Demande d'aide pour désinfection, SVP.

[Tonton]

Bonsoir,

 

Je lis régulièrement les rapports de désinfection avec beaucoup d'intérêt.

Me voilà aujourd'hui concerné au 1er plan ... et plus comme simple lecteur !

 

Les symptômes :

- Antivir et Online Armor n'apparaissent plus au démarrage

- en double-cliquant sur l'icône Antivir, apparaît le message "C:\Program Files\Avira\Antivir Desktop\avcebter.exe n'est pas une application Win32 valide"

- en double-cliquant sur l'icône Online Armor, apparaît le message "C:\Program Files\Tall Emu\Online Armor\oaui.exe n'est pas une application Win32 valide"

- en double-cliquant sur l'icône MAM, pas d'ouverture possible

- en double-cliquant sur l'icône HJT, disparition puis réapparition de toutes les icônes du bureau

 

A défaut de pouvoir vous adresser un log HJT, je vous transmets un ZHPDiag :

 

Rapport de ZHPDiag v1.25.114 par Nicolas Coolman
Run by Pierre at 14/06/2010 22:38:16
Web site :  [url="http://www.premiumorange.com/zeb-help-process/zhpdiag.html"]http://www.premiumorange.com/zeb-help-process/zhpdiag.html[/url]

---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
OPIE: Opera 10.53

---\\ System Information
Platform : Microsoft Windows XP (5.1.2600) Service Pack 3
Processor: x86 Family 15 Model 2 Stepping 5, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2047 MB (77% free)
System drive C: has 212 GB (91%) free of 233 GB

---\\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 212 Go of 233 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 80 Go of 149 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)


---\\ Processus lancés
[MD5.B7403019EE8C2290828BC664EA2F4D36] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
[MD5.58A825D4C4EFA130F49BE76F0BF2A6B4] - (.Tall Emu - Online Armor Component.) -- C:\Program Files\Tall Emu\Online Armor\OAui.exe
[MD5.9AEE9BCB32D82BCC36474EB921F3BB49] - (.Logitech Inc. - iTouch Application.) -- C:\Program Files\Logitech\iTouch\iTouch.exe
[MD5.52DB6CDAC5BC7A1FC884E97C41C91213] - (.Sun Microsystems, Inc. - Java(tm) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
[MD5.03B1EEFA6F666DF23469B9F47B492EAB] - (.Info soft - Screen Protector LCD Pro Guard.) -- C:\Program Files\SFR\Kit\9props.exe
[MD5.E48E670B93543405CEAD3F9B79B9C020] - (.http://www.emule-project.net - eMule.) -- C:\Documents and Settings\Pierre\Application Data\hidires\flec003.exe
[MD5.E4BDF223CD75478BF44567B4D5C2634D] - (.Microsoft Corporation - Generic Host Process for Win32 Services.) -- C:\WINDOWS\system32\svchost.exe
[MD5.CD42A0B797B507F2DDA76E1217ABB59A] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
[MD5.CE9FFD614F3489D1783879107578C657] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
[MD5.85180CF88C5EBAD73B452A43A004CA51] - (.AOL LLC - AOL Connectivity Service.) -- C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
[MD5.D503DF3ABA595F551B98B9BAE017A271] - (.Apple Inc. - Apple Mobile Device Service.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
[MD5.B979BA0120B6DB757196A8E2E873FE3C] - (.Pas de propriétaire - ATI Smart.) -- C:\WINDOWS\system32\ati2sgag.exe
[MD5.EBAD0F51D8D4DADE7660B1851ADDBD07] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
[MD5.3C8B6609712F4FF78E521F6DCFC4032B] - (.Creative Technology Ltd - Creative Service for CDROM Access.) -- C:\WINDOWS\System32\CTsvcCDA.exe
[MD5.5CE3D0E1D1B3832EE052CFC442EEE0FA] - (.Creative Technology Ltd - Creative Audio Service.) -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe
[MD5.C3FB1D70CB88722267949694BA51759E] - (.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\WINDOWS\system32\services.exe
[MD5.D83658E21A184515CCAD79EEC6EEB05B] - (.Lexmark International, Inc. - LexBce Service.) -- C:\WINDOWS\system32\LEXBCES.EXE
[MD5.27E83F14AE20F92ED7C30E840D71E23D] - (.Tall Emu - Online Armor Component.) -- C:\Program Files\Tall Emu\Online Armor\OAcat.exe
[MD5.91E6024D6D4DCDECDB36C43ECF9BBECB] - (.Microsoft Corporation - LSA Shell (Export Version).) -- C:\WINDOWS\system32\lsass.exe
[MD5.460E4CE148BD07218DA0B6A3D31885A9] - (.Microsoft Corporation - Spooler SubSystem App.) -- C:\WINDOWS\system32\spoolsv.exe
[MD5.EB9A99AB5D17B1727034FF191E6448D7] - (.America Online, Inc. - Wan Miniport (ATW) Service.) -- C:\WINDOWS\wanmpsvc.exe
[MD5.581176F60885AEF8F78C6E38DCC3CDF9] - (.Microsoft Corporation - WMDM PMSP Service.) -- C:\WINDOWS\System32\MsPMSPSv.exe


---\\ Plugin du navigateur Opera (P1)
P1 - OPN:Opera Plugin Navigator . (.Microsoft Corporation (written by Digital R - Npdsplay dll.) -- C:\Program Files\Opera\Program\Plugins\npdsplay.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin2.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin3.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin4.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin5.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin6.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin7.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin8.dll
P1 - OPN:Opera Plugin Navigator . (.Microsoft Corporation - DRM Store Netscape Plugin.) -- C:\Program Files\Opera\Program\Plugins\npwmsdrm.dll


---\\ Pages de démarrage d'Internet Explorer (R0)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft.com/fwlink/?LinkId=69157[/url]


---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://home.microsoft.com/access/allinone.asp"]http://home.microsoft.com/access/allinone.asp[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft.com/fwlink/?LinkId=54896[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = [url="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"]http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm[/url]
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.local


---\\ Internet Explorer URLSearchHook (R3)
R3 - URLSearchHook: Oryte Games 1.9 Toolbar - {e7f88e02-0c78-48a1-86d2-82d8865de2df} . (.Conduit Ltd. - Conduit Toolbar.) (5, 7, 1, 1) -- C:\Program Files\Oryte_Games_1.9\tbOryt.dll


---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: SuggestMeYesBHO - {0FB6A909-6086-458F-BD92-1F8EE10042A0} . (.SimplyGen - AutocompletePro - Helps you search the web.) -- C:\Program Files\AutocompletePro\AutocompletePro.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(tm) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Oryte Games 1.9 Toolbar - {e7f88e02-0c78-48a1-86d2-82d8865de2df} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Oryte_Games_1.9\tbOryt.dll


---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Oryte Games 1.9 Toolbar - {e7f88e02-0c78-48a1-86d2-82d8865de2df} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Oryte_Games_1.9\tbOryt.dll


---\\ Applications démarrées automatiquement par le registre (O4)
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe 
O4 - HKLM\..\Run: [@OnlineArmor GUI] . (.Tall Emu - Online Armor Component.) -- C:\Program Files\Tall Emu\Online Armor\OAui.exe 
O4 - HKLM\..\Run: [zBrowser Launcher] . (.Logitech Inc. - iTouch Application.) -- C:\Program Files\Logitech\iTouch\iTouch.exe 
O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(tm) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe 
O4 - HKCU\..\Run: [Connexion SFR 9props.exe] . (.Info soft - Screen Protector LCD Pro Guard.) -- C:\Program Files\SFR\Kit\9props.exe 
O4 - HKCU\..\Run: [flec003.exe] . (.http://www.emule-project.net - eMule.) -- C:\Documents and Settings\Pierre\Application Data\hidires\flec003.exe 


---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE


---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} . (.not file.) - 
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - 
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe


---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll


---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: Garmin Communicator Plug-In (Garmin Communicator Plug-In) - (.not file.) - https:\\static.garmincdn.com\gcp\ie\2.9.2.0\GarminAxControl.CAB
O16 - DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} (Détection de dispositifs) - [url="http://www.logitech.com/devicedetector/plugins/LogitechDeviceDetection32.cab"]http://www.logitech.com/devicedetector/plu...Detection32.cab[/url]
O16 - DPF: {2EDF75C0-5ABD-49f9-BAB6-220476A32034} (System Requirements Lab) - [url="http://intel-drv-cdn.systemrequirementslab.com/multi/bin/sysreqlab_srlx.cab"]http://intel-drv-cdn.systemrequirementslab...reqlab_srlx.cab[/url]
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - [url="http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab"]http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab[/url]
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - [url="http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1257791450140"]http://update.microsoft.com/windowsupdate/...b?1257791450140[/url]
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - [url="http://ccfiles.creative.com/Web/softwareupdate/su/ocx/15101/CTSUEng.cab"]http://ccfiles.creative.com/Web/softwareup...101/CTSUEng.cab[/url]
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - [url="http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1257791774671"]http://update.microsoft.com/microsoftupdat...b?1257791774671[/url]
O16 - DPF: {6F6FDB9E-5072-498C-BCB0-2B7F00C49EE7} (DellSystemLite.Scanner) - [url="http://support.euro.dell.com/systemprofiler/DellSystemLite.CAB"]http://support.euro.dell.com/systemprofile...lSystemLite.CAB[/url]
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - [url="http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab"]http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab[/url]
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - [url="http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab"]http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab[/url]
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - [url="http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/15112/CTPID.cab"]http://ccfiles.creative.com/Web/softwareup...15112/CTPID.cab[/url]


---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\WINDOWS\System32\Ati2evxx.dll
O20 - Winlogon Notify: dimsntfy . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\C:\WINDOWS\System32\dimsntfy.dll (.not file.)


---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\System32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll


---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\System32\browseui.dll


---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service:  (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service:  (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service:  (AOL ACS) . (.AOL LLC - AOL Connectivity Service.) - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service:  (Apple Mobile Device) . (.Apple Inc. - Apple Mobile Device Service.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service:  (ATI Smart) . (.Pas de propriétaire - ATI Smart.) - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service:  (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service:  (Creative Service for CDROM Access) . (.Creative Technology Ltd - Creative Service for CDROM Access.) - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service:  (CTAudSvcService) . (.Creative Technology Ltd - Creative Audio Service.) - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service:  (LexBceS) . (.Lexmark International, Inc. - LexBce Service.) - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service:  (OAcat) . (.Tall Emu - Online Armor Component.) - C:\Program Files\Tall Emu\Online Armor\OAcat.exe
O23 - Service:  (WANMiniportService) . (.America Online, Inc. - Wan Miniport (ATW) Service.) - C:\WINDOWS\wanmpsvc.exe


---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\Auslogics Boost Speed Disk Defrag Console Defragmentation.job


---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Personnalisation du navigateur - >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS . (.Pas de propriétaire - Pas de description.) --  (.not file.)
O40 - ASIC: Viewpoint Media Player - {03F998B2-0E00-11D3-A498-00104B6EB52E} . (.Viewpoint Corporation - Viewpoint Media Player for Internet Explorer.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream.dll
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(tm) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Viewpoint Media Player - {1B00725B-C455-4DE6-BFB6-AD540AD427CD} . (.Viewpoint Corporation - Viewpoint Media Player for Internet Explorer.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream.dll
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10e.ocx


---\\ Pilotes lancés au démarrage (O41)
O41 - Driver:  (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys
O41 - Driver:  (avipbb) . (.Avira GmbH - Avira Driver for RootKit Detection.) - C:\WINDOWS\system32\DRIVERS\avipbb.sys
O41 - Driver:  (InCDPass) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\drivers\InCDPass.sys
O41 - Driver:  (InCDRm) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\drivers\InCDRm.sys
O41 - Driver:  (OADevice) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\drivers\OADriver.sys
O41 - Driver:  (OAmon) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\drivers\OAmon.sys
O41 - Driver:  (OAnet) . (.Tall Emu Pty Ltd - OA Helper Driver.) - C:\WINDOWS\system32\drivers\OAnet.sys
O41 - Driver:  (sK9Ou0s) . (.Pas de propriétaire - AVZ Driver.) - C:\WINDOWS\system32\srosa2.sys
O41 - Driver:  (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\WINDOWS\system32\DRIVERS\ssmdrv.sys


---\\ Logiciels installés (O42)
O42 - Logiciel: AOL - Assistant de désinstallation - (.Pas de propriétaire.)
O42 - Logiciel: AOL Coach Version 1.0(Build:20040229.1 fr) - (.Pas de propriétaire.)
O42 - Logiciel: ATI - Utilitaire de désinstallation du logiciel - (.Pas de propriétaire.)
O42 - Logiciel: ATI Catalyst Control Center - (.Pas de propriétaire.)
O42 - Logiciel: ATI Display Driver - (.Pas de propriétaire.)
O42 - Logiciel: Adobe Download Manager - (.NOS Microsystems Ltd..)
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.)
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.)
O42 - Logiciel: Adobe Reader 9.3.2 - Français - (.Adobe Systems Incorporated.)
O42 - Logiciel: Apple Application Support - (.Apple Inc..)
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..)
O42 - Logiciel: Apple Software Update - (.Apple Inc..)
O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.)
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.)
O42 - Logiciel: Auslogics Disk Defrag - (.Auslogics Software Pty Ltd.)
O42 - Logiciel: AutocompletePro - (.Pas de propriétaire.)
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.)
O42 - Logiciel: Bonjour - (.Apple Inc..)
O42 - Logiciel: CANON iMAGE GATEWAY Task for ZoomBrowser EX - (.Canon Inc..)
O42 - Logiciel: CCleaner - (.Piriform.)
O42 - Logiciel: Canon Camera Access Library - (.Canon Inc..)
O42 - Logiciel: Canon Internet Library for ZoomBrowser EX - (.Canon Inc..)
O42 - Logiciel: Canon MovieEdit Task for ZoomBrowser EX - (.Canon Inc..)
O42 - Logiciel: Canon Utilities CameraWindow - (.Canon Inc..)
O42 - Logiciel: Canon Utilities CameraWindow DC 8 - (.Canon Inc..)
O42 - Logiciel: Canon Utilities Movie Uploader for YouTube - (.Canon Inc..)
O42 - Logiciel: Canon Utilities MyCamera - (.Canon Inc..)
O42 - Logiciel: Canon Utilities PhotoStitch - (.Canon Inc..)
O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Canon Inc..)
O42 - Logiciel: Canon ZoomBrowser EX Memory Card Utility - (.Canon Inc..)
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.)
O42 - Logiciel: Conexant D850 56K V.9x DFVc Modem - (.Pas de propriétaire.)
O42 - Logiciel: Connexions réseau Intel® - (.Intel.)
O42 - Logiciel: Creative Audio Console - (.Creative Technology Limited.)
O42 - Logiciel: Creative MediaSource - (.Pas de propriétaire.)
O42 - Logiciel: Creative MediaSource 5 - (.Creative Technology Limited.)
O42 - Logiciel: Creative Software AutoUpdate - (.Creative Technology Limited.)
O42 - Logiciel: Creative WaveStudio 7 - (.Creative Technology Limited.)
O42 - Logiciel: Dell AIO Printer A920 - (.Pas de propriétaire.)
O42 - Logiciel: Dell Driver Reset Tool - (.Dell Inc..)
O42 - Logiciel: Dell Solution Center - (.Dell.)
O42 - Logiciel: Driver Genius Professional Edition - (.Driver-Soft Inc..)
O42 - Logiciel: EVEREST Corporate Edition v5.30 - (.Lavalys, Inc..)
O42 - Logiciel: EasyPrediction - (.EasyPrediction Ltd..)
O42 - Logiciel: Ecran de veille AOL Photos - (.Pas de propriétaire.)
O42 - Logiciel: FaxTools - (.BVRP Software.)
O42 - Logiciel: Garmin City Navigator Europe NT 2010.20 Update - (.Garmin Ltd or its subsidiaries.)
O42 - Logiciel: Garmin City Navigator Europe NT 2010.31 Update - (.Garmin Ltd or its subsidiaries.)
O42 - Logiciel: Garmin City Navigator Europe NT 2011.10 - (.Garmin Ltd or its subsidiaries.)
O42 - Logiciel: Garmin MapInstall - (.Garmin Ltd or its subsidiaries.)
O42 - Logiciel: Garmin MapSource - (.Garmin Ltd or its subsidiaries.)
O42 - Logiciel: Garmin POI Loader - (.Garmin Ltd or its subsidiaries.)
O42 - Logiciel: Garmin USB Drivers - (.Garmin Ltd or its subsidiaries.)
O42 - Logiciel: Garmin WebUpdater - (.Garmin Ltd or its subsidiaries.)
O42 - Logiciel: Gestionnaire de banques Soundfont - (.Pas de propriétaire.)
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.)
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.)
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.)
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.)
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.)
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.)
O42 - Logiciel: Java(tm) 6 Update 20 - (.Sun Microsystems, Inc..)
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.)
O42 - Logiciel: K-Lite Codec Pack 6.0.4 (Full) - (.Pas de propriétaire.)
O42 - Logiciel: Learn2 Player (Uninstall Only) - (.Pas de propriétaire.)
O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.)
O42 - Logiciel: Lecteur de DVD Audio Creative MediaSource - (.Pas de propriétaire.)
O42 - Logiciel: Logiciel QuickCam de Logitech - (.Logitech, Inc..)
O42 - Logiciel: Logiciel iTouch de Logitech - (.Pas de propriétaire.)
O42 - Logiciel: Logitech Desktop Messenger - (.Pas de propriétaire.)
O42 - Logiciel: Logitech MouseWare 9.80  - (.Pas de propriétaire.)
O42 - Logiciel: Logitech Resource Center - (.Pas de propriétaire.)
O42 - Logiciel: MSVCRT - (.Microsoft.)
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.)
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.)
O42 - Logiciel: MSXML 6.0 Parser - (.Microsoft Corporation.)
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.)
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Encarta 2009 - Collection - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.)
O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.)
O42 - Logiciel: Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA - (.Microsoft Corporation.)
O42 - Logiciel: Nero 7 Demo - (.Nero AG.)
O42 - Logiciel: Online Armor 4.0 - (.Tall Emu Pty Ltd.)
O42 - Logiciel: Opera 10.53 - (.Opera Software ASA.)
O42 - Logiciel: Oryte Games 1.9 Toolbar - (.Oryte Games 1.9.)
O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.)
O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.)
O42 - Logiciel: Paragon Drive Backup™ 9.0 Free Edition - (.Paragon Software.)
O42 - Logiciel: Programme de gestion Camera de Logitech® - (.Pas de propriétaire.)
O42 - Logiciel: QuickTime - (.Apple Inc..)
O42 - Logiciel: Quicksys RegDefrag 2.8 - (.Pas de propriétaire.)
O42 - Logiciel: Recuva - (.Piriform.)
O42 - Logiciel: SFR - Kit de connexion - (.SFR.)
O42 - Logiciel: ScanSoft PDF Professional 4 - (.Nuance, Inc.)
O42 - Logiciel: SeaTools for Windows - (.Seagate Technology.)
O42 - Logiciel: Secunia PSI - (.Pas de propriétaire.)
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.)
O42 - Logiciel: Segoe UI - (.Microsoft Corp.)
O42 - Logiciel: Sound Blaster Audigy 2 - (.Pas de propriétaire.)
O42 - Logiciel: SoundMAX - (.Analog Devices.)
O42 - Logiciel: Spelling Dictionaries Support For Adobe Reader 9 - (.Adobe Systems Incorporated.)
O42 - Logiciel: System Requirements Lab - (.Pas de propriétaire.)
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.)
O42 - Logiciel: VLC media player 1.0.5 - (.VideoLAN Team.)
O42 - Logiciel: Viewpoint Media Player - (.Pas de propriétaire.)
O42 - Logiciel: WebCam for MSN Messenger - (.Logitech, Inc..)
O42 - Logiciel: Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (06/03/2009 2.3.0.0) - (.Garmin.)
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.)
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.)
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.)
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.)
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.)
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.)
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.)
O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.)
O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.)
O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.)
O42 - Logiciel: ZebHelpProcess 2.34 - (.Nicolas Coolman.)
O42 - Logiciel: iTunes - (.Apple Inc..)


---\\ Contenu des dossiers Fichiers Communs (O43)
O43 - CFD:Common File Directory ----D- C:\Program Files\ABBYY FineReader 6.0
O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Analog Devices
O43 - CFD:Common File Directory ----D- C:\Program Files\AOL
O43 - CFD:Common File Directory ----D- C:\Program Files\AOL 9.0 VR
O43 - CFD:Common File Directory ----D- C:\Program Files\Apple Software Update
O43 - CFD:Common File Directory ----D- C:\Program Files\ATI Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files\Auslogics
O43 - CFD:Common File Directory ----D- C:\Program Files\AutocompletePro
O43 - CFD:Common File Directory ----D- C:\Program Files\aviproxy
O43 - CFD:Common File Directory ----D- C:\Program Files\Avira
O43 - CFD:Common File Directory ----D- C:\Program Files\Bonjour
O43 - CFD:Common File Directory ----D- C:\Program Files\Canon
O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner
O43 - CFD:Common File Directory ----D- C:\Program Files\ComPlus Applications
O43 - CFD:Common File Directory ----D- C:\Program Files\Conduit
O43 - CFD:Common File Directory ----D- C:\Program Files\CONEXANT
O43 - CFD:Common File Directory ----D- C:\Program Files\Creative
O43 - CFD:Common File Directory --H-D- C:\Program Files\Creative Installation Information
O43 - CFD:Common File Directory ----D- C:\Program Files\Dell
O43 - CFD:Common File Directory ----D- C:\Program Files\Dell A920
O43 - CFD:Common File Directory ----D- C:\Program Files\Dell AIO Printer A920
O43 - CFD:Common File Directory ----D- C:\Program Files\DIFX
O43 - CFD:Common File Directory ----D- C:\Program Files\directx
O43 - CFD:Common File Directory ----D- C:\Program Files\Driver Cleaner
O43 - CFD:Common File Directory ----D- C:\Program Files\Driver-Soft
O43 - CFD:Common File Directory ----D- C:\Program Files\EasyPrediction
O43 - CFD:Common File Directory ----D- C:\Program Files\FaxTools
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers communs
O43 - CFD:Common File Directory ----D- C:\Program Files\Garmin
O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD:Common File Directory ----D- C:\Program Files\Intel
O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer
O43 - CFD:Common File Directory ----D- C:\Program Files\iPod
O43 - CFD:Common File Directory ----D- C:\Program Files\iTunes
O43 - CFD:Common File Directory ----D- C:\Program Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\K-Lite Codec Pack
O43 - CFD:Common File Directory ----D- C:\Program Files\Lavalys
O43 - CFD:Common File Directory ----D- C:\Program Files\Learn2.com
O43 - CFD:Common File Directory ----D- C:\Program Files\Logitech
O43 - CFD:Common File Directory ----D- C:\Program Files\Macrovision Corporation
O43 - CFD:Common File Directory ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Encarta
O43 - CFD:Common File Directory ----D- C:\Program Files\microsoft frontpage
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Works
O43 - CFD:Common File Directory ----D- C:\Program Files\Movie Maker
O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild
O43 - CFD:Common File Directory ----D- C:\Program Files\MSECache
O43 - CFD:Common File Directory ----D- C:\Program Files\MSN
O43 - CFD:Common File Directory ----D- C:\Program Files\MSN Gaming Zone
O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 4.0
O43 - CFD:Common File Directory ----D- C:\Program Files\Nero
O43 - CFD:Common File Directory ----D- C:\Program Files\NetMeeting
O43 - CFD:Common File Directory ----D- C:\Program Files\NOS
O43 - CFD:Common File Directory ----D- C:\Program Files\Opera
O43 - CFD:Common File Directory ----D- C:\Program Files\Oryte_Games_1.9
O43 - CFD:Common File Directory ----D- C:\Program Files\Outlook Express
O43 - CFD:Common File Directory ----D- C:\Program Files\Paragon Software
O43 - CFD:Common File Directory ----D- C:\Program Files\PDFCreator
O43 - CFD:Common File Directory ----D- C:\Program Files\plugins
O43 - CFD:Common File Directory ----D- C:\Program Files\Quicksys
O43 - CFD:Common File Directory ----D- C:\Program Files\QuickTime
O43 - CFD:Common File Directory ----D- C:\Program Files\Recuva
O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies
O43 - CFD:Common File Directory ----D- C:\Program Files\ScanSoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Seagate
O43 - CFD:Common File Directory ----D- C:\Program Files\Secunia
O43 - CFD:Common File Directory ----D- C:\Program Files\Services en ligne
O43 - CFD:Common File Directory ----D- C:\Program Files\SFR
O43 - CFD:Common File Directory ----D- C:\Program Files\SystemRequirementsLab
O43 - CFD:Common File Directory ----D- C:\Program Files\Tall Emu
O43 - CFD:Common File Directory ----D- C:\Program Files\Trend Micro
O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information
O43 - CFD:Common File Directory ----D- C:\Program Files\VideoLAN
O43 - CFD:Common File Directory ----D- C:\Program Files\Viewpoint
O43 - CFD:Common File Directory ----D- C:\Program Files\VirtualDub
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live SkyDrive
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Connect 2
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT
O43 - CFD:Common File Directory --H-D- C:\Program Files\WindowsUpdate
O43 - CFD:Common File Directory ----D- C:\Program Files\WinRAR
O43 - CFD:Common File Directory ----D- C:\Program Files\xerox
O43 - CFD:Common File Directory ----D- C:\Program Files\Yahoo!
O43 - CFD:Common File Directory ----D- C:\Program Files\ZebHelpProcess
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Ahead
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\AOL
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\aolback
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\aolshare
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Apple
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ArcSoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Borland Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Canon
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Creative
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Creative Labs Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\DESIGNER
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\InstallShield
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Logitech
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Microsoft Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\MSSoap
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Nullsoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ODBC
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Real
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ScanSoft Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Services
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\SpeechEngines
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\System
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Wise Installation Wizard


