Un problème d'infection

[Rakhnar]

Bonjour, le problème que j'ai est que malgré la présence de Kaspersky antivirus sur mon ordinateur, j'ai été infecté par plein de petits logiciels. Et par exemple en étant hors ligne sur MSN, j'envoie des liens a tous mes contacts, ceci est plutôt dérangeant et je souhaiterais me débarrasser de cette infection. Pourriez-vous m'aider s'il vous plaît? Je remercie d'avance ceux qui m'aideront.

Modifié le 8 mai 2009 par Rakhnar

[Gof]

Bonjour Rakhnar

 

Messages: 1

Bienvenue sur les forums de Zebulon.

 

Quelques liens pour t'aider à commencer :

• Comment participer à un forum
  
• retrouver ses messages et activer la notification par email
  

 

On va voir ensemble ce qui se passe sur ton PC ; comme tous les intervenants ici, nous aidons bénévolement en fonction de nos activités personnelles. On va essayer d'aller au plus vite, mais il faudra peut-être parfois être patient pour attendre une réponse, pas d'affolement

 

Tu n'as pas posté dans le bon sous-forum, je déplace ton sujet dans le forum approprié. Peux tu me dire quelle est la teneur des messages et liens que tu envoies à tes contacts ?

 

Télécharge random's system information tool (RSIT) par random/random et sauvegarde-le sur le Bureau.

• Double-clique sur RSIT.exe afin de lancer RSIT.
  
• Clique Continue à l'écran Disclaimer.
  
• Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.
  
• Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (<<qui sera affiché)
  ainsi que de info.txt (<<qui sera réduit dans la Barre des Tâches).
  

[Rakhnar]

Merci pour ta réponse. J'ai téléchargé RSIT ainsi que HiIjackThis. J'ai donc fait ce que tu m'as dis de faire et voilà,

Le contenu du Log :

Logfile of random's system information tool 1.06 (written by random/random)

Run by user at 2009-05-08 12:52:45

Microsoft Windows XP Édition familiale Service Pack 3

System drive C: has 127 GB (53%) free of 238 GB

Total RAM: 1023 MB (46% free)

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 12:53:08, on 08/05/2009

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16827)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe

C:\Program Files\QuickTime\qttask.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\DNA\btdna.exe

C:\Program Files\Curse\CurseClient.exe

C:\Program Files\Fichiers communs\InterVideo\RegMgr\iviRegMgr.exe

C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Windows Live\Contacts\wlcomm.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Documents and Settings\user\Bureau\RSIT.exe

C:\Program Files\trend micro\user.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://worldofwarcraft.judgehype.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://lo.st

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll

R3 - URLSearchHook: Eazel-FR Toolbar - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - C:\Program Files\Eazel-FR\tbEaz1.dll

O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)

O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\kb127\Dealio.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Eazel-FR Toolbar - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - C:\Program Files\Eazel-FR\tbEaz1.dll

O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll

O2 - BHO: Ask Toolbar BHO - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL

O3 - Toolbar: Ask Toolbar - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL

O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:\Program Files\Dealio\kb127\Dealio.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: Eazel-FR Toolbar - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - C:\Program Files\Eazel-FR\tbEaz1.dll

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

O4 - HKLM\..\Run: [iSUSPM] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe" -scheduler

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [bitTorrent DNA] "C:\Program Files\DNA\btdna.exe"

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun

O4 - HKCU\..\Run: [CurseClient] C:\Program Files\Curse\CurseClient.exe -silent

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O8 - Extra context menu item: Ajouter à Kaspersky Anti-Bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm

O8 - Extra context menu item: Compare Prices with &Dealio - C:\Documents and Settings\user\Application Data\Dealio\kb127\res\DealioSearch.html

O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm

O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm

O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm

O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll

O9 - Extra button: Statistiques de la protection du trafic Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll

O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll

O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1201290111875

O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://fichiers.touslesdrivers.com/fichier...on_2_0_4_12.cab

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://sdlc-esd.sun.com/ESD42/JSCDL/jre/6u...ows-i586-jc.cab

O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwa...ash/swflash.cab

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL

O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll

O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Fichiers communs\InterVideo\RegMgr\iviRegMgr.exe

O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe

O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe

O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

 

--

End of file - 10749 bytes

 

======Scheduled tasks folder======

 

C:\WINDOWS\tasks\AppleSoftwareUpdate.job

C:\WINDOWS\tasks\Norton Security Scan.job

C:\WINDOWS\tasks\Wow Cartographe.job

 

======Registry dump======

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]

Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2008-11-07 1088296]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]

IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll [2008-11-11 62728]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}]

EoBho Class - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll []

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6A87B991-A31F-4130-AE72-6D0C294BF082}]

DealioBHO Class - C:\Program Files\Dealio\kb127\Dealio.dll [2008-05-26 3170144]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]

Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

SSVHelper Class - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll [2008-03-25 509328]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a8f9752d-e2b8-4e7a-86b5-499f4330e2fe}]

Eazel-FR Toolbar - C:\Program Files\Eazel-FR\tbEaz1.dll [2009-04-01 1883672]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]

FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2008-11-12 94208]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]

Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]

SearchSettings Class - C:\Program Files\Search Settings\kb127\SearchSettings.dll [2008-06-12 1111904]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA}]

Ask Toolbar BHO - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL [2008-09-17 262144]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - Ask Toolbar - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL [2008-09-17 262144]

{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - Dealio - C:\Program Files\Dealio\kb127\Dealio.dll [2008-05-26 3170144]

{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

{a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - Eazel-FR Toolbar - C:\Program Files\Eazel-FR\tbEaz1.dll [2009-04-01 1883672]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-10-07 13574144]

"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2009-02-10 206088]

"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []

"ISUSPM"=C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe [2006-03-20 213936]

"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2006-09-01 282624]

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]

"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]

"BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-03-25 321344]

"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-12-29 687560]

"CurseClient"=C:\Program Files\Curse\CurseClient.exe [2009-04-24 1836032]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]

C:\WINDOWS\ALCMTR.EXE [2005-05-02 69632]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]

C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2008-11-23 203720]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\au]

C:\Program Files\Dealio\DealioAU.exe [2008-05-26 595296]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVP]

C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe []

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]

C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EoEngine]

[]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Free Download Manager]

C:\Program Files\Free Download Manager\fdm.exe [2008-11-12 2474031]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ItsTV]

C:\Program Files\ItsLabel\ItsTV.exe []

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]

C:\WINDOWS\system32\dumprep 0 -k []

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]

C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe [2007-10-25 563984]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]

C:\Program Files\Logitech\QuickCam\Quickcam.exe [2007-10-25 2178832]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]

C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVComSX.exe [2007-02-06 252704]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]

C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\muwog]

c:\documents and settings\user\local settings\application data\muwog.exe [2009-01-11 216064]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]

C:\WINDOWS\system32\NvCpl.dll [2008-10-07 13574144]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]

C:\WINDOWS\system32\NvMcTray.dll [2008-10-07 86016]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]

nwiz.exe /install []

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]

C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]

C:\WINDOWS\RTHDCPL.EXE [2006-09-11 16264192]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SearchSettings]

C:\Program Files\Search Settings\SearchSettings.exe [2008-06-12 991584]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]

C:\Program Files\Skype\Phone\Skype.exe [2008-11-07 21633320]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]

C:\WINDOWS\SkyTel.EXE [2006-05-15 2879488]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spyware-Secure]

C:\Program Files\Spyware-Secure\Spyware-Secure_trial.exe []

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe [2008-03-25 144784]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancer l'utilitaire d'enregistrement.lnk]

C:\PROGRA~1\WIFICO~1\NINTEN~1.EXE [2006-11-16 1073152]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]

"WMPNetworkSvc"=3

"WLSetupSvc"=3

"gusvc"=3

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLS"="C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]

C:\WINDOWS\system32\klogon.dll [2008-11-11 218376]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=FF000000

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"HonorAutoRunSetting"=

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"

"C:\Program Files\World of Warcraft\WoW-1.12.0-frFR-downloader.exe"="C:\Program Files\World of Warcraft\WoW-1.12.0-frFR-downloader.exe:*:Enabled:Blizzard Downloader"

"C:\Program Files\World of Warcraft\WoW-2.3.0-frFR-downloader.exe"="C:\Program Files\World of Warcraft\WoW-2.3.0-frFR-downloader.exe:*:Enabled:Blizzard Downloader"

"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"

"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\Program Files\Warcraft III\Warcraft III.exe"="C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"

"C:\Program Files\Team17\Worms 2\Frontend.exe"="C:\Program Files\Team17\Worms 2\Frontend.exe:*:Enabled:Worms 2 Frontend"

"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe:*:Enabled:Kaspersky Anti-Virus"

"C:\Program Files\WiFiConnector\NintendoWFCReg.exe"="C:\Program Files\WiFiConnector\NintendoWFCReg.exe:*:Enabled:Connecteur Wi-Fi USB Nintendo"

"C:\Program Files\World of Warcraft\BackgroundDownloader.exe"="C:\Program Files\World of Warcraft\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader"

"C:\Program Files\Azureus\Azureus.exe"="C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus"

"C:\Documents and Settings\user\Bureau\WoW-2.4.3.8568-to-3.0.2.8916-frFR-downloader.exe"="C:\Documents and Settings\user\Bureau\WoW-2.4.3.8568-to-3.0.2.8916-frFR-downloader.exe:*:Enabled:Blizzard Downloader"

"C:\Program Files\World of Warcraft Public Test\WoW-3.0.2.8916-to-0.0.2.8962-frFR-downloader.exe"="C:\Program Files\World of Warcraft Public Test\WoW-3.0.2.8916-to-0.0.2.8962-frFR-downloader.exe:*:Enabled:Blizzard Downloader"

