72AD000 - \SystemRoot\System32\drivers\Dxapi.sys

F78D0000 - \SystemRoot\System32\watchdog.sys

BF9C3000 - \SystemRoot\System32\drivers\dxg.sys

F7C22000 - \SystemRoot\System32\drivers\dxgthk.sys

BF9E4000 - \SystemRoot\System32\ialmdnt5.dll

BF9D5000 - \SystemRoot\System32\ialmrnt5.dll

BFA06000 - \SystemRoot\System32\ialmdev5.DLL

BFA3F000 - \SystemRoot\System32\ialmdd5.DLL

F7888000 - \SystemRoot\system32\DRIVERS\AegisP.sys

A9E16000 - \SystemRoot\system32\DRIVERS\s24trans.sys

A9E56000 - \SystemRoot\system32\DRIVERS\ndisuio.sys

A9AED000 - \SystemRoot\system32\drivers\wdmaud.sys

A9D3A000 - \SystemRoot\system32\drivers\sysaudio.sys

A9A98000 - \SystemRoot\system32\DRIVERS\mrxdav.sys

A9A15000 - \SystemRoot\System32\Drivers\Cdfs.SYS

A92C0000 * --[Hidden]--

A8C7D000 - \SystemRoot\system32\drivers\kmixer.sys

F7BFD000 - \SystemRoot\System32\DRIVERS\KProcCheck.sys

 

Total number of drivers = 137

 

Liste des programmes installes

 

802.11 USB Wireless LAN Adapter

a-squared Anti-Malware 3.0

Ad-Aware 2007

Adobe Flash Player ActiveX

Adobe Reader 8.1.0

Adobe Shockwave Player

Adobe® Photoshop® Album Starter Edition 3.2

Adobe® Photoshop® Album Starter Edition 3.2

Age of Empires III

Age of Empires III

Age of Empires III - The WarChiefs

Age of Empires III - The WarChiefs

Apple Software Update

Archiveur WinRAR

Asus MiVo Messenger

ASUS Splendid Video Enhancement Technology

ASUS WebCam, 1.3M, USB2.0, FF

ASUS_1600x1200_white

ASUSDVD

ATK Media

ATK0100 ACPI UTILITY

Avira AntiVir PersonalEdition Classic

CCleaner (remove only)

Correctif pour Windows XP (KB896256)

Correctif pour Windows XP (KB914440)

Correctif pour Windows XP (KB918005)

Correctif Windows XP - KB873339

Correctif Windows XP - KB885835

Correctif Windows XP - KB885836

Correctif Windows XP - KB886185

Correctif Windows XP - KB887472

Correctif Windows XP - KB888302

Correctif Windows XP - KB890859

Correctif Windows XP - KB891781

Correctif Windows XP - KB892627

Correctif Windows XP - KB893056

DivX Content Uploader

DivX Web Player

Extension Système de Microsoft Money

Google Earth

Hamachi 1.0.1.5

High Definition Audio - KB888111

HijackThis 1.99.1

Hotfix for Windows Media Format 11 SDK (KB929399)

Hotfix for Windows XP (KB915865)

Hotfix for Windows XP (KB926239)

Intel® Graphics Media Accelerator Driver

J2SE Runtime Environment 5.0 Update 10

J2SE Runtime Environment 5.0 Update 11

J2SE Runtime Environment 5.0 Update 8

J2SE Runtime Environment 5.0 Update 9

Java SE Runtime Environment 6 Update 1

Lecteur Windows Media 11

LifeFrame2

LimeWire 4.12.6

Logiciel Intel® PROSet/Wireless

mCore

mDriver

mDrWiFi

mEoU

Messenger Plus! 3

Messenger Plus! Live

mHelp

Microsoft Compression Client Pack 1.0 for Windows XP

Microsoft Internationalized Domain Names Mitigation APIs

Microsoft Money

Microsoft National Language Support Downlevel APIs

Microsoft Office 2000 Premium

Microsoft Office Access MUI (French) 2007

Microsoft Office Excel MUI (French) 2007

Microsoft Office Outlook MUI (French) 2007

Microsoft Office PowerPoint MUI (French) 2007

Microsoft Office Professional 2007

Microsoft Office Proof (Arabic) 2007

Microsoft Office Proof (Dutch) 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (German) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (French) 2007

Microsoft Office Publisher MUI (French) 2007

Microsoft Office Shared MUI (French) 2007

Microsoft Office Word MUI (French) 2007

Microsoft Software Update for Web Folders (French) 12

Microsoft User-Mode Driver Framework Feature Pack 1.0

Mise à jour de sécurité pour Lecteur Windows Media (KB911564)

Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)

Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)

Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)

Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)

Mise à jour de sécurité pour Windows XP (KB890046)

Mise à jour de sécurité pour Windows XP (KB893756)

Mise à jour de sécurité pour Windows XP (KB896358)

Mise à jour de sécurité pour Windows XP (KB896423)

Mise à jour de sécurité pour Windows XP (KB896424)

Mise à jour de sécurité pour Windows XP (KB896428)

Mise à jour de sécurité pour Windows XP (KB899587)

Mise à jour de sécurité pour Windows XP (KB899591)

Mise à jour de sécurité pour Windows XP (KB900725)

Mise à jour de sécurité pour Windows XP (KB901017)

Mise à jour de sécurité pour Windows XP (KB901214)

Mise à jour de sécurité pour Windows XP (KB902400)

Mise à jour de sécurité pour Windows XP (KB904706)

Mise à jour de sécurité pour Windows XP (KB905414)

Mise à jour de sécurité pour Windows XP (KB905749)

Mise à jour de sécurité pour Windows XP (KB908519)

Mise à jour de sécurité pour Windows XP (KB911562)

Mise à jour de sécurité pour Windows XP (KB911927)

Mise à jour de sécurité pour Windows XP (KB912919)

Mise à jour de sécurité pour Windows XP (KB913580)

Mise à jour de sécurité pour Windows XP (KB914388)

Mise à jour de sécurité pour Windows XP (KB914389)

Mise à jour de sécurité pour Windows XP (KB917159)

Mise à jour de sécurité pour Windows XP (KB917344)

Mise à jour de sécurité pour Windows XP (KB917422)

Mise à jour de sécurité pour Windows XP (KB917953)

Mise à jour de sécurité pour Windows XP (KB918118)

Mise à jour de sécurité pour Windows XP (KB918439)

Mise à jour de sécurité pour Windows XP (KB918899)

Mise à jour de sécurité pour Windows XP (KB919007)

Mise à jour de sécurité pour Windows XP (KB920213)

Mise à jour de sécurité pour Windows XP (KB920214)

Mise à jour de sécurité pour Windows XP (KB920670)

Mise à jour de sécurité pour Windows XP (KB920683)

Mise à jour de sécurité pour Windows XP (KB920685)

Mise à jour de sécurité pour Windows XP (KB921398)

Mise à jour de sécurité pour Windows XP (KB921883)

Mise à jour de sécurité pour Windows XP (KB922616)

Mise à jour de sécurité pour Windows XP (KB922760)

Mise à jour de sécurité pour Windows XP (KB922819)

Mise à jour de sécurité pour Windows XP (KB923191)

Mise à jour de sécurité pour Windows XP (KB923414)

Mise à jour de sécurité pour Windows XP (KB923689)

Mise à jour de sécurité pour Windows XP (KB923694)

Mise à jour de sécurité pour Windows XP (KB923980)

Mise à jour de sécurité pour Windows XP (KB924191)

Mise à jour de sécurité pour Windows XP (KB924270)

Mise à jour de sécurité pour Windows XP (KB924496)

Mise à jour de sécurité pour Windows XP (KB924667)

Mise à jour de sécurité pour Windows XP (KB925486)

Mise à jour de sécurité pour Windows XP (KB925902)

Mise à jour de sécurité pour Windows XP (KB926255)

Mise à jour de sécurité pour Windows XP (KB926436)

Mise à jour de sécurité pour Windows XP (KB927779)

Mise à jour de sécurité pour Windows XP (KB927802)

Mise à jour de sécurité pour Windows XP (KB928255)

Mise à jour de sécurité pour Windows XP (KB928843)

Mise à jour de sécurité pour Windows XP (KB929969)

Mise à jour de sécurité pour Windows XP (KB930178)

Mise à jour de sécurité pour Windows XP (KB931261)

Mise à jour de sécurité pour Windows XP (KB931784)

Mise à jour de sécurité pour Windows XP (KB932168)

Mise à jour de sécurité pour Windows XP (KB935839)

Mise à jour de sécurité pour Windows XP (KB935840)

Mise à jour pour Windows XP (KB898461)

Mise à jour pour Windows XP (KB900485)

Mise à jour pour Windows XP (KB904942)

Mise à jour pour Windows XP (KB908531)

Mise à jour pour Windows XP (KB910437)