---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.26D04065DA995686B9968E140655B0F0] - 14/06/2010 - 21:33:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ban_list.txt
O44 - LFC:[MD5.524D8D450622DB4A7875B111C299A76B] - 14/06/2010 - 21:32:41 ---A- . (.Pas de propriétaire - AVZ Driver.) -- C:\WINDOWS\System32\srosa2.sys
O44 - LFC:[MD5.1037B278138865ED6F88A536ECA5C066] - 14/06/2010 - 21:32:14 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\iTouch.ini
O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 14/06/2010 - 21:31:08 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\bootstat.dat
O44 - LFC:[MD5.0F00463E88534730C37943D30FA65ED3] - 14/06/2010 - 21:30:21 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000002-00000000-00000001-00001102-00000004-10031102}.rfx
O44 - LFC:[MD5.0F00463E88534730C37943D30FA65ED3] - 14/06/2010 - 21:30:21 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\BMXCtrlState-{00000002-00000000-00000001-00001102-00000004-10031102}.rfx
O44 - LFC:[MD5.3E30BB5E47864A30FC0B29A36F37841D] - 14/06/2010 - 21:30:21 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\BMXState-{00000002-00000000-00000001-00001102-00000004-10031102}.rfx
O44 - LFC:[MD5.3E30BB5E47864A30FC0B29A36F37841D] - 14/06/2010 - 21:30:21 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\BMXStateBkp-{00000002-00000000-00000001-00001102-00000004-10031102}.rfx
O44 - LFC:[MD5.E7671346853BC9CFC492BB16F135EFBA] - 14/06/2010 - 21:30:21 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\DVCState-{00000002-00000000-00000001-00001102-00000004-10031102}.rfx
O44 - LFC:[MD5.5866F5AC5FA90002CC1275789B715A60] - 14/06/2010 - 20:58:13 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\NeroDigital.ini
O44 - LFC:[MD5.5A8A4FB9C48C3DA748D1CFB3E7D5CD58] - 14/06/2010 - 20:08:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\{00000002-00000000-00000001-00001102-00000004-10031102}.CDF
O44 - LFC:[MD5.E454AB67F40AE8D6B168E8CFE70C3790] - 13/06/2010 - 11:32:19 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\win.ini
O44 - LFC:[MD5.6D67A969AE04D49CFFE3195B25F2DC09] - 09/06/2010 - 18:43:53 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\FNTCACHE.DAT
O44 - LFC:[MD5.ACDECE742BFC22609486D2E1A00A1591] - 09/06/2010 - 18:30:57 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\PerfStringBackup.INI
O44 - LFC:[MD5.52D119D9C57763CD8A0E75C6946023C9] - 09/06/2010 - 18:30:57 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfc009.dat
O44 - LFC:[MD5.02A3D23FAF6CD39BFB4E02D4BF7840B0] - 09/06/2010 - 18:30:57 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfc00C.dat
O44 - LFC:[MD5.16927110B3B2F20907EF443FE0696E24] - 09/06/2010 - 18:30:57 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfh009.dat
O44 - LFC:[MD5.7E6CBCC9C93B2EE991244AF7EAF65A86] - 09/06/2010 - 18:30:57 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfh00C.dat
O44 - LFC:[MD5.37E87F235827674D8CAF6E8317627267] - 09/06/2010 - 18:28:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ModemLog_Conexant D850 56K V.9x DFVc Modem.txt
O44 - LFC:[MD5.59A61138332AAE5CF179BB1306DC7AB6] - 09/06/2010 - 17:14:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\wpa.dbl
O44 - LFC:[MD5.45B7EE373943E0C390BD016F05811D21] - 08/06/2010 - 17:01:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\dellstat.ini
O44 - LFC:[MD5.14E6FB92F1788982E2BBC81D915B1F02] - 28/05/2010 - 12:04:52 ---A- . (.Secunia - Secunia PSI Driver.) -- C:\WINDOWS\System32\drivers\psi_mf.sys
O44 - LFC:[MD5.D53DD4D4B632EDD75F876D4311F6C84A] - 27/05/2010 - 09:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ff_vfw.dll
O44 - LFC:[MD5.8B138ED363128BFF2C2E1E7FEA9793B4] - 27/05/2010 - 09:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\avisplitter.ini
O44 - LFC:[MD5.62486F259D23C009A4E10C151B181FC3] - 26/05/2010 - 14:18:08 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\TZLog.log
O44 - LFC:[MD5.A4670AD3BBD2F0BC1C1BD8C853FC7D00] - 24/05/2010 - 18:48:22 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\d3d9caps.dat


---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
O46 - SEH:ShellExecuteHooks - OA Shell Helper - {4F07DA45-8170-4859-9B5F-037EF2970034} - C:\PROGRA~1\TALLEM~1\ONLINE~1\oaevent.dll


---\\ Export de clé d'application autorisée (ECAA) (O47)
O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe
O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O47 - AAKE:Key Export SP - "C:\Program Files\CCleaner\CCleaner.exe" [Enabled] .(.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe
O47 - AAKE:Key Export SP - "C:\Program Files\VideoLAN\VLC\vlc.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files\VideoLAN\VLC\vlc.exe
O47 - AAKE:Key Export SP - "C:\Program Files\SFR\Kit\9mail.exe" [Enabled] .(.SFR - Assistant de configuration mail.) -- C:\Program Files\SFR\Kit\9mail.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Avira\AntiVir Desktop\avcenter.exe" [Enabled] .(.Avira GmbH - Antivirus Control Center.) -- C:\Program Files\Avira\AntiVir Desktop\avcenter.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Internet Explorer\iexplore.exe" [Enabled] .(.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O47 - AAKE:Key Export SP - "C:\Program Files\ABBYY FineReader 5.0 Sprint\Sprint.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\ABBYY FineReader 5.0 Sprint\Sprint.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) (.not file.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) (.not file.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe" [Enabled] .(.AOL LLC - AOL Connectivity Service.) (.not file.) -- C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe" [Enabled] .(.AOL LLC - AOL Autoconnect.) (.not file.) -- C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
O47 - AAKE:Key Export SP - "C:\Program Files\AOL 9.0\waol.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\AOL 9.0\waol.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\AOL\1257938233\ee\aolsoftware.exe" [Enabled] .(.America Online, Inc. - AOL.) (.not file.) -- C:\Program Files\Fichiers communs\AOL\1257938233\ee\aolsoftware.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\AOL\TopSpeed\3.0\aoltpsd3.exe" [Enabled] .(.AOL LLC - AOL TopSpeed.) (.not file.) -- C:\Program Files\Fichiers communs\AOL\TopSpeed\3.0\aoltpsd3.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\AOL\Loader\aolload.exe" [Enabled] .(.America Online, Inc. - America Online.) (.not file.) -- C:\Program Files\Fichiers communs\AOL\Loader\aolload.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\AOL\System Information\sinf.exe" [Enabled] .(.AOL LLC - System Information Application.) (.not file.) -- C:\Program Files\Fichiers communs\AOL\System Information\sinf.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Opera\opera.exe" [Enabled] .(.Opera Software - Opera Internet Browser.) (.not file.) -- C:\Program Files\Opera\opera.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Bonjour\mDNSResponder.exe" [Enabled] .(.Apple Inc. - Bonjour Service.) (.not file.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O47 - AAKE:Key Export SP - "C:\Program Files\iTunes\iTunes.exe" [Enabled] .(.Apple Inc. - iTunes.) (.not file.) -- C:\Program Files\iTunes\iTunes.exe
O47 - AAKE:Key Export SP - "C:\Program Files\AOL 9.0 VR\waol.exe" [Enabled] .(.AOL, LLC. - AOL Software.) (.not file.) -- C:\Program Files\AOL 9.0 VR\waol.exe
O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe" [Enabled] .(.AOL LLC - AOL Connectivity Service.) -- C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe" [Enabled] .(.AOL LLC - AOL Autoconnect.) -- C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
O47 - AAKE:Key Export DP - "C:\Program Files\AOL 9.0\waol.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\AOL 9.0\waol.exe
O47 - AAKE:Key Export DP - "C:\Program Files\AOL 9.0 VR\waol.exe" [Enabled] .(.AOL, LLC. - AOL Software.) (.not file.) -- C:\Program Files\AOL 9.0 VR\waol.exe


---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d


---\\ MountPoints2 Shell Key (MPSK) (O51)
O51 - MPSK:{3bd5645b-e26f-11de-9dbc-00038a000015}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- qkm.exe (.not file.)


---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(tm) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll
O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax
O52 - TDSD: \Drivers32\"msacm.iac2"="iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\System32\iac25_32.ax
O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll
O52 - TDSD: \Drivers32\"msacm.enc"="ITIG726.acm" . (.Ingenient Technologies, Inc. - Ingenient Technologies, Inc. G.726 CODEC.) -- C:\WINDOWS\System32\ITIG726.acm
O52 - TDSD: \Drivers32\"VIDC.XVID"="xvidvfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\xvidvfw.dll
O52 - TDSD: \Drivers32\"VIDC.YV12"="yv12vfw.dll" . (.www.helixcommunity.org - Helix YV12 YUV Codec.) -- C:\WINDOWS\System32\yv12vfw.dll
O52 - TDSD: \Drivers32\"msacm.ac3acm"="ac3acm.acm" . (.fccHandler - AC-3 ACM Codec.) -- C:\WINDOWS\System32\ac3acm.acm
O52 - TDSD: \Drivers32\"msacm.lameacm"="lameACM.acm" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\WINDOWS\System32\lameACM.acm
O52 - TDSD: \Drivers32\"VIDC.FFDS"="ff_vfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ff_vfw.dll
O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm
O52 - TDSD: \drivers.desc\"C:\WINDOWS\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\System32\iac25_32.ax
O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"ITIG726.acm"="ITI G.726 Audio Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"ir32_32.dll"="Indeo® video R3.2 by Intel" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"ir41_32.ax"="Indeo® video interactive R4.3 by Intel" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"iyvu9_32.dll"="Indeo® video Raw YVU9 by Intel" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\iyvu9_32.dll
O52 - TDSD: \drivers.desc\"C:\WINDOWS\System32\Iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\System32\Iac25_32.ax
O52 - TDSD: \drivers.desc\"tssoft32.acm"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(tm) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm
O52 - TDSD: \drivers.desc\"iccvid.dll"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll
O52 - TDSD: \drivers.desc\"yv12vfw.dll"="yv12vfw.dll" . (.www.helixcommunity.org - Helix YV12 YUV Codec.) -- C:\WINDOWS\System32\yv12vfw.dll
O52 - TDSD: \drivers.desc\"xvidvfw.dll"="Xvid MPEG-4 Video Codec 1.2.2" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"lameACM.acm"="Lame ACM MP3 CODEC v3.98.2" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"ac3acm.acm"="AC-3 ACM Codec" . (.fccHandler - AC-3 ACM Codec.) -- C:\WINDOWS\System32\ac3acm.acm
O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow video encoder" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ff_vfw.dll


---\\ Microsoft Control Security Providers (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll


---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0


---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\Policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\Policies\Explorer] - "HonorAutoRunSetting"=1
O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoDriveTypeAutoRun"=145


---\\ Liste des Drivers Système (SDL) (O58)
O58 - SDL:[MD5.A2F791E99FD6EECEBCCFB1953A1D6F24] - 20/08/2004 - 23:53:38 ---A- . (.ATI Technologies Inc. - Pilote de miniport ATI RAGE 128.) -- C:\WINDOWS\system32\drivers\ati2mtaa.sys
O58 - SDL:[MD5.C0B86ECB324E50F6BBD529F9D5C6B24B] - 11/02/2010 - 08:38:10 ---A- . (.ATI Technologies Inc. - ATI Radeon WindowsNT Miniport Driver.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys
O58 - SDL:[MD5.0D74D0AA2ECCB5E2019B5E10C38AFD19] - 13/04/2007 - 18:30:39 ---A- . (.America Online - ATW Protocol Driver.) -- C:\WINDOWS\system32\drivers\atwpkt2.sys
O58 - SDL:[MD5.D63802C63DCAC9D2450333105C81E91E] - 13/04/2007 - 18:30:43 ---A- . (.America Online - ATW Protocol Driver.) -- C:\WINDOWS\system32\drivers\atwpkt264.sys
O58 - SDL:[MD5.5B44C214F9CD9F590BE9125347610380] - 13/02/2009 - 12:17:49 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\drivers\avgntdd.sys
O58 - SDL:[MD5.14FE36D8F2C6A2435275338D061A0B66] - 11/12/2009 - 03:10:39 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys
O58 - SDL:[MD5.2DAA8CC2670720DEDDCC74A20EDE2EE9] - 13/02/2009 - 12:28:39 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\drivers\avgntmgr.sys
O58 - SDL:[MD5.AD9BD66A862116E79CB45BB6BE46055F] - 30/03/2009 - 10:32:47 ---A- . (.Avira GmbH - Avira Driver for RootKit Detection.) -- C:\WINDOWS\system32\drivers\avipbb.sys
O58 - SDL:[MD5.C915A416F265149471D74E0815C928B2] - 29/08/2003 - 00:58:00 R--A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\drivers\bvrp_pci.sys
O58 - SDL:[MD5.947AB5940EB948D5BA8766BAB2681756] - 27/06/2003 - 04:08:38 R--A- . (.Logitech Inc. - Universal Serial Bus Camera Driver.) -- C:\WINDOWS\system32\drivers\CamDrL21.sys
O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 22/07/2003 - 17:34:08 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys
O58 - SDL:[MD5.EF44C32B1AEF62380426B260BF2C66F1] - 18/03/2010 - 19:39:10 ---A- . (.Creative Technology Ltd - Creative Common FX Plug-in.) -- C:\WINDOWS\system32\drivers\COMMONFX.sys
O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 22/07/2003 - 17:34:08 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys
O58 - SDL:[MD5.7FB95DFBBD4AC8F24DD9887591CB10D4] - 18/03/2010 - 19:40:22 ---A- . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\WINDOWS\system32\drivers\CT0531FL.SYS
O58 - SDL:[MD5.357C534B38019B597F51C8BF7186C118] - 18/03/2010 - 19:40:32 ---A- . (.Creative Technology Ltd - Creative AC3 SW Decoder Device Driver (WDM).) -- C:\WINDOWS\system32\drivers\ctac32k.sys
O58 - SDL:[MD5.691F8259A1F9C983356D8DB2CDE8043C] - 18/03/2010 - 19:40:40 ---A- . (.Creative Technology Ltd - Creative WDM Audio Device Driver.) -- C:\WINDOWS\system32\drivers\ctaud2k.sys
O58 - SDL:[MD5.7FC78AA6521EF3D9F16E51EFAB0BF13B] - 18/03/2010 - 19:39:18 ---A- . (.Creative Technology Ltd - Creative SB FX Plug-in.) -- C:\WINDOWS\system32\drivers\CTAUDFX.sys
O58 - SDL:[MD5.8545D70B0335A05498F34E7E3F8CA9A2] - 18/03/2010 - 19:40:48 ---A- . (.Creative Technology Ltd - Creative DVD-Audio Device Driver (WDM).) -- C:\WINDOWS\system32\drivers\ctdvda2k.sys
O58 - SDL:[MD5.16F448354067914E7DEAEA709011BD60] - 18/03/2010 - 19:39:36 ---A- . (.Creative Technology Ltd - E-MU E-DSP Effects Plugin Module.) -- C:\WINDOWS\system32\drivers\CTERFXFX.sys
O58 - SDL:[MD5.B4F6B60FEED3EB5F85BE85E8FA4C0CC1] - 18/03/2010 - 19:40:56 ---A- . (.Creative Technology Ltd. - Creative Game Port Enumerator.) -- C:\WINDOWS\system32\drivers\CTGAME.SYS
O58 - SDL:[MD5.0D588158831A1798428D497B11499EB7] - 18/03/2010 - 19:41:08 ---A- . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\WINDOWS\system32\drivers\CTMMFILT.SYS
O58 - SDL:[MD5.AE896073E1BBF98FEFC2EC52F62C0FBA] - 18/03/2010 - 19:45:12 ---A- . (.Creative Technology Ltd. - Creative OS Services Driver (WDM).) -- C:\WINDOWS\system32\drivers\ctoss2k.sys
O58 - SDL:[MD5.4D71541283AEA28FB839007BE90B5FC7] - 18/03/2010 - 19:45:20 ---A- . (.Creative Technology Ltd - Creative Proxy Device Driver (WDM).) -- C:\WINDOWS\system32\drivers\ctprxy2k.sys
O58 - SDL:[MD5.64C83684661BE137023F5186A612CF34] - 18/03/2010 - 19:39:28 ---A- . (.Creative Technology Ltd - Creative SB FX Plug-in.) -- C:\WINDOWS\system32\drivers\CTSBLFX.sys
O58 - SDL:[MD5.632194572EBDE8D461728CF382A7E964] - 18/03/2010 - 19:45:28 ---A- . (.Creative Technology Ltd - SoundFont® Manager (WDM).) -- C:\WINDOWS\system32\drivers\ctsfm2k.sys
O58 - SDL:[MD5.AC9CF17EE2AE003C98EB4F5336C38058] - 16/11/2007 - 10:55:00 ---A- . (.Intel Corporation - Intel® PRO/100 Adapter NDIS 5.1 driver.) -- C:\WINDOWS\system32\drivers\e100b325.sys
O58 - SDL:[MD5.BACD9CC06D7A787E529E7EBF56B671AA] - 18/03/2010 - 19:45:42 ---A- . (.Creative Technology Ltd - E-mu Plug-in Architecture Driver (WDM).) -- C:\WINDOWS\system32\drivers\emupia2k.sys
O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 18/05/2009 - 14:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
O58 - SDL:[MD5.70606233F3ED0E53CB3EA17F846D6A4F] - 18/03/2010 - 19:49:56 ---A- . (.Creative Technology Ltd - Creative EMU10KX HAL (WDM).) -- C:\WINDOWS\system32\drivers\ha10kx2k.sys
O58 - SDL:[MD5.A0C69AD2A61E576B0207ACDD9626E167] - 18/03/2010 - 19:50:04 ---A- . (.Creative Technology Ltd - Creative EMU10KX-P16v HAL (WDM).) -- C:\WINDOWS\system32\drivers\haP16v2k.sys
O58 - SDL:[MD5.2EE89452C574D259ADA4FC9FC1C07243] - 18/03/2010 - 19:50:12 ---A- . (.Creative Technology Ltd - Creative EMU10KX-P17v HAL (WDM).) -- C:\WINDOWS\system32\drivers\haP17v2k.sys
O58 - SDL:[MD5.9E05F872290E5595AFD4871CDEE550A3] - 13/12/2008 - 14:47:38 ---A- . (.Paragon Software Group - A part of Paragon System Utilities.) -- C:\WINDOWS\system32\drivers\hotcore3.sys
O58 - SDL:[MD5.77E4FF0B73BC0AEAAF39BF0C8104231F] - 17/11/2003 - 15:59:20 ---A- . (.Conexant Systems, Inc. - HSF_HWB2 WDM driver.) -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys
O58 - SDL:[MD5.F59ED5A43B988A18EF582BB07B2327A7] - 17/11/2003 - 15:58:02 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys
O58 - SDL:[MD5.60E1604729A15EF4A3B05F298427B3B1] - 17/11/2003 - 15:56:26 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\system32\drivers\HSF_DP.sys
O58 - SDL:[MD5.D92A0535920DDF83BE76799F69CDB7FA] - 04/01/2010 - 09:14:02 ---A- . (.Intel Corporation - NDIS 5.1 Advanced Networking Services..) -- C:\WINDOWS\system32\drivers\ianswxp.sys
O58 - SDL:[MD5.25EDD75E23C5EF6B33D0FBCCE125A601] - 15/08/2005 - 11:08:26 ---A- . (.Ahead Software AG - NERO IMAGEDRIVE SCSI miniport.) -- C:\WINDOWS\system32\drivers\imagedrv.sys
O58 - SDL:[MD5.9C4BBACF4E9B9543C3CE23F1FE556941] - 15/08/2005 - 11:08:26 ---A- . (.Ahead Software AG - Nero Image Server.) -- C:\WINDOWS\system32\drivers\imagesrv.sys
O58 - SDL:[MD5.7F16EE8322EBDF3C3B2D1A69F8030FD4] - 12/01/2010 - 16:24:00 ---A- . (.Intel Corporation - Intel® Network Adapter Diagnostic Driver.) -- C:\WINDOWS\system32\drivers\iqvw32.sys
O58 - SDL:[MD5.FB5E7A5C86C0B58AA155487B141B8457] - 03/03/2004 - 09:50:00 ---A- . (.Logitech, Inc. - Logitech Consumer Control Filter Driver..) -- C:\WINDOWS\system32\drivers\LCcfltr.sys
O58 - SDL:[MD5.03976C309EDE05D39017C05B817CD94F] - 11/12/2003 - 09:50:00 ---A- . (.Logitech, Inc. - Logitech HID Filter Driver..) -- C:\WINDOWS\system32\drivers\LHidFlt2.Sys
O58 - SDL:[MD5.A8742865E15A57B426EFCC5FF744D6D3] - 03/03/2004 - 09:50:00 ---A- . (.Logitech, Inc. - Logitech USB Mouse Function Driver..) -- C:\WINDOWS\system32\drivers\LHidUsb.sys
O58 - SDL:[MD5.26407519FCA64EC4091FE1F815B4AFC4] - 11/12/2003 - 09:50:00 ---A- . (.Logitech, Inc. - Logitech Filter Driver for Mouse Class..) -- C:\WINDOWS\system32\drivers\LMouFlt2.Sys
O58 - SDL:[MD5.D118557367BC280B926322DCA6DEF634] - 27/06/2003 - 04:03:48 R--A- . (.Logitech Inc. - USB Statistic Driver.) -- C:\WINDOWS\system32\drivers\LVUSBSta.sys
O58 - SDL:[MD5.67B48A903430C6D4FB58CBACA1866601] - 29/04/2010 - 14:39:26 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys
O58 - SDL:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 29/04/2010 - 14:39:38 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
O58 - SDL:[MD5.EEAEA6514BA7C9D273B5E87C4E1AAB30] - 09/04/2003 - 13:48:08 ---A- . (.Conexant - Diagnostic Interface DRIVER.) -- C:\WINDOWS\system32\drivers\mdmxsdk.sys
O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 22/07/2003 - 17:34:08 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys
O58 - SDL:[MD5.E57D9D511E837EF56F93EC29F1FF730D] - 20/04/2010 - 03:13:14 ---A- . (.Tall Emu Pty Ltd - OA Helper Driver.) -- C:\WINDOWS\system32\drivers\OAnet.sys
O58 - SDL:[MD5.09630BE43DB8EBD6876F415B963A910C] - 26/09/2005 - 05:34:32 R--A- . (.Ideazon - Ideazon keyboard driver.) -- C:\WINDOWS\system32\drivers\OmniUsb.sys
O58 - SDL:[MD5.842B85E710488925C2051AEF216EC14A] - 26/09/2005 - 05:34:32 R--A- . (.Ideazon - Ideazon keyboard driver.) -- C:\WINDOWS\system32\drivers\OmniUsbl.sys
O58 - SDL:[MD5.07C02C892E8E1A72D6BF35004F0E9C5E] - 19/11/2005 - 02:13:18 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\WINDOWS\system32\drivers\PCASp50.sys
O58 - SDL:[MD5.14E6FB92F1788982E2BBC81D915B1F02] - 28/05/2010 - 12:04:52 ---A- . (.Secunia - Secunia PSI Driver.) -- C:\WINDOWS\system32\drivers\psi_mf.sys
O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 22/07/2003 - 17:50:29 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys
O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 22/07/2003 - 17:34:08 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys
O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 22/07/2003 - 17:34:08 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/04/2008 - 17:39:15 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys
O58 - SDL:[MD5.B9C7617C1E8AB6FDFF75D3C8DAFCB4C8] - 17/09/2004 - 09:02:54 ---A- . (.Creative Technology Ltd. - Creative WDM Audio Driver.) -- C:\WINDOWS\system32\drivers\senfilt.sys
O58 - SDL:[MD5.0066FF77AEB4AE70066F7E94D5A6D866] - 22/03/2005 - 11:08:40 ---A- . (.Analog Devices, Inc. - SoundMAX Integrated Digital Audio.) -- C:\WINDOWS\system32\drivers\smwdm.sys
O58 - SDL:[MD5.3AD0362CF68DE3AC500E981700242CCA] - 11/05/2009 - 10:11:52 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\drivers\ssmdrv.sys
O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 22/07/2003 - 17:34:08 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys
O58 - SDL:[MD5.E8C1B9EBAC65288E1B51E8A987D98AF6] - 16/10/2009 - 01:33:06 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\system32\drivers\usbaapl.sys
O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 22/07/2003 - 17:34:08 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys
O58 - SDL:[MD5.0A716C08CB13C3A8F4F51E882DBF7416] - 10/01/2003 - 16:13:04 ---A- . (.America Online, Inc. - Wan Miniport (ATW).) -- C:\WINDOWS\system32\drivers\wanatw4.sys
O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 22/07/2003 - 17:30:32 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ansi.sys
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 22/07/2003 - 17:32:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\country.sys
O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 22/07/2003 - 17:36:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\himem.sys
O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 22/07/2003 - 17:38:32 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\key01.sys
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 22/07/2003 - 17:38:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\keyboard.sys
O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 22/07/2003 - 17:48:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos.sys
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 22/07/2003 - 17:48:01 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos404.sys
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 22/07/2003 - 17:48:01 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos411.sys
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 22/07/2003 - 17:48:02 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos412.sys
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 22/07/2003 - 17:48:02 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos804.sys
O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 04/08/2004 - 06:45:25 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio.sys
O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 04/08/2004 - 06:45:14 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio404.sys
O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 04/08/2004 - 06:45:10 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio411.sys
O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 04/08/2004 - 06:45:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio412.sys
O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 04/08/2004 - 06:45:12 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio804.sys
O58 - SDL:[MD5.524D8D450622DB4A7875B111C299A76B] - 14/06/2010 - 21:32:41 ---A- . (.Pas de propriétaire - AVZ Driver.) -- C:\WINDOWS\system32\srosa2.sys


---\\ Alternate Data Stream File (ADS) (O62)
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\System32\tasklist.exe:Zone.Identifier


---\\ Liste des outils de nettoyage (LATC) (O63)
O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.)
O63 - Logiciel: HiJackThis - (.Trend Micro.)
O63 - Logiciel: Dial-a-fix - (Djlizard)


---\\ Infection Bagle (Possible)
O41 - Driver:  (sK9Ou0s) . (.Pas de propriétaire - AVZ Driver.) - C:\WINDOWS\system32\srosa2.sys
O44 - LFC:[MD5.26D04065DA995686B9968E140655B0F0] - 14/06/2010 - 21:33:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ban_list.txt
O44 - LFC:[MD5.524D8D450622DB4A7875B111C299A76B] - 14/06/2010 - 21:32:41 ---A- . (.Pas de propriétaire - AVZ Driver.) -- C:\WINDOWS\System32\srosa2.sys
O58 - SDL:[MD5.524D8D450622DB4A7875B111C299A76B] - 14/06/2010 - 21:32:41 ---A- . (.Pas de propriétaire - AVZ Driver.) -- C:\WINDOWS\system32\srosa2.sys


End of the scan (671 lines)

 

Merci d'avance pour votre aide !