"C:\Program Files\World of Warcraft Public Test\WoW-0.0.2.8970-to-0.0.2.8982-frFR-downloader.exe"="C:\Program Files\World of Warcraft Public Test\WoW-0.0.2.8970-to-0.0.2.8982-frFR-downloader.exe:*:Enabled:Blizzard Downloader"

"C:\Program Files\Microsoft Games\Age of Empires II Trial\EMPIRES2.EXE"="C:\Program Files\Microsoft Games\Age of Empires II Trial\EMPIRES2.EXE:*:Enabled:Age of Empires II"

"C:\Program Files\World of Warcraft\WoW-2.4.3-to-3.0.2-frFR-Win-Final-downloader.exe"="C:\Program Files\World of Warcraft\WoW-2.4.3-to-3.0.2-frFR-Win-Final-downloader.exe:*:Enabled:Blizzard Downloader"

"C:\Program Files\World of Warcraft Public Test\WoW-0.0.8-frFR-downloader.exe"="C:\Program Files\World of Warcraft Public Test\WoW-0.0.8-frFR-downloader.exe:*:Enabled:Blizzard Downloader"

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"

"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"

"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"

"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype. Take a deep breath "

"C:\Program Files\Curse\CurseClient.exe"="C:\Program Files\Curse\CurseClient.exe:*:Enabled:Curse Client"

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"

"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a587062a-2e47-11dd-99fc-001a920f05ea}]

shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480

 

 

======List of files/folders created in the last 1 months======

 

2009-05-08 12:52:45 ----D---- C:\rsit

2009-05-08 12:52:45 ----D---- C:\Program Files\trend micro

2009-04-29 22:11:56 ----HDC---- C:\WINDOWS\$NtUninstallKB961503$

2009-04-29 18:16:08 ----D---- C:\Program Files\CamStudio

2009-04-28 22:11:07 ----D---- C:\Program Files\Curse

2009-04-25 22:42:10 ----D---- C:\Documents and Settings\user\Application Data\dvdcss

2009-04-25 22:41:35 ----D---- C:\Documents and Settings\user\Application Data\vlc

2009-04-25 22:38:19 ----D---- C:\Program Files\VideoLAN

2009-04-24 22:31:23 ----D---- C:\Program Files\Frets on Fire

2009-04-24 21:05:34 ----D---- C:\Documents and Settings\user\Application Data\fretsonfire

2009-04-24 15:22:57 ----D---- C:\Program Files\Teamspeak2_RC2(2)

2009-04-23 02:15:44 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$

2009-04-23 02:15:39 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$

2009-04-23 02:13:21 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$

2009-04-23 02:12:57 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$

2009-04-23 02:12:50 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$

2009-04-23 02:12:38 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$

 

======List of files/folders modified in the last 1 months======

 

2009-05-08 12:52:47 ----D---- C:\WINDOWS\Prefetch

2009-05-08 12:52:45 ----RD---- C:\Program Files

2009-05-08 12:52:45 ----D---- C:\WINDOWS\Temp

2009-05-08 12:52:23 ----D---- C:\Documents and Settings\user\Application Data\DNA

2009-05-08 12:16:28 ----D---- C:\Program Files\Mozilla Firefox

2009-05-08 04:19:43 ----D---- C:\Program Files\Circle Developement

2009-05-08 01:14:54 ----D---- C:\Program Files\QuickTime

2009-05-07 22:10:48 ----D---- C:\Program Files\Warcraft III

2009-05-07 19:22:44 ----D---- C:\WINDOWS\system32\drivers

2009-05-07 17:05:44 ----D---- C:\WINDOWS\system32\CatRoot2

2009-05-07 16:10:33 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab

2009-05-07 16:10:19 ----D---- C:\Program Files\DNA

2009-05-06 22:26:17 ----A---- C:\WINDOWS\SchedLgU.Txt

2009-05-05 20:15:55 ----D---- C:\Program Files\World of Warcraft

2009-05-03 01:36:18 ----D---- C:\WINDOWS\security

2009-05-03 01:23:58 ----HD---- C:\WINDOWS\inf

2009-05-02 12:15:26 ----D---- C:\WINDOWS

2009-04-30 16:08:36 ----D---- C:\WINDOWS\system32

2009-04-29 22:11:58 ----RSHDC---- C:\WINDOWS\system32\dllcache

2009-04-29 18:39:55 ----D---- C:\Program Files\HyCam2

2009-04-29 18:12:58 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP

2009-04-29 18:12:32 ----D---- C:\Fraps

2009-04-29 13:37:04 ----D---- C:\WINDOWS\system32\CatRoot

2009-04-29 13:35:07 ----HD---- C:\WINDOWS\$hf_mig$

2009-04-27 17:49:44 ----SHD---- C:\WINDOWS\Installer

2009-04-27 17:49:43 ----D---- C:\Program Files\Google

2009-04-27 17:49:43 ----D---- C:\Documents and Settings\All Users\Application Data\Google

2009-04-27 17:47:23 ----D---- C:\Program Files\DAEMON Tools Toolbar

2009-04-27 17:46:49 ----D---- C:\Program Files\BitTorrent

2009-04-24 15:57:15 ----A---- C:\WINDOWS\system32\java.exe

2009-04-23 11:35:13 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI

2009-04-23 11:30:09 ----D---- C:\WINDOWS\system32\wbem

2009-04-23 11:30:09 ----D---- C:\WINDOWS\AppPatch

2009-04-23 02:15:46 ----A---- C:\WINDOWS\imsins.BAK

2009-04-23 02:15:30 ----D---- C:\WINDOWS\system32\fr-fr

2009-04-23 02:15:30 ----D---- C:\Program Files\Internet Explorer

2009-04-22 23:04:58 ----D---- C:\Program Files\Messenger Plus! Live

 

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14720]

R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2009-02-12 226832]

R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-02-06 55152]

R3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]

R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]

R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-09-11 4381184]

R3 KLFLTDEV;Kaspersky Lab KLFltDev; C:\WINDOWS\system32\DRIVERS\klfltdev.sys [2008-03-13 26640]

R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2008-04-30 24592]

R3 LVcKap;Logitech AEC Driver; C:\WINDOWS\system32\DRIVERS\LVcKap.sys [2007-10-19 2109976]

R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2007-10-11 25624]

R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\LVUSBSta.sys [2007-02-03 41504]

R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]

R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2006-09-29 5810]

R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-10-07 6133856]

R3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2007-02-03 14240]

R3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2007-02-03 938272]

R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]

R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]

R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]

R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]

R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]

S3 a4l1xncx;a4l1xncx; C:\WINDOWS\system32\drivers\a4l1xncx.sys []

S3 ae782vuw;ae782vuw; C:\WINDOWS\system32\drivers\ae782vuw.sys []

S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]

S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []

S3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys [2007-10-11 2142488]

S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]

S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]

S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]

S3 RT25USBAP;Nintendo Wi-Fi USB Connector Service; C:\WINDOWS\system32\DRIVERS\rt25usbap.sys [2006-04-10 162816]

S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]

S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]

S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]

S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]

S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]

S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

 

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R2 AVP;Kaspersky Internet Security; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2009-02-10 206088]

R2 IviRegMgr;IviRegMgr; C:\Program Files\Fichiers communs\InterVideo\RegMgr\iviRegMgr.exe [2007-01-04 112152]

R2 LVCOMSer;LVCOMSer; C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe [2007-10-19 186904]

R2 LVPrcSrv;Process Monitor; C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe [2007-10-19 141848]

R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-10-07 163908]

R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]

R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]

S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe [2007-10-19 141848]

S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]

S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]

S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]

S3 fsssvc;Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]

S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]

S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]

S3 usprserv;User Privilege Service; C:\WINDOWS\System32\svchost.exe [2008-04-13 14336]

S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]

S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880]

S4 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]

 

-----------------EOF-----------------

 

Le contenu du Info :

info.txt logfile of random's system information tool 1.06 2009-05-08 12:53:12

 

======Uninstall list======

 

-->"C:\Program Files\InstallShield Installation Information\{F37167DD-4436-4641-90B6-329D60632DDA}\Setup.exe" REMOVEALL --u:{F37167DD-4436-4641-90B6-329D60632DDA}

-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER

-->MsiExec /X{A7E07C2B-2220-4415-87E3-784D5814BC93}

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf

Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe

Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe

Adobe Shockwave Player-->C:\WINDOWS\system32\Adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log

Apple Software Update-->MsiExec.exe /I{55FA89BD-21D3-42F7-9249-C94C0094A83C}

Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe

Ask Toolbar-->rundll32 C:\PROGRA~1\AskSBar\bar\1.bin\AskSBar.dll,O

Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}

Call of Duty Game of the Year Edition-->C:\PROGRA~1\CALLOF~1\Uninstall\Unwise.exe /u C:\PROGRA~1\CALLOF~1\Uninstall\Install.log

CamStudio 2.0 Fr-->"C:\Program Files\CamStudio\unins000.exe"

Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}

Code::Blocks-->"C:\Program Files\CodeBlocks\unins000.exe"

Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"

Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"

Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"

Curse Client-->C:\Program Files\Curse\uninstall.exe

Dark Messiah -->C:\Program Files\InstallShield Installation Information\{A8E2EF8F-73EF-4DD8-BB38-31FCCAF50103}\setup.exe -runfromtemp -l0x040c -removeonly

Dealio Toolbar 3.4-->MsiExec.exe /X{6105648C-0C3C-481D-8C11-1F4952D6FB53}

DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC

DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER

DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER

DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN

Dofus 1.26.0-->C:\Program Files\Dofus\uninstall.exe

Eazel-FR Toolbar-->C:\PROGRA~1\Eazel-FR\UNWISE.EXE /U C:\PROGRA~1\Eazel-FR\INSTALL.LOG

Fable - The Lost Chapters-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{C3C9EB3D-24FA-4462-B784-0EC6AAFCD2DD}