Mise à jour pour Windows XP (KB911280)

Mise à jour pour Windows XP (KB920872)

Mise à jour pour Windows XP (KB922582)

Mise à jour pour Windows XP (KB927891)

Mise à jour pour Windows XP (KB929338)

Mise à jour pour Windows XP (KB930916)

Mise à jour pour Windows XP (KB931836)

Mise à jour pour Windows XP (KB936357)

mIWA

mLogView

mMHouse

Motorola SM56 Speakerphone Modem

Mozilla Firefox (2.0.0.4)

mPfMgr

mPfWiz

mProSafe

MSN

MSXML 4.0 SP2 (KB927978)

MSXML 6.0 Parser (KB927977)

mWlsSafe

mXML

mZConfig

Nero OEM

Opera 9.21

QuickTime

RealPlayer

REALTEK Gigabit and Fast Ethernet NIC Driver

Ridedit

SAMSUNG CDMA Modem Driver Set

SAMSUNG Mobile USB Modem 1.0 Software

SAMSUNG Mobile USB Modem Software

Samsung PC Studio

Samsung PC Studio

Samsung PC Studio 3 USB Driver Installer

Security Update for CAPICOM (KB931906)

Security Update for CAPICOM (KB931906)

Security Update for Excel 2007 (KB936509)

Security Update for Office 2007 (KB934062)

Security Update for Office 2007 (KB936514)

Security Update for Publisher 2007 (KB936646)

SigmaTel Audio

Skype 3.0

Skype Plugin Manager

Spybot - Search & Destroy 1.4

TI Connect 1.6

TrackMania Nations ESWC 1.7.9

Update for Office 2007 (KB932080)

Update for Office 2007 (KB934391)

Update for Office 2007 (KB934393)

Update for Outlook 2007 (KB937608)

Update for Outlook 2007 Junk Email Filter (kb936558)

Update for Word 2007 (KB934173)

Version d'évaluation de Microsoft Office Professional 2007

VideoLAN VLC media player 0.8.5

Vodafone 804SS USB driver Software

WebFldrs XP

Windows Genuine Advantage Notifications (KB905474)

Windows Imaging Component

Windows Installer 3.1 (KB893803)

Windows Installer 3.1 (KB893803)

Windows Internet Explorer 7

Windows Live Messenger

Windows Live Safety Scanner

Windows Media Format 11 runtime

Windows Media Format 11 runtime

Windows Media Player 11

Windows Media Player Firefox Plugin

Wireless Console 2

XML Paper Specification Shared Components Pack 1.0

Xvid 1.1.2 final uninstall

Yahoo! Toolbar

 

 

 

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 8875-FCE6

 

Répertoire de C:\Program Files

 

18/07/2007 15:16 <REP> .

18/07/2007 15:16 <REP> ..