 

Cordialement,

Tonton57

[Mark]

Bonsoir Tonton

 

C'est une infection Bagle, chopée via un crack, fort probablement. Bagle fait tout ce que tu décris, en plus de tuer le mode Sans Échec, la connexion Wi-Fi, le Centre de Sécurité Windows. Il installe son propre client eMule et se sert de ta machine pour distribuer des fichiers infectés et autres pourritures, sous ton nez. Il faut dégager ça illico...

 

======

 

Télécharge Tonton.exe du lien suivant, puis sauvegarde-le sur ton Bureau: http://senduit.com/8ce7c7

(il s'agit de l'outil ComboFix renommé)

• Assure-toi que tous les programmes soient fermés avant de commencer.
  
• **Il est très important de brancher tous les lecteurs amovibles (clés USB, disques durs externes, etc...).
  
• Double-clique sur Tonton.exe afin de l'exécuter.
  
• Possible que tu aies un message te disant qu'AntiVir est actif, te demandant de le désactiver ; ignore ce message et poursuis.
  
• Clique sur "Oui" au message de Limitation de Garantie qui s'affiche.
  
• On va te proposer de télécharger et d'installer la Console de Récupération ; clique sur "Oui" au message, autorise le téléchargement dans ton pare-feu si demandé, puis accepte le message de contrat utilisateur final.
  
• ComboFix t'alertera de la "présence d'activité de rootkit" sur ton PC et te proposera de le laisser redémarrer : accepte.
  
• Le Bureau disparaîtra, ceci est normal, et il va revenir.
  
• L'outil mettra plusieurs minutes (plus de 20, possiblement) à compléter sa routine, vu la gravité de l'infection ; sois patient. Un second redémarrage sera nécessaire, ce qui est normal.
  
• Ne ferme jamais la fenêtre de l'outil, tu te retrouverais avec un Bureau vide.
  
• Il est possible qu'AntiVir se mette à t'alerter durant l'analyse de ComboFix : ceci est normal, et tu n'as qu'à cliquer "Ignorer" aussi souvent que nécessaire (ça peut durer une ou deux minutes, pas plus).
  
• Lorsque l'analyse sera terminée, un rapport apparaîtra à l'écran ;
  
• Copie-colle ce rapport dans ta prochaine réponse.
  Le rapport est également sauvegardé là >> C:\Combofix.txt
  

Voici un guide complet sur l'utilisation de ComboFix :

http://www.bleepingcomputer.com/combofix/f...iliser-combofix

(à noter que le guide ne fait pas mention du renommage de l'outil, mais ceci est nécessaire avec l'infection Bagle)

 

@++

 

Mark

[Tonton]

Bonsoir Mark

 

Merci de m'avoir pris en charge aussi rapidement, c'est vraiment appréciable !

 

Voici le rapport demandé (à noter qu'il est indiqué que "LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE", alors que j'avais accepté l'installation proposée par Combofix) :

 

 

ComboFix 10-06-14.02 - Pierre 15/06/2010 20:09:59.1.1 - x86

Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.2047.1712 [GMT 2:00]

Lancé depuis: c:\documents and settings\Pierre\Bureau\Tonton.exe

AV: AntiVir Desktop *On-access scanning enabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}

FW: Pare-feu Online Armor *enabled* {B797DAA0-7E2E-4711-8BB3-D12744F1922A}

 

AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!

.

 

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))

.

 

c:\documents and settings\Pierre\Application Data\drivers\downld

c:\documents and settings\Pierre\Application Data\drivers\downld\129437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\129828.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\130250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\130468.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\130781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\132656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\145218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14707953.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14717250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14717656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14717937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14718218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14718703.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14720125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14722921.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14723093.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14723328.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14723546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14723781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14724140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14724390.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14725890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14727437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14728031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14742515.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14743500.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14744265.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14744921.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14745593.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14745859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14746125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14746312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14747921.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14748140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14748421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14757812.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14758265.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14758718.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14759000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14759265.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14759484.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14759765.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14761375.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14762765.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14763015.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14763281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14764000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14765421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14767000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14770109.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14770328.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14770578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14770843.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14775734.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14776000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14776250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14776546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14776843.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14777093.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14777328.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14783656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14784015.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14784640.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14785046.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14785578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14786000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14786375.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14786718.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14786906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14787156.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14787437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14787703.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14787906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14788156.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14788406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14788640.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14788875.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14789250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14789406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14789656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14790296.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14791343.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14792234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14834968.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14835203.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14835453.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14835625.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14835875.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14836187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14836562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14838546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14840531.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14841906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14842875.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14843078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14843281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14843468.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14843734.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14844671.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14845625.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14845906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14846265.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14846578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14846875.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14847187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14847437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14848093.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14848531.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14849000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14849484.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14850484.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14851265.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14851500.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14851750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14851906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14852156.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14853515.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14854812.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14855515.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14856359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14857250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14857890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14858406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14858796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14859015.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14859250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14859484.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14859734.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14860015.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14860296.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14860421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14860609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14860765.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14861109.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14861625.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14862156.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14862453.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14862765.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14863234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14863609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14864656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14865750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14870937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14871421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14871921.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14872312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14872875.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14873296.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14873843.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14874296.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14874421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14874609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14875093.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14875593.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14875828.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14876031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14876390.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14876656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14876921.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14877250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14877453.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14877703.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\14877906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\151687.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\152281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\153250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\153890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\154859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\155765.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\156750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\157781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\158421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\173343.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\174203.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\174937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\175562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\179359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\179562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\179843.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\180062.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\181718.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\181937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\182250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\192375.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\192765.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\193312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\193515.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\193843.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\194078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\194390.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\195796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\197187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\197406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\197687.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\198062.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\198546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\202093.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\203203.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\203390.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\203656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\203859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\208687.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\208875.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\209125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\209359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\209671.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\209843.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\210078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\210312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\210546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\210890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\211281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\211640.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\212046.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\212328.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\212671.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\212906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\213171.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\213359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\213640.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\213843.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\214125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\214281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\214500.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\214656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\214968.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\215125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\215343.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\215671.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\216343.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\216968.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\259671.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\259937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\260390.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\260593.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\260875.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\261203.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\261609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\262000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\262437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\264421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\265421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\265609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\265890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\266078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\266328.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\267281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\277281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\277609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\278000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\278515.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\278859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\279125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\282421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\282968.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\283421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\283859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\284343.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\285359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\286109.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\286328.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\286578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\286750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\286984.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\288437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\289765.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\290984.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\291781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\292375.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29278156.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29278468.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29278859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29279062.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29279359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29280000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29280359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29286234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29286406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29286640.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29286859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29287093.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29287343.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29287593.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29288468.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29289140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29292359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\293031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29308515.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29309140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29309765.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29310453.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29311125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29311375.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29311625.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29311859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29313656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29313875.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29314156.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29323312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29323750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29324187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29324453.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29324718.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29324937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29325218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29326453.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29327843.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29328421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29328687.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29329109.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29329546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29331171.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29332234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29332453.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29332687.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29333031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\293375.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29337921.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29338109.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29338359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29338593.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29338906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29339125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29339359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29339609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29339828.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29340218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29340625.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29341187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29341593.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29341968.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29342296.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29342484.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29342734.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29343031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29343296.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29343484.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29343750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29343984.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29344203.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29344421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29344781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29344937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29345156.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29345546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29346609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29347250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\293796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29390093.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29390328.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29390578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29390750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29391000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29391312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29391703.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29392531.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29392921.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29393859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29394796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29395000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29395218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29395406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29395656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29396906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29397843.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29398125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29398484.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29398781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29399093.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29399281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29399531.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29400078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29400500.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29401140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29401625.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29402625.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29403656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29404031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29404281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29404453.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\294046.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29404687.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29405937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29407218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29409265.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29411343.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29412093.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29412750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29413125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29413531.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29413750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29413984.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29414218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29414468.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29414703.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29414921.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29415046.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29415234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29415390.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29416312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29416828.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29417359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29417718.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29418031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29418468.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29418828.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29419875.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29420968.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29421218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29421609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29422281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29422687.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29423093.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29423515.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29423937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29424406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29424515.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29424703.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29425203.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29425703.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29425906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29426125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29426390.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\294265.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29426640.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29426906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29427250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29427437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29427703.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\29427890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\294562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\294812.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\295000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\295234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\295359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\295546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\295703.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\296062.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\296546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\297062.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\297437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\297750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\298187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\298546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\299609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\300718.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\300921.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\301296.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\301796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\302203.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\302578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\302984.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\303562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\304000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\304125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\304312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\304781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\305281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\305500.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\305718.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\306093.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\306375.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\306640.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\306984.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\307187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\307468.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\307656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43828140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43828437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43828828.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43829031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43829312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43831546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43832812.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43838171.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43838328.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43838578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43838859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43839171.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43839484.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43882156.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43882953.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43884000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43884640.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43885281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43885921.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43886562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43886812.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43887062.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43887250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43889015.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43889234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43889500.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43898734.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43899156.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43899703.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43900031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43900296.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43900515.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43900796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43902187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43903578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43903890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43904156.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43904750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43905187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43905812.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43906875.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43907140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43907375.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43907859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43912750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43913062.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43913484.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43913765.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43914093.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43914312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43914546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43915234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43915875.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43916421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43917218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43917625.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43918781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43919781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43920484.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43920687.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43921234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43921875.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43922562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43922781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43923906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43924140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43924375.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43924578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43924937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43925093.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43925328.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43925718.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43926359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43927000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43970109.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43970406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43970656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43970843.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43971109.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43971421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43971796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43972187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43972593.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43973515.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43974468.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43974609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43974828.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43975015.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43975265.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43977187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43978140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43978453.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43978828.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43979234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43979546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43979796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43980125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43980531.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43980968.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43981625.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43982109.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43983000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43983750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43984125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43984375.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43984531.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43984812.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43986156.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43987421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43991406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43995734.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43996375.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43997078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43997468.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43997859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43998078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43998312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43998546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43998796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43999031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43999250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43999375.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43999562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\43999718.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44000078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44000578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44001109.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44001484.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44001984.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44002437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44002812.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44003890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44005000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44005250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44005656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44006140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44006546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44006953.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44007375.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44007812.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44008281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44008593.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44008765.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44009265.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44009765.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44009984.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44010187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44010562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44010828.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44011109.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44011437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44011656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44011937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\44012140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58412406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58412734.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58413125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58413328.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58413609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58416703.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58417515.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58420906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58421125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58421343.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58421578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58421812.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58422937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58465312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58480562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58481250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58481890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58482515.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58483187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58483453.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58483703.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58483890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58485500.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58485718.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58486000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58486406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58486765.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58487187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58490687.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58490953.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58491218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58491437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58491843.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58493171.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58494671.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58494937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58495203.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58495796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58496281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58498328.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58499656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58499875.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58500109.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58500406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58505312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58505500.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58506750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58507000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58508031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58508546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58509484.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58509968.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58510234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58510640.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58511046.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58511437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58512250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58513421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58513781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58514046.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58514328.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58514578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58514859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58515078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58515359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58515593.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58515812.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58516062.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58516421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58516578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58516812.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58517234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58518484.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58519109.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58561796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58562046.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58562328.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58562531.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58562796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58563187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58563593.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58564265.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58564781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58566140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58567093.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58567281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58567515.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58567750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58568015.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58569343.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58570296.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58570625.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58571015.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58571312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58571625.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58571828.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58572109.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58572515.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58572937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58573406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58573890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58574890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58575625.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58575859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58576109.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58576281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58576515.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58577781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58579078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58583546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58586406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58587031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58587687.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58588203.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58588609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58588843.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58589078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58589312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58589562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58589796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58590031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58590203.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58590390.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58590546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58591468.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58591984.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58592500.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58592812.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58593125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58593578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58593937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58595031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58596140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58596406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58596890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58597265.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58597671.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58598078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58598500.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58598921.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58599359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58599890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58600078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58600703.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58601218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58601453.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58601671.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58602000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58602281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58602562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58602906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58606109.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58606390.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\58606593.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73006828.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73007234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73007640.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73007859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73008140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73010015.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73012609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73012765.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73013000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73013234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73013468.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73013796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73014078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73014921.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73015578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73031640.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73032343.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73033046.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73033937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73034687.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73034968.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73035250.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73035437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73037203.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73037421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73037734.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73048171.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73048656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73049156.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73049437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73049718.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73050015.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73050296.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73051640.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73053031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73053281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73053562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73054000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73054437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73056078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73057234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73057453.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73057718.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73057953.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73063078.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73063734.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73064562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73065031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73065343.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73065562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73065828.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73066046.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73066312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73066953.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73067359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73067796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73068234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73068656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73069000.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73069296.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73069578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73069843.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73070125.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73073187.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73073453.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73073656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73073890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73074140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73074546.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73074718.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73074968.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73075359.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73076218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73076906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73119562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73119796.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73120062.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73120375.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73120656.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73121140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73122468.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73123390.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73125781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73126937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73128265.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73129578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73132750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73132937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73133218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73134203.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73135218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73135531.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73135921.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73136265.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73136578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73136890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73137203.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73137734.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73138437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73138953.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73139453.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73140468.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73141203.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73141437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73141687.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73141921.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73142156.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73143437.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73144718.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73151953.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73157312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73157953.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73179609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73180015.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73180234.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73180468.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73180750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73180984.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73181218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73181453.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73181562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73181750.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73181906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73182265.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73182781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73183296.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73183609.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73183937.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73184390.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73184765.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73185781.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73186890.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73187156.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73187562.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73188062.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73188484.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73188875.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73189312.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73190406.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73190859.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73191031.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73191218.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73191765.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73192281.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73192484.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73192687.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73193015.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73193296.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73193578.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73193906.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73194140.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73194421.exe

c:\documents and settings\Pierre\Application Data\drivers\downld\73194609.exe

c:\documents and settings\Pierre\Application Data\drivers\winupgro.exe

c:\documents and settings\Pierre\Application Data\EurekaLog

c:\documents and settings\Pierre\Application Data\EurekaLog\EurekaLog.ini

c:\documents and settings\Pierre\Application Data\hidires

c:\documents and settings\Pierre\Application Data\hidires\config\AC_BootstrapIPs.dat

c:\documents and settings\Pierre\Application Data\hidires\config\AC_SearchStrings.dat

c:\documents and settings\Pierre\Application Data\hidires\config\AC_ServerMetURLs.dat

c:\documents and settings\Pierre\Application Data\hidires\config\cancelled.met

c:\documents and settings\Pierre\Application Data\hidires\config\clients.met

c:\documents and settings\Pierre\Application Data\hidires\config\clients.met.bak

c:\documents and settings\Pierre\Application Data\hidires\config\cryptkey.dat

c:\documents and settings\Pierre\Application Data\hidires\config\emfriends.met

c:\documents and settings\Pierre\Application Data\hidires\config\key_index.dat

c:\documents and settings\Pierre\Application Data\hidires\config\known.met

c:\documents and settings\Pierre\Application Data\hidires\config\known2_64.met

c:\documents and settings\Pierre\Application Data\hidires\config\load_index.dat

c:\documents and settings\Pierre\Application Data\hidires\config\nodes.dat

c:\documents and settings\Pierre\Application Data\hidires\config\preferences.dat

c:\documents and settings\Pierre\Application Data\hidires\config\preferences.ini

c:\documents and settings\Pierre\Application Data\hidires\config\preferencesKad.dat

c:\documents and settings\Pierre\Application Data\hidires\config\server.met

c:\documents and settings\Pierre\Application Data\hidires\config\server_met.old

c:\documents and settings\Pierre\Application Data\hidires\config\shareddir.dat

c:\documents and settings\Pierre\Application Data\hidires\config\src_index.dat

c:\documents and settings\Pierre\Application Data\hidires\config\statistics.ini

c:\documents and settings\Pierre\Application Data\hidires\config\StoredSearches.met

c:\documents and settings\Pierre\Application Data\hidires\downloads.bak

c:\documents and settings\Pierre\Application Data\hidires\downloads.txt

c:\documents and settings\Pierre\Application Data\hidires\file.exe

c:\documents and settings\Pierre\Application Data\hidires\flec003.exe

c:\documents and settings\Pierre\Application Data\hidires\flec005.exe

c:\documents and settings\Pierre\Application Data\hidires\names.txt

c:\documents and settings\Pierre\Application Data\hidires\server.txt

c:\documents and settings\Pierre\Application Data\m

c:\documents and settings\Pierre\Application Data\m\data.oct

c:\documents and settings\Pierre\Application Data\m\flec006.exe

c:\documents and settings\Pierre\Application Data\m\list.oct

c:\documents and settings\Pierre\Application Data\m\shared\125 ServiceProviders Marketing Software.zip

c:\documents and settings\Pierre\Application Data\m\shared\1st Screensaver Flash Studio.zip

c:\documents and settings\Pierre\Application Data\m\shared\1Stop Organizer 1.4.zip

c:\documents and settings\Pierre\Application Data\m\shared\3D Hard by Core.zip

c:\documents and settings\Pierre\Application Data\m\shared\4Easysoft WMV to 3GP Converter v3.1.08 by Sixeco.zip

c:\documents and settings\Pierre\Application Data\m\shared\4Musics M4A to MP3 Converter 5.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\A Handy Address Book Server v1.0 WinALL by TBE.zip

c:\documents and settings\Pierre\Application Data\m\shared\A+ Calc 2.0 CrAcKed.zip

c:\documents and settings\Pierre\Application Data\m\shared\Acronis True Image Server v8.0.859 German by ZWT.zip

c:\documents and settings\Pierre\Application Data\m\shared\Actual Reminder v3.0 Talk + Weather.zip

c:\documents and settings\Pierre\Application Data\m\shared\Ad Close v1.7 Regfile by EViDENCE.zip

c:\documents and settings\Pierre\Application Data\m\shared\AD Stream Recorder v3.2 by AT4RE.zip

c:\documents and settings\Pierre\Application Data\m\shared\Adkad GroundsKeeper Pro v5.2.1 WinALL Regged by BLiZZARD.zip

c:\documents and settings\Pierre\Application Data\m\shared\Adobe Photoshop v7.0 Serial by Unknown.zip

c:\documents and settings\Pierre\Application Data\m\shared\Advanced CD Label Maker 1.1.26 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Advanced CD Ripper Pro v2.55 by EMBRACE.zip

c:\documents and settings\Pierre\Application Data\m\shared\Advanced Clipboard v1.000.146 Beta.zip

c:\documents and settings\Pierre\Application Data\m\shared\Advanced Outlook Express DBX Recovery v1.2 by FFF.zip

c:\documents and settings\Pierre\Application Data\m\shared\Algolab Photo Vector v1.98.61 by EXPLOSiON.zip

c:\documents and settings\Pierre\Application Data\m\shared\Analiz Chastnikh Obyavleniy Nedvijimost v1.50 Russian by tRCN.zip

c:\documents and settings\Pierre\Application Data\m\shared\AnyLogic 4.1.73.zip

c:\documents and settings\Pierre\Application Data\m\shared\Art Directors Toolkit 4.2 for Mac (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\AtouMath 1.1 French (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Auction Kung Fu 1.2.zip

c:\documents and settings\Pierre\Application Data\m\shared\AuctionMaker 1.00 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Autodesk AutoSketch 2.0 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\AV Burning Pro 2.7-key.zip

c:\documents and settings\Pierre\Application Data\m\shared\AVG Antivirus System Pro 7.0.143.zip

c:\documents and settings\Pierre\Application Data\m\shared\Avira WebProtector 2.2.zip

c:\documents and settings\Pierre\Application Data\m\shared\AZAM v2.0.0.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\Barricade Pro 1.0.2.zip

c:\documents and settings\Pierre\Application Data\m\shared\Big Crocodile v1.4.zip

c:\documents and settings\Pierre\Application Data\m\shared\Borland C++ v5.0 Serial.zip

c:\documents and settings\Pierre\Application Data\m\shared\Boson All Tests v4.83.zip

c:\documents and settings\Pierre\Application Data\m\shared\BrowserBob Professional v3.2.0.0 by FFF.zip

c:\documents and settings\Pierre\Application Data\m\shared\Bussiness Trips v2.6 Russian.zip

c:\documents and settings\Pierre\Application Data\m\shared\BWMeter v2.6.2 WinALL by CHiCNCREAM.zip

c:\documents and settings\Pierre\Application Data\m\shared\Caddy 1.1.zip

c:\documents and settings\Pierre\Application Data\m\shared\Calc Prompter v1.11.zip

c:\documents and settings\Pierre\Application Data\m\shared\Capture Assistant 1.5.zip

c:\documents and settings\Pierre\Application Data\m\shared\CFOS -SPEED v1.04 (snr).zip

c:\documents and settings\Pierre\Application Data\m\shared\Cheap Sudoku v1.0 for PalmOS.zip

c:\documents and settings\Pierre\Application Data\m\shared\CheckMaint v2.1 by FHCF.zip

c:\documents and settings\Pierre\Application Data\m\shared\Civilization 3 Play The World v1.27f +3 TRAINER.zip

c:\documents and settings\Pierre\Application Data\m\shared\ClockWise 2.02a (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\CloneDVD2 v2.4.5.4 by Usbano.zip

c:\documents and settings\Pierre\Application Data\m\shared\Coin Collector 4.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\Collection Studio 1.32 SERIAL by FFF.zip

c:\documents and settings\Pierre\Application Data\m\shared\ColorPerfect 1.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\Conquests Of Camelot The Search For The Grail (1990) (Sierra Online) FULL!.zip

c:\documents and settings\Pierre\Application Data\m\shared\Crashday UNLOCKER NFO FIX Savegame.zip

c:\documents and settings\Pierre\Application Data\m\shared\Crazy Pegs v1.2 MULTI2 by AERiS.zip

c:\documents and settings\Pierre\Application Data\m\shared\Create Share Camera Pack.zip

c:\documents and settings\Pierre\Application Data\m\shared\Cryptgine Archiver 1.05.zip

c:\documents and settings\Pierre\Application Data\m\shared\Crystal Caliburn 1.02 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\CtrlView 2.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\Cygnus Hex Editor 1.51 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Cyteg SpaceChecker 2.0.04.zip

c:\documents and settings\Pierre\Application Data\m\shared\Dark Sector v1.0 [RUSSIAN] No-DVD-Fixed StarForce Driver 32 bit only.zip

c:\documents and settings\Pierre\Application Data\m\shared\Data Becker XP optimal Einstellen v3.0 incl KeyGen GERMAN by PARADOX.zip

c:\documents and settings\Pierre\Application Data\m\shared\Data Village Art Collector 1.1 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\DataUndeleter 3.2 keygen.zip

c:\documents and settings\Pierre\Application Data\m\shared\Delta Force Land Warrior v1.00.17 by f2f.zip

c:\documents and settings\Pierre\Application Data\m\shared\Detour 1.5 for Mac.zip

c:\documents and settings\Pierre\Application Data\m\shared\DirWatcher Pro v2.3.176 Bilingual WinALL Incl Keygen by ViRiLiTY.zip

c:\documents and settings\Pierre\Application Data\m\shared\DP Killer 2000 v7 German.zip

c:\documents and settings\Pierre\Application Data\m\shared\DrDepth v3.1 for Pocket PC by TSRh.zip

c:\documents and settings\Pierre\Application Data\m\shared\DreamQuest Championship Five Hundred All-Stars v7.18.0.13 Fixed by TSRh.zip

c:\documents and settings\Pierre\Application Data\m\shared\DTM Data Editor 1.02.28.zip

c:\documents and settings\Pierre\Application Data\m\shared\Dundas Chart for Windows Forms Enterprise Edition v5.0 for Visual Studio 2005 Ke.zip

c:\documents and settings\Pierre\Application Data\m\shared\DVD Cloner IV 4 v4.30 build 918.zip

c:\documents and settings\Pierre\Application Data\m\shared\DVDIdle 2.12 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\dvdidle 3.62 cracked exe by REVENGE.zip

c:\documents and settings\Pierre\Application Data\m\shared\DVDPlayer 1.25 for Symbian.zip

c:\documents and settings\Pierre\Application Data\m\shared\dvdXsoft FLV Video Converter v1.30.zip

c:\documents and settings\Pierre\Application Data\m\shared\Easy Audio CD Burner 3.60.zip

c:\documents and settings\Pierre\Application Data\m\shared\Easy DWG-DXF to Image Converter v1.1.1 by Puke.zip

c:\documents and settings\Pierre\Application Data\m\shared\Easy File and Folder Protector v3.9 by HTBTeam.zip