FINAL FANTASY XI-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{45105F2B-0294-4354-A92A-5D1F575E24A5}

Fraps-->"C:\Fraps\uninstall.exe"

Free Mp3 Wma Converter V 1.8.0-->"C:\Program Files\Free Audio Pack\unins000.exe"

Frets On Fire-->"C:\Program Files\Frets on Fire\Uninstall.exe"

Galerie de photos Windows Live-->MsiExec.exe /X{44E54A81-9D91-4AA1-9417-80AFF134F5FF}

GIMP 2.4.6-->"C:\Program Files\GIMP-2.0\setup\unins000.exe"

GTA2-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2987EE84-C4EE-4FF5-8160-32DE00D6ABC6}\Setup.exe" -l0x9

GUILD WARS-->"C:\Program Files\GUILD WARS\Gw.exe" -uninstall

High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"

HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall

Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"

HyperCam 2-->"C:\Program Files\HyCam2\UnHyCam2.exe"

Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe

Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}

InterVideo WinDVD 8-->C:\Program Files\InstallShield Installation Information\{20471B27-D702-4FE8-8DEC-0702CC8C0A85}\setup.exe -runfromtemp -l0x040c

Java 6 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160060}

Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}

Kaspersky Internet Security 2009-->MsiExec.exe /I{8CB14A64-CEF4-4C8F-B1C8-1C3B8752CB55}

Kaspersky Internet Security 2009-->MsiExec.exe /I{8CB14A64-CEF4-4C8F-B1C8-1C3B8752CB55}

Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall

Les Sims 2-->C:\Program Files\EA GAMES\Les Sims 2\EAUninstall.exe

Logitech Audio Echo Cancellation Component-->MsiExec.exe /X{BEF726DD-4037-4214-8C6A-E625C02D2870}

Logitech QuickCam-->MsiExec.exe /X{945AC98B-3DC8-45BE-BAE0-22CEEE37A103}

Logitech Video Enumerator-->MsiExec.exe /X{EA516024-D84D-41F1-814F-83175A6188F2}

Messenger Plus! Live & Sponsor (CiD)-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"

Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - FRA-->MsiExec.exe /I{3F7924B9-D148-3141-87B1-68F36043A940}

Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}

Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - FRA-->MsiExec.exe /I{511DF669-2930-30C0-8EB6-552887E29EC8}

Microsoft .NET Framework 3.0 Service Pack 1-->MsiExec.exe /I{2BA00471-0328-3743-93BD-FA813353A783}

Microsoft .NET Framework 3.5 Language Pack - fra-->MsiExec.exe /I{5B76AEA2-D4E5-3B55-B965-ACC36AE0EAFC}

Microsoft .NET Framework 3.5-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5\setup.exe

Microsoft .NET Framework 3.5-->MsiExec.exe /I{2FC099BD-AC9B-33EB-809C-D332E1B27C40}

Microsoft Age of Empires II Trial Version-->"C:\Program Files\Microsoft Games\Age of Empires II Trial\UNINSTAL.EXE" /runtemp /uninstall

Microsoft Age of Empires II : The Conquerors Expansion-->"C:\Program Files\Microsoft Games\Age of Empires II\UNINSTALX.EXE" /runtemp /addremove

Microsoft Age of Empires II-->"C:\Program Files\Microsoft Games\Age of Empires II\UNINSTAL.EXE" /runtemp /uninstall

Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"

Microsoft Games for Windows - LIVE -->MsiExec.exe /X{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}

Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{FD052FB9-FE90-4438-B355-15EDC89D8FB1}

Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"

Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"

Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}

Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}

Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}

Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"

Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}

Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}

Microsoft Visual C++ 2008 Express Edition - FRA-->MsiExec.exe /X{15473D70-D791-3B5E-B174-2FD19EC0D017}

Microsoft Visual C++ 2008 Express - Français-->C:\Program Files\Microsoft Visual Studio 9.0\Microsoft Visual C++ 2008 Express Edition - FRA\setup.exe

Microsoft Windows SDK for Visual Studio 2008 Express Tools for .NET Framework-->MsiExec.exe /X{AB47EEE8-507B-331F-AA28-B7C7257F014C}

Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32-->MsiExec.exe /X{07FCBED5-94C3-4F94-B9D3-360FA27C7B06}

Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries-->MsiExec.exe /X{842FAF7C-50EF-4463-9B8F-6222E1384D7D}

Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB961503)-->"C:\WINDOWS\$NtUninstallKB961503$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"

Module linguistique Microsoft .NET Framework 3.5 - fra-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - fra\setup.exe

Mozilla Firefox (3.0.10)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe

MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}

MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}

MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

MSXML 6.0 Parser (KB925673)-->MsiExec.exe /I{FE9126DB-5F84-495A-BB46-3C724F1C2D08}

MSXML4 Parser-->MsiExec.exe /I{01501EBA-EC35-4F9F-8889-3BE346E5DA13}

MVision-->MsiExec.exe /I{35725FBC-A136-4A46-9F29-091759D9BB93}

NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI

NVIDIA PhysX v8.09.04-->MsiExec.exe /X{A7E07C2B-2220-4415-87E3-784D5814BC93}

OpenOffice.org Installer 1.0-->MsiExec.exe /X{3A2AF807-9F9F-43C9-A24A-17B617238B74}

Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}

PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"

PlayOnline Viewer and Tetra Master-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{A82B049B-14E7-4E0E-946D-024AC4050EF8}

Programme de gestion Camera de Logitech®-->"C:\Program Files\Fichiers communs\LogiShrd\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT

QuickTime 3.0-->C:\WINDOWS\uninst.exe -f"C:\Program Files\QuickTime\DeIsL1.isu" -c"C:\WINDOWS\system32\QTUninst.dll

QuickTime-->MsiExec.exe /I{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}

Rappelz-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{01A8838A-9469-425F-A5FB-FC14D4CF93B9}\setup.exe" -l0x40c -removeonly

Realtek High Definition Audio Driver-->RtlUpd.exe -r -m

RomStation-->C:\Program Files\RomStation\Uninstal.exe

Search Settings 1.2-->MsiExec.exe /X{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}

Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}

SimCity™ Sociétés-->MsiExec.exe /X{0B5154C0-8F00-4616-B0AB-6240AE80D9CE}

Skype™ 3.8-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}

SpeechRedist-->MsiExec.exe /X{8795CBED-55E2-4693-9F14-84EC446935BE}

TeamSpeak 2 RC2-->"C:\Program Files\Teamspeak2_RC2(2)\unins000.exe"

Unreal Tournament 2004-->C:\UT2004\System\Setup.exe uninstall "UT2004"

Utilitaire d'enregistrement du connecteur Wi-Fi USB Nintendo-->C:\Program Files\WiFiConnector\SoftAPUninst.exe

UxTheme Multipatcher Fr-->C:\Program Files\UxTheme Multipatcher Fr\uninstall.exe

VIA Gestionnaire de périphériques de plate-forme-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{20D4A895-748C-4D88-871C-FDB1695B0169}

VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe

Wakfu-->C:\Program Files\Wakfu\uninstall.exe

Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"

Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}

Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}

Windows Live Contrôle parental-->MsiExec.exe /X{D6A2DDE3-9D7C-412C-932A-756580D29919}

Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}

Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}

Windows Live OneCare safety scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT

Windows Live Sync-->MsiExec.exe /X{9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E}

Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}

Windows Live Writer-->MsiExec.exe /X{2231CE39-B963-4B9D-823A-F412ECA637B1}

Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll

Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"

Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"

Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}

Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"

WinFast® Display Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F69FD33C-8815-46BF-9134-A643DE68F3C0}\setup.exe" -l0x40c -removeonly

World of Warcraft Public Test-->C:\Program Files\Fichiers communs\Blizzard Entertainment\Burning Crusade-PTR\Uninstall.exe

World of Warcraft-->C:\Program Files\Fichiers communs\Blizzard Entertainment\World of Warcraft Public Test-PTR\Uninstall.exe

Wow Cartographe 1.09-->C:\Program Files\WowCartographe\uninst.exe

XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"

 

======Security center information======

 

AV: Kaspersky Internet Security

FW: Kaspersky Internet Security

 

======System event log======

 

Computer Name: USER-04C9A49C5F

Event Code: 7035

Message: Un contrôle Démarrer a correctement été envoyé au service Service COM de gravage de CD IMAPI.

 

Record Number: 18374

Source Name: Service Control Manager

Time Written: 20090308122937.000000+060

Event Type: Informations

User: AUTORITE NT\SYSTEM

 

Computer Name: USER-04C9A49C5F

Event Code: 7036

Message: Le service Compatibilité avec le Changement rapide d'utilisateur est entré dans l'état : en cours d'exécution.

 

Record Number: 18373

Source Name: Service Control Manager

Time Written: 20090308122928.000000+060

Event Type: Informations

User:

 

Computer Name: USER-04C9A49C5F

Event Code: 7035

Message: Un contrôle Démarrer a correctement été envoyé au service Logitech LVPr2Mon Driver.

 

Record Number: 18372

Source Name: Service Control Manager

Time Written: 20090308122928.000000+060

Event Type: Informations

User: AUTORITE NT\SYSTEM

 

Computer Name: USER-04C9A49C5F

Event Code: 7035

Message: Un contrôle Démarrer a correctement été envoyé au service Compatibilité avec le Changement rapide d'utilisateur.

 

Record Number: 18371

Source Name: Service Control Manager

Time Written: 20090308122928.000000+060

Event Type: Informations

User: AUTORITE NT\SYSTEM

 

Computer Name: USER-04C9A49C5F

Event Code: 7036

Message: Le service Services Terminal Server est entré dans l'état : en cours d'exécution.