06/09/2006 00:15 <REP> Adobe

05/09/2006 23:59 <REP> Ahead

05/03/2007 21:31 <REP> Alwil Software

14/07/2007 10:40 <REP> AntiVir PersonalEdition Classic

06/01/2007 22:17 <REP> Apple Software Update

18/07/2007 15:23 <REP> a-squared Anti-Malware

05/09/2006 23:53 <REP> Asus

20/09/2006 16:20 <REP> ASUS_1600x1200_white

05/09/2006 23:58 <REP> ASUSTeK

16/07/2007 18:34 <REP> CCleaner

05/09/2006 23:38 <REP> ComPlus Applications

21/06/2007 12:34 <REP> DivX

16/07/2007 19:38 <REP> Fichiers communs

21/09/2006 07:26 <REP> Google

09/10/2006 17:29 <REP> Hamachi

05/09/2006 23:46 <REP> Intel

17/07/2007 21:39 <REP> Internet Explorer

20/09/2006 18:45 <REP> Inventel

04/11/2006 18:26 <REP> Java

16/07/2007 22:00 <REP> Lavasoft

05/09/2006 23:37 <REP> Messenger

04/01/2007 18:09 <REP> Messenger Plus! Live

04/01/2007 18:07 <REP> MessengerPlus! 3

09/05/2007 08:17 <REP> Microsoft CAPICOM 2.1.0.2

05/09/2006 23:40 <REP> microsoft frontpage

24/09/2006 16:44 <REP> Microsoft Games

21/09/2006 17:21 <REP> Microsoft Money

20/09/2006 16:25 <REP> Microsoft Office

21/09/2006 17:28 <REP> Microsoft Visual Studio

20/09/2006 16:17 <REP> Microsoft Works

05/09/2006 23:38 <REP> Movie Maker

17/07/2007 00:12 <REP> Mozilla Firefox

05/09/2006 23:37 <REP> MSN

05/09/2006 23:37 <REP> MSN Gaming Zone

20/09/2006 20:19 <REP> MSN Messenger

18/11/2006 23:01 <REP> MSXML 4.0

05/09/2006 23:38 <REP> NetMeeting

05/09/2006 23:37 <REP> Online Services

17/07/2007 01:10 <REP> Opera

05/09/2006 23:38 <REP> Outlook Express

06/01/2007 22:17 <REP> QuickTime

15/02/2007 18:11 <REP> Real

08/01/2007 19:45 <REP> Ridedit

13/05/2007 15:17 <REP> Samsung

20/09/2006 18:32 <REP> Securitoo

05/09/2006 23:39 <REP> Services en ligne

20/09/2006 19:09 <REP> Sigmatel

17/01/2007 17:52 <REP> Skype

16/07/2007 21:56 <REP> Spybot - Search & Destroy

18/07/2007 14:54 <REP> Sunbelt Software

09/01/2007 19:48 <REP> TI Education

17/07/2007 18:51 <REP> TrackMania Nations ESWC

25/11/2006 20:37 <REP> VideoLAN

07/06/2007 19:17 <REP> Windows Live

22/12/2006 19:53 <REP> Windows Media Connect 2

05/09/2006 23:37 <REP> Windows Media Player

05/09/2006 23:37 <REP> Windows NT

24/09/2006 16:44 <REP> WinRAR

05/09/2006 23:56 <REP> Wireless Console 2

05/09/2006 23:40 <REP> xerox

13/05/2007 17:13 <REP> Xvid

0 fichier(s) 0 octets

63 Rép(s) 19 071 330 304 octets libres

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 8875-FCE6

 

Répertoire de C:\Program Files\fichiers communs

 

16/07/2007 19:38 <REP> .

16/07/2007 19:38 <REP> ..

06/09/2006 00:15 <REP> Adobe

05/09/2006 23:59 <REP> Ahead

21/09/2006 17:28 <REP> Designer

20/09/2006 19:18 278 528 FDEUnInstaller.exe

05/09/2006 23:51 <REP> InstallShield

04/11/2006 18:25 <REP> Java

05/09/2006 23:31 <REP> Microsoft Shared

05/09/2006 23:38 <REP> MSSoap

05/09/2006 23:31 <REP> ODBC

15/02/2007 18:11 <REP> Real

05/09/2006 23:38 <REP> Services

17/01/2007 17:53 <REP> Skype

05/09/2006 23:31 <REP> SpeechEngines

08/03/2007 14:59 <REP> SWF Studio

06/09/2006 00:02 <REP> Symantec Shared

05/09/2006 23:38 <REP> System

08/01/2007 19:32 <REP> TI Shared

16/07/2007 21:58 <REP> Wise Installation Wizard

15/02/2007 18:12 <REP> xing shared

1 fichier(s) 278 528 octets

20 Rép(s) 19 071 329 280 octets libres

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 8875-FCE6

 

Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders

 

05/09/2006 23:48 <REP> .

05/09/2006 23:48 <REP> ..

12/03/2007 19:00 <REP> 1036

26/10/2006 19:49 970 528 MSONSEXT.DLL

26/10/2006 20:12 40 256 MSOSV.DLL

03/06/1999 12:09 122 937 MSOWS409.DLL

07/03/2001 07:00 127 033 MSOWS40c.DLL

18/03/1999 07:37 593 977 RAGENT.DLL

5 fichier(s) 1 854 731 octets

3 Rép(s) 19 071 329 280 octets libres

Le volume dans le lecteur C n'a pas de nom.