c:\documents and settings\Pierre\Application Data\m\shared\eBay Fee Calculator 1.0 CrAcKed.zip

c:\documents and settings\Pierre\Application Data\m\shared\Echo On 1.01.zip

c:\documents and settings\Pierre\Application Data\m\shared\EffeTech 3.6 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Electric Pocket Ringo Mobile v1.0 for Pocket PC 2003.zip

c:\documents and settings\Pierre\Application Data\m\shared\Euchre 4.4 (English) (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Every-Occasion Bartender 1.02.zip

c:\documents and settings\Pierre\Application Data\m\shared\ExcelFIX 5.55 keygen.zip

c:\documents and settings\Pierre\Application Data\m\shared\EZ ASF iPod Converter 1.10.zip

c:\documents and settings\Pierre\Application Data\m\shared\eZee FrontDesk 5.2.zip

c:\documents and settings\Pierre\Application Data\m\shared\ezGroups 2.0.3.zip

c:\documents and settings\Pierre\Application Data\m\shared\FastScript 1.95.0 CrAcKed.zip

c:\documents and settings\Pierre\Application Data\m\shared\FileSplit 2.33 build 419 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Flight Sim Planner 98 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\FootBall v2.11 by LasH.zip

c:\documents and settings\Pierre\Application Data\m\shared\Fractal Ambrosia Screensaver 1.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\FrameMaker Plus SGML 6.0 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Fun Crazy Eights v1.05.1 by FFF.zip

c:\documents and settings\Pierre\Application Data\m\shared\Gamehouse QBeez 2 1.0 for Mac (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Gameloft Grey's Anatomy v1.0.5 Retail for SymbianOS S40v2 JAVA 128x160 by RLYEH.zip

c:\documents and settings\Pierre\Application Data\m\shared\GetPath Plugin 1.4 for Mac.zip

c:\documents and settings\Pierre\Application Data\m\shared\GetRight 5.2b WinALL Regged READ NFO by PARANOiA.zip

c:\documents and settings\Pierre\Application Data\m\shared\GIFlist 2.8.44.zip

c:\documents and settings\Pierre\Application Data\m\shared\GIRDAC PDF converter 3.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\Graph FAWM v1.1.zip

c:\documents and settings\Pierre\Application Data\m\shared\HappyIcon v2.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\HelpDesk CDCorporate for Access 4.001.zip

c:\documents and settings\Pierre\Application Data\m\shared\Hidden Camera v2.16 Russian WinALL Incl Keygen by BRD.zip

c:\documents and settings\Pierre\Application Data\m\shared\Home Brew Kit Master 1.4 keygen.zip

c:\documents and settings\Pierre\Application Data\m\shared\HTTP ZIP for IIS Server 1.1.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\i-Sound WMA MP3 Recorder Professional v6.9.2 by SND.zip

c:\documents and settings\Pierre\Application Data\m\shared\IdBatcher v1.3.0 by EMBRACE.zip

c:\documents and settings\Pierre\Application Data\m\shared\IE Controller 1.1.25 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\ImTOO MOV Converter v2.1.62.0412b by Lz0.zip

c:\documents and settings\Pierre\Application Data\m\shared\IncrediMail build 1609 Premium Gold Patch v1.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\InfiniD 4.5 for Mac.zip

c:\documents and settings\Pierre\Application Data\m\shared\InfoRapid Karteikasten 2.1 Beta 2.zip

c:\documents and settings\Pierre\Application Data\m\shared\Interactive LiveMosaics! 1.0 Build 12.zip

c:\documents and settings\Pierre\Application Data\m\shared\InterVideo WinDvd 6.0 B06.128C00.27369.06P000IHQS (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Inversible AntiVirus (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Izo Snake v1.0 Regged by UnderPl.zip

c:\documents and settings\Pierre\Application Data\m\shared\JAM Software TreeSize Professional v4.1.0.302 retail by FOSI.zip

c:\documents and settings\Pierre\Application Data\m\shared\JClass Field Bytecode 3.6j.zip

c:\documents and settings\Pierre\Application Data\m\shared\JetBrains TeamCity v2.0 by SHOCK.zip

c:\documents and settings\Pierre\Application Data\m\shared\JoeAlter Shave and a Haircut 4.0v11 for Maya 7 MAC OSX Incl Keygen by PARADOX.zip

c:\documents and settings\Pierre\Application Data\m\shared\JProfiler 3.1.2.zip

c:\documents and settings\Pierre\Application Data\m\shared\K-MP3 5.7.0.81 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Kalua Cocktails v1.22 WinAll Incl Keygenerator by TMG.zip

c:\documents and settings\Pierre\Application Data\m\shared\Kathleens Diet Planner 9.0 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Kodak Eastman Digital Sho Pro v2.0.0 for Adobe Photoshop for Windows XP by DVT.zip

c:\documents and settings\Pierre\Application Data\m\shared\Libos 1.11 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\LspCad v6.34 Pro by p1n0yak0.zip

c:\documents and settings\Pierre\Application Data\m\shared\Mach5 Mailer v2.56.zip

c:\documents and settings\Pierre\Application Data\m\shared\Magic 3GP-iPod-PSP Video Converter v8.0.8.24.zip

c:\documents and settings\Pierre\Application Data\m\shared\Magic Matching Color v1.1 by DBZ.zip

c:\documents and settings\Pierre\Application Data\m\shared\Magic Swf2Avi v2.01.zip

c:\documents and settings\Pierre\Application Data\m\shared\Magic Video Converter by PER.zip

c:\documents and settings\Pierre\Application Data\m\shared\Mah Jongg Wall 2.26 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Manage Your Contacts v3.9.zip

c:\documents and settings\Pierre\Application Data\m\shared\Map Designer Pro v1.52.zip

c:\documents and settings\Pierre\Application Data\m\shared\Mathe 1Plus1 v1.10.zip

c:\documents and settings\Pierre\Application Data\m\shared\MDaemon Pro 4.0.3 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\MED Text Editor v2.60.zip

c:\documents and settings\Pierre\Application Data\m\shared\MediaOne+ v3.3.zip

c:\documents and settings\Pierre\Application Data\m\shared\MixMatch Association 2.1 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Mobipocket Creator Publisher 4 x (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Morgan Multimedia MJPEG 32-bits codec 2.07 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Mountains Photo Screensaver 2.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\MP3 Audio Splitter Joiner 3.00 (crack).zip

c:\documents and settings\Pierre\Application Data\m\shared\MP3Mystic 1.08b8 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\MS Word Insert Lines In Multiple Files Software 7.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\MSDSOFT Empleados MSD Multiusuario v1.30 Cracked by ARN.zip

c:\documents and settings\Pierre\Application Data\m\shared\Multilizer VCL for C++ Builder 4.2.15 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\My Feast 1.0 for PalmOS (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\mySB 2.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\Need for Speed ProStreet v1.0 [GERMAN] +4 TRAINER.zip

c:\documents and settings\Pierre\Application Data\m\shared\Noiseware Professional Edition v2.1 build 2100.zip

c:\documents and settings\Pierre\Application Data\m\shared\offlineexplorerpro 3.0.1482 serial.zip

c:\documents and settings\Pierre\Application Data\m\shared\Outlook Express Backup v3.1.zip

c:\documents and settings\Pierre\Application Data\m\shared\Perl Scripting Tool 2.2.68.zip

c:\documents and settings\Pierre\Application Data\m\shared\Photo Slide Show v3.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\Pocket Stock Monitor v5.4 Retail for PocketPC CAB by RLYEH.zip

c:\documents and settings\Pierre\Application Data\m\shared\popcorn 1.65b 5 keygen.zip

c:\documents and settings\Pierre\Application Data\m\shared\Popup Rage 1.2.1 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Poser 4.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\PowerArchiver 2003.8.70.10.zip

c:\documents and settings\Pierre\Application Data\m\shared\Quarky And Quaysoos Turbo Science (1992) (Sierra Online) FULL!.zip

c:\documents and settings\Pierre\Application Data\m\shared\QuicKeys 3.5 for Mac.zip

c:\documents and settings\Pierre\Application Data\m\shared\RA Bursting Bubbles.zip

c:\documents and settings\Pierre\Application Data\m\shared\Rank Dummy! 1.41.zip

c:\documents and settings\Pierre\Application Data\m\shared\RCS ServerChecker v1.1nt.zip

c:\documents and settings\Pierre\Application Data\m\shared\Remote Files Server 2.4.0 CrAcKed.zip

c:\documents and settings\Pierre\Application Data\m\shared\Republic Commando [DEMO] +1 TRAINER.zip

c:\documents and settings\Pierre\Application Data\m\shared\RevealNet Oracle Administration Knowledge Base 2000.2.zip

c:\documents and settings\Pierre\Application Data\m\shared\RichAide 1.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\RinjaniSoft EZ Backup My Documents Pro v6.23 by UST.zip

c:\documents and settings\Pierre\Application Data\m\shared\River Past Video Slice 2.0.0 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Runtime Replicator 2.01.zip

c:\documents and settings\Pierre\Application Data\m\shared\SeaSick Periodic Table of the Elements 1.2.1.zip

c:\documents and settings\Pierre\Application Data\m\shared\Seekford NET Email Validation Wizard 3.0.3 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Series Sorter v2.0 by Core.zip

c:\documents and settings\Pierre\Application Data\m\shared\Set Machine v2.43A.zip

c:\documents and settings\Pierre\Application Data\m\shared\Sex Enigma Retail JAVA by RLYEH.zip

c:\documents and settings\Pierre\Application Data\m\shared\ShowMaker Professional 2.10.0.5.zip

c:\documents and settings\Pierre\Application Data\m\shared\SimpleSlideShow Manager 1.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\Sisulizer v1.1.27 Enterprise Edition Multilanguage Win2kXP2k3 Incl Keygen by CRD.zip

c:\documents and settings\Pierre\Application Data\m\shared\Site Snitch 1.2 Build 007 keygen.zip

c:\documents and settings\Pierre\Application Data\m\shared\SlySoft CloneCD v5.2.9.1.zip

c:\documents and settings\Pierre\Application Data\m\shared\SmartDirCopy v2.1.zip

c:\documents and settings\Pierre\Application Data\m\shared\Snowglobe 3D 1 (crack).zip

c:\documents and settings\Pierre\Application Data\m\shared\SolSuite 2004 v19.1.zip

c:\documents and settings\Pierre\Application Data\m\shared\Sothink Glanda 2005 2.4 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\SpyBoss Pro v4.2.2 Retail by AHCU.zip

c:\documents and settings\Pierre\Application Data\m\shared\star defender III 1.07 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Submit It 2000 v2.7 - v2.9 by FHCF.zip

c:\documents and settings\Pierre\Application Data\m\shared\Summary SP 2.3.8 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Super Sensitive Disk Scanner 98.zip

c:\documents and settings\Pierre\Application Data\m\shared\TDS-2 Trojan Defence Suite v2.7.4.zip

c:\documents and settings\Pierre\Application Data\m\shared\The Sims 2 Open for Buisness (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\TPV COMERCIOS v3.1.3.0 by Big BOSS.zip

c:\documents and settings\Pierre\Application Data\m\shared\Trend Micro Instant Messaging Security v1.0b2222 Win2003 by TMG.zip

c:\documents and settings\Pierre\Application Data\m\shared\Trojan Remover 4.7.8 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Understand for Fortran v1.4.386 HPUX Incl Keygen by Lz0.zip

c:\documents and settings\Pierre\Application Data\m\shared\Uru Ages Beyond Myst Walkthrough.zip

c:\documents and settings\Pierre\Application Data\m\shared\Verbose Text to Speech v1.13 by AT4RE.zip

c:\documents and settings\Pierre\Application Data\m\shared\Virus Striker Workstation Edition 3.06 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\VisioXP Pro.zip

c:\documents and settings\Pierre\Application Data\m\shared\Visual CertExam Suite v1.9.925.zip

c:\documents and settings\Pierre\Application Data\m\shared\Visual Route Personal and Server Edition 8.0f (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\VueScan 7.0.12 for Mac.zip

c:\documents and settings\Pierre\Application Data\m\shared\Wallpaper Timer 2.0.zip

c:\documents and settings\Pierre\Application Data\m\shared\Warcraft II Battle.net key.zip

c:\documents and settings\Pierre\Application Data\m\shared\WatchDog 2.0.9 (Serial).zip

c:\documents and settings\Pierre\Application Data\m\shared\Web Submitter 2000.zip

c:\documents and settings\Pierre\Application Data\m\shared\Widgit Communicate SymWriter v1.1.7190 by RECOiL.zip

c:\documents and settings\Pierre\Application Data\m\shared\Win ClipBoard Monitor (WinCBM) v2.0.676.zip

c:\documents and settings\Pierre\Application Data\m\shared\WinASO Registry Optimizer v3.0.9 Keygen Only by ViRiLiTY.zip

c:\documents and settings\Pierre\Application Data\m\shared\WinRAR v3.2 by Mr Kracker.zip

c:\documents and settings\Pierre\Application Data\m\shared\WinRAR v3.40 Beta 3.zip

c:\documents and settings\Pierre\Application Data\m\shared\winrescuexp1.08.29 regfilesnd.zip

c:\documents and settings\Pierre\Application Data\m\shared\WinScan 5.0.95.213.zip

c:\documents and settings\Pierre\Application Data\m\shared\WinStructor v1.01.zip

c:\documents and settings\Pierre\Application Data\m\shared\WV Runes v1.20 Retail for PocketPC by BLZPDA.zip

c:\documents and settings\Pierre\Application Data\m\shared\XnView v1.93.6 by FFF.zip

c:\documents and settings\Pierre\Application Data\m\shared\Yeah Write 1.7 patch.zip

c:\documents and settings\Pierre\Application Data\m\shared\Zalbum v3.30 Keygen Only by ORiON.zip

c:\documents and settings\Pierre\Application Data\m\shared\Zealot All Video Joiner v2.4.1 WinALL Keygen Only by BRD.zip

c:\documents and settings\Pierre\Application Data\m\shared\Zealot All Video Splitter v 1.5.6 by CAFE.zip

c:\documents and settings\Pierre\Application Data\m\shared\Zend Studio Client v4.0.2 by Lz0.zip

c:\documents and settings\Pierre\Application Data\m\shared\ZylGPSSimulator 1.33.zip

c:\documents and settings\Pierre\Application Data\m\srvlist.oct

c:\program files\SFR\Kit\9props.exe

c:\windows\mdelk.exe

c:\windows\system32\srosa2.sys

c:\windows\system32\wfsintwq.sys

c:\windows\wintems.exe

 

.

((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.

 

-------\Service_SROSA

-------\Legacy_SROSA

-------\Legacy_SK9OU0S

-------\Service_sK9Ou0s

 

 

((((((((((((((((((((((((((((( Fichiers créés du 2010-05-15 au 2010-06-15 ))))))))))))))))))))))))))))))))))))

.

 

2010-06-12 23:59 . 2010-06-15 18:19 -------- d--h--w- c:\documents and settings\Pierre\Application Data\drivers

2010-06-12 23:56 . 2010-06-12 23:56 -------- d-----w- c:\program files\AutocompletePro

2010-06-12 23:56 . 2010-06-12 23:57 -------- d-----w- c:\documents and settings\Pierre\Local Settings\Application Data\Oryte_Games_1.9

2010-06-12 23:56 . 2010-06-12 23:56 -------- d-----w- c:\program files\Oryte_Games_1.9

2010-06-09 17:16 . 2010-05-06 10:33 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll

2010-06-05 11:54 . 2010-06-05 11:54 -------- d-----w- c:\program files\Secunia

2010-06-03 20:42 . 2010-06-03 20:42 -------- d-----w- c:\program files\Auslogics

2010-06-02 14:12 . 2010-06-02 14:12 -------- d-----w- c:\windows\system32\config\systemprofile\Application Data\Application Updater

2010-06-02 14:11 . 2001-10-28 15:42 116224 ----a-w- c:\windows\system32\pdfcmnnt.dll

2010-06-02 14:11 . 2010-06-02 14:12 -------- d-----w- c:\program files\PDFCreator

2010-06-02 14:11 . 1998-07-13 00:08 119568 ----a-w- c:\windows\system32\VB6FR.DLL

2010-06-02 14:11 . 1998-07-13 00:08 59904 ----a-w- c:\windows\system32\MSCC2FR.DLL

2010-06-02 14:11 . 1998-07-13 00:08 141312 ----a-w- c:\windows\system32\MSCMCFR.DLL

2010-06-02 14:11 . 1998-07-05 23:00 23552 ----a-w- c:\windows\system32\MSMPIDE.DLL

2010-06-02 12:35 . 2009-05-29 21:37 205824 ----a-w- c:\windows\system32\xvidvfw.dll

2010-06-02 12:35 . 2009-05-29 21:31 881664 ----a-w- c:\windows\system32\xvidcore.dll

2010-06-02 12:35 . 2004-01-25 16:18 217088 ----a-w- c:\windows\system32\yv12vfw.dll

2010-06-02 12:35 . 2010-05-27 08:00 108032 ----a-w- c:\windows\system32\ff_vfw.dll

2010-05-24 17:48 . 2010-05-24 17:48 664 ----a-w- c:\windows\system32\d3d9caps.dat

2010-05-23 12:52 . 2008-12-13 13:47 40496 ----a-w- c:\windows\system32\drivers\hotcore3.sys

2010-05-23 12:51 . 2010-05-23 12:51 -------- d-----w- c:\program files\Paragon Software

 

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-06-14 21:18 . 2010-03-30 06:38 554320 ----a-w- c:\documents and settings\All Users\Application Data\Mozilla Firefox\uninstall\helper.exe

2010-06-14 21:04 . 2009-12-10 20:36 -------- d-----w- c:\documents and settings\Pierre\Application Data\Media Player Classic

2010-06-14 20:35 . 2009-12-12 11:04 -------- d-----w- c:\program files\ZebHelpProcess

2010-06-13 14:41 . 2010-02-06 16:20 -------- d-----w- c:\documents and settings\Pierre\Application Data\vlc

2010-06-12 21:11 . 2010-06-12 21:11 664 ----a-w- c:\documents and settings\Marie\Local Settings\Application Data\d3d9caps.tmp

2010-06-10 18:15 . 2009-11-11 16:48 -------- d-----w- c:\documents and settings\Pierre\Application Data\dvdcss

2010-06-09 17:30 . 2003-07-22 16:49 493964 ----a-w- c:\windows\system32\perfh00C.dat

2010-06-09 17:30 . 2003-07-22 16:49 77758 ----a-w- c:\windows\system32\perfc00C.dat

2010-06-06 18:58 . 2009-11-15 08:53 -------- d-----w- c:\program files\Garmin

2010-06-04 17:58 . 2010-03-23 17:32 -------- d-----w- c:\program files\K-Lite Codec Pack

2010-06-01 17:46 . 2010-03-29 20:09 -------- d-----w- c:\program files\Opera

2010-05-29 15:57 . 2009-11-08 14:55 -------- d-----w- c:\program files\FaxTools

2010-05-28 11:04 . 2009-06-17 12:20 14896 ----a-w- c:\windows\system32\drivers\psi_mf.sys

2010-05-27 17:53 . 2010-05-27 17:53 503808 ----a-w- c:\documents and settings\Marie\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1b667c82-n\msvcp71.dll

2010-05-27 17:53 . 2010-05-27 17:53 499712 ----a-w- c:\documents and settings\Marie\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1b667c82-n\jmc.dll

2010-05-27 17:53 . 2010-05-27 17:53 348160 ----a-w- c:\documents and settings\Marie\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1b667c82-n\msvcr71.dll

2010-05-27 17:53 . 2010-05-27 17:53 61440 ----a-w- c:\documents and settings\Marie\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-1a7017c0-n\decora-sse.dll

2010-05-27 17:53 . 2010-05-27 17:53 12800 ----a-w- c:\documents and settings\Marie\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-1a7017c0-n\decora-d3d.dll

2010-05-26 17:45 . 2009-11-10 22:30 -------- d-----w- c:\program files\CCleaner

2010-05-24 17:48 . 2010-05-24 17:48 61440 ----a-w- c:\documents and settings\Pierre\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-7f9e593c-n\decora-sse.dll

2010-05-24 17:48 . 2010-05-24 17:48 12800 ----a-w- c:\documents and settings\Pierre\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-7f9e593c-n\decora-d3d.dll

2010-05-24 17:48 . 2010-05-24 17:48 503808 ----a-w- c:\documents and settings\Pierre\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-3b234a1c-n\msvcp71.dll

2010-05-24 17:48 . 2010-05-24 17:48 499712 ----a-w- c:\documents and settings\Pierre\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-3b234a1c-n\jmc.dll

2010-05-24 17:48 . 2010-05-24 17:48 348160 ----a-w- c:\documents and settings\Pierre\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-3b234a1c-n\msvcr71.dll

2010-05-17 17:48 . 2010-05-17 17:48 503808 ----a-w- c:\documents and settings\Pierre\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-5ef2f403-n\msvcp71.dll

2010-05-17 17:48 . 2010-05-17 17:48 499712 ----a-w- c:\documents and settings\Pierre\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-5ef2f403-n\jmc.dll

2010-05-17 17:48 . 2010-05-17 17:48 348160 ----a-w- c:\documents and settings\Pierre\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-5ef2f403-n\msvcr71.dll

2010-05-17 17:48 . 2010-05-17 17:48 12800 ----a-w- c:\documents and settings\Pierre\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-37fa59c5-n\decora-d3d.dll

2010-05-17 17:48 . 2010-05-17 17:48 61440 ----a-w- c:\documents and settings\Pierre\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-37fa59c5-n\decora-sse.dll

2010-05-10 21:46 . 2010-03-14 15:04 -------- d-----w- c:\documents and settings\Marie\Application Data\vlc

2010-05-10 21:45 . 2010-05-10 21:03 -------- d-----w- c:\documents and settings\Marie\Application Data\dvdcss

2010-05-08 09:08 . 2009-11-08 14:30 -------- d--h--w- c:\program files\InstallShield Installation Information

2010-05-08 08:49 . 2009-12-09 16:24 8179932 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative MediaSource Plugin for MiniDisc 1.00.58__\CMS_MDC_PCAPP_LB_1_00_58.exe

2010-05-08 08:48 . 2010-05-08 08:46 12937613 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative MediaSource Go! 3.10.15__\CMS_GO_PCAPP_LB_3_10_15.exe

2010-05-08 08:46 . 2010-05-08 08:40 54743966 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative MediaSource Player_Organizer 3.30.21__\CMS_PCAPP_LB_3_30_21.exe

2010-05-06 17:53 . 2010-04-22 10:53 664 ----a-w- c:\documents and settings\Marie\Local Settings\Application Data\d3d9caps.dat

2010-05-06 12:28 . 2010-03-30 06:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Mozilla Firefox

2010-05-06 10:33 . 2006-06-23 12:28 916480 ----a-w- c:\windows\system32\wininet.dll

2010-05-04 20:49 . 2009-11-11 17:13 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2010-05-04 13:56 . 2010-05-04 13:56 -------- d-----w- c:\documents and settings\Marie\Application Data\ZoomBrowser EX

2010-05-04 13:49 . 2010-05-04 13:49 -------- d-----w- c:\documents and settings\Marie\Application Data\CANON INC

2010-05-02 08:08 . 2003-07-22 17:01 1851392 ----a-w- c:\windows\system32\win32k.sys

2010-05-01 13:59 . 2009-11-15 21:34 30440 ----a-w- c:\documents and settings\Marie\Local Settings\Application Data\GDIPFONTCACHEV1.DAT

2010-04-30 17:31 . 2009-11-09 21:30 30440 ----a-w- c:\documents and settings\Pierre\Local Settings\Application Data\GDIPFONTCACHEV1.DAT

2010-04-29 13:39 . 2009-11-11 17:13 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2010-04-29 13:39 . 2009-11-11 17:13 20952 ----a-w- c:\windows\system32\drivers\mbam.sys

2010-04-28 20:14 . 2010-04-28 20:14 49 ----a-w- c:\documents and settings\Pierre\Application Data\MapReverseConverter.dat

2010-04-28 18:57 . 2010-04-28 18:55 -------- d-----w- c:\program files\iTunes

2010-04-28 18:56 . 2010-04-28 18:56 -------- d-----w- c:\program files\iPod

2010-04-28 18:55 . 2009-11-14 12:46 -------- d-----w- c:\program files\Fichiers communs\Apple

2010-04-28 18:47 . 2010-04-28 18:47 -------- d-----w- c:\program files\Bonjour

2010-04-28 18:36 . 2010-04-28 18:36 73000 ----a-w- c:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 9.1.1.11\SetupAdmin.exe

2010-04-27 20:31 . 2010-04-27 20:31 -------- d-----w- c:\program files\Driver-Soft

2010-04-27 19:19 . 2010-04-27 19:19 388096 ----a-r- c:\documents and settings\Pierre\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2010-04-24 16:14 . 2010-04-24 16:14 -------- d-----w- c:\program files\EasyPrediction

2010-04-23 20:10 . 2010-02-05 16:55 -------- d-----w- c:\program files\Recuva

2010-04-20 06:56 . 2010-04-20 06:56 61440 ----a-w- c:\documents and settings\Marie\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-5d6c8308-n\decora-sse.dll

2010-04-20 06:56 . 2010-04-20 06:56 12800 ----a-w- c:\documents and settings\Marie\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-5d6c8308-n\decora-d3d.dll

2010-04-20 06:56 . 2010-04-20 06:56 503808 ----a-w- c:\documents and settings\Marie\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-5b0ed343-n\msvcp71.dll

2010-04-20 06:56 . 2010-04-20 06:56 499712 ----a-w- c:\documents and settings\Marie\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-5b0ed343-n\jmc.dll

2010-04-20 06:56 . 2010-04-20 06:56 348160 ----a-w- c:\documents and settings\Marie\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-5b0ed343-n\msvcr71.dll