 

Record Number: 18370

Source Name: Service Control Manager

Time Written: 20090308122928.000000+060

Event Type: Informations

User:

 

=====Application event log=====

 

Computer Name: USER-04C9A49C5F

Event Code: 0

Message:

Record Number: 11180

Source Name: LVCOMSer

Time Written: 20081220120021.000000+060

Event Type: Informations

User:

 

Computer Name: USER-04C9A49C5F

Event Code: 1001

Message: Échec de détection du produit '{945AC98B-3DC8-45BE-BAE0-22CEEE37A103}', fonctionnalité 'QuickCam' lors de la demande du composant '{62BA7C13-20BB-41F7-A6A4-482632CE53D4}'

 

Record Number: 11179

Source Name: MsiInstaller

Time Written: 20081220120018.000000+060

Event Type: Avertissement

User: AUTORITE NT\SERVICE RÉSEAU

 

Computer Name: USER-04C9A49C5F

Event Code: 1004

Message: Échec de détection du produit '{945AC98B-3DC8-45BE-BAE0-22CEEE37A103}', fonctionnalité 'QuickCam', composant '{B52C7B4D-F46F-438C-ADF2-05A138C57757}. La ressource 'HKEY_CURRENT_USER\Software\Logitech\InstallerKeys\QCDesktopShortcutKey' n'existe pas

 

Record Number: 11178

Source Name: MsiInstaller

Time Written: 20081220120018.000000+060

Event Type: Avertissement

User: AUTORITE NT\SERVICE RÉSEAU

 

Computer Name: USER-04C9A49C5F

Event Code: 1

Message: Mise à jour automatique du certificat racine tierce partie réussie : Objet : <CN=Entrust.net Certification Authority (2048), OU=© 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), O=Entrust.net> Empreinte digitale Sha1 : <801D62D07B449D5C5C035C98EA61FA443C2A58FE>

 

Record Number: 11177

Source Name: crypt32

Time Written: 20081219170451.000000+060

Event Type: Informations

User:

 

Computer Name: USER-04C9A49C5F

Event Code: 2

Message: Récupération de la mise à jour automatique du fichier CAB de la liste racine tierce partie réussie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>

 

Record Number: 11176

Source Name: crypt32

Time Written: 20081219170451.000000+060

Event Type: Informations

User:

 

======Environment variables======

 

"ComSpec"=%SystemRoot%\system32\cmd.exe

"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\

"windir"=%SystemRoot%

"FP_NO_HOST_CHECK"=NO

"OS"=Windows_NT

"PROCESSOR_ARCHITECTURE"=x86

"PROCESSOR_LEVEL"=15

"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 39 Stepping 1, AuthenticAMD

"PROCESSOR_REVISION"=2701

"NUMBER_OF_PROCESSORS"=1

"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH

"TEMP"=%SystemRoot%\TEMP

"TMP"=%SystemRoot%\TEMP

"VS90COMNTOOLS"=C:\Program Files\Microsoft Visual Studio 9.0\Common7\Tools\

"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_06\lib\ext\QTJava.zip

"QTJAVA"=C:\Program Files\Java\jre1.6.0_06\lib\ext\QTJava.zip

 

-----------------EOF-----------------

(Désolé si cela est un peu long et si ce n'était pas tout a fait ce que tu attendais.)

[Gof]

Bien, c'est ce que j'attendais Mais tu ne m'as pas répondu : quel est le type de liens que tu envoies à tes contacts via MSN, et il y a-t-il un message associé ?

 

Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.

• Lance l'installation du programme en exécutant le fichier téléchargé.
  
• Double-clique maintenant sur le raccourci de Toolbar-S&D.
  
• Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
  
• Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
  
• Poste le rapport généré. (C:\TB.txt)
  

 

Télécharge Navilog1 de Il-Mafioso et enregistre-le sur ton bureau.

• Ensuite double clique sur navilog1.exe pour lancer l'installation.
  
• Une fois l'installation terminée, le fix s'exécutera automatiquement.
  (Si ce n'est pas le cas, double-clique sur le raccourci Navilog1 présent sur le bureau).
  
• Laisse-toi guider. Au menu principal, choisis 1 et valide.
  Patiente jusqu'au message : *** Analyse Termine le ..... ***
  
• Appuie sur une touche comme demandé, le bloc-notes va s'ouvrir.
  
• Copie-colle l'intégralité dans ta prochaine réponse. Referme le bloc-notes.
  Le rapport est en outre sauvegardé à la racine du disque (fixnavi.txt)
  

[Rakhnar]

Bon alors, l'un de mes contact m'a dit avoir recu ce message :

mate you wont believe, ever thought you

could make money from Google guys? i just made 13$ so far

loll in a damn few hours (A) doing searches and filling out

forms i love now hehe

http://my-google-money.com/

 

Voici le resultat de la recherche :

-----------\\ ToolBar S&D 1.2.8 XP/Vista

 

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3

X86-based PC ( Uniprocessor Free : AMD Athlon 64 Processor 3700+ )

BIOS : BIOS Date: 11/20/06 14:56:44 Ver: 08.00.12

USER : user ( Administrator )

BOOT : Normal boot

Antivirus : Kaspersky Internet Security 8.0.0.506 (Activated)

Firewall : Kaspersky Internet Security 8.0.0.506 (Activated)

A:\ (USB)

C:\ (Local Disk) - NTFS - Total:232 Go (Free:124 Go)

D:\ (CD or DVD)

F:\ (CD or DVD)

 

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )

Option : [1] ( 08/05/2009|13:08 )

 

-----------\\ Recherche de Fichiers / Dossiers ...

 

C:\Program Files\AskSBar

C:\Program Files\AskSBar\bar

C:\Program Files\AskSBar\bar\1.bin

C:\Program Files\AskSBar\bar\Cache

C:\Program Files\AskSBar\bar\History

C:\Program Files\AskSBar\bar\Settings

C:\Program Files\AskSBar\bar\1.bin\A2FFXTBR.JAR

C:\Program Files\AskSBar\bar\1.bin\A2FFXTBR.MANIFEST

C:\Program Files\AskSBar\bar\1.bin\A2HIGHIN.EXE

C:\Program Files\AskSBar\bar\1.bin\A2NTSTBR.JAR

C:\Program Files\AskSBar\bar\1.bin\A2NTSTBR.MANIFEST

C:\Program Files\AskSBar\bar\1.bin\A2PLUGIN.DLL

C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL

C:\Program Files\AskSBar\bar\1.bin\NPASKSBR.DLL

C:\Program Files\AskSBar\bar\1.bin\V2RSSMNU.DLL

C:\Program Files\AskSBar\bar\Cache\00074D24.bin

C:\Program Files\AskSBar\bar\Cache\00074F08.bin

C:\Program Files\AskSBar\bar\Cache\00075050.bin

C:\Program Files\AskSBar\bar\Cache\00075169.bin

C:\Program Files\AskSBar\bar\Cache\00075292.bin

C:\Program Files\AskSBar\bar\Cache\000753BB.bin

C:\Program Files\AskSBar\bar\Cache\000BC33B

C:\Program Files\AskSBar\bar\Cache\files.ini

C:\Program Files\AskSBar\bar\History\search2

C:\Program Files\AskSBar\bar\Settings\prevcfg2.htm

C:\DOCUME~1\user\APPLIC~1\Dealio

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\temp

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\alerts.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\alerts_over.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\alerts_rec.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\alerts_rec_over.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\chevron-small.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\DealioSearch.html

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\deals-leftcap.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\deal_report.jpg

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\ebay_login.jpg

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\err_mainwindow.html

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\err_toolbar.html

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\global_scripts.js

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\headerbgthin.jpg

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\highlight-bg.png

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\logo.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\logo_over.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\man_toolbar.css

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\man_toolbar.html

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\man_toolbar.js

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\man_toolbarl.js

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\post-this-deal.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\post-this-deal_over.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\scripts.js

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\scroller.js

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\search-chevron.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\search-chevron_over.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\search_bg_blink.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\separator.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\settings.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\settings_over.gif

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\res\yahoo-search.png

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\index.76.35

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.10.76

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.109.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.110.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.12.52

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.13.58

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.130.58

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.135.50

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.153.44

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.155.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.156.49

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.16.60

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.161.52

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.178.66

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.184.55

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.188.52

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.189.45

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.196.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.198.56

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.199.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.200.53

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.201.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.202.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.203.71

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.205.62

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.213.71

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.214.49

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.215.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.216.67

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.217.67

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.218.52

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.219.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.220.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.221.57

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.222.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.223.68

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.226.68

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.227.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.228.62

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.229.76

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.23.63

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.239.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.24.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.240.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.241.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.242.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.243.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.244.63

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.245.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.247.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.248.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.249.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.250.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.251.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.252.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.253.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.254.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.255.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.256.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.257.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.279.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.28.58

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.282.75

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.283.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.284.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.289.67

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.290.62

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.291.61

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.296.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.297.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.304.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.307.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.308.75

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.31.47

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.310.46

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.311.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.315.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.316.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.317.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.318.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.319.49

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.32.48

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.334.44

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.335.60

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.336.44

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.337.44

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.338.75

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.339.47

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.34.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.340.47

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.341.47

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.349.50

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.35.48

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.350.50

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.351.51

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.352.54

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.353.51

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.354.51

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.357.62

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.358.52

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.359.52

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.360.53

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.361.54

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.362.68

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.363.58

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.364.54

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.365.53

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.367.56

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.368.58

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.369.55

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.370.56

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.371.56

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.372.57

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.373.55

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.375.56

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.376.57

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.377.55

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.378.65

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.384.58

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.386.71

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.387.59

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.388.59

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.389.59

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.390.60

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.391.60

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.392.60

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.393.60

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.394.60

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.396.61

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.397.61

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.398.60

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.399.60

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.403.61

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.404.63

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.405.61

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.406.61

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.407.76

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.408.63

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.409.61

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.412.62

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.413.62

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.414.62

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.415.62

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.416.62

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.417.62

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.418.62

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.419.62

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.420.62

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.421.62

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.423.63

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.424.63

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.425.63

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.426.63

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.427.63

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.428.65

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.429.63

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.430.63

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.432.65

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.433.64

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.434.65

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.435.64

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.436.76

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.437.64

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.438.71

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.439.71

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.440.75

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.442.73

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.443.73

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.444.73

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.445.68

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.446.69

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.450.67

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.451.67

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.452.68

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.453.68

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.454.69

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.456.69

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.457.75

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.458.70

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.459.70

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.460.69

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.462.74

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.463.69

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.464.70

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.465.68

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.468.70

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.469.70

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.470.70

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.471.73

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.472.70

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.478.74

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.479.73

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.480.68

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.481.71

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.482.74

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.49.67

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.50.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.500.71