Le numéro de série du volume est 8875-FCE6

 

Répertoire de C:\

 

12/05/2007 18:22 68 096 diff.exe

12/05/2007 18:22 103 424 grep.exe

31/10/2005 16:56 700 416 StubInstaller.exe

3 fichier(s) 871 936 octets

0 Rép(s) 19 071 328 768 octets libres

c:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\QuickTime 7.1.3.100\QuickTimeInstallerAdmin.exe

c:\Documents and Settings\chamayou\.limewire\.NetworkShare\LimeWireWinInstaller 1.exe

c:\Documents and Settings\chamayou\.limewire\.NetworkShare\LimeWireWinInstaller.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Application Data\LimeWire\.NetworkShare\LimeWireWin4.12.15.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Application Data\Microsoft\Installer\{AF599832-2305-4922-9342-6FF48894E384}\ARPPRODUCTICON.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\DiagHelp\catchme.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\DiagHelp\diff.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\DiagHelp\dumphive.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\DiagHelp\FilesInfoCmd.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\DiagHelp\find2.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\DiagHelp\Fport.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\DiagHelp\grep.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\DiagHelp\KProcCheck.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\DiagHelp\LFiles.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\DiagHelp\LISTDLLS.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\DiagHelp\pslist.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\DiagHelp\streams.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\DiagHelp\swreg.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Game Boy\VisualBoyAdvance-1.8.0-beta3\VisualBoyAdvance.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\aaw2007.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\aoe3-109-english.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\avg75afwt_423a810.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\avgas-setup-7.5.1.43.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\ccsetup140.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\daemon406-x86.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\DivXPlay.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\eMule0.47a-Installer.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\Firefox Setup 2.0.0.4.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\GameParkSetup_en_10012.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\GoogleEarth.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\HamachiSetup-0.9.9.9-fr.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\Install_Messenger.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\Install_MSN_Messenger.EXE

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\LimeWireWin.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\mp10setup.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\MsgPlus-363.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\Opera_9.21_Eng_Setup.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\RivaEncoderSetup.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\setupfre.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\SkypeSetup.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\solidconverterpdf.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\spybotsd14.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\TIConnectV1.3.0.1_ENG.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\TIConnectV1.3.0.1_fra.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\TmNationsESWC_Setup.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\vlc-0.8.5-win32.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\wrar361fr.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Installation\XviD-1.1.2-01112006.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Jeu\age2cpfix.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Jeu\Age2XPatch.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Jeu\Age of Empire\age2_x1.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Jeu\Age of Empire\age2upa.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Jeu\Age of Empire\Aok2b.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Jeu\Age of Empire\AOKCONFIG.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Jeu\Age of Empire\clokspl.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Jeu\Age of Empire\empires2.EXE

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Jeu\Age of Empire\mythxpak.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Jeu\Age of Empire\SETUPREG.EXE

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Jeu\Age of Empire\crack\empires2.EXE

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Jeu\Age of Empire\Data\closedpw.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Bureau\Mes Documents\Quentin\Jeu\Age of Empires III\age3.exe

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Mes documents\MyTIData\ticonnect_fra.exe

c:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic\BACKUP\FAILSAFE\avewin32.dll

c:\Documents and Settings\All Users\Application Data\Grisoft\AVG Anti-Spyware 7.5\Downloads\help.dll

c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\MahjongFortuna2\fr-FR\fmod.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\MahjongFortuna2\fr-FR\mahjongfortuna2.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\MyZylomExtension\MyZylomExtension.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\ZylomExtension\ZylomExtension.dll

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Application Data\Mozilla\Firefox\Profiles\c6c0isow.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbar.dll

c:\Documents and Settings\chamayou.NOM-013AE1E15DC\Application Data\Mozilla\Firefox\Profiles\c6c0isow.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\metrics.dll

 

****** Fin du rapport DiagHelp

 

 

Désolé si c'est pas ce que tu attendais...

[Thanos]

c'est bien le bon rapport

 

Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.

Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau. Redémarre ton ordinateur en mode sans échec en suivant la procédure que voici :

• Redémarre ton ordinateur
  
• Après avoir entendu l'ordinateur biper lors du démarrage, mais avant que l'icône Windows apparaisse, tapote la touche F8 (une pression par seconde).
  
• A la place du chargement normal de Windows, un menu avec différentes options devrait apparaître.
  
• Choisis la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée".
  
• Choisis ton compte.
  

Déroule la liste des instructions ci-dessous :

• Ouvre le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.bat pour lancer le script.
  
• Appuie sur Y pour commencer le processus de nettoyage.
  
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
  
• Appuie sur une touche pour redémarrer le PC.
  
• Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
  
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
  
• Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
  
• Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
  
• Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum, avec un nouveau log Hijackthis !
  

[Moust]

Bon je vais passer pour un fou, mais Firefox (et par là même Opera) remarchent parfaitement.

Je fais quand même ce que tu dis dans le post plus haut, ça ne peut que faire du bien !

 

Edit : et bien on va un peu attendre puisque le lien pour SDFix est en panne...

Modifié le 18 juillet 2007 par Moust

[Thanos]

ok réessaie plus tard pour SDFix car son site est en maintenance!