2010-04-20 05:30 . 2003-07-22 16:30 285696 ----a-w- c:\windows\system32\atmfd.dll

2010-04-20 02:13 . 2010-02-26 16:10 29560 ----a-w- c:\windows\system32\drivers\OAnet.sys

2010-04-19 20:07 . 2010-04-19 20:07 411368 ----a-w- c:\windows\system32\deployJava1.dll

2010-04-19 19:25 . 2009-11-08 15:02 -------- d-----w- c:\program files\Creative

2010-04-19 19:01 . 2010-04-19 18:28 3364451 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative MediaSource - NOMAD Pack for Creative NOMAD Jukebox_Jukebox C (version 1.01.04)__\CMS_JBT1Plugins_1_01_04.exe

2010-04-19 18:59 . 2010-04-19 17:52 12907880 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative WaveStudio 7.12.00__\WAVESTD_PCAPP_LB_7_12_00.exe

2010-04-19 18:41 . 2010-04-19 18:41 -------- d-----w- c:\program files\Fichiers communs\Creative Labs Shared

2010-04-19 18:41 . 2010-04-18 18:44 109144 ----a-w- c:\windows\system32\OpenAL32.dll

2010-04-19 18:41 . 2009-12-09 16:11 445016 ----a-w- c:\windows\system32\wrap_oal.dll

2010-04-19 18:37 . 2010-04-19 08:30 288 ----a-w- c:\windows\system32\DVCStateBkp-{00000002-00000000-00000001-00001102-00000004-10031102}.dat

2010-04-19 18:34 . 2010-04-19 18:33 -------- d--h--w- c:\program files\Creative Installation Information

2010-04-19 18:33 . 2010-04-19 18:33 -------- d-----w- c:\program files\Fichiers communs\Creative

2010-04-19 18:28 . 2010-04-19 18:01 39451456 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative Sound Blaster Audigy series driver 2.18.0011__\SBAX_PCDRV_LB_2_18_0011.exe

2010-04-19 18:16 . 2009-11-22 17:38 -------- d-----w- c:\program files\Java

2010-04-19 17:52 . 2010-04-19 17:29 37634288 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative MediaSource 5 Player_Organizer 5.26.02__\CMS5_PCAPP_LB_5_26_02.exe

2010-04-18 18:22 . 2009-11-08 15:07 -------- d-----w- c:\documents and settings\Pierre\Application Data\Creative

2010-04-18 13:14 . 2010-04-18 12:57 42380584 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative Sound Blaster Audigy series driver 2.18.0017__\SBAX_PCDRV_LB_2_18_0017.exe

2010-04-08 11:20 . 2010-04-08 11:20 91424 ----a-w- c:\windows\system32\dnssd.dll

2010-04-08 11:20 . 2010-04-08 11:20 107808 ----a-w- c:\windows\system32\dns-sd.exe

2010-03-18 18:50 . 2010-03-18 18:50 15960 ------w- c:\windows\system32\drivers\PFModNT.sys

2010-03-18 18:50 . 2010-03-18 18:50 189528 ----a-w- c:\windows\system32\drivers\haP17v2k.sys

2010-03-18 18:50 . 2010-03-18 18:50 162904 ----a-w- c:\windows\system32\drivers\haP16v2k.sys

2010-03-18 18:49 . 2010-03-18 18:49 798808 ----a-w- c:\windows\system32\drivers\ha10kx2k.sys

2010-03-18 18:45 . 2010-03-18 18:45 92760 ----a-w- c:\windows\system32\drivers\emupia2k.sys

2010-03-18 18:45 . 2010-03-18 18:45 157272 ----a-w- c:\windows\system32\drivers\ctsfm2k.sys

2010-03-18 18:45 . 2010-03-18 18:45 14424 ----a-w- c:\windows\system32\drivers\ctprxy2k.sys

2010-03-18 18:45 . 2010-03-18 18:45 127576 ----a-w- c:\windows\system32\drivers\ctoss2k.sys

2010-03-18 18:41 . 2010-03-18 18:41 1372888 ----a-w- c:\windows\system32\drivers\CTMMFILT.SYS

2010-03-18 18:40 . 2010-03-18 18:40 18904 ----a-w- c:\windows\system32\drivers\CTGAME.SYS

2010-03-18 18:40 . 2010-03-18 18:40 347144 ----a-w- c:\windows\system32\drivers\ctdvda2k.sys

2010-03-18 18:40 . 2010-03-18 18:40 528472 ----a-w- c:\windows\system32\drivers\ctaud2k.sys

2010-03-18 18:40 . 2010-03-18 18:40 511064 ----a-w- c:\windows\system32\drivers\ctac32k.sys

2010-03-18 18:40 . 2010-03-18 18:40 1366488 ----a-w- c:\windows\system32\drivers\CT0531FL.SYS

2010-03-18 18:39 . 2010-03-18 18:39 100952 ----a-w- c:\windows\system32\drivers\CTERFXFX.sys

2010-03-18 18:39 . 2010-03-18 18:39 566360 ----a-w- c:\windows\system32\drivers\CTSBLFX.sys

2010-03-18 18:39 . 2010-03-18 18:39 555096 ----a-w- c:\windows\system32\drivers\CTAUDFX.sys

2010-03-18 18:39 . 2010-03-18 18:39 99416 ----a-w- c:\windows\system32\drivers\COMMONFX.sys

2010-03-18 17:19 . 2010-03-18 17:19 43520 ----a-w- c:\windows\system32\CTBurst.dll

2010-03-18 17:19 . 2010-03-18 17:19 11776 ----a-w- c:\windows\system32\inres.dll

.

 

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

REGEDIT4

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]

"{e7f88e02-0c78-48a1-86d2-82d8865de2df}"= "c:\program files\Oryte_Games_1.9\tbOryt.dll" [2010-06-03 2736736]

 

[HKEY_CLASSES_ROOT\clsid\{e7f88e02-0c78-48a1-86d2-82d8865de2df}]

 

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{e7f88e02-0c78-48a1-86d2-82d8865de2df}]

2010-06-03 16:24 2736736 ----a-w- c:\program files\Oryte_Games_1.9\tbOryt.dll

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

"{e7f88e02-0c78-48a1-86d2-82d8865de2df}"= "c:\program files\Oryte_Games_1.9\tbOryt.dll" [2010-06-03 2736736]

 

[HKEY_CLASSES_ROOT\clsid\{e7f88e02-0c78-48a1-86d2-82d8865de2df}]

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]

"{E7F88E02-0C78-48A1-86D2-82D8865DE2DF}"= "c:\program files\Oryte_Games_1.9\tbOryt.dll" [2010-06-03 2736736]

 

[HKEY_CLASSES_ROOT\clsid\{e7f88e02-0c78-48a1-86d2-82d8865de2df}]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-06-15 209153]

"@OnlineArmor GUI"="c:\program files\Tall Emu\Online Armor\OAui.exe" [2010-06-14 6678008]

"zBrowser Launcher"="c:\program files\Logitech\iTouch\iTouch.exe" [2004-03-18 892928]

"SunJavaUpdateSched"="c:\program files\Fichiers communs\Java\Java Update\jusched.exe" [2010-02-18 248040]

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech Desktop Messenger.lnk]

path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk

backup=c:\windows\pss\Logitech Desktop Messenger.lnkCommon Startup

 

[HKLM\~\startupfolder\C:^Documents and Settings^Pierre^Menu Démarrer^Programmes^Démarrage^Secunia PSI.lnk]

path=c:\documents and settings\Pierre\Menu Démarrer\Programmes\Démarrage\Secunia PSI.lnk

backup=c:\windows\pss\Secunia PSI.lnkStartup

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

2010-03-24 18:17 952768 ----a-w- c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

2010-04-04 05:42 36272 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AOL Fast Start]

2007-06-21 11:44 50480 ----a-w- c:\program files\AOL 9.0 VR\aol.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AOLDialer]

2007-06-21 10:01 70952 ------r- c:\program files\Fichiers communs\AOL\ACS\AOLDial.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AsioReg]

2010-03-18 17:04 46592 ----a-w- c:\windows\system32\ctasio.dll

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]

2005-12-16 11:57 94208 ----a-w- c:\program files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative Detector]

2004-12-02 16:23 102400 ------w- c:\program files\Creative\MediaSource\Detector\CTDetect.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative MediaSource Go]

2004-11-30 09:00 135168 ------w- c:\program files\Creative\MediaSource\Go\CTCMSGo.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTDVDDet]

2003-06-18 00:00 45056 ------w- c:\program files\Creative\SBAudigy2\DVDAudio\CTDVDDET.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]

2008-04-14 02:33 15360 ----a-w- c:\windows\system32\ctfmon.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTHelper]

2010-03-18 17:17 19456 ----a-w- c:\windows\system32\CtHelper.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSysVol]

2002-10-29 07:18 49152 ----a-w- c:\program files\Creative\SBAudigy2\Surround Mixer\CTSysVol.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dell AIO Printer A920]

2003-05-12 14:02 270336 ----a-w- c:\program files\Dell AIO Printer A920\dlbkbmgr.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HostManager]

2006-09-26 00:52 50736 ----a-w- c:\program files\Fichiers communs\AOL\1257938233\ee\aolsoftware.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]

2004-04-17 11:41 196608 ----a-w- c:\progra~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

2010-04-24 15:54 142120 ----a-w- c:\program files\iTunes\iTunesHelper.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LDM]

2009-11-08 14:34 16384 ----a-w- c:\program files\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Utility]

2003-12-11 08:50 20992 ------w- c:\windows\LOGI_MWX.EXE

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechSoftwareUpdate]

2005-06-08 13:44 196608 ----a-w- c:\program files\Logitech\Video\ManifestEngine.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoRepair]

2005-06-08 14:24 458752 ----a-w- c:\program files\Logitech\Video\ISStart.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoTray]

2005-06-08 14:14 217088 ----a-w- c:\program files\Logitech\Video\LogiTray.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]

2005-07-19 16:32 221184 ----a-w- c:\windows\system32\LVCOMSX.EXE

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSConfig]

2008-04-14 02:34 172544 ----a-w- c:\windows\PCHealth\HelpCtr\Binaries\msconfig.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]

2009-07-26 15:44 3883856 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]

2001-07-09 09:50 155648 ----a-w- c:\windows\system32\NeroCheck.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF4 Registry Controller]

2006-08-22 18:09 40960 ----a-w- c:\program files\ScanSoft\PDF Professional 4.0\RegistryController.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

2010-03-17 19:53 421888 ----a-w- c:\program files\QuickTime\QTTask.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]

2004-10-14 13:42 1404928 ----a-w- c:\program files\Analog Devices\Core\smax4pnp.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]

2003-09-29 23:14 155648 ----a-r- c:\program files\Fichiers communs\ScanSoft Shared\SSBkgdUpdate\SSBkgdUpdate.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]

2010-02-10 22:32 61440 ----a-w- c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

2010-02-18 09:43 248040 ----a-w- c:\program files\Fichiers communs\Java\Java Update\jusched.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\zBrowser Launcher]

2004-03-18 07:33 892928 ----a-w- c:\program files\Logitech\iTouch\iTouch.exe

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"c:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\backWeb-8876480.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"c:\\Program Files\\CCleaner\\CCleaner.exe"=

"c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=

"c:\\Program Files\\SFR\\Kit\\9mail.exe"=

"c:\\Program Files\\Avira\\AntiVir Desktop\\avcenter.exe"=

"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=

"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=

"c:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLacsd.exe"=

"c:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe"=

"c:\\Program Files\\Fichiers communs\\AOL\\1257938233\\ee\\aolsoftware.exe"=

"c:\\Program Files\\Fichiers communs\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe"=

"c:\\Program Files\\Fichiers communs\\AOL\\Loader\\aolload.exe"=

"c:\\Program Files\\Fichiers communs\\AOL\\System Information\\sinf.exe"=

"c:\\Program Files\\Opera\\opera.exe"=

"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=

"c:\\Program Files\\iTunes\\iTunes.exe"=

"c:\\Program Files\\AOL 9.0 VR\\waol.exe"=

 

R1 OAnet;OAnet;c:\windows\system32\drivers\OAnet.sys [26/02/2010 18:10 29560]

R2 OAcat;Online Armor Helper Service;c:\program files\Tall Emu\Online Armor\oacat.exe [26/02/2010 18:10 1284600]

R3 COMMONFX.SYS;COMMONFX.SYS;c:\windows\system32\drivers\COMMONFX.sys [18/03/2010 20:39 99416]

R3 CTAUDFX.SYS;CTAUDFX.SYS;c:\windows\system32\drivers\CTAUDFX.sys [18/03/2010 20:39 555096]

R3 CTSBLFX.SYS;CTSBLFX.SYS;c:\windows\system32\drivers\CTSBLFX.sys [18/03/2010 20:39 566360]

S1 OADevice;OADriver;\??\c:\windows\system32\drivers\OADriver.sys --> c:\windows\system32\drivers\OADriver.sys [?]

S1 OAmon;OAmon;\??\c:\windows\system32\drivers\OAmon.sys --> c:\windows\system32\drivers\OAmon.sys [?]

S2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [10/11/2009 23:57 108289]

S3 COMMONFX;COMMONFX;c:\windows\system32\drivers\COMMONFX.sys [18/03/2010 20:39 99416]

S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\Fichiers communs\Creative Labs Shared\Service\CTAELicensing.exe [19/04/2010 20:41 79360]

S3 CTAUDFX;CTAUDFX;c:\windows\system32\drivers\CTAUDFX.sys [18/03/2010 20:39 555096]

S3 CTERFXFX.SYS;CTERFXFX.SYS;c:\windows\system32\drivers\CTERFXFX.sys [18/03/2010 20:39 100952]

S3 CTERFXFX;CTERFXFX;c:\windows\system32\drivers\CTERFXFX.sys [18/03/2010 20:39 100952]

S3 CTSBLFX;CTSBLFX;c:\windows\system32\drivers\CTSBLFX.sys [18/03/2010 20:39 566360]

S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [11/11/2009 19:13 38224]

S3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [17/06/2009 14:20 14896]

S4 SvcOnlineArmor;Online Armor;c:\program files\Tall Emu\Online Armor\oasrv.exe [26/02/2010 18:10 3364856]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

getPlusHelper REG_MULTI_SZ getPlusHelper

.

Contenu du dossier 'Tâches planifiées'

 

2010-06-02 c:\windows\Tasks\AppleSoftwareUpdate.job

- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

 

2010-06-14 c:\windows\Tasks\Auslogics Boost Speed Disk Defrag Console Defragmentation.job

- c:\program files\Auslogics\Auslogics Disk Defrag\cdefrag.exe [2010-06-03 11:27]

.

.

------- Examen supplémentaire -------

.

uStart Page = about:blank

uInternet Connection Wizard,ShellNext = iexplore

uInternet Settings,ProxyOverride = localhost;*.local

IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

IE: Lookup on Merriam Webster

IE: Lookup on Wikipedia

DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/2.9.2.0/GarminAxControl.CAB

DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} - hxxp://www.logitech.com/devicedetector/plugins/LogitechDeviceDetection32.cab

DPF: {6F6FDB9E-5072-498C-BCB0-2B7F00C49EE7} - hxxp://support.euro.dell.com/systemprofiler/DellSystemLite.CAB

.

- - - - ORPHELINS SUPPRIMES - - - -

 

WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)

WebBrowser-{B2E293EE-FD7E-4C71-A714-5F4750D8D7B7} - (no file)

HKCU-Run-Connexion SFR 9props.exe - c:\program files\SFR\Kit\9props.exe

HKCU-Run-flec003.exe - c:\documents and settings\Pierre\Application Data\hidires\flec003.exe

ShellExecuteHooks-{4F07DA45-8170-4859-9B5F-037EF2970034} - c:\progra~1\TALLEM~1\ONLINE~1\oaevent.dll

MSConfigStartUp-AOLSAV - c:\progra~1\TECHCI~1\AOLSAV\AOLAgent.exe

MSConfigStartUp-ATIPTA - c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe

MSConfigStartUp-CTXFIREG - CTxfiReg.exe

MSConfigStartUp-DriverMax - c:\program files\Innovative Solutions\DriverMax\devices.exe

MSConfigStartUp-DriverMax_RESTART - c:\program files\Innovative Solutions\DriverMax\devices.exe

MSConfigStartUp-flec003 - c:\documents and settings\Pierre\Application Data\hidires\flec003.exe

MSConfigStartUp-PRONoMgr - c:\program files\Intel\NCS\PROSet\PRONoMgr.exe

MSConfigStartUp-UniblueRegistryBooster - c:\program files\Uniblue\RegistryBooster\launcher.exe

MSConfigStartUp-winlogon - c:\docume~1\Pierre\LOCALS~1\Temp\setup_m.exe

 

 

 

**************************************************************************

 

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2010-06-15 20:24

Windows 5.1.2600 Service Pack 3 NTFS

 

Recherche de processus cachés ...

 

Recherche d'éléments en démarrage automatique cachés ...

 

Recherche de fichiers cachés ...

 

Scan terminé avec succès

Fichiers cachés: 0

 

**************************************************************************

.

--------------------- CLES DE REGISTRE BLOQUEES ---------------------

 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe,-101"

 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]

"Enabled"=dword:00000001

 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]

@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe"

 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

 

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]

@Denied: (A 2) (Everyone)

@="IFlashBroker4"

 

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

 

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

 

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\x2æwÿÿÿÿ_åwÿcÑw*]

"C040110900063D11C8EF10054038389C"="C?\\WINDOWS\\System32\\FM20ENU.DLL"

.

--------------------- DLLs chargées dans les processus actifs ---------------------

 

- - - - - - - > 'winlogon.exe'(544)

c:\windows\system32\Ati2evxx.dll

 

- - - - - - - > 'explorer.exe'(2140)

c:\program files\Logitech\iTouch\iTchHk.dll

c:\program files\Fichiers communs\Logitech\Scrolling\LgMsgHk.dll

c:\windows\system32\eappprxy.dll

c:\windows\system32\webcheck.dll

c:\windows\system32\WPDShServiceObj.dll

c:\windows\system32\PortableDeviceTypes.dll

c:\windows\system32\PortableDeviceApi.dll

.

------------------------ Autres processus actifs ------------------------

.

c:\windows\system32\LEXBCES.EXE

c:\windows\system32\LEXPPS.EXE

c:\program files\Creative\Shared Files\CTAudSvc.exe

c:\progra~1\FICHIE~1\AOL\ACS\AOLacsd.exe

c:\program files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe

c:\program files\Bonjour\mDNSResponder.exe

c:\windows\System32\dllhost.exe

c:\windows\System32\CTsvcCDA.exe

c:\windows\wanmpsvc.exe

c:\windows\System32\MsPMSPSv.exe

.

**************************************************************************

.

Heure de fin: 2010-06-15 20:31:14 - La machine a redémarré

ComboFix-quarantined-files.txt 2010-06-15 18:31

 

Avant-CF: 227 731 312 640 octets libres

Après-CF: 228 308 369 408 octets libres

 

- - End Of File - - 348F16C7C96A393A6A4A66885374B434

 

Voilà, pour le moment, je ne touche à rien en attendant tes instructions.

 

Bonne soirée !

T57

Modifié le 15 juin 2010 par Tonton57

[Mark]

Bonsoir Tonton,

 

Bien joué

 

Bagle me semble mort ; beau travail de ComboFix. Tu peux utiliser la machine, mais il y aura quelques dysfonctionnements que nous allons corriger ensemble (rien de grave, juste agaçant) ; par exemple, AntiVir et Online Armor peuvent fonctionner, mais juste partiellement alors il faudra les réinstaller - mais pas tout de suite.

 

Bagle fait beaucoup de dégâts (réparables), alors il nous reste du boulot. Je n'ai que quelques minutes alors je te fais faire une chose maintenant et je regarderai les rapports en profondeur un peu plus tard.

 

Bagle infecte tous les fichiers .zip présents sur les machines, alors si tu en as des légitimes et précieux, il faut regarder ça tout de suite avant de remettre un antivirus tout neuf, car celui-ci pourrait détruire les .zip sans savoir les désinfecter. C'est tout simple pour vérifier :

===

 

Télécharge Zip_Scan (par Eric_71) du lien suivant et sauvegarde-le sur ton Bureau :

http://eric71.geekstogo.com/beta/ZSc.exe

• Lance l'outil ZSc.exe par double-clic
  
• Clique maintenant sur le bouton "Scan", au bas à gauche
  
• Zip_Scan va maintenant rechercher les fichiers .zip infectés, spécifiques à cette infection ;
  
• Lorsque l'analyse sera complétée, un rapport apparaîtra à l'écran ; ce rapport est également sauvegardé sur ton Bureau (scan.txt)
  
• Copie/colle le contenu intégral de ce rapport ici, dans ta réponse.
  
• Tu dois maintenant fermer l'outil en cliquant sur le bouton qui se trouve au bas, à droite (le petit bonhomme).
  
• Ne clique surtout pas sur "Disinfect" avant d'en être avisé, au cas où un faux positif serait détecté lors de l'analyse.
  

 

S'il y a des fichiers .zip à nettoyer, on le fera lors de la prochaine étape et ensuite on te remettra un AntiVir et un Online Armor tout neufs. Sache aussi que Bagle a ciblé aléatoirement et détruit l'exécutable du Kit de connexion neufbox (9props.exe) alors si tu t'en sers, il faudra désinstaller puis réinstaller le Kit.

 

J'attends donc le rapport de Zip_Scan

 

 

@++

 

Mark

[Tonton]

Re,

 

Ci-dessous le rapport de Zip_Scan demandé :

 

 

-- Report --

.

.

-- EOF --

 

Merci - @+,

T57

[Mark]

C'est bon, tu peux supprimer l'outil et son rapport

 

Maintenant tu peux désinstaller AntiVir et Online Armor (il le faut...) et réinstaller des copies fraîches. Scanne ensuite la machine avec AntiVir et colle-moi le rapport ici, s'il te plaît.

 

Je dois filer et ne serai de retour que très (très) tard, alors je regarderai tout ça et tu auras la suite demain. Le pire est derrière toi, alors pas de soucis à utiliser la machine - prudemment

 

Juste une 'tite question, pour satisfaire ma curiosité seulement : AntiVir était désactivé lors du téléchargement du fichier qui t'a donné Bagle ? Je demande car, en principe, il aurait dû être intercepté si AntiVir avait été actif...

 

 

@++

 

Mark

[Tonton]

1. Désinstallation et réinstallation Antivir et Online Armor réalisées avec succès.

 

2. Rapport Antivir :

 

Avira AntiVir Personal

Date de création du fichier de rapport : mardi 15 juin 2010 22:30

 

La recherche porte sur 2217596 souches de virus.