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.501.74

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.502.71

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.51.69

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.52.72

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.520.76

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.521.76

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.522.76

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.53.51

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.531.76

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.532.75

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.534.75

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.54.47

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.55.45

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.56.69

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.57.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.58.47

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.593.76

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.595.76

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.63.57

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.66.47

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.70.75

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\rules\rules.1.71.43

C:\DOCUME~1\user\APPLIC~1\Dealio\kb127\temp\dod_cache.xml

C:\Program Files\Dealio

C:\Program Files\Dealio\DealioAU.exe

C:\Program Files\Dealio\kb127

C:\Program Files\Dealio\SearchSettingsKit.exe

C:\Program Files\Dealio\kb127\Dealio Deskbar.exe

C:\Program Files\Dealio\kb127\Dealio.dll

C:\Program Files\Dealio\kb127\DealioRes409.dll

C:\Program Files\Dealio\kb127\res

C:\Program Files\Dealio\kb127\resDN

C:\Program Files\Dealio\kb127\rules

C:\Program Files\Dealio\kb127\temp

C:\Program Files\Dealio\kb127\res\alerts.gif

C:\Program Files\Dealio\kb127\res\alerts_over.gif

C:\Program Files\Dealio\kb127\res\alerts_rec.gif

C:\Program Files\Dealio\kb127\res\alerts_rec_over.gif

C:\Program Files\Dealio\kb127\res\chevron-small.gif

C:\Program Files\Dealio\kb127\res\DealioSearch.html

C:\Program Files\Dealio\kb127\res\deals-leftcap.gif

C:\Program Files\Dealio\kb127\res\deal_report.jpg

C:\Program Files\Dealio\kb127\res\ebay_login.jpg

C:\Program Files\Dealio\kb127\res\err_mainwindow.html

C:\Program Files\Dealio\kb127\res\err_toolbar.html

C:\Program Files\Dealio\kb127\res\global_scripts.js

C:\Program Files\Dealio\kb127\res\headerbgthin.jpg

C:\Program Files\Dealio\kb127\res\highlight-bg.png

C:\Program Files\Dealio\kb127\res\logo.gif

C:\Program Files\Dealio\kb127\res\logo_over.gif

C:\Program Files\Dealio\kb127\res\man_toolbar.css

C:\Program Files\Dealio\kb127\res\man_toolbar.html

C:\Program Files\Dealio\kb127\res\man_toolbar.js

C:\Program Files\Dealio\kb127\res\man_toolbarl.js

C:\Program Files\Dealio\kb127\res\post-this-deal.gif

C:\Program Files\Dealio\kb127\res\post-this-deal_over.gif

C:\Program Files\Dealio\kb127\res\scripts.js

C:\Program Files\Dealio\kb127\res\scroller.js

C:\Program Files\Dealio\kb127\res\search-chevron.gif

C:\Program Files\Dealio\kb127\res\search-chevron_over.gif

C:\Program Files\Dealio\kb127\res\search_bg_blink.gif

C:\Program Files\Dealio\kb127\res\separator.gif

C:\Program Files\Dealio\kb127\res\settings.gif

C:\Program Files\Dealio\kb127\res\settings_over.gif

C:\Program Files\Dealio\kb127\res\yahoo-search.png

C:\Program Files\Dealio\kb127\resDN\bottom.gif

C:\Program Files\Dealio\kb127\resDN\chevron_down.gif

C:\Program Files\Dealio\kb127\resDN\chevron_up.gif

C:\Program Files\Dealio\kb127\resDN\close.gif

C:\Program Files\Dealio\kb127\resDN\deskbar.css

C:\Program Files\Dealio\kb127\resDN\deskbar.js

C:\Program Files\Dealio\kb127\resDN\dispatch_helper.js

C:\Program Files\Dealio\kb127\resDN\ebay_compatible.jpg

C:\Program Files\Dealio\kb127\resDN\logo.gif

C:\Program Files\Dealio\kb127\resDN\logo_chevron_bkg.gif

C:\Program Files\Dealio\kb127\resDN\losing.gif

C:\Program Files\Dealio\kb127\resDN\lost.gif

C:\Program Files\Dealio\kb127\resDN\man_deskbar.html

C:\Program Files\Dealio\kb127\resDN\menu_arrow.gif

C:\Program Files\Dealio\kb127\resDN\menu_check.gif

C:\Program Files\Dealio\kb127\resDN\no_image.gif

C:\Program Files\Dealio\kb127\resDN\prod_img.gif

C:\Program Files\Dealio\kb127\resDN\search_chevron.gif

C:\Program Files\Dealio\kb127\resDN\spacer.gif

C:\Program Files\Dealio\kb127\resDN\textfield_bkg.gif

C:\Program Files\Dealio\kb127\resDN\top.gif

C:\Program Files\Dealio\kb127\resDN\unknown.gif

C:\Program Files\Dealio\kb127\resDN\winning.gif

C:\Program Files\Dealio\kb127\resDN\won.gif

C:\Program Files\Dealio\kb127\rules\index.76.35

C:\Program Files\Dealio\kb127\rules\rules.1.10.76

C:\Program Files\Dealio\kb127\rules\rules.1.109.43

C:\Program Files\Dealio\kb127\rules\rules.1.110.43

C:\Program Files\Dealio\kb127\rules\rules.1.12.52

C:\Program Files\Dealio\kb127\rules\rules.1.13.58

C:\Program Files\Dealio\kb127\rules\rules.1.130.58

C:\Program Files\Dealio\kb127\rules\rules.1.135.50

C:\Program Files\Dealio\kb127\rules\rules.1.153.44

C:\Program Files\Dealio\kb127\rules\rules.1.155.43

C:\Program Files\Dealio\kb127\rules\rules.1.156.49

C:\Program Files\Dealio\kb127\rules\rules.1.16.60

C:\Program Files\Dealio\kb127\rules\rules.1.161.52

C:\Program Files\Dealio\kb127\rules\rules.1.178.66

C:\Program Files\Dealio\kb127\rules\rules.1.184.55

C:\Program Files\Dealio\kb127\rules\rules.1.188.52

C:\Program Files\Dealio\kb127\rules\rules.1.189.45

C:\Program Files\Dealio\kb127\rules\rules.1.196.43

C:\Program Files\Dealio\kb127\rules\rules.1.198.56

C:\Program Files\Dealio\kb127\rules\rules.1.199.43

C:\Program Files\Dealio\kb127\rules\rules.1.200.53

C:\Program Files\Dealio\kb127\rules\rules.1.201.43

C:\Program Files\Dealio\kb127\rules\rules.1.202.43

C:\Program Files\Dealio\kb127\rules\rules.1.203.71

C:\Program Files\Dealio\kb127\rules\rules.1.205.62

C:\Program Files\Dealio\kb127\rules\rules.1.213.71

C:\Program Files\Dealio\kb127\rules\rules.1.214.49

C:\Program Files\Dealio\kb127\rules\rules.1.215.43

C:\Program Files\Dealio\kb127\rules\rules.1.216.67

C:\Program Files\Dealio\kb127\rules\rules.1.217.67

C:\Program Files\Dealio\kb127\rules\rules.1.218.52

C:\Program Files\Dealio\kb127\rules\rules.1.219.43

C:\Program Files\Dealio\kb127\rules\rules.1.220.43

C:\Program Files\Dealio\kb127\rules\rules.1.221.57

C:\Program Files\Dealio\kb127\rules\rules.1.222.43

C:\Program Files\Dealio\kb127\rules\rules.1.223.68

C:\Program Files\Dealio\kb127\rules\rules.1.226.68

C:\Program Files\Dealio\kb127\rules\rules.1.227.43

C:\Program Files\Dealio\kb127\rules\rules.1.228.62

C:\Program Files\Dealio\kb127\rules\rules.1.229.76

C:\Program Files\Dealio\kb127\rules\rules.1.23.63

C:\Program Files\Dealio\kb127\rules\rules.1.239.43

C:\Program Files\Dealio\kb127\rules\rules.1.24.43

C:\Program Files\Dealio\kb127\rules\rules.1.240.43

C:\Program Files\Dealio\kb127\rules\rules.1.241.43

C:\Program Files\Dealio\kb127\rules\rules.1.242.43

C:\Program Files\Dealio\kb127\rules\rules.1.243.43

C:\Program Files\Dealio\kb127\rules\rules.1.244.63

C:\Program Files\Dealio\kb127\rules\rules.1.245.43

C:\Program Files\Dealio\kb127\rules\rules.1.247.43

C:\Program Files\Dealio\kb127\rules\rules.1.248.43

C:\Program Files\Dealio\kb127\rules\rules.1.249.43

C:\Program Files\Dealio\kb127\rules\rules.1.250.43

C:\Program Files\Dealio\kb127\rules\rules.1.251.43

C:\Program Files\Dealio\kb127\rules\rules.1.252.43

C:\Program Files\Dealio\kb127\rules\rules.1.253.43

C:\Program Files\Dealio\kb127\rules\rules.1.254.43

C:\Program Files\Dealio\kb127\rules\rules.1.255.43