 

@+

[Moust]

Me rev'là !

 

Alors premièrement, le rapport SDFix

 

 

SDFix: Version 1.92

 

Run by chamayou on 18/07/2007 at 22:59

 

Microsoft Windows XP [version 5.1.2600]

 

Running From: C:\SDFix

 

Safe Mode:

Checking Services:

 

 

Restoring Windows Registry Values

Restoring Windows Default Hosts File

Restoring Missing Security Center Service

Restoring Missing SharedAccess Service

 

Rebooting...

 

 

Normal Mode:

Checking Files:

 

No Trojan Files Found

 

 

 

 

Removing Temp Files...

 

ADS Check:

 

C:\WINDOWS

No streams found.

 

C:\WINDOWS\system32

No streams found.

 

C:\WINDOWS\system32\svchost.exe

No streams found.

 

C:\WINDOWS\system32\ntoskrnl.exe

No streams found.

 

 

 

Final Check:

 

Remaining Services:

------------------

 

 

 

Authorized Application Key Export:

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\\Program Files\\Messenger\\MSMSGS.EXE"="C:\\Program Files\\Messenger\\MSMSGS.EXE:*:Enabled:Windows Messenger"

"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"

"C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"

"C:\\Program Files\\mIRC\\mirc.exe"="C:\\Program Files\\mIRC\\mirc.exe:*:Enabled:mIRC"

"C:\\WINDOWS\\system32\\svchost.exe"="C:\\WINDOWS\\system32\\svchost.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\12exmodul32d.4.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\12exmodul32d.4.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\18exmodul32d.4.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\18exmodul32d.4.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\97exmodul32d.4.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\97exmodul32d.4.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\60exmodul32d.4.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\60exmodul32d.4.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\90exmodul32d.4.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\90exmodul32d.4.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\76exmodul32d.4.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\76exmodul32d.4.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\38exmodul32d.4.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\38exmodul32d.4.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\19exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\19exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\25exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\25exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\71exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\71exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\15exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\15exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\84exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\84exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\34exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\34exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\46exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\46exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\79exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\79exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\57exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\57exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exmodul32d.5.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exmodul32d.5.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\35exmodul32d.6.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\35exmodul32d.6.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exmodul32d.6.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exmodul32d.6.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\59exmodul32d.6.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\59exmodul32d.6.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\37exmodul32d.6.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\37exmodul32d.6.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exmodul32d.6.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exmodul32d.6.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\26exmodul32d.6.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\26exmodul32d.6.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\54exmodul32d.6.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\54exmodul32d.6.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\28exmodul32d.7.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\28exmodul32d.7.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\86exmodul32d.7.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\86exmodul32d.7.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exmodul32d.8.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exmodul32d.8.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\34exmodul32d.8.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\34exmodul32d.8.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\4exmodul32d.8.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\4exmodul32d.8.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\47exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\47exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\29exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\29exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3.exe"="C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3.exe:*:Enabled:Age of Empires 3"

"C:\\WINDOWS\\System32\\dpvsetup.exe"="C:\\WINDOWS\\System32\\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"

"C:\\WINDOWS\\System32\\rundll32.exe"="C:\\WINDOWS\\System32\\rundll32.exe:*:Enabled:Ex‚cuter une DLL en tant qu'application"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\16exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\16exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\90exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\90exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\39exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\39exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\59exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\59exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\64exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\64exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\7exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\7exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\62exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\62exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\68exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\68exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\17exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\17exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\37exmodul32d.a.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\37exmodul32d.a.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\88exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\88exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\52exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\52exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\24exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\24exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\96exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\96exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\17exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\17exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\67exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\67exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\31exmodul32d.b.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\31exmodul32d.b.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\33exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\33exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\11exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\11exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\75exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\75exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\22exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\22exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\1exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\1exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\49exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\49exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\45exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\45exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\79exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\79exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\24exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\24exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\5exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\5exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\83exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\83exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\14exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\14exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\77exmodul32d.c.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\77exmodul32d.c.exe:*:Enabled:Microsoft Update"

"C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3x.exe"="C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs"

"C:\\StubInstaller.exe"="C:\\StubInstaller.exe:*:Enabled:LimeWire swarmed installer"