 

Détenteur de la licence : Avira AntiVir Personal - FREE Antivirus

Numéro de série : 0000149996-ADJIE-0000001

Plateforme : Windows XP

Version de Windows : (Service Pack 3) [5.1.2600]

Mode Boot : Démarré normalement

Identifiant : SYSTEM

Nom de l'ordinateur : SCH-HOUSE

 

Informations de version :

BUILD.DAT : 9.0.0.75 21698 Bytes 22/01/2010 23:14:00

AVSCAN.EXE : 9.0.3.10 466689 Bytes 15/06/2010 20:05:25

AVSCAN.DLL : 9.0.3.0 49409 Bytes 03/03/2009 09:21:02

LUKE.DLL : 9.0.3.2 209665 Bytes 20/02/2009 10:35:11

LUKERES.DLL : 9.0.2.0 13569 Bytes 03/03/2009 09:21:31

VBASE000.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 20:05:24

VBASE001.VDF : 7.10.1.0 1372672 Bytes 19/11/2009 20:05:24

VBASE002.VDF : 7.10.3.1 3143680 Bytes 20/01/2010 20:05:24

VBASE003.VDF : 7.10.3.75 996864 Bytes 26/01/2010 20:05:24

VBASE004.VDF : 7.10.4.203 1579008 Bytes 05/03/2010 20:05:24

VBASE005.VDF : 7.10.6.82 2494464 Bytes 15/04/2010 20:05:24

VBASE006.VDF : 7.10.7.218 2294784 Bytes 02/06/2010 20:05:24

VBASE007.VDF : 7.10.7.219 2048 Bytes 02/06/2010 20:05:24

VBASE008.VDF : 7.10.7.220 2048 Bytes 02/06/2010 20:05:24

VBASE009.VDF : 7.10.7.221 2048 Bytes 02/06/2010 20:05:24

VBASE010.VDF : 7.10.7.222 2048 Bytes 02/06/2010 20:05:24

VBASE011.VDF : 7.10.7.223 2048 Bytes 02/06/2010 20:05:24

VBASE012.VDF : 7.10.7.224 2048 Bytes 02/06/2010 20:05:24

VBASE013.VDF : 7.10.8.37 270336 Bytes 10/06/2010 20:05:24

VBASE014.VDF : 7.10.8.69 138752 Bytes 14/06/2010 20:05:24

VBASE015.VDF : 7.10.8.70 2048 Bytes 14/06/2010 20:05:24

VBASE016.VDF : 7.10.8.71 2048 Bytes 14/06/2010 20:05:24

VBASE017.VDF : 7.10.8.72 2048 Bytes 14/06/2010 20:05:24

VBASE018.VDF : 7.10.8.73 2048 Bytes 14/06/2010 20:05:24

VBASE019.VDF : 7.10.8.74 2048 Bytes 14/06/2010 20:05:24

VBASE020.VDF : 7.10.8.75 2048 Bytes 14/06/2010 20:05:24

VBASE021.VDF : 7.10.8.76 2048 Bytes 14/06/2010 20:05:24

VBASE022.VDF : 7.10.8.77 2048 Bytes 14/06/2010 20:05:24

VBASE023.VDF : 7.10.8.78 2048 Bytes 14/06/2010 20:05:24

VBASE024.VDF : 7.10.8.79 2048 Bytes 14/06/2010 20:05:24

VBASE025.VDF : 7.10.8.80 2048 Bytes 14/06/2010 20:05:24

VBASE026.VDF : 7.10.8.81 2048 Bytes 14/06/2010 20:05:24

VBASE027.VDF : 7.10.8.82 2048 Bytes 14/06/2010 20:05:24

VBASE028.VDF : 7.10.8.83 2048 Bytes 14/06/2010 20:05:24

VBASE029.VDF : 7.10.8.84 2048 Bytes 14/06/2010 20:05:24

VBASE030.VDF : 7.10.8.85 2048 Bytes 14/06/2010 20:05:24

VBASE031.VDF : 7.10.8.94 86528 Bytes 15/06/2010 20:05:24

Version du moteur : 8.2.2.6

AEVDF.DLL : 8.1.2.0 106868 Bytes 15/06/2010 20:05:24

AESCRIPT.DLL : 8.1.3.31 1352058 Bytes 15/06/2010 20:05:24

AESCN.DLL : 8.1.6.1 127347 Bytes 15/06/2010 20:05:24

AESBX.DLL : 8.1.3.1 254324 Bytes 15/06/2010 20:05:24

AERDL.DLL : 8.1.4.6 541043 Bytes 15/06/2010 20:05:24

AEPACK.DLL : 8.2.1.1 426358 Bytes 15/06/2010 20:05:24

AEOFFICE.DLL : 8.1.1.0 201081 Bytes 15/06/2010 20:05:24

AEHEUR.DLL : 8.1.1.33 2724214 Bytes 15/06/2010 20:05:24

AEHELP.DLL : 8.1.11.5 242038 Bytes 15/06/2010 20:05:24

AEGEN.DLL : 8.1.3.10 377205 Bytes 15/06/2010 20:05:24

AEEMU.DLL : 8.1.2.0 393588 Bytes 15/06/2010 20:05:24

AECORE.DLL : 8.1.15.3 192886 Bytes 15/06/2010 20:05:24

AEBB.DLL : 8.1.1.0 53618 Bytes 15/06/2010 20:05:24

AVWINLL.DLL : 9.0.0.3 18177 Bytes 12/12/2008 07:47:30

AVPREF.DLL : 9.0.3.0 44289 Bytes 15/06/2010 20:05:25

AVREP.DLL : 8.0.0.7 159784 Bytes 15/06/2010 20:05:25

AVREG.DLL : 9.0.0.0 36609 Bytes 07/11/2008 14:24:42

AVARKT.DLL : 9.0.0.3 292609 Bytes 24/03/2009 14:05:22

AVEVTLOG.DLL : 9.0.0.7 167169 Bytes 30/01/2009 09:36:37

SQLITE3.DLL : 3.6.1.0 326401 Bytes 28/01/2009 14:03:49

SMTPLIB.DLL : 9.2.0.25 28417 Bytes 02/02/2009 07:20:57

NETNT.DLL : 9.0.0.0 11521 Bytes 07/11/2008 14:40:59

RCIMAGE.DLL : 9.0.0.25 2438913 Bytes 15/06/2010 20:05:22

RCTEXT.DLL : 9.0.73.0 88321 Bytes 15/06/2010 20:05:22

 

Configuration pour la recherche actuelle :

Nom de la tâche...............................: Contrôle intégral du système

Fichier de configuration......................: c:\program files\avira\antivir desktop\sysscan.avp

Documentation.................................: bas

Action principale.............................: interactif

Action secondaire.............................: ignorer

Recherche sur les secteurs d'amorçage maître..: marche

Recherche sur les secteurs d'amorçage.........: marche

Secteurs d'amorçage...........................: C:, D:, G:,

Recherche dans les programmes actifs..........: marche

Recherche en cours sur l'enregistrement.......: marche

Recherche de Rootkits.........................: marche

Contrôle d'intégrité de fichiers système......: arrêt

Fichier mode de recherche.....................: Tous les fichiers

Recherche sur les archives....................: marche

Limiter la profondeur de récursivité..........: 20

Archive Smart Extensions......................: marche

Heuristique de macrovirus.....................: marche

Heuristique fichier...........................: moyen

 

Début de la recherche : mardi 15 juin 2010 22:30

 

La recherche d'objets cachés commence.

'48729' objets ont été contrôlés, '0' objets cachés ont été trouvés.

 

La recherche sur les processus démarrés commence :

Processus de recherche 'avscan.exe' - '1' module(s) sont contrôlés

Processus de recherche 'avcenter.exe' - '1' module(s) sont contrôlés

Processus de recherche 'oahlp.exe' - '1' module(s) sont contrôlés

Processus de recherche 'oaui.exe' - '1' module(s) sont contrôlés

Processus de recherche 'avgnt.exe' - '1' module(s) sont contrôlés

Processus de recherche 'jusched.exe' - '1' module(s) sont contrôlés

Processus de recherche 'iTouch.exe' - '1' module(s) sont contrôlés

Processus de recherche 'alg.exe' - '1' module(s) sont contrôlés

Processus de recherche 'explorer.exe' - '1' module(s) sont contrôlés

Processus de recherche 'MsPMSPSv.exe' - '1' module(s) sont contrôlés

Processus de recherche 'wanmpsvc.exe' - '1' module(s) sont contrôlés

Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés

Processus de recherche 'CTSVCCDA.EXE' - '1' module(s) sont contrôlés

Processus de recherche 'dllhost.exe' - '1' module(s) sont contrôlés

Processus de recherche 'mDNSResponder.exe' - '1' module(s) sont contrôlés

Processus de recherche 'AppleMobileDeviceService.exe' - '1' module(s) sont contrôlés

Processus de recherche 'AOLacsd.exe' - '1' module(s) sont contrôlés

Processus de recherche 'avguard.exe' - '1' module(s) sont contrôlés

Processus de recherche 'sched.exe' - '1' module(s) sont contrôlés

Processus de recherche 'CTAudSvc.exe' - '1' module(s) sont contrôlés

Processus de recherche 'LEXPPS.EXE' - '1' module(s) sont contrôlés

Processus de recherche 'spoolsv.exe' - '1' module(s) sont contrôlés

Processus de recherche 'LEXBCES.EXE' - '1' module(s) sont contrôlés

Processus de recherche 'oacat.exe' - '1' module(s) sont contrôlés

Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés

Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés

Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés

Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés

Processus de recherche 'lsass.exe' - '1' module(s) sont contrôlés

Processus de recherche 'services.exe' - '1' module(s) sont contrôlés

Processus de recherche 'winlogon.exe' - '1' module(s) sont contrôlés

Processus de recherche 'csrss.exe' - '1' module(s) sont contrôlés

Processus de recherche 'smss.exe' - '1' module(s) sont contrôlés

'33' processus ont été contrôlés avec '33' modules

 

La recherche sur les secteurs d'amorçage maître commence :

Secteur d'amorçage maître HD0

[iNFO] Aucun virus trouvé !

Secteur d'amorçage maître HD1

[iNFO] Aucun virus trouvé !

Secteur d'amorçage maître HD2

[iNFO] Aucun virus trouvé !

 

La recherche sur les secteurs d'amorçage commence :

Secteur d'amorçage 'C:\'

[iNFO] Aucun virus trouvé !

Secteur d'amorçage 'D:\'

[iNFO] Aucun virus trouvé !

Secteur d'amorçage 'G:\'

[iNFO] Aucun virus trouvé !

 

La recherche sur les renvois aux fichiers exécutables (registre) commence :

Le registre a été contrôlé ( '49' fichiers).

 

 

La recherche sur les fichiers sélectionnés commence :

 

Recherche débutant dans 'C:\' <DD1>

C:\pagefile.sys

[AVERTISSEMENT] Impossible d'ouvrir le fichier !

[REMARQUE] Ce fichier est un fichier système Windows.

[REMARQUE] Il est correct que ce fichier ne puisse pas être ouvert pour la recherche.

C:\Program Files\Internet Explorer\IEXPLORE.EXE__

[RESULTAT] Contient le cheval de Troie TR/Agent.2560

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\winupgro.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Bagle.dlv

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\130781.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\145218.exe.vir

[RESULTAT] Contient le modèle de détection du ver WORM/Bagle.Gen

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\14728031.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\14748421.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\158421.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\182250.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\29280359.exe.vir

[RESULTAT] Contient le modèle de détection du ver WORM/Bagle.Gen

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\29292359.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\29314156.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\43829312.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\43889500.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\58413609.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\58417515.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\58465312.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\73008140.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\73010015.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\73015578.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\73037734.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\hidires\flec003.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\hidires\flec005.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\m\flec006.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\m\shared\WV Runes v1.20 Retail for PocketPC by BLZPDA.zip.vir

[0] Type d'archive: ZIP

--> mykazaa.css

[RESULTAT] Contient le cheval de Troie TR/Drop.Angel.jhu

C:\Qoobox\Quarantine\C\Program Files\SFR\Kit\9props.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Bagle.dlv

C:\Qoobox\Quarantine\C\WINDOWS\mdelk.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\Qoobox\Quarantine\C\WINDOWS\wintems.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\Qoobox\Quarantine\C\WINDOWS\system32\wfsintwq.sys.vir

[RESULTAT] Contient le cheval de Troie TR/Rootkit.Gen

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP5\A0000680.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Bagle.dlv

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP5\A0001776.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP5\A0001789.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP6\A0002077.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Bagle.ddu

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP6\A0002146.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP6\A0002158.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP6\A0002315.sys

[RESULTAT] Contient le cheval de Troie TR/Rootkit.Gen

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP6\A0002316.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP7\A0002366.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP8\A0002435.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002504.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002529.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002530.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002552.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002605.sys

[RESULTAT] Contient le cheval de Troie TR/Rootkit.Gen

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002606.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002608.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002609.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002610.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002611.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002778.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Bagle.ddu

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002802.sys

[RESULTAT] Contient le cheval de Troie TR/Rootkit.Gen

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002837.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002839.exe

[RESULTAT] Contient le modèle de détection du ver WORM/Bagle.Gen

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002856.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002867.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003004.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003015.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003108.exe

[RESULTAT] Contient le modèle de détection du ver WORM/Bagle.Gen

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003118.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003130.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003304.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003325.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003458.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003460.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003467.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003612.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003613.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003622.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003633.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003761.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Bagle.dlv

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003767.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003768.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003769.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003770.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Bagle.dlv

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003771.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003773.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

Recherche débutant dans 'D:\' <DD2>

Recherche débutant dans 'G:\' <Iomega_HDD>

 

Début de la désinfection :

C:\Program Files\Internet Explorer\IEXPLORE.EXE__

[RESULTAT] Contient le cheval de Troie TR/Agent.2560

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c6ff60a.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\winupgro.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Bagle.dlv

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c85f62e.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\130781.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f5f9.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\145218.exe.vir

[RESULTAT] Contient le modèle de détection du ver WORM/Bagle.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c4cf5fa.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\14728031.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c4ef5fa.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\14748421.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c4ef5fc.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\158421.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c4ff5fe.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\182250.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c49f602.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\29280359.exe.vir

[RESULTAT] Contient le modèle de détection du ver WORM/Bagle.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c49f604.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\29292359.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c49f605.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\29314156.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c4af607.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\43829312.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c4ff601.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\43889500.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c4ff602.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\58413609.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c4bf608.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\58417515.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c4bf609.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\58465312.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4aee1b4a.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\73008140.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f605.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\73010015.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f606.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\73015578.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4aeef29f.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\drivers\downld\73037734.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f608.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\hidires\flec003.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c7cf642.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\hidires\flec005.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4ad7e26b.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\m\flec006.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c7cf643.qua' !

C:\Qoobox\Quarantine\C\Documents and Settings\Pierre\Application Data\m\shared\WV Runes v1.20 Retail for PocketPC by BLZPDA.zip.vir

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c37f62d.qua' !

C:\Qoobox\Quarantine\C\Program Files\SFR\Kit\9props.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Dldr.Bagle.dlv

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c89f647.qua' !

C:\Qoobox\Quarantine\C\WINDOWS\mdelk.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c7cf63c.qua' !

C:\Qoobox\Quarantine\C\WINDOWS\wintems.exe.vir

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c85f641.qua' !

C:\Qoobox\Quarantine\C\WINDOWS\system32\wfsintwq.sys.vir

[RESULTAT] Contient le cheval de Troie TR/Rootkit.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c8af63e.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP5\A0000680.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Bagle.dlv

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4d349a51.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP5\A0001776.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f609.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP5\A0001789.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4f963a52.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP6\A0002077.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Bagle.ddu

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f60a.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP6\A0002146.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4f942de3.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP6\A0002158.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4f9315bb.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP6\A0002315.sys

[RESULTAT] Contient le cheval de Troie TR/Rootkit.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f60b.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP6\A0002316.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4f91054c.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP7\A0002366.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f60c.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP8\A0002435.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4f9ef4dd.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002504.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f60d.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002529.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4f9ce46e.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002530.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4f9bec26.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002552.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4f9ad7fe.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002605.sys

[RESULTAT] Contient le cheval de Troie TR/Rootkit.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f60e.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002606.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4f98c78f.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002608.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f60f.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002609.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f610.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002610.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4fa5bec9.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002611.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f612.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002778.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Bagle.ddu

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f613.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002802.sys

[RESULTAT] Contient le cheval de Troie TR/Rootkit.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f614.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002837.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4fa191ed.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002839.exe

[RESULTAT] Contient le modèle de détection du ver WORM/Bagle.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4d307d6d.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002856.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4faf819d.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0002867.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f616.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003004.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4fad710f.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003015.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f617.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003108.exe

[RESULTAT] Contient le modèle de détection du ver WORM/Bagle.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f619.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003118.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4faa686a.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003130.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f61a.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003304.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f61b.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003325.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4fbd9194.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003458.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f61c.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003460.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f61d.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003467.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4fba88fe.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003612.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f61f.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003613.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f620.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003622.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '48476019.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003633.exe

[RESULTAT] Contient le cheval de Troie TR/Crypt.TPM.Gen

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f622.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003761.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Bagle.dlv

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f623.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003767.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '48445bb4.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003768.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Agent.dlme

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f624.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003769.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '48424b05.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003770.exe

[RESULTAT] Contient le cheval de Troie TR/Dldr.Bagle.dlv

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '484132cd.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003771.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c47f625.qua' !

C:\System Volume Information\_restore{C62B1C25-F6F1-4974-A7B8-032135199A98}\RP9\A0003773.exe

[RESULTAT] Contient le cheval de Troie TR/Bagle.Gen.B

[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '484f225e.qua' !

 

 

Fin de la recherche : mardi 15 juin 2010 23:51

Temps nécessaire: 1:19:31 Heure(s)

 

La recherche a été effectuée intégralement

 

12120 Les répertoires ont été contrôlés

322788 Des fichiers ont été contrôlés

75 Des virus ou programmes indésirables ont été trouvés

0 Des fichiers ont été classés comme suspects

0 Des fichiers ont été supprimés

0 Des virus ou programmes indésirables ont été réparés

75 Les fichiers ont été déplacés dans la quarantaine

0 Les fichiers ont été renommés

1 Impossible de contrôler des fichiers

322712 Fichiers non infectés

3550 Les archives ont été contrôlées

1 Avertissements

76 Consignes

48729 Des objets ont été contrôlés lors du Rootkitscan

0 Des objets cachés ont été trouvés

 

3. Antivir était activé et avait bien signalé la présence de "cochoncetés" que j'ai mises en quarantaine.

Dès que j'ai voulu les sélectionner avec le curseur pour les supprimer, Antivir s'est fermé, ceci ayant été suivi des symptômes dont j'ai fait état dans mon 1er post.

 

J'attends tes instructions et t'en remercie.

 

Bonne soirée (nuit) !

Tonton57

 

Edit : je te ferai suivre en début de matinée le rapport MBAM qui à ce stade fait état de 6 éléments infectés. Maintenant... dans les plumes !

Modifié le 15 juin 2010 par Tonton57

[Tonton]

Voici la rapport MBAM :

 

Malwarebytes' Anti-Malware 1.46

www.malwarebytes.org

 

Version de la base de données: 4201

 

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

 

16/06/2010 07:15:27

mbam-log-2010-06-16 (07-15-27).txt

 

Type d'examen: Examen complet (A:\|C:\|D:\|E:\|F:\|G:\|)

Elément(s) analysé(s): 223359

Temps écoulé: 1 heure(s), 21 minute(s), 57 seconde(s)

 

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 7

Valeur(s) du Registre infectée(s): 1

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 6

Fichier(s) infecté(s): 13

 

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Clé(s) du Registre infectée(s):

HKEY_CLASSES_ROOT\TypeLib\{01bcb858-2f62-4f06-a8f4-48f927c15333} (Adware.PredictAd) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface\{c9ae652b-8c99-4ac2-b556-8b501182874e} (Adware.PredictAd) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{0fb6a909-6086-458f-bd92-1f8ee10042a0} (Adware.PredictAd) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{0fb6a909-6086-458f-bd92-1f8ee10042a0} (Adware.PredictAd) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{0fb6a909-6086-458f-bd92-1f8ee10042a0} (Adware.PredictAd) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\AppID\AutocompletePro.DLL (Adware.PredictAd) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\Software\WS4001 (Malware.Trace) -> Quarantined and deleted successfully.

 

Valeur(s) du Registre infectée(s):

HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\support@predictad.com (Adware.PredictAd) -> Quarantined and deleted successfully.

 

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

 

Dossier(s) infecté(s):

C:\Program Files\AutocompletePro (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\support@predictad.com (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\support@predictad.com\chrome (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\support@predictad.com\chrome\content (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\support@predictad.com\defaults (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\support@predictad.com\defaults\preferences (Adware.PredictAd) -> Quarantined and deleted successfully.

 

Fichier(s) infecté(s):

C:\Program Files\AutocompletePro\AutocompletePro.dll (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\AcRemoteUpdate.exe (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\InstTracker.exe (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\TaskScheduler.dll (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\unins000.dat (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\unins000.exe (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\support@predictad.com\chrome.manifest (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\support@predictad.com\install.rdf (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\support@predictad.com\chrome\content\browserOverlay.xul (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\support@predictad.com\chrome\content\options.js (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\support@predictad.com\chrome\content\options.xul (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\support@predictad.com\chrome\content\utils.js (Adware.PredictAd) -> Quarantined and deleted successfully.

C:\Program Files\AutocompletePro\support@predictad.com\defaults\preferences\predictad.js (Adware.PredictAd) -> Quarantined and deleted successfully.

 

Dans l'attente de tes instructions/conseils.

 

Bonne journée.

 

Amicalement,

Tonton

[Tonton]

Bonsoir Mark

 

1. Le PC semble se porter à merveille

 

2. Réinstallation du kit de connexion sfr : OK

 

3. Antivir :

J'ai purgé les fichiers infectés mis en quarantaine.

Voici le dernier rapport en date :

Avira AntiVir Personal

Date de création du fichier de rapport : jeudi 17 juin 2010 18:28

La recherche porte sur 2222409 souches de virus.

Détenteur de la licence : Avira AntiVir Personal - FREE Antivirus

Numéro de série : 0000149996-ADJIE-0000001

Plateforme : Windows XP

Version de Windows : (Service Pack 3) [5.1.2600]

Mode Boot : Démarré normalement

Identifiant : SYSTEM

Nom de l'ordinateur : SCH-HOUSE

Informations de version :

BUILD.DAT : 9.0.0.75 21698 Bytes 22/01/2010 23:14:00

AVSCAN.EXE : 9.0.3.10 466689 Bytes 15/06/2010 20:05:25

AVSCAN.DLL : 9.0.3.0 49409 Bytes 03/03/2009 09:21:02

LUKE.DLL : 9.0.3.2 209665 Bytes 20/02/2009 10:35:11

LUKERES.DLL : 9.0.2.0 13569 Bytes 03/03/2009 09:21:31

VBASE000.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 20:05:24

VBASE001.VDF : 7.10.1.0 1372672 Bytes 19/11/2009 20:05:24

VBASE002.VDF : 7.10.3.1 3143680 Bytes 20/01/2010 20:05:24

VBASE003.VDF : 7.10.3.75 996864 Bytes 26/01/2010 20:05:24

VBASE004.VDF : 7.10.4.203 1579008 Bytes 05/03/2010 20:05:24

VBASE005.VDF : 7.10.6.82 2494464 Bytes 15/04/2010 20:05:24

VBASE006.VDF : 7.10.7.218 2294784 Bytes 02/06/2010 20:05:24

VBASE007.VDF : 7.10.7.219 2048 Bytes 02/06/2010 20:05:24

VBASE008.VDF : 7.10.7.220 2048 Bytes 02/06/2010 20:05:24

VBASE009.VDF : 7.10.7.221 2048 Bytes 02/06/2010 20:05:24

VBASE010.VDF : 7.10.7.222 2048 Bytes 02/06/2010 20:05:24

VBASE011.VDF : 7.10.7.223 2048 Bytes 02/06/2010 20:05:24

VBASE012.VDF : 7.10.7.224 2048 Bytes 02/06/2010 20:05:24

VBASE013.VDF : 7.10.8.37 270336 Bytes 10/06/2010 20:05:24

VBASE014.VDF : 7.10.8.69 138752 Bytes 14/06/2010 20:05:24

VBASE015.VDF : 7.10.8.102 130560 Bytes 16/06/2010 16:27:12

VBASE016.VDF : 7.10.8.103 2048 Bytes 16/06/2010 16:27:12

VBASE017.VDF : 7.10.8.104 2048 Bytes 16/06/2010 16:27:12

VBASE018.VDF : 7.10.8.105 2048 Bytes 16/06/2010 16:27:12

VBASE019.VDF : 7.10.8.106 2048 Bytes 16/06/2010 16:27:12

VBASE020.VDF : 7.10.8.107 2048 Bytes 16/06/2010 16:27:12

VBASE021.VDF : 7.10.8.108 2048 Bytes 16/06/2010 16:27:12

VBASE022.VDF : 7.10.8.109 2048 Bytes 16/06/2010 16:27:12

VBASE023.VDF : 7.10.8.110 2048 Bytes 16/06/2010 16:27:13

VBASE024.VDF : 7.10.8.111 2048 Bytes 16/06/2010 16:27:13

VBASE025.VDF : 7.10.8.112 2048 Bytes 16/06/2010 16:27:13

VBASE026.VDF : 7.10.8.113 2048 Bytes 16/06/2010 16:27:13

VBASE027.VDF : 7.10.8.114 2048 Bytes 16/06/2010 16:27:13

VBASE028.VDF : 7.10.8.115 2048 Bytes 16/06/2010 16:27:13

VBASE029.VDF : 7.10.8.116 2048 Bytes 16/06/2010 16:27:13

VBASE030.VDF : 7.10.8.117 2048 Bytes 16/06/2010 16:27:13

VBASE031.VDF : 7.10.8.121 28160 Bytes 17/06/2010 16:27:14

Version du moteur : 8.2.2.6

AEVDF.DLL : 8.1.2.0 106868 Bytes 15/06/2010 20:05:24

AESCRIPT.DLL : 8.1.3.31 1352058 Bytes 15/06/2010 20:05:24

AESCN.DLL : 8.1.6.1 127347 Bytes 15/06/2010 20:05:24

AESBX.DLL : 8.1.3.1 254324 Bytes 15/06/2010 20:05:24

AERDL.DLL : 8.1.4.6 541043 Bytes 15/06/2010 20:05:24

AEPACK.DLL : 8.2.1.1 426358 Bytes 15/06/2010 20:05:24

AEOFFICE.DLL : 8.1.1.0 201081 Bytes 15/06/2010 20:05:24

AEHEUR.DLL : 8.1.1.33 2724214 Bytes 15/06/2010 20:05:24

AEHELP.DLL : 8.1.11.5 242038 Bytes 15/06/2010 20:05:24

AEGEN.DLL : 8.1.3.10 377205 Bytes 15/06/2010 20:05:24

AEEMU.DLL : 8.1.2.0 393588 Bytes 15/06/2010 20:05:24

AECORE.DLL : 8.1.15.3 192886 Bytes 15/06/2010 20:05:24

AEBB.DLL : 8.1.1.0 53618 Bytes 15/06/2010 20:05:24

AVWINLL.DLL : 9.0.0.3 18177 Bytes 12/12/2008 07:47:30

AVPREF.DLL : 9.0.3.0 44289 Bytes 15/06/2010 20:05:25

AVREP.DLL : 8.0.0.7 159784 Bytes 15/06/2010 20:05:25

AVREG.DLL : 9.0.0.0 36609 Bytes 07/11/2008 14:24:42

AVARKT.DLL : 9.0.0.3 292609 Bytes 24/03/2009 14:05:22

AVEVTLOG.DLL : 9.0.0.7 167169 Bytes 30/01/2009 09:36:37

SQLITE3.DLL : 3.6.1.0 326401 Bytes 28/01/2009 14:03:49

SMTPLIB.DLL : 9.2.0.25 28417 Bytes 02/02/2009 07:20:57

NETNT.DLL : 9.0.0.0 11521 Bytes 07/11/2008 14:40:59

RCIMAGE.DLL : 9.0.0.25 2438913 Bytes 15/06/2010 20:05:22

RCTEXT.DLL : 9.0.73.0 88321 Bytes 15/06/2010 20:05:22

Configuration pour la recherche actuelle :

Nom de la tâche...............................: Contrôle intégral du système

Fichier de configuration......................: c:\program files\avira\antivir desktop\sysscan.avp

Documentation.................................: bas

Action principale.............................: interactif

Action secondaire.............................: ignorer

Recherche sur les secteurs d'amorçage maître..: marche

Recherche sur les secteurs d'amorçage.........: marche

Secteurs d'amorçage...........................: C:, D:, G:,

Recherche dans les programmes actifs..........: marche

Recherche en cours sur l'enregistrement.......: marche

Recherche de Rootkits.........................: marche

Contrôle d'intégrité de fichiers système......: arrêt

Fichier mode de recherche.....................: Tous les fichiers

Recherche sur les archives....................: marche

Limiter la profondeur de récursivité..........: 20

Archive Smart Extensions......................: marche

Heuristique de macrovirus.....................: marche

Heuristique fichier...........................: moyen

Début de la recherche : jeudi 17 juin 2010 18:28

La recherche d'objets cachés commence.