C:\Program Files\Dealio\kb127\rules\rules.1.256.43

C:\Program Files\Dealio\kb127\rules\rules.1.257.43

C:\Program Files\Dealio\kb127\rules\rules.1.279.43

C:\Program Files\Dealio\kb127\rules\rules.1.28.58

C:\Program Files\Dealio\kb127\rules\rules.1.282.75

C:\Program Files\Dealio\kb127\rules\rules.1.283.43

C:\Program Files\Dealio\kb127\rules\rules.1.284.43

C:\Program Files\Dealio\kb127\rules\rules.1.289.67

C:\Program Files\Dealio\kb127\rules\rules.1.290.62

C:\Program Files\Dealio\kb127\rules\rules.1.291.61

C:\Program Files\Dealio\kb127\rules\rules.1.296.43

C:\Program Files\Dealio\kb127\rules\rules.1.297.43

C:\Program Files\Dealio\kb127\rules\rules.1.304.43

C:\Program Files\Dealio\kb127\rules\rules.1.307.43

C:\Program Files\Dealio\kb127\rules\rules.1.308.75

C:\Program Files\Dealio\kb127\rules\rules.1.31.47

C:\Program Files\Dealio\kb127\rules\rules.1.310.46

C:\Program Files\Dealio\kb127\rules\rules.1.311.43

C:\Program Files\Dealio\kb127\rules\rules.1.315.43

C:\Program Files\Dealio\kb127\rules\rules.1.316.43

C:\Program Files\Dealio\kb127\rules\rules.1.317.43

C:\Program Files\Dealio\kb127\rules\rules.1.318.43

C:\Program Files\Dealio\kb127\rules\rules.1.319.49

C:\Program Files\Dealio\kb127\rules\rules.1.32.48

C:\Program Files\Dealio\kb127\rules\rules.1.334.44

C:\Program Files\Dealio\kb127\rules\rules.1.335.60

C:\Program Files\Dealio\kb127\rules\rules.1.336.44

C:\Program Files\Dealio\kb127\rules\rules.1.337.44

C:\Program Files\Dealio\kb127\rules\rules.1.338.75

C:\Program Files\Dealio\kb127\rules\rules.1.339.47

C:\Program Files\Dealio\kb127\rules\rules.1.34.43

C:\Program Files\Dealio\kb127\rules\rules.1.340.47

C:\Program Files\Dealio\kb127\rules\rules.1.341.47

C:\Program Files\Dealio\kb127\rules\rules.1.349.50

C:\Program Files\Dealio\kb127\rules\rules.1.35.48

C:\Program Files\Dealio\kb127\rules\rules.1.350.50

C:\Program Files\Dealio\kb127\rules\rules.1.351.51

C:\Program Files\Dealio\kb127\rules\rules.1.352.54

C:\Program Files\Dealio\kb127\rules\rules.1.353.51

C:\Program Files\Dealio\kb127\rules\rules.1.354.51

C:\Program Files\Dealio\kb127\rules\rules.1.357.62

C:\Program Files\Dealio\kb127\rules\rules.1.358.52

C:\Program Files\Dealio\kb127\rules\rules.1.359.52

C:\Program Files\Dealio\kb127\rules\rules.1.360.53

C:\Program Files\Dealio\kb127\rules\rules.1.361.54

C:\Program Files\Dealio\kb127\rules\rules.1.362.68

C:\Program Files\Dealio\kb127\rules\rules.1.363.58

C:\Program Files\Dealio\kb127\rules\rules.1.364.54

C:\Program Files\Dealio\kb127\rules\rules.1.365.53

C:\Program Files\Dealio\kb127\rules\rules.1.367.56

C:\Program Files\Dealio\kb127\rules\rules.1.368.58

C:\Program Files\Dealio\kb127\rules\rules.1.369.55

C:\Program Files\Dealio\kb127\rules\rules.1.370.56

C:\Program Files\Dealio\kb127\rules\rules.1.371.56

C:\Program Files\Dealio\kb127\rules\rules.1.372.57

C:\Program Files\Dealio\kb127\rules\rules.1.373.55

C:\Program Files\Dealio\kb127\rules\rules.1.375.56

C:\Program Files\Dealio\kb127\rules\rules.1.376.57

C:\Program Files\Dealio\kb127\rules\rules.1.377.55

C:\Program Files\Dealio\kb127\rules\rules.1.378.65

C:\Program Files\Dealio\kb127\rules\rules.1.384.58

C:\Program Files\Dealio\kb127\rules\rules.1.386.71

C:\Program Files\Dealio\kb127\rules\rules.1.387.59

C:\Program Files\Dealio\kb127\rules\rules.1.388.59

C:\Program Files\Dealio\kb127\rules\rules.1.389.59

C:\Program Files\Dealio\kb127\rules\rules.1.390.60

C:\Program Files\Dealio\kb127\rules\rules.1.391.60

C:\Program Files\Dealio\kb127\rules\rules.1.392.60

C:\Program Files\Dealio\kb127\rules\rules.1.393.60

C:\Program Files\Dealio\kb127\rules\rules.1.394.60

C:\Program Files\Dealio\kb127\rules\rules.1.396.61

C:\Program Files\Dealio\kb127\rules\rules.1.397.61

C:\Program Files\Dealio\kb127\rules\rules.1.398.60

C:\Program Files\Dealio\kb127\rules\rules.1.399.60

C:\Program Files\Dealio\kb127\rules\rules.1.403.61

C:\Program Files\Dealio\kb127\rules\rules.1.404.63

C:\Program Files\Dealio\kb127\rules\rules.1.405.61

C:\Program Files\Dealio\kb127\rules\rules.1.406.61

C:\Program Files\Dealio\kb127\rules\rules.1.407.76

C:\Program Files\Dealio\kb127\rules\rules.1.408.63

C:\Program Files\Dealio\kb127\rules\rules.1.409.61

C:\Program Files\Dealio\kb127\rules\rules.1.412.62

C:\Program Files\Dealio\kb127\rules\rules.1.413.62

C:\Program Files\Dealio\kb127\rules\rules.1.414.62

C:\Program Files\Dealio\kb127\rules\rules.1.415.62

C:\Program Files\Dealio\kb127\rules\rules.1.416.62

C:\Program Files\Dealio\kb127\rules\rules.1.417.62

C:\Program Files\Dealio\kb127\rules\rules.1.418.62

C:\Program Files\Dealio\kb127\rules\rules.1.419.62

C:\Program Files\Dealio\kb127\rules\rules.1.420.62

C:\Program Files\Dealio\kb127\rules\rules.1.421.62

C:\Program Files\Dealio\kb127\rules\rules.1.423.63

C:\Program Files\Dealio\kb127\rules\rules.1.424.63

C:\Program Files\Dealio\kb127\rules\rules.1.425.63

C:\Program Files\Dealio\kb127\rules\rules.1.426.63

C:\Program Files\Dealio\kb127\rules\rules.1.427.63

C:\Program Files\Dealio\kb127\rules\rules.1.428.65

C:\Program Files\Dealio\kb127\rules\rules.1.429.63

C:\Program Files\Dealio\kb127\rules\rules.1.430.63

C:\Program Files\Dealio\kb127\rules\rules.1.432.65

C:\Program Files\Dealio\kb127\rules\rules.1.433.64

C:\Program Files\Dealio\kb127\rules\rules.1.434.65

C:\Program Files\Dealio\kb127\rules\rules.1.435.64

C:\Program Files\Dealio\kb127\rules\rules.1.436.76

C:\Program Files\Dealio\kb127\rules\rules.1.437.64

C:\Program Files\Dealio\kb127\rules\rules.1.438.71

C:\Program Files\Dealio\kb127\rules\rules.1.439.71

C:\Program Files\Dealio\kb127\rules\rules.1.440.75

C:\Program Files\Dealio\kb127\rules\rules.1.442.73

C:\Program Files\Dealio\kb127\rules\rules.1.443.73

C:\Program Files\Dealio\kb127\rules\rules.1.444.73

C:\Program Files\Dealio\kb127\rules\rules.1.445.68

C:\Program Files\Dealio\kb127\rules\rules.1.446.69

C:\Program Files\Dealio\kb127\rules\rules.1.450.67

C:\Program Files\Dealio\kb127\rules\rules.1.451.67

C:\Program Files\Dealio\kb127\rules\rules.1.452.68

C:\Program Files\Dealio\kb127\rules\rules.1.453.68

C:\Program Files\Dealio\kb127\rules\rules.1.454.69

C:\Program Files\Dealio\kb127\rules\rules.1.456.69

C:\Program Files\Dealio\kb127\rules\rules.1.457.75

C:\Program Files\Dealio\kb127\rules\rules.1.458.70

C:\Program Files\Dealio\kb127\rules\rules.1.459.70

C:\Program Files\Dealio\kb127\rules\rules.1.460.69

C:\Program Files\Dealio\kb127\rules\rules.1.462.74

C:\Program Files\Dealio\kb127\rules\rules.1.463.69

C:\Program Files\Dealio\kb127\rules\rules.1.464.70

C:\Program Files\Dealio\kb127\rules\rules.1.465.68

C:\Program Files\Dealio\kb127\rules\rules.1.468.70

C:\Program Files\Dealio\kb127\rules\rules.1.469.70

C:\Program Files\Dealio\kb127\rules\rules.1.470.70

C:\Program Files\Dealio\kb127\rules\rules.1.471.73

C:\Program Files\Dealio\kb127\rules\rules.1.472.70

C:\Program Files\Dealio\kb127\rules\rules.1.478.74

C:\Program Files\Dealio\kb127\rules\rules.1.479.73

C:\Program Files\Dealio\kb127\rules\rules.1.480.68

C:\Program Files\Dealio\kb127\rules\rules.1.481.71

C:\Program Files\Dealio\kb127\rules\rules.1.482.74

C:\Program Files\Dealio\kb127\rules\rules.1.49.67

C:\Program Files\Dealio\kb127\rules\rules.1.50.43

C:\Program Files\Dealio\kb127\rules\rules.1.500.71

C:\Program Files\Dealio\kb127\rules\rules.1.501.74

C:\Program Files\Dealio\kb127\rules\rules.1.502.71

C:\Program Files\Dealio\kb127\rules\rules.1.51.69

C:\Program Files\Dealio\kb127\rules\rules.1.52.72

C:\Program Files\Dealio\kb127\rules\rules.1.520.76

C:\Program Files\Dealio\kb127\rules\rules.1.521.76

C:\Program Files\Dealio\kb127\rules\rules.1.522.76

C:\Program Files\Dealio\kb127\rules\rules.1.53.51

C:\Program Files\Dealio\kb127\rules\rules.1.531.76

C:\Program Files\Dealio\kb127\rules\rules.1.532.75

C:\Program Files\Dealio\kb127\rules\rules.1.534.75

C:\Program Files\Dealio\kb127\rules\rules.1.54.47

C:\Program Files\Dealio\kb127\rules\rules.1.55.45

C:\Program Files\Dealio\kb127\rules\rules.1.56.69

C:\Program Files\Dealio\kb127\rules\rules.1.57.43

C:\Program Files\Dealio\kb127\rules\rules.1.58.47

C:\Program Files\Dealio\kb127\rules\rules.1.593.76

C:\Program Files\Dealio\kb127\rules\rules.1.595.76

C:\Program Files\Dealio\kb127\rules\rules.1.63.57

C:\Program Files\Dealio\kb127\rules\rules.1.66.47

C:\Program Files\Dealio\kb127\rules\rules.1.70.75

C:\Program Files\Dealio\kb127\rules\rules.1.71.43

C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Dealio

C:\Program Files\DAEMON Tools Toolbar

C:\Program Files\DAEMON Tools Toolbar\_DTLite.xml

C:\DOCUME~1\user\APPLIC~1\Search Settings

C:\DOCUME~1\user\APPLIC~1\Search Settings\kb127

C:\DOCUME~1\user\APPLIC~1\Search Settings\kb127\res

C:\DOCUME~1\user\APPLIC~1\Search Settings\kb127\temp

C:\Program Files\Search Settings

C:\Program Files\Search Settings\kb127

C:\Program Files\Search Settings\SearchSettings.exe

C:\Program Files\Search Settings\kb127\res

C:\Program Files\Search Settings\kb127\SearchSettings.dll

C:\Program Files\Search Settings\kb127\SearchSettingsRes409.dll

C:\Program Files\Search Settings\kb127\temp

C:\Program Files\Mozilla Firefox\plugins\NPAskSBr.dll

C:\DOCUME~1\user\LOCALS~1\Temp\nse17.tmp

C:\DOCUME~1\user\LOCALS~1\Temp\nsf2A.tmp

C:\DOCUME~1\user\LOCALS~1\Temp\nshB.tmp

C:\DOCUME~1\user\LOCALS~1\Temp\nskC.tmp

C:\DOCUME~1\user\LOCALS~1\Temp\nsm19.tmp

C:\DOCUME~1\user\LOCALS~1\Temp\nso1D.tmp

C:\DOCUME~1\user\LOCALS~1\Temp\nss68.tmp

 

-----------\\ [..\Internet Explorer\Main]

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Local Page"="C:\\WINDOWS\\system32\\blank.htm"

"Start Page"="http://worldofwarcraft.judgehype.com/"

"Search Page"="http://www.google.com"

"Search Bar"="http://www.google.com/ie"

"SearchMigratedDefaultURL"="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"

"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896"

"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"

"Start Page"="http://lo.st"

"Search Bar"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

 

 

--------------------\\ Recherche d'autres infections

 

C:\Program Files\InternetGameBox

C:\Program Files\InternetGameBox\InternetGameBox.exe

C:\Program Files\InternetGameBox\language

C:\Program Files\InternetGameBox\ressources

C:\Program Files\InternetGameBox\skins

C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\InternetGameBox

C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\InternetGameBox\Conditions g‚n‚rales.url

C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\InternetGameBox\Confidentialit‚.url

C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\InternetGameBox\D‚sinstaller.lnk

C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\InternetGameBox\InternetGameBox.lnk

C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\InternetGameBox\Website.url

C:\WINDOWS\System32\nvs2.inf

 

C:\DOCUME~1\user\LOCALS~1\APPLIC~1\muwog.dat

C:\DOCUME~1\user\LOCALS~1\APPLIC~1\muwog.exe

C:\DOCUME~1\user\LOCALS~1\APPLIC~1\muwog_nav.dat

C:\DOCUME~1\user\LOCALS~1\APPLIC~1\muwog_navps.dat

==> EGDACCESS <==

 

--------------------\\ Cracks & Keygens ..

 

C:\DOCUME~1\user\Local Settings\Temp\Unreal_Tournament_2004_Crack+Keygen_by_Deviance.rar.torrent

C:\DOCUME~1\user\Mes documents\Downloads\Unreal_Tournament_2004_Crack+Keygen_by_Deviance.rar

 

 

 

1 - "C:\ToolBar SD\TB_1.txt" - 08/05/2009|13:09 - Option : [1]

 

-----------\\ Fin du rapport a 13:09:58,04

 

Et maintenant le résultat de Navilog1 :

Search Navipromo version 3.7.6 commencé le 08/05/2009 à 13:14:34,17

 

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!

!!! Postez ce rapport sur le forum pour le faire analyser !!!

!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

 

Outil exécuté depuis C:\Program Files\navilog1

 

Mise à jour le 14.03.2009 à 18h00 par IL-MAFIOSO

 

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3

X86-based PC ( Uniprocessor Free : AMD Athlon 64 Processor 3700+ )

BIOS : BIOS Date: 11/20/06 14:56:44 Ver: 08.00.12

USER : user ( Administrator )

BOOT : Normal boot

 

Antivirus : Kaspersky Internet Security 8.0.0.506 (Activated)

Firewall : Kaspersky Internet Security 8.0.0.506 (Activated)

 

A:\ (USB)

C:\ (Local Disk) - NTFS - Total:232 Go (Free:124 Go)

D:\ (CD or DVD)

F:\ (CD or DVD)

 

 

Recherche executé en mode normal

 

 

*** Recherche dossiers dans "C:\WINDOWS" ***

 

 

*** Recherche dossiers dans "C:\Program Files" ***

 

...\InternetGameBox trouvé !

 

*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***

 

...\InternetGameBox trouvé !

 

*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***

 

 

*** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***

 

 

*** Recherche dossiers dans "C:\Documents and Settings\user\applic~1" ***

 

 

*** Recherche dossiers dans "C:\Documents and Settings\user\locals~1\applic~1" ***

 

 

*** Recherche dossiers dans "C:\Documents and Settings\user\menudm~1\progra~1" ***

 

 

*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***

pour + d'infos : http://www.gmer.net

 

 

 

*** Recherche avec GenericNaviSearch ***

!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!

!!! A vérifier impérativement avant toute suppression manuelle !!!

 

* Recherche dans "C:\WINDOWS\system32" *

 

* Recherche dans "C:\Documents and Settings\user\locals~1\applic~1" *

 

 

 

*** Recherche fichiers ***

 

 

C:\WINDOWS\system32\nvs2.inf trouvé !

 

*** Recherche clés spécifiques dans le Registre ***

!! Les clés trouvées ne sont pas forcément infectées !!

 

HKEY_CURRENT_USER\Software\Lanconfig

 

*** Module de Recherche complémentaire ***

(Recherche fichiers spécifiques)

 

1)Recherche nouveaux fichiers Instant Access :

 

 

2)Recherche Heuristique :

 

* Dans "C:\WINDOWS\system32" :

 

 

* Dans "C:\Documents and Settings\user\locals~1\applic~1" :

 

muwog.exe trouvé !

muwog.dat trouvé !

muwog_nav.dat trouvé !

muwog_navps.dat trouvé !

 

3)Recherche Certificats :

 

Certificat Egroup trouvé !

Certificat Electronic-Group trouvé !

Certificat Montorgueil absent !

Certificat OOO-Favorit trouvé !

Certificat Sunny-Day-Design-Ltd absent !

 

4)Recherche autres dossiers et fichiers connus :

 

 

 

*** Analyse terminée le 08/05/2009 à 13:27:36,98 ***

Modifié le 8 mai 2009 par Gof

[Gof]

Très bien, on continue

 

Double-clique sur le raccourci Navilog1 présent sur le bureau

• Laisse-toi guider. Au menu principal, choisis 2 et valide.
  Patiente jusqu'au message : *** Analyse Termine le ..... ***
  
• Appuie sur une touche comme demandé, le bloc-notes va s'ouvrir.
  
• Copie-colle l'intégralité dans ta prochaine réponse. Referme le bloc-notes.
  Le rapport est en outre sauvegardé à la racine du disque (fixnavi.txt)
  

 

Double-clique maintenant sur le raccourci de Toolbar-S&D.

• Choisis maintenant l'option 2
  
• Poste le rapport généré. (C:\TB.txt)
  

 

Pour le spam envoyé aux contacts MSN : change ton mot de passe Hotmail. Le spam disparaîtra. On reviendra ensuite sur les divers soucis que tu as eu, j'essaierai de t'en indiquer la provenance de sorte que tu ne fasses plus les mêmes erreurs.

[Rakhnar]

Voici le résultat que j'ai obtenu pour Navilog1 :

 

Search Navipromo version 3.7.6 commencé le 08/05/2009 à 13:14:34,17

 

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!

!!! Postez ce rapport sur le forum pour le faire analyser !!!

!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

 

Outil exécuté depuis C:\Program Files\navilog1

 

Mise à jour le 14.03.2009 à 18h00 par IL-MAFIOSO

 

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3

X86-based PC ( Uniprocessor Free : AMD Athlon 64 Processor 3700+ )

BIOS : BIOS Date: 11/20/06 14:56:44 Ver: 08.00.12

USER : user ( Administrator )

BOOT : Normal boot

 

Antivirus : Kaspersky Internet Security 8.0.0.506 (Activated)

Firewall : Kaspersky Internet Security 8.0.0.506 (Activated)

 

A:\ (USB)

C:\ (Local Disk) - NTFS - Total:232 Go (Free:124 Go)

D:\ (CD or DVD)

F:\ (CD or DVD)

 

 

Recherche executé en mode normal

 

 

*** Recherche dossiers dans "C:\WINDOWS" ***

 

 

*** Recherche dossiers dans "C:\Program Files" ***

 

...\InternetGameBox trouvé !

 

*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***

 

...\InternetGameBox trouvé !

 

*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***

 

 

*** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***

 

 

*** Recherche dossiers dans "C:\Documents and Settings\user\applic~1" ***

 

 

*** Recherche dossiers dans "C:\Documents and Settings\user\locals~1\applic~1" ***

 

 

*** Recherche dossiers dans "C:\Documents and Settings\user\menudm~1\progra~1" ***

 

 

*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***

pour + d'infos : http://www.gmer.net

 

 

 

*** Recherche avec GenericNaviSearch ***

!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!

!!! A vérifier impérativement avant toute suppression manuelle !!!

 

* Recherche dans "C:\WINDOWS\system32" *

 

* Recherche dans "C:\Documents and Settings\user\locals~1\applic~1" *

 

 

 

*** Recherche fichiers ***

 

 

C:\WINDOWS\system32\nvs2.inf trouvé !

 

*** Recherche clés spécifiques dans le Registre ***

!! Les clés trouvées ne sont pas forcément infectées !!

 

HKEY_CURRENT_USER\Software\Lanconfig

 

*** Module de Recherche complémentaire ***

(Recherche fichiers spécifiques)

 

1)Recherche nouveaux fichiers Instant Access :

 

 

2)Recherche Heuristique :

 

* Dans "C:\WINDOWS\system32" :

 

 

* Dans "C:\Documents and Settings\user\locals~1\applic~1" :

 

muwog.exe trouvé !

muwog.dat trouvé !

muwog_nav.dat trouvé !

muwog_navps.dat trouvé !

 

3)Recherche Certificats :

 

Certificat Egroup trouvé !

Certificat Electronic-Group trouvé !

Certificat Montorgueil absent !

Certificat OOO-Favorit trouvé !

Certificat Sunny-Day-Design-Ltd absent !

 

4)Recherche autres dossiers et fichiers connus :

 

 

 

*** Analyse terminée le 08/05/2009 à 13:27:36,98 ***

Quant au ToolbarSD voici le résultat :

 

 

-----------\\ ToolBar S&D 1.2.8 XP/Vista

 

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3

X86-based PC ( Uniprocessor Free : AMD Athlon 64 Processor 3700+ )

BIOS : BIOS Date: 11/20/06 14:56:44 Ver: 08.00.12

USER : user ( Administrator )

BOOT : Normal boot

Antivirus : Kaspersky Internet Security 8.0.0.506 (Activated)

Firewall : Kaspersky Internet Security 8.0.0.506 (Activated)

A:\ (USB)

C:\ (Local Disk) - NTFS - Total:232 Go (Free:128 Go)

D:\ (CD or DVD)

F:\ (CD or DVD)

 

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )

Option : [2] ( 08/05/2009|13:52 )

 

-----------\\ Recherche de Fichiers / Dossiers ...

 

 

-----------\\ [..\Internet Explorer\Main]

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Local Page"="C:\\WINDOWS\\system32\\blank.htm"

"Start Page"="http://worldofwarcraft.judgehype.com/"

"Search Page"="http://www.google.com"

"Search Bar"="http://www.google.com/ie"

"SearchMigratedDefaultURL"="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"

"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896"

"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"

"Start Page"="http://www.msn.com/"

"Search Bar"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

 

 

--------------------\\ Recherche d'autres infections

 

--------------------\\ Cracks & Keygens ..

 

C:\DOCUME~1\user\Local Settings\Temp\Unreal_Tournament_2004_Crack+Keygen_by_Deviance.rar.torrent

C:\DOCUME~1\user\Mes documents\Downloads\Unreal_Tournament_2004_Crack+Keygen_by_Deviance.rar

 

 

 

1 - "C:\ToolBar SD\TB_1.txt" - 08/05/2009|13:09 - Option : [1]

1 - "C:\ToolBar SD\TB_1.txt" - 08/05/2009|13:42 - Option : [2]

3 - "C:\ToolBar SD\TB_3.txt" - 08/05/2009|13:53 - Option : [2]

 

-----------\\ Fin du rapport a 13:53:50,23

[Gof]

Tu as l'air de t'être emmêlé les pinceaux dans les rapports. Ce n'est pas grave.

• Reposte moi le rapport situé ici : C:\ToolBar SD\TB_1.txt
  
• Et relance Navilog1 en option 2, poste moi le rapport ensuite.
  
• As-tu changé ton mot de passe Hotmail ?
  

[Rakhnar]

Alors heu, oui je le suis sans doute emmêlé les pinceaux,

 

Alors... TB_1.txt :

 

 

-----------\\ ToolBar S&D 1.2.8 XP/Vista

 

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3

X86-based PC ( Uniprocessor Free : AMD Athlon 64 Processor 3700+ )

BIOS : BIOS Date: 11/20/06 14:56:44 Ver: 08.00.12

USER : user ( Administrator )

BOOT : Normal boot

Antivirus : Kaspersky Internet Security 8.0.0.506 (Activated)

Firewall : Kaspersky Internet Security 8.0.0.506 (Activated)

A:\ (USB)

C:\ (Local Disk) - NTFS - Total:232 Go (Free:124 Go)

D:\ (CD or DVD)

F:\ (CD or DVD)

 

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )

Option : [2] ( 08/05/2009|13:40 )

 

-----------\\ SUPPRESSION

 

Supprime! - C:\Program Files\AskSBar\bar

Supprime! - C:\DOCUME~1\user\APPLIC~1\Dealio\kb127

Supprime! - C:\Program Files\Dealio\DealioAU.exe

Supprime! - C:\Program Files\Dealio\kb127

Supprime! - C:\Program Files\Dealio\SearchSettingsKit.exe

Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Dealio

Supprime! - C:\Program Files\DAEMON Tools Toolbar\_DTLite.xml

Supprime! - C:\DOCUME~1\user\APPLIC~1\Search Settings\kb127

Supprime! - C:\Program Files\Search Settings\kb127

Supprime! - C:\Program Files\Search Settings\SearchSettings.exe

Supprime! - C:\Program Files\Mozilla Firefox\plugins\NPAskSBr.dll

Supprime! - C:\DOCUME~1\user\LOCALS~1\Temp\nse17.tmp

Supprime! - C:\DOCUME~1\user\LOCALS~1\Temp\nsf2A.tmp

Supprime! - C:\DOCUME~1\user\LOCALS~1\Temp\nshB.tmp

Supprime! - C:\DOCUME~1\user\LOCALS~1\Temp\nskC.tmp

Supprime! - C:\DOCUME~1\user\LOCALS~1\Temp\nsm19.tmp

Supprime! - C:\DOCUME~1\user\LOCALS~1\Temp\nso1D.tmp

Supprime! - C:\DOCUME~1\user\LOCALS~1\Temp\nss68.tmp

Supprime! - C:\Program Files\AskSBar

Supprime! - C:\DOCUME~1\user\APPLIC~1\Dealio

Supprime! - C:\Program Files\Dealio

Supprime! - C:\Program Files\DAEMON Tools Toolbar

Supprime! - C:\DOCUME~1\user\APPLIC~1\Search Settings

Supprime! - C:\Program Files\Search Settings

 

-----------\\ Recherche de Fichiers / Dossiers ...

 

 

-----------\\ [..\Internet Explorer\Main]

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Local Page"="C:\\WINDOWS\\system32\\blank.htm"

"Start Page"="http://worldofwarcraft.judgehype.com/"

"Search Page"="http://www.google.com"

"Search Bar"="http://www.google.com/ie"

"SearchMigratedDefaultURL"="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"

"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896"

"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"

"Start Page"="http://www.msn.com/"

"Search Bar"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

 

 

--------------------\\ Recherche d'autres infections

 

C:\Program Files\InternetGameBox

C:\Program Files\InternetGameBox\InternetGameBox.exe

C:\Program Files\InternetGameBox\language

C:\Program Files\InternetGameBox\ressources

C:\Program Files\InternetGameBox\skins

C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\InternetGameBox

C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\InternetGameBox\Conditions g‚n‚rales.url

C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\InternetGameBox\Confidentialit‚.url

C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\InternetGameBox\D‚sinstaller.lnk

C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\InternetGameBox\InternetGameBox.lnk

C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\InternetGameBox\Website.url

C:\WINDOWS\System32\nvs2.inf

 

C:\DOCUME~1\user\LOCALS~1\APPLIC~1\muwog.dat

C:\DOCUME~1\user\LOCALS~1\APPLIC~1\muwog.exe

C:\DOCUME~1\user\LOCALS~1\APPLIC~1\muwog_nav.dat

C:\DOCUME~1\user\LOCALS~1\APPLIC~1\muwog_navps.dat

==> EGDACCESS <==

 

Voilà et ensuite Navilog1...

 

heu oula problème, ca me dit que je dois avoir fait une recherche avec le n°1 ... bon ben je suis bon pour refaire tout

 

Quant a mon adresse msn je m'en occupe de suite.

Modifié le 8 mai 2009 par Rakhnar

[Gof]

Recommence Navilog1.

 

En option 1, poste le rapport. Puis en option 2, poste de nouveau le rapport