"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\86exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\86exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\44exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\44exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\20exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\20exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\2exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\2exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\16exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\16exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\53exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\53exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\63exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\63exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\84exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\84exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\80exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\80exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\3exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\3exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\18exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\18exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\47exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\47exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\27exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\27exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\36exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\36exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\58exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\58exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\77exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\77exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\43exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\43exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\96exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\96exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\19exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\19exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\99exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\99exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\81exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\81exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\11exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\11exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\46exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\46exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\42exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\42exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\15exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\15exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\93exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\93exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\76exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\76exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\54exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\54exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\87exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\87exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\33exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\33exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\90exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\90exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\17exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\17exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\57exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\57exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\89exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\89exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\49exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\49exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\26exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\26exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\1exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\1exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\61exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\61exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\48exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\48exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\91exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\91exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\14exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\14exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\8exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\8exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\60exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\60exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\94exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\94exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\62exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\62exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\52exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\52exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\45exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\45exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\10exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\10exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\23exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\23exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\22exinjs.n.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\22exinjs.n.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\14exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\14exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\86exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\86exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\57exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\57exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\82exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\82exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\45exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\45exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\7exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\7exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\79exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\79exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\92exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\92exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\91exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\91exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\46exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\46exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\1exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\1exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\36exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\36exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\87exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\87exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\31exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\31exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\49exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\49exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\64exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\64exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\29exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\29exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\10exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\10exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\58exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\58exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\23exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\23exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\66exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\66exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\69exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\19exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\19exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\25exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\25exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\56exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\56exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\12exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\12exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\21exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\21exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\20exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\20exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\94exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\94exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\93exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\93exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\9exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\9exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\96exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\96exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\2exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\2exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\61exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\61exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\83exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\83exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\73exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\73exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\98exinjs.o.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\98exinjs.o.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\67exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\67exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\4exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\4exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\95exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\8exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\8exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\98exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\98exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\61exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\61exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\7exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\7exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\41exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\3exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\3exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\73exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\73exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\38exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\38exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\99exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\99exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\20exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\20exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\31exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\31exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\5exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\5exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\64exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\64exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\84exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\84exinjs.p.exe:*:Enabled:Microsoft Update"

"C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exinjs.p.exe"="C:\\DOCUME~1\\CHAMAY~1.NOM\\LOCALS~1\\Temp\\30exinjs.p.exe:*:Enabled:Microsoft Update"

"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\\Program Files\\TrackMania Nations ESWC\\TmNationsESWC.exe"="C:\\Program Files\\TrackMania Nations ESWC\\TmNationsESWC.exe:*:Enabled:TmNationsESWC"

"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"

"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype. The whole world can talk for free."

"C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Disabled:Firefox"

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"

"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"

"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

 

Remaining Files:

---------------

 

 

Files with Hidden Attributes:

 

C:\Documents and Settings\chamayou.NOM-013AE1E15DC\Local Settings\Application Data\Microsoft\Messenger\moustleboss@hotmail.com\Sharing Folders\aureliennober@hotmail.com\Thumbs.db

C:\Documents and Settings\All Users\DRM\Cache\Indiv02.tmp

C:\Documents and Settings\chamayou.NOM-013AE1E15DC\Application Data\Microsoft\Word\~WRL0003.tmp

C:\Documents and Settings\chamayou.NOM-013AE1E15DC\Application Data\Microsoft\Word\~WRL0004.tmp

C:\Documents and Settings\chamayou.NOM-013AE1E15DC\Application Data\Microsoft\Word\~WRL0005.tmp

C:\Documents and Settings\chamayou.NOM-013AE1E15DC\Application Data\Microsoft\Word\~WRL0070.tmp

C:\Documents and Settings\chamayou.NOM-013AE1E15DC\Application Data\Microsoft\Word\~WRL0251.tmp

C:\Documents and Settings\chamayou.NOM-013AE1E15DC\Application Data\Microsoft\Word\~WRL0524.tmp