'48026' objets ont été contrôlés, '0' objets cachés ont été trouvés.

La recherche sur les processus démarrés commence :

Processus de recherche 'mbam.exe' - '1' module(s) sont contrôlés

Processus de recherche 'avscan.exe' - '1' module(s) sont contrôlés

Processus de recherche 'OSE.EXE' - '1' module(s) sont contrôlés

Processus de recherche 'opera.exe' - '1' module(s) sont contrôlés

Processus de recherche 'EXCEL.EXE' - '1' module(s) sont contrôlés

Processus de recherche 'oahlp.exe' - '1' module(s) sont contrôlés

Processus de recherche '9props.exe' - '1' module(s) sont contrôlés

Processus de recherche 'oaui.exe' - '1' module(s) sont contrôlés

Processus de recherche 'avgnt.exe' - '1' module(s) sont contrôlés

Processus de recherche 'jusched.exe' - '1' module(s) sont contrôlés

Processus de recherche 'iTouch.exe' - '1' module(s) sont contrôlés

Processus de recherche 'alg.exe' - '1' module(s) sont contrôlés

Processus de recherche 'MsPMSPSv.exe' - '1' module(s) sont contrôlés

Processus de recherche 'wanmpsvc.exe' - '1' module(s) sont contrôlés

Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés

Processus de recherche 'CTSVCCDA.EXE' - '1' module(s) sont contrôlés

Processus de recherche 'dllhost.exe' - '1' module(s) sont contrôlés

Processus de recherche 'mDNSResponder.exe' - '1' module(s) sont contrôlés

Processus de recherche 'ApplicationUpdater.exe' - '1' module(s) sont contrôlés

Processus de recherche 'AppleMobileDeviceService.exe' - '1' module(s) sont contrôlés

Processus de recherche 'AOLacsd.exe' - '1' module(s) sont contrôlés

Processus de recherche 'avguard.exe' - '1' module(s) sont contrôlés

Processus de recherche 'sched.exe' - '1' module(s) sont contrôlés

Processus de recherche 'CTAudSvc.exe' - '1' module(s) sont contrôlés

Processus de recherche 'LEXPPS.EXE' - '1' module(s) sont contrôlés

Processus de recherche 'spoolsv.exe' - '1' module(s) sont contrôlés

Processus de recherche 'LEXBCES.EXE' - '1' module(s) sont contrôlés

Processus de recherche 'explorer.exe' - '1' module(s) sont contrôlés

Processus de recherche 'oasrv.exe' - '1' module(s) sont contrôlés

Processus de recherche 'oacat.exe' - '1' module(s) sont contrôlés

Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés

Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés

Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés

Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés

Processus de recherche 'lsass.exe' - '1' module(s) sont contrôlés

Processus de recherche 'services.exe' - '1' module(s) sont contrôlés

Processus de recherche 'winlogon.exe' - '1' module(s) sont contrôlés

Processus de recherche 'csrss.exe' - '1' module(s) sont contrôlés

Processus de recherche 'smss.exe' - '1' module(s) sont contrôlés

'39' processus ont été contrôlés avec '39' modules

La recherche sur les secteurs d'amorçage maître commence :

Secteur d'amorçage maître HD0

[iNFO] Aucun virus trouvé !

Secteur d'amorçage maître HD1

[iNFO] Aucun virus trouvé !

Secteur d'amorçage maître HD2

[iNFO] Aucun virus trouvé !

La recherche sur les secteurs d'amorçage commence :

Secteur d'amorçage 'C:\'

[iNFO] Aucun virus trouvé !

Secteur d'amorçage 'D:\'

[iNFO] Aucun virus trouvé !

Secteur d'amorçage 'G:\'

[iNFO] Aucun virus trouvé !

La recherche sur les renvois aux fichiers exécutables (registre) commence :

Le registre a été contrôlé ( '49' fichiers).

La recherche sur les fichiers sélectionnés commence :

Recherche débutant dans 'C:\' <DD1>

C:\pagefile.sys

[AVERTISSEMENT] Impossible d'ouvrir le fichier !

[REMARQUE] Ce fichier est un fichier système Windows.

[REMARQUE] Il est correct que ce fichier ne puisse pas être ouvert pour la recherche.

Recherche débutant dans 'D:\' <DD2>

Recherche débutant dans 'G:\' <Iomega_HDD>

Fin de la recherche : jeudi 17 juin 2010 20:10

Temps nécessaire: 1:42:55 Heure(s)

La recherche a été effectuée intégralement

12060 Les répertoires ont été contrôlés

322479 Des fichiers ont été contrôlés

0 Des virus ou programmes indésirables ont été trouvés

0 Des fichiers ont été classés comme suspects

0 Des fichiers ont été supprimés

0 Des virus ou programmes indésirables ont été réparés

0 Les fichiers ont été déplacés dans la quarantaine

0 Les fichiers ont été renommés

1 Impossible de contrôler des fichiers

322478 Fichiers non infectés

3440 Les archives ont été contrôlées

1 Avertissements

1 Consignes

48026 Des objets ont été contrôlés lors du Rootkitscan

0 Des objets cachés ont été trouvés

4. MBAM :

J'ai purgé les fichiers infectés mis en quarantaine.

Voici le dernier rapport en date :

Malwarebytes' Anti-Malware 1.46

www.malwarebytes.org

Version de la base de données: 4209

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

17/06/2010 20:25:23

mbam-log-2010-06-17 (20-25-23).txt

Type d'examen: Examen complet (A:\|C:\|D:\|E:\|F:\|G:\|)

Elément(s) analysé(s): 223229

Temps écoulé: 1 heure(s), 55 minute(s), 1 seconde(s)

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 0

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 0

Fichier(s) infecté(s): 0

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

Dossier(s) infecté(s):

(Aucun élément nuisible détecté)

Fichier(s) infecté(s):

(Aucun élément nuisible détecté)

 

5. RSIT :

5.1 INFO :

info.txt logfile of random's system information tool 1.06 2010-06-17 21:28:21

======Uninstall list======

-->"C:\Program Files\Creative Installation Information\CREATIVE_MEDIASOURCE_U\Setup.exe" /remove /nolog/l0x040c

-->"C:\Program Files\Creative Installation Information\E-CENTER_NET_CONTENT_U\Setup.exe" /remove /nolog/l0x040c

-->"C:\Program Files\Creative Installation Information\E-CENTER_PLUGIN_MINIDISC_U\Setup.exe" /remove /nolog/l0x040c

-->"C:\Program Files\Creative Installation Information\E-CENTER_PLUGIN_ONLINESTORE_U\Setup.exe" /remove /nolog/l0x040c

-->"C:\Program Files\Creative Installation Information\MEDIASOURCE_PLAYER_SKINPACK_U\Setup.exe" /remove /nolog/l0x040c

-->"C:\Program Files\Creative\SBAudigy2\Program\Ctzapxx.EXE" /U /S /L:FRN

-->"C:\Program Files\Creative\SBAudigy2\Program\SETUP.EXE" /S /U /W /L:FRN

-->C:\Program Files\Nero\Nero 7\nero\uninstall\UNNERO.exe /UNINSTALL

-->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL

-->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL

-->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL

-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL

-->C:\WINDOWS\UNRecode.exe /UNINSTALL

-->MsiExec.exe /I{26B5AD79-EE99-4E17-93A6-AF215E3A81E9}

-->MsiExec.exe /I{403EF592-953B-4794-BCEF-ECAB835C2095}

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1888DAFD-C634-4BC4-865C-3455E24F6177}\Setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1888DAFD-C634-4BC4-865C-3455E24F6177}\Setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{236FADD8-58FD-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{236FADD8-58FD-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5210ED6D-52A9-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5210ED6D-52A9-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{56F3E1FF-54FE-4384-A153-6CCABA097814}\SETUP.EXE" -l0x40c /remove/remove/remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5CDDF96A-BC34-4D72-9ABA-E1FFF0C39977}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7201B853-5833-11D6-A285-00A0CC51B2FE}\Setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{77ACE67A-0D21-4CEF-8A97-ED20A61B978B}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{77ACE67A-0D21-4CEF-8A97-ED20A61B978B}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9154ED7C-926E-49CC-B677-0CF3C5267457}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9154ED7C-926E-49CC-B677-0CF3C5267457}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A1185190-514F-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A1185190-514F-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C6866B7D-ACFD-4C49-B77B-3B2F8CF54B96}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C6866B7D-ACFD-4C49-B77B-3B2F8CF54B96}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DEBD7BF3-5856-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DEBD7BF3-5856-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EE6699B3-E5AD-4E59-8F2B-207DF630670C}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EE6699B3-E5AD-4E59-8F2B-207DF630670C}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0B095086-7205-4D48-90DF-DCD16613C6D4}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0B095086-7205-4D48-90DF-DCD16613C6D4}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{103BCDA0-E063-46AC-8028-64E78722ABA7}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{103BCDA0-E063-46AC-8028-64E78722ABA7}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2616B36E-38CE-4357-8AB5-8B3EE9B1C117}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2616B36E-38CE-4357-8AB5-8B3EE9B1C117}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2670895A-4E6C-4450-B868-7B7DB80A3357}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{44267176-A318-447F-A62A-0A5FD608C34F}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AFFF09F-386B-4F7A-B3E0-EC24C13893AA}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AFFF09F-386B-4F7A-B3E0-EC24C13893AA}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88B1984E-36F0-47B8-B8DC-728966807A9C}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8A3F2ADE-DEF2-4A50-866A-6B9357B5590F}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8A3F2ADE-DEF2-4A50-866A-6B9357B5590F}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB99E420-8071-48F9-9567-4A53BE7569C4}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB99E420-8071-48F9-9567-4A53BE7569C4}\setup.exe" -l0x40c /remove

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CC3D3A93-C433-4329-AC3A-7EFC52A332C2}\setup.exe" -l0x9

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CC3D3A93-C433-4329-AC3A-7EFC52A332C2}\setup.exe" -l0x9 /remove

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf

Adobe Download Manager-->"C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\NOS\bin\getPlus_Helper.dll",Uninstall /IE2883E8F-472F-4fb0-9522-AC9BF37916A7 /Get1

Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_ActiveX.exe -maintain activex

Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -maintain plugin

Adobe Reader 9.3.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A93000000001}

AOL - Assistant de désinstallation-->C:\Program Files\Fichiers communs\AOL\uninstaller.exe

AOL Coach Version 1.0(Build:20040229.1 fr)-->"C:\Program Files\Fichiers communs\aolshare\Coach\AolCInUn.exe" -lang="fr-fr"

Apple Application Support-->MsiExec.exe /I{553255F3-78FD-40F1-A6F8-6882140265FE}

Apple Mobile Device Support-->MsiExec.exe /I{9DE1BE03-AFE2-4CDB-BFEB-D06D736CD01A}

Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}

Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe

Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}

ATI - Utilitaire de désinstallation du logiciel-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe

ATI Catalyst Control Center-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x435c

ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean

Auslogics Disk Defrag-->"C:\Program Files\Auslogics\Auslogics Disk Defrag\unins000.exe"

Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE

Bonjour-->MsiExec.exe /X{8A253629-0511-4854-8B4E-46E57E66005C}

Canon Camera Access Library-->"C:\Program Files\Fichiers communs\Canon\UIW\1.7.0.0\Uninst.exe" "C:\Program Files\Canon\CAL\Uninst.ini"

CANON iMAGE GATEWAY Task for ZoomBrowser EX-->"C:\Program Files\Fichiers communs\Canon\UIW\1.7.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\CRWUnInstall.ini"

Canon Internet Library for ZoomBrowser EX-->"C:\Program Files\Fichiers communs\Canon\UIW\1.7.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\CIGUnInstall.ini"

Canon MovieEdit Task for ZoomBrowser EX-->"C:\Program Files\Fichiers communs\Canon\UIW\1.7.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\MVWUninst.ini"

Canon Utilities CameraWindow DC 8-->"C:\Program Files\Fichiers communs\Canon\UIW\1.7.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\CameraWindowDC8\Uninst.ini"

Canon Utilities CameraWindow-->"C:\Program Files\Fichiers communs\Canon\UIW\1.7.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\CameraWindowLauncher\Uninst.ini"

Canon Utilities Movie Uploader for YouTube-->"C:\Program Files\Fichiers communs\Canon\UIW\1.7.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\Movie Uploader for YouTube\Uninst.ini"

Canon Utilities MyCamera-->"C:\Program Files\Fichiers communs\Canon\UIW\1.7.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\MyCamera\Uninst.ini"

Canon Utilities PhotoStitch-->"C:\Program Files\Fichiers communs\Canon\UIW\1.7.0.0\Uninst.exe" "C:\Program Files\Canon\PhotoStitch\Uninst.ini"

Canon Utilities ZoomBrowser EX-->"C:\Program Files\Fichiers communs\Canon\UIW\1.7.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\Uninst.ini"

Canon ZoomBrowser EX Memory Card Utility-->"C:\Program Files\Fichiers communs\Canon\UIW\1.7.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX MCU\Uninst.ini"

Catalyst Control Center - Branding-->MsiExec.exe /I{8D7133DE-27D2-47E5-B248-4180278D32AA}

CCleaner-->"C:\Program Files\CCleaner\uninst.exe"

Conexant D850 56K V.9x DFVc Modem-->C:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200F14F1\HXFSETUP.EXE -U -Idel200fk.inf

Connexions réseau Intel®-->MsiExec.exe /I{0BBBA9A9-02E8-467D-BE57-4797A50F7861}

Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"

Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"

Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"

Correctif pour Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"

Correctif pour Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe"

Correctif pour Windows XP (KB979306)-->"C:\WINDOWS\$NtUninstallKB979306$\spuninst\spuninst.exe"

Correctif pour Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe"

Creative Audio Console-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x40c /remove

Creative MediaSource 5-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}\setup.exe" -l0x40c /remove

Creative MediaSource-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E0C1913-886B-4C5C-8DAF-D1E649CE5FCC}\setup.exe" -l0x40c /remove

Creative Software AutoUpdate-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88B1984E-36F0-47B8-B8DC-728966807A9C}\setup.exe" -l0x40c /remove

Creative WaveStudio 7-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2670895A-4E6C-4450-B868-7B7DB80A3357}\setup.exe" -l0x40c /remove

Dell AIO Printer A920-->C:\WINDOWS\System32\spool\drivers\w32x86\3\DLBKUN5C.EXE -dDell AIO Printer A920

Dell Driver Reset Tool-->MsiExec.exe /I{5905F42D-3F5F-4916-ADA6-94A3646AEE76}

Dell Solution Center-->MsiExec.exe /X{11F1920A-56A2-4642-B6E0-3B31A12C9288}

Driver Genius Professional Edition-->"C:\Program Files\Driver-Soft\DriverGenius\unins000.exe"

EasyPrediction-->C:\Program Files\EasyPrediction\2.0\Uninstall.exe

Ecran de veille AOL Photos-->C:\Program Files\Fichiers communs\AOL\Screensaver\uninst_ygpss.exe

EVEREST Corporate Edition v5.30-->"C:\Program Files\Lavalys\EVEREST Corporate Edition\unins000.exe"

FaxTools-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F45298E5-0083-426F-A668-1A2C5F04B8A0}\setup.exe" -l0x40c ControlPanel

Garmin City Navigator Europe NT 2010.20 Update-->MsiExec.exe /X{A7BA5663-08FD-41B1-8008-DD3C3752C2E5}

Garmin City Navigator Europe NT 2010.31 Update-->MsiExec.exe /X{D22F5242-773E-4270-AB1F-492021BCABBE}

Garmin City Navigator Europe NT 2011.10-->MsiExec.exe /X{9C45D9D2-D429-4EA7-8E9E-BFBBD9BAA4F2}

Garmin MapInstall-->MsiExec.exe /X{D0A3275D-F67F-4C6B-AE4A-753170C2EAC8}

Garmin MapSource-->MsiExec.exe /X{C4D26D60-7B43-4CE9-AE19-A380D9DF126B}

Garmin POI Loader-->MsiExec.exe /X{328019A7-0012-401D-96A2-4CDDD02675A8}

Garmin USB Drivers-->MsiExec.exe /X{65F9E1F3-A2C1-4AA9-9F33-A3AEB0255F0E}

Garmin WebUpdater-->MsiExec.exe /X{E0783143-EAE2-4047-A8D6-E155523C594C}

Gestionnaire de banques Soundfont-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7201B853-5833-11D6-A285-00A0CC51B2FE}\Setup.exe" -l0x40c /remove

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""

Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"

Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe

Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}

iTunes-->MsiExec.exe /I{4FB120F8-622C-4260-AB49-0F43A59CCF2A}

Java 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020FF}

Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}

K-Lite Codec Pack 6.0.4 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"

Learn2 Player (Uninstall Only)-->C:\Program Files\Learn2.com\StRunner\stuninst.exe

Lecteur de DVD Audio Creative MediaSource-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{44267176-A318-447F-A62A-0A5FD608C34F}\setup.exe" -l0x40c /remove

Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall

Logiciel iTouch de Logitech-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{036AA4D4-6D32-11D4-9875-00105ACE7734}\Setup.exe" -l0x40c UNINSTALL

Logiciel QuickCam de Logitech-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}\setup.exe" -l0x40c

Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\setup.exe" -l0x40c UNINSTALL

Logitech MouseWare 9.80 -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5809E7CF-4DCF-11D4-9875-00105ACE7734}\Setup.exe" -l0x9 -l0009 UNINSTALL

Logitech Resource Center-->C:\PROGRA~1\Logitech\RESOUR~1\rem\UNWISE.EXE C:\PROGRA~1\Logitech\RESOUR~1\rem\INSTALL.LOG

Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"

Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}

Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}

Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe

Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}

Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}

Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"

Microsoft Encarta 2009 - Collection-->MsiExec.exe /I{09180081-2C94-4A67-8E55-8483C019C7D2}

Microsoft Office Live Add-in 1.3-->MsiExec.exe /I{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}

Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}

Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"

Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}

Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Lecteur Windows Media (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Lecteur Windows Media (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Lecteur Windows Media (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Lecteur Windows Media (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Lecteur Windows Media 8 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP8$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows Internet Explorer 8 (KB978207)-->"C:\WINDOWS\ie8updates\KB978207-IE8\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows Internet Explorer 8 (KB981332)-->"C:\WINDOWS\ie8updates\KB981332-IE8\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows Internet Explorer 8 (KB982381)-->"C:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB961371-v2)-->"C:\WINDOWS\$NtUninstallKB961371-v2$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB974455)-->"C:\WINDOWS\$NtUninstallKB974455$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB977165)-->"C:\WINDOWS\$NtUninstallKB977165$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB978251)-->"C:\WINDOWS\$NtUninstallKB978251$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB978262)-->"C:\WINDOWS\$NtUninstallKB978262$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe"

Mise à jour pour Windows Internet Explorer 8 (KB976662)-->"C:\WINDOWS\ie8updates\KB976662-IE8\spuninst\spuninst.exe"

Mise à jour pour Windows Internet Explorer 8 (KB980182)-->"C:\WINDOWS\ie8updates\KB980182-IE8\spuninst\spuninst.exe"

Mise à jour pour Windows Internet Explorer 8 (KB980302)-->"C:\WINDOWS\ie8updates\KB980302-IE8\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB961503)-->"C:\WINDOWS\$NtUninstallKB961503$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"

Module de compatibilité pour Microsoft Office System 2007-->MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}

Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe

MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}

MSXML 4.0 SP3 Parser (KB973685)-->MsiExec.exe /I{859DFA95-E4A6-48CD-B88E-A3E483E89B44}

MSXML 4.0 SP3 Parser-->MsiExec.exe /I{196467F1-C11F-4F76-858B-5812ADC83B94}

MSXML 6.0 Parser-->MsiExec.exe /I{AEB9948B-4FF2-47C9-990E-47014492A0FE}

Nero 7 Demo-->MsiExec.exe /I{6F9C0903-4311-4619-7B30-F1E19CF11036}

Online Armor 4.0-->"C:\Program Files\Tall Emu\Online Armor\unins000.exe"

Opera 10.53-->MsiExec.exe /X{1A0D2EFC-C4FC-446A-8BC3-57A54CE5EADD}

Oryte Games 1.9 Toolbar-->C:\PROGRA~1\ORYTE_~1.9\UNWISE.EXE /U C:\PROGRA~1\ORYTE_~1.9\INSTALL.LOG

Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}

Paragon Drive Backup™ 9.0 Free Edition-->MsiExec.exe /I{985F828E-0E98-429F-9C05-EF3BDE7568F7}

PDFCreator-->C:\Program Files\PDFCreator\unins000.exe

pdfforge Toolbar v1.1.2-->MsiExec.exe /X{5791B7D3-8B34-4218-9750-6A8E45D0AD32}

Programme de gestion Camera de Logitech®-->"C:\Program Files\Fichiers communs\Logitech\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT

Quicksys RegDefrag 2.8-->"C:\Program Files\Quicksys\RegDefrag\unins000.exe"

QuickTime-->MsiExec.exe /I{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}

Recuva-->"C:\Program Files\Recuva\uninst.exe"

ScanSoft PDF Professional 4-->MsiExec.exe /I{40B0A7CC-1676-43E9-8444-2EF2377E87B8}

SeaTools for Windows-->MsiExec.exe /I{98613C99-1399-416C-A07C-1EE1C585D872}

Secunia PSI-->"C:\Program Files\Secunia\PSI\uninstall.exe"

Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}

Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}

Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}

SFR - Kit de connexion-->C:\Program Files\SFR\Kit\uninstall.exe

Sound Blaster Audigy 2-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E82BF103-904F-49C0-B77F-6EC110B71E87}\SETUP.EXE" -l0x40c

SoundMAX-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\SETUP.exe" -l0x40c -removeonly

Spelling Dictionaries Support For Adobe Reader 9-->MsiExec.exe /I{AC76BA86-7AD7-5464-3428-900000000004}

System Requirements Lab-->C:\Program Files\SystemRequirementsLab\Uninstall.exe

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""

Viewpoint Media Player-->C:\Program Files\Viewpoint\Viewpoint Experience Technology\mtsAxInstaller.exe /u

VLC media player 1.0.5-->C:\Program Files\VideoLAN\VLC\uninstall.exe

WebCam for MSN Messenger-->Rundll32.exe setupapi,InstallHinfSection DefaultUnInstall 128 C:\WINDOWS\INF\Athena.inf

Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0)-->rundll32.exe C:\PROGRA~1\DIFX\15B7F172FC21855D\DIFxAppA.dll, DIFxARPUninstallDriverPackage C:\WINDOWS\system32\DRVSTORE\grmnusb_8E661E05CC789A6D1B8ABAA087CF60EDD72AC35D\grmnusb.inf

Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"

Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}

Windows Live Communications Platform-->MsiExec.exe /I{ED00D08A-3C5F-488D-93A0-A04F21F23956}

Windows Live Mail-->MsiExec.exe /I{5DD76286-9BE7-4894-A990-E905E91AC818}

Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1}

Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll

Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"

Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"

Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"

ZebHelpProcess 2.34-->"C:\Program Files\ZebHelpProcess\unins000.exe"

======Security center information======

AV: AntiVir Desktop

FW: Pare-feu Online Armor

======System event log======

Computer Name: SCH-HOUSE

Event Code: 4

Message: Carte Intel® PRO/100 VE Network Connection : lien de la carte inactif

Record Number: 33884

Source Name: E100B

Time Written: 20100527012959.000000+120

Event Type: Avertissement

User:

Computer Name: SCH-HOUSE

Event Code: 4226

Message: TCP/IP a atteint la limite de sécurité imposée sur le nombre de tentatives de connexion TCP simultanées.

Record Number: 33883

Source Name: Tcpip

Time Written: 20100526210817.000000+120

Event Type: Avertissement

User:

Computer Name: SCH-HOUSE

Event Code: 7035

Message: Un contrôle Démarrer a correctement été envoyé au service Lavalys EVEREST Kernel Driver.

Record Number: 33882

Source Name: Service Control Manager

Time Written: 20100526173842.000000+120

Event Type: Informations

User: SCH-HOUSE\Pierre

Computer Name: SCH-HOUSE

Event Code: 19

Message: Installation réussie : Windows a installé la mise à jour suivante : Mise à jour pour Windows XP (KB981793)

Record Number: 33881

Source Name: Windows Update Agent

Time Written: 20100526151833.000000+120

Event Type: Informations

User:

Computer Name: SCH-HOUSE

Event Code: 4377

Message: Le correctif Windows XP KB981793 a été installé.

Record Number: 33880

Source Name: NtServicePack

Time Written: 20100526151808.000000+120

Event Type: Informations

User: SCH-HOUSE\Pierre

=====Application event log=====

Computer Name: SCH-HOUSE

Event Code: 2004

Message: Impossible d'ouvrir le Service serveur. Les données de performance du

serveur ne seront pas renvoyées. Le code d'erreur renvoyé est la donnée DWORD 0.

Record Number: 2658

Source Name: PerfNet

Time Written: 20100122190539.000000+060

Event Type: erreur

User:

Computer Name: SCH-HOUSE

Event Code: 4096

Message: Le service AntiVir a bien démarré!

Record Number: 2657

Source Name: Avira AntiVir

Time Written: 20100122190529.000000+060

Event Type: Informations

User: AUTORITE NT\SYSTEM

Computer Name: SCH-HOUSE

Event Code: 1800

Message: Le service Centre de sécurité Windows a démarré.

Record Number: 2656

Source Name: SecurityCenter

Time Written: 20100122190522.000000+060

Event Type: Informations

User:

Computer Name: SCH-HOUSE

Event Code: 105

Message: The service was started.

Record Number: 2655

Source Name: WMDM PMSP Service

Time Written: 20100122190512.000000+060

Event Type: Informations

User:

Computer Name: SCH-HOUSE

Event Code: 105

Message: The service was started.

Record Number: 2654

Source Name: Creative Service for CDROM Access

Time Written: 20100122190507.000000+060

Event Type: Informations

User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe

"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;C:\Program Files\Fichiers communs\ArcSoft\Bin;C:\Program Files\ATI Technologies\ATI Control Panel;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Intel\DMIX;C:\Program Files\QuickTime\QTSystem

"windir"=%SystemRoot%

"OS"=Windows_NT

"PROCESSOR_ARCHITECTURE"=x86

"PROCESSOR_LEVEL"=15

"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 2 Stepping 5, GenuineIntel

"PROCESSOR_REVISION"=0205

"NUMBER_OF_PROCESSORS"=1

"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH

"TEMP"=%SystemRoot%\TEMP

"TMP"=%SystemRoot%\TEMP

"FP_NO_HOST_CHECK"=NO

"asl.log"=Destination=file;OnFirstLog=command,environment

"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip

"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

-----------------EOF-----------------

5.2 LOG :

Logfile of random's system information tool 1.07 (written by random/random)

Run by Pierre at 2010-06-17 21:28:08

Microsoft Windows XP Édition familiale Service Pack 3

System drive C: has 217 GB (91%) free of 238 GB

Total RAM: 2047 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 21:28:18, on 17/06/2010

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Tall Emu\Online Armor\OAcat.exe

C:\Program Files\Tall Emu\Online Armor\oasrv.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\LEXBCES.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\LEXPPS.EXE

C:\Program Files\Creative\Shared Files\CTAudSvc.exe

C:\Program Files\Avira\AntiVir Desktop\sched.exe

C:\Program Files\Avira\AntiVir Desktop\avguard.exe

C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe

C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Application Updater\ApplicationUpdater.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\WINDOWS\System32\dllhost.exe

C:\WINDOWS\System32\CTsvcCDA.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\wanmpsvc.exe

C:\WINDOWS\System32\MsPMSPSv.exe

C:\Program Files\Logitech\iTouch\iTouch.exe

C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\Tall Emu\Online Armor\oaui.exe

C:\Program Files\SFR\Kit\9props.exe

C:\Program Files\Tall Emu\Online Armor\OAhlp.exe

C:\Program Files\Fichiers communs\AOL\1257938233\ee\aolsoftware.exe

C:\WINDOWS\system32\LVComsX.exe

C:\Program Files\Opera\opera.exe

C:\Documents and Settings\Pierre\Bureau\RSIT.exe

C:\Program Files\trend micro\Pierre.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS02

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.sfr.fr/kit/adsl/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

R3 - URLSearchHook: Oryte Games 1.9 Toolbar - {e7f88e02-0c78-48a1-86d2-82d8865de2df} - C:\Program Files\Oryte_Games_1.9\tbOryt.dll

R3 - URLSearchHook: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - (no file)

O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\SFR\Kit\SFRNavErrorHelper.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: (no name) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - (no file)

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - (no file)

O2 - BHO: Oryte Games 1.9 Toolbar - {e7f88e02-0c78-48a1-86d2-82d8865de2df} - C:\Program Files\Oryte_Games_1.9\tbOryt.dll

O3 - Toolbar: Oryte Games 1.9 Toolbar - {e7f88e02-0c78-48a1-86d2-82d8865de2df} - C:\Program Files\Oryte_Games_1.9\tbOryt.dll

O3 - Toolbar: (no name) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - (no file)

O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [@OnlineArmor GUI] "C:\Program Files\Tall Emu\Online Armor\oaui.exe"

O4 - HKCU\..\Run: [Connexion SFR 9props.exe] "C:\Program Files\SFR\Kit\9props.exe" /trayicon

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL

O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/2.9.2.0...inAxControl.CAB

O16 - DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} (Détection de dispositifs) - http://www.logitech.com/devicedetector/plu...Detection32.cab

O16 - DPF: {2EDF75C0-5ABD-49f9-BAB6-220476A32034} (System Requirements Lab) - http://intel-drv-cdn.systemrequirementslab...reqlab_srlx.cab

O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1257791450140

O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - http://ccfiles.creative.com/Web/softwareup...101/CTSUEng.cab

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1257791774671

O16 - DPF: {6F6FDB9E-5072-498C-BCB0-2B7F00C49EE7} (DellSystemLite.Scanner) - http://support.euro.dell.com/systemprofile...lSystemLite.CAB

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareup...15112/CTPID.cab

O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll

O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll

O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files\Application Updater\ApplicationUpdater.exe

O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Fichiers communs\Creative Labs Shared\Service\CTAELicensing.exe

O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe

O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe

O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe

O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe

O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe

O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE

O23 - Service: Online Armor Helper Service (OAcat) - Unknown owner - C:\Program Files\Tall Emu\Online Armor\OAcat.exe

O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe

O23 - Service: Online Armor (SvcOnlineArmor) - Unknown owner - C:\Program Files\Tall Emu\Online Armor\oasrv.exe

O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe

O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\System32\wbem\wmiapsrv.exe

O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe

--

End of file - 9667 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job

C:\WINDOWS\tasks\Auslogics Boost Speed Disk Defrag Console Defragmentation.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}]

Objet d'aide à la navigation SFR - C:\Program Files\SFR\Kit\SFRNavErrorHelper.dll [2009-10-15 165184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-04 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-04-19 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e7f88e02-0c78-48a1-86d2-82d8865de2df}]

Oryte Games 1.9 Toolbar - C:\Program Files\Oryte_Games_1.9\tbOryt.dll [2010-06-03 2736736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{e7f88e02-0c78-48a1-86d2-82d8865de2df} - Oryte Games 1.9 Toolbar - C:\Program Files\Oryte_Games_1.9\tbOryt.dll [2010-06-03 2736736]

{B922D405-6D13-4A2B-AE89-08A030DA4402}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"zBrowser Launcher"=C:\Program Files\Logitech\iTouch\iTouch.exe [2004-03-18 892928]

"SunJavaUpdateSched"=C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [2010-02-18 248040]

"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]

"@OnlineArmor GUI"=C:\Program Files\Tall Emu\Online Armor\oaui.exe [2010-04-20 6678008]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Connexion SFR 9props.exe"=C:\Program Files\SFR\Kit\9props.exe [2009-10-15 959808]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [2010-03-24 952768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-04-04 36272]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AOL Fast Start]

C:\Program Files\AOL 9.0 VR\AOL.EXE [2007-06-21 50480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AOLDialer]

C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe [2007-06-21 70952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AsioReg]

REGSVR32.EXE /S CTASIO.DLL []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]

C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe [2005-12-16 94208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative Detector]

C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe [2004-12-02 102400]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative MediaSource Go]

C:\Program Files\Creative\MediaSource\Go\CTCMSGo.exe [2004-11-30 135168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTDVDDet]

C:\Program Files\Creative\SBAudigy2\DVDAudio\CTDVDDET.EXE [2003-06-18 45056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]

C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTHelper]

C:\WINDOWS\system32\CTHELPER.EXE [2010-03-18 19456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSysVol]

C:\Program Files\Creative\SBAudigy2\Surround Mixer\CTSysVol.exe [2002-10-29 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dell AIO Printer A920]

C:\Program Files\Dell AIO Printer A920\dlbkbmgr.exe [2003-05-12 270336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HostManager]

C:\Program Files\Fichiers communs\AOL\1257938233\ee\AOLSoftware.exe [2006-09-26 50736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]

c:\progra~1\fichie~1\instal~1\update~1\isuspm.exe [2004-04-17 196608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

C:\Program Files\iTunes\iTunesHelper.exe [2010-04-24 142120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LDM]

C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe [2009-11-08 16384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Utility]

C:\WINDOWS\Logi_MwX.Exe [2003-12-11 20992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechSoftwareUpdate]

C:\Program Files\Logitech\Video\ManifestEngine.exe [2005-06-08 196608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoRepair]

C:\Program Files\Logitech\Video\ISStart.exe [2005-06-08 458752]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoTray]

C:\Program Files\Logitech\Video\LogiTray.exe [2005-06-08 217088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]

C:\WINDOWS\system32\LVCOMSX.EXE [2005-07-19 221184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSConfig]

C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe [2008-04-14 172544]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]

C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]

C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF4 Registry Controller]

C:\Program Files\ScanSoft\PDF Professional 4.0\\RegistryController.exe [2006-08-22 40960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

C:\Program Files\QuickTime\QTTask.exe [2010-03-17 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]

C:\Program Files\Analog Devices\Core\smax4pnp.exe [2004-10-14 1404928]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]

C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2003-09-30 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-02-11 61440]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [2010-02-18 248040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\zBrowser Launcher]

C:\Program Files\Logitech\iTouch\iTouch.exe [2004-03-18 892928]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech Desktop Messenger.lnk]

C:\PROGRA~1\Logitech\DESKTO~1\8876480\Program\LDMConf.exe [2009-11-08 169472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Pierre^Menu Démarrer^Programmes^Démarrage^Secunia PSI.lnk]

C:\PROGRA~1\Secunia\PSI\psi.exe [2010-05-28 911920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]

C:\WINDOWS\system32\Ati2evxx.dll [2010-02-11 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{4F07DA45-8170-4859-9B5F-037EF2970034}"=C:\PROGRA~1\TALLEM~1\ONLINE~1\oaevent.dll [2010-04-20 925688]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=323

"NoDriveAutoRun"=67108863

"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"HonorAutoRunSetting"=

"NoDriveTypeAutoRun"=

"NoDriveAutoRun"=

"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe:*:Enabled:backWeb-8876480"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\Program Files\CCleaner\CCleaner.exe"="C:\Program Files\CCleaner\CCleaner.exe:*:Enabled:CCleaner"

"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"

"C:\Program Files\SFR\Kit\9mail.exe"="C:\Program Files\SFR\Kit\9mail.exe:*:Enabled:Assistant de messagerie"

"C:\Program Files\Avira\AntiVir Desktop\avcenter.exe"="C:\Program Files\Avira\AntiVir Desktop\avcenter.exe:*:Enabled:Démarrer AntiVir"

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

"C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe"="C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe:*:Enabled:AOL"

"C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe"="C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe:*:Enabled:AOL"

"C:\Program Files\Fichiers communs\AOL\1257938233\ee\aolsoftware.exe"="C:\Program Files\Fichiers communs\AOL\1257938233\ee\aolsoftware.exe:*:Enabled:AOL Shared Components"

"C:\Program Files\Fichiers communs\AOL\TopSpeed\3.0\aoltpsd3.exe"="C:\Program Files\Fichiers communs\AOL\TopSpeed\3.0\aoltpsd3.exe:*:Enabled:AOL TopSpeed"

"C:\Program Files\Fichiers communs\AOL\Loader\aolload.exe"="C:\Program Files\Fichiers communs\AOL\Loader\aolload.exe:*:Enabled:AOL Loader"

"C:\Program Files\Fichiers communs\AOL\System Information\sinf.exe"="C:\Program Files\Fichiers communs\AOL\System Information\sinf.exe:*:Enabled:AOL System Information"

"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"

"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Service Bonjour"

"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

"C:\Program Files\AOL 9.0 VR\waol.exe"="C:\Program Files\AOL 9.0 VR\waol.exe:*:Enabled:AOL 9.0 VR"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

"C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe"="C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe:*:Enabled:AOL"

"C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe"="C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe:*:Enabled:AOL"

"C:\Program Files\AOL 9.0\waol.exe"="C:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL 9.0"

"C:\Program Files\AOL 9.0 VR\waol.exe"="C:\Program Files\AOL 9.0 VR\waol.exe:*:Enabled:AOL 9.0 VR"

======List of files/folders created in the last 1 months======

2010-06-17 21:28:09 ----D---- C:\Program Files\trend micro

2010-06-17 21:28:08 ----D---- C:\rsit

2010-06-16 22:12:12 ----D---- C:\Documents and Settings\Pierre\Application Data\Search Settings

2010-06-16 22:12:08 ----D---- C:\Documents and Settings\Pierre\Application Data\pdfforge

2010-06-16 21:23:34 ----D---- C:\Program Files\Application Updater

2010-06-16 21:22:17 ----A---- C:\WINDOWS\system32\pdfcmnnt.dll

2010-06-16 21:22:16 ----A---- C:\WINDOWS\system32\MSCMCFR.DLL

2010-06-16 21:22:15 ----D---- C:\Program Files\PDFCreator

2010-06-16 21:22:15 ----A---- C:\WINDOWS\system32\MSMPIDE.DLL

2010-06-16 21:22:15 ----A---- C:\WINDOWS\system32\MSCC2FR.DLL

2010-06-15 23:22:01 ----D---- C:\Documents and Settings\Pierre\Application Data\OnlineArmor

2010-06-15 23:22:01 ----D---- C:\Documents and Settings\All Users\Application Data\OnlineArmor

2010-06-15 21:55:53 ----D---- C:\Program Files\Avira

2010-06-15 21:55:53 ----D---- C:\Documents and Settings\All Users\Application Data\Avira

2010-06-15 21:20:09 ----SHD---- C:\RECYCLER

2010-06-15 20:31:17 ----D---- C:\WINDOWS\temp

2010-06-15 20:05:24 ----A---- C:\WINDOWS\SWREG.exe

2010-06-15 20:05:24 ----A---- C:\WINDOWS\PEV.exe

2010-06-15 20:05:24 ----A---- C:\WINDOWS\NIRCMD.exe

2010-06-15 20:05:24 ----A---- C:\WINDOWS\MBR.exe

2010-06-15 20:05:23 ----A---- C:\WINDOWS\zip.exe

2010-06-15 20:05:23 ----A---- C:\WINDOWS\SWXCACLS.exe

2010-06-15 20:05:23 ----A---- C:\WINDOWS\SWSC.exe

2010-06-15 20:05:23 ----A---- C:\WINDOWS\sed.exe

2010-06-15 20:05:23 ----A---- C:\WINDOWS\grep.exe

2010-06-15 20:05:14 ----D---- C:\WINDOWS\ERDNT

2010-06-15 20:03:44 ----D---- C:\Qoobox

2010-06-15 18:48:11 ----A---- C:\WINDOWS\ban_list.txt

2010-06-13 01:59:24 ----HD---- C:\Documents and Settings\Pierre\Application Data\drivers

2010-06-13 01:56:47 ----D---- C:\Program Files\Oryte_Games_1.9

2010-06-09 19:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$

2010-06-09 19:36:50 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$

2010-06-09 19:34:46 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$

2010-06-09 19:31:07 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$

2010-06-09 19:31:01 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$

2010-06-09 19:30:48 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$

2010-06-05 13:54:37 ----D---- C:\Program Files\Secunia

2010-06-03 22:42:49 ----D---- C:\Program Files\Auslogics

2010-06-02 16:11:14 ----A---- C:\WINDOWS\system32\VB6FR.DLL

2010-06-02 14:35:14 ----A---- C:\WINDOWS\avisplitter.ini

2010-06-02 14:35:12 ----A---- C:\WINDOWS\system32\yv12vfw.dll

2010-06-02 14:35:12 ----A---- C:\WINDOWS\system32\xvidvfw.dll

2010-06-02 14:35:12 ----A---- C:\WINDOWS\system32\xvidcore.dll

2010-06-02 14:35:11 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest

2010-06-02 14:35:11 ----A---- C:\WINDOWS\system32\ff_vfw.dll

2010-05-26 15:17:57 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$

2010-05-23 14:51:56 ----D---- C:\Program Files\Paragon Software

======List of files/folders modified in the last 1 months======

2010-06-17 21:28:19 ----D---- C:\WINDOWS\Prefetch

2010-06-17 21:28:09 ----RD---- C:\Program Files

2010-06-17 21:15:26 ----A---- C:\WINDOWS\iTouch.ini

2010-06-17 20:30:30 ----SHD---- C:\WINDOWS\Installer

2010-06-17 19:54:35 ----A---- C:\WINDOWS\win.ini

2010-06-17 18:19:42 ----D---- C:\WINDOWS\system32\CatRoot2

2010-06-17 18:19:34 ----D---- C:\WINDOWS

2010-06-17 18:19:24 ----D---- C:\WINDOWS\Registration

2010-06-17 18:17:44 ----A---- C:\WINDOWS\SchedLgU.Txt

2010-06-17 18:17:24 ----D---- C:\WINDOWS\system32\config

2010-06-16 22:37:47 ----SD---- C:\WINDOWS\Tasks

2010-06-16 22:17:58 ----D---- C:\Documents and Settings\Pierre\Application Data\Media Player Classic

2010-06-16 21:23:33 ----D---- C:\WINDOWS\WinSxS

2010-06-16 21:22:18 ----D---- C:\WINDOWS\system32

2010-06-16 07:16:41 ----D---- C:\WINDOWS\system32\drivers

2010-06-15 23:51:01 ----D---- C:\Program Files\Internet Explorer

2010-06-15 23:41:47 ----A---- C:\WINDOWS\NeroDigital.ini

2010-06-15 23:21:26 ----D---- C:\Program Files\Tall Emu

2010-06-15 21:56:01 ----HD---- C:\WINDOWS\inf

2010-06-15 20:30:34 ----D---- C:\WINDOWS\repair

2010-06-15 20:24:23 ----A---- C:\WINDOWS\system.ini

2010-06-15 20:15:34 ----D---- C:\WINDOWS\AppPatch

2010-06-15 20:15:32 ----D---- C:\Program Files\Fichiers communs

2010-06-15 19:54:38 ----A---- C:\WINDOWS\dellstat.ini

2010-06-14 22:35:56 ----D---- C:\Program Files\ZebHelpProcess

2010-06-13 16:41:37 ----D---- C:\Documents and Settings\Pierre\Application Data\vlc

2010-06-10 20:15:16 ----D---- C:\Documents and Settings\Pierre\Application Data\dvdcss

2010-06-09 22:18:46 ----D---- C:\WINDOWS\Debug

2010-06-09 21:58:22 ----SHD---- C:\System Volume Information

2010-06-09 21:58:22 ----D---- C:\WINDOWS\system32\Restore

2010-06-09 19:52:14 ----RSD---- C:\WINDOWS\assembly

2010-06-09 19:49:54 ----D---- C:\WINDOWS\Microsoft.NET

2010-06-09 19:38:11 ----RSHDC---- C:\WINDOWS\system32\dllcache

2010-06-09 19:36:49 ----HD---- C:\WINDOWS\$hf_mig$

2010-06-09 19:34:24 ----D---- C:\WINDOWS\ie8updates

2010-06-09 19:30:57 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI

2010-06-09 19:28:17 ----A---- C:\WINDOWS\ModemLog_Conexant D850 56K V.9x DFVc Modem.txt

2010-06-09 18:32:07 ----D---- C:\WINDOWS\system32\CatRoot

2010-06-06 20:58:44 ----D---- C:\Garmin

2010-06-06 20:58:40 ----DC---- C:\WINDOWS\system32\DRVSTORE

2010-06-06 20:58:40 ----D---- C:\Program Files\Garmin

2010-06-04 19:58:47 ----D---- C:\Program Files\K-Lite Codec Pack

2010-06-03 23:30:09 ----D---- C:\ToolBar SD

2010-06-01 19:46:41 ----D---- C:\Program Files\Opera

2010-05-29 17:57:41 ----D---- C:\Program Files\FaxTools

2010-05-28 21:37:34 ----A---- C:\WINDOWS\system32\MRT.exe

2010-05-26 19:45:08 ----D---- C:\Program Files\CCleaner

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []

R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]

R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 40576]

R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14720]

R1 OADevice;OADriver; \??\C:\WINDOWS\system32\drivers\OADriver.sys []

R1 OAmon;OAmon; \??\C:\WINDOWS\system32\drivers\OAmon.sys []

R1 OAnet;OAnet; \??\C:\WINDOWS\system32\drivers\OAnet.sys []

R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-06-15 28520]

R1 Tcpip6;Pilote du protocole IPv6 Microsoft; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880]

R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2010-06-15 56816]

R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2003-04-09 11043]

R2 PfModNT;PfModNT; \??\C:\WINDOWS\system32\drivers\PfModNT.sys []

R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800]

R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2010-02-11 3565056]

R3 COMMONFX.SYS;COMMONFX.SYS; C:\WINDOWS\System32\drivers\COMMONFX.SYS [2010-03-18 99416]

R3 ctac32k;Creative AC3 Software Decoder; C:\WINDOWS\System32\drivers\ctac32k.sys [2010-03-18 511064]

R3 ctaud2k;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys [2010-03-18 528472]

R3 CTAUDFX.SYS;CTAUDFX.SYS; C:\WINDOWS\System32\drivers\CTAUDFX.SYS [2010-03-18 555096]

R3 ctprxy2k;Creative Proxy Driver; C:\WINDOWS\System32\drivers\ctprxy2k.sys [2010-03-18 14424]

R3 CTSBLFX.SYS;CTSBLFX.SYS; C:\WINDOWS\System32\drivers\CTSBLFX.SYS [2010-03-18 566360]

R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\System32\drivers\ctsfm2k.sys [2010-03-18 157272]

R3 E100B;Intel® PRO Network Connection Driver; C:\WINDOWS\System32\DRIVERS\e100b325.sys [2007-11-16 165496]

R3 emupia;E-mu Plug-in Architecture Driver; C:\WINDOWS\System32\drivers\emupia2k.sys [2010-03-18 92760]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]

R3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:\WINDOWS\System32\drivers\ha10kx2k.sys [2010-03-18 798808]

R3 hap16v2k;Creative P16V HAL Driver; C:\WINDOWS\System32\drivers\hap16v2k.sys [2010-03-18 162904]

R3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSF_DP.sys [2003-11-17 1042432]

R3 HSFHWBS2;HSFHWBS2; C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys [2003-11-17 212224]

R3 LCcfltr;Logitech USB Filter Driver; C:\WINDOWS\System32\Drivers\LCcFltr.Sys [2004-03-03 14095]

R3 LHidFlt2;Logitech HID/USB Mouse Filter Driver; C:\WINDOWS\System32\DRIVERS\LHidFlt2.Sys [2003-12-11 25630]

R3 LHidUsb;Logitech USB Receiver device driver; C:\WINDOWS\System32\Drivers\LHidUsb.Sys [2004-03-03 37887]

R3 LMouFlt2;Logitech Mouse Class Filter Driver; C:\WINDOWS\System32\DRIVERS\LMouFlt2.Sys [2003-12-11 70894]

R3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288]

R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824]

R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\drivers\ctoss2k.sys [2010-03-18 127576]

R3 PhilCam8116;Logitech QuickCam Pro 3000(PID_08B0); C:\WINDOWS\System32\DRIVERS\CamDrL21.sys [2003-06-27 313216]

R3 senfilt;senfilt; C:\WINDOWS\system32\drivers\senfilt.sys [2004-09-17 732928]

R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2005-03-22 260224]

R3 tunmp;Pilote de carte miniport Tun Microsoft; C:\WINDOWS\System32\DRIVERS\tunmp.sys [2008-04-13 12288]

R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]

R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]

R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]

R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]

R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]

R3 usbscan;Pilote de scanneur USB; C:\WINDOWS\System32\DRIVERS\usbscan.sys [2008-04-13 15104]

R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]

R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]

R3 wanatw;WAN Miniport (ATW); C:\WINDOWS\system32\DRIVERS\wanatw4.sys [2003-01-10 33588]

R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2003-11-17 680704]

S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys []

S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys []

S3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys []

S3 bvrp_pci;bvrp_pci; \??\C:\WINDOWS\System32\drivers\bvrp_pci.sys []

S3 catchme;catchme; \??\C:\Tonton\catchme.sys []

S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-13 17024]

S3 COMMONFX;COMMONFX; C:\WINDOWS\system32\drivers\COMMONFX.SYS [2010-03-18 99416]

S3 CTAUDFX;CTAUDFX; C:\WINDOWS\system32\drivers\CTAUDFX.SYS [2010-03-18 555096]

S3 ctdvda2k;Creative DVD-Audio Device Driver; C:\WINDOWS\System32\drivers\ctdvda2k.sys [2010-03-18 347144]

S3 CTERFXFX.SYS;CTERFXFX.SYS; C:\WINDOWS\System32\drivers\CTERFXFX.SYS [2010-03-18 100952]

S3 CTERFXFX;CTERFXFX; C:\WINDOWS\system32\drivers\CTERFXFX.SYS [2010-03-18 100952]

S3 CTSBLFX;CTSBLFX; C:\WINDOWS\system32\drivers\CTSBLFX.SYS [2010-03-18 566360]

S3 hap17v2k;Creative P17V HAL Driver; C:\WINDOWS\system32\drivers\hap17v2k.sys [2010-03-18 189528]

S3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]

S3 MODEMCSA;Périphérique de filtrage de flux Unimodem; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]

S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]

S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]

S3 NAL;Nal Service ; \??\C:\WINDOWS\system32\Drivers\iqvw32.sys []

S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-13 10880]

S3 OmniUsb;Ideazon Usb Keyboard Driver; C:\WINDOWS\system32\DRIVERS\OmniUsb.sys [2005-09-26 28640]

S3 OmniUsbl;Ideazon Usbl Keyboard Driver; C:\WINDOWS\system32\DRIVERS\OmniUsbl.sys [2005-09-26 8160]

S3 PCASp50;PCASp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\PCASp50.sys [2005-11-19 20096]

S3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf.sys [2010-05-28 14896]

S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-13 11136]

S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-13 15232]

S3 usb_rndis;Broadcom USB Remote NDIS Device Driver; C:\WINDOWS\System32\DRIVERS\usb8023.sys [2008-04-13 12800]

S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-10-16 41472]

S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]

S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

S3 ZTEusbmdm6k;ZTE Proprietary USB Driver; C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys []

S3 ZTEusbnmea;ZTE NMEA Port; C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys []

S3 ZTEusbser6k;ZTE Diagnostic Port; C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys []

S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys []

S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Service d'application d'assistance IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-06-15 108289]

R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-06-15 185089]

R2 AOL ACS;AOL Connectivity Service; C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe [2006-