C:\Documents and Settings\chamayou.NOM-013AE1E15DC\Application Data\Microsoft\Word\~WRL1053.tmp

C:\Documents and Settings\chamayou.NOM-013AE1E15DC\Application Data\Microsoft\Word\~WRL2734.tmp

C:\Documents and Settings\chamayou.NOM-013AE1E15DC\Application Data\Microsoft\Word\~WRL3042.tmp

C:\Documents and Settings\chamayou.NOM-013AE1E15DC\Application Data\Microsoft\Word\~WRL3579.tmp

C:\Documents and Settings\chamayou.NOM-013AE1E15DC\Application Data\Microsoft\Word\~WRL3745.tmp

 

Finished

 

 

 

Puis le HijackThis :

 

Logfile of HijackThis v1.99.1

Scan saved at 23:07:14, on 18/07/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16473)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Intel\Wireless\Bin\EvtEng.exe

C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe

C:\Program Files\a-squared Free\a2service.exe

C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe

C:\Program Files\AntiVir PersonalEdition Classic\sched.exe

C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Inventel\Gateway\wlancfg.exe

C:\WINDOWS\system32\wuauclt.exe

C:\WINDOWS\system32\notepad.exe

C:\WINDOWS\ATK0100\HControl.exe

C:\WINDOWS\system32\igfxtray.exe

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\igfxpers.exe

C:\WINDOWS\sm56hlpr.exe

C:\WINDOWS\stsystra.exe

C:\Program Files\Wireless Console 2\wcourier.exe

C:\Program Files\ASUS\ATK Media\DMEDIA.EXE

C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe

C:\Program Files\ASUS\Splendid\ACMON.exe

C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe

C:\WINDOWS\system32\ACEngSvr.exe

C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe

C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe

C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe

C:\Program Files\QuickTime\qttask.exe

C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe

C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe

C:\WINDOWS\ATK0100\ATKOSD.exe

C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe

C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe

C:\Program Files\MSN Messenger\MsnMsgr.Exe

C:\WINDOWS\system32\acovcnt.exe

C:\Program Files\Messenger\msmsgs.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Hijackthis\scanner.exe.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://orange.fr/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)

O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe

O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe

O4 - HKLM\..\Run: [sMSERIAL] C:\WINDOWS\sm56hlpr.exe

O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe

O4 - HKLM\..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe

O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE

O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe"

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [ACMON] C:\Program Files\ASUS\Splendid\ACMON.exe

O4 - HKLM\..\Run: [intelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"

O4 - HKLM\..\Run: [intelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless

O4 - HKLM\..\Run: [EOUApp] "C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe"

O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL

O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O11 - Options group: [iNTERNATIONAL] International*

O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com

O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab

O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab

O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB

O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab

O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab

O16 - DPF: {8731163E-77B9-4F91-9122-F112521C28AF} (MMSPlayerX Class) - http://mmt.bouyguestelecom.fr/mmawap/jsp/c...r/mmsPlayer.cab

O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game03.zylom.com/activex/zylomgamesplayer.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab

O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL

O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\FICHIE~1\MICROS~1\OFFICE12\MSOXMLMF.DLL

O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe

O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe

O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: ASP.NET State Service (aspnet_state) - Unknown owner - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe

O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe

O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe

 

 

Voilà tout !

[Thanos]

salut

 

Stp rend toi sur cette page afin de télécharger le fichier fix.reg > http://www.sendspace.com/file/54o70uhttp://www.sendspace.com/file/2mqp7u

pour cela, clique sur le lien en bas de page > Download Link: fix.reg

 

Double clique sur le fichier et accepte la fusion avec le registre.Elimine le fichier ensuite.

 

Tu peux éliminer le fichier SDFix.exe sur ton bureau ainsi que le dossier C:\SDFix

 

Elimine enfin le fichier C:\StubInstaller.exe

 

Pour finir >

 

Fais un scan en ligne avec Panda :

http://www.pandasoftware.fr/Activescan/Activescan.html .

Et poste le rapport qu'il t'affichera à la fin, pour cela, assure toi que IE est correctement configuré pour le scan en ligne comme indiqué ici : http://www.malekal.com/scan_Av_en_ligne.html#mozTocId898809 .

Si tu n'y arrives pas, le tuto est : http://www.malekal.com/scan_Av_en_ligne.html#mozTocId237368

 

Tu n'es pas obligé de donner ton email, tu peux utiliser une adresse jetable si tu le souhaites : http://www.jetable.org/fr/index

 

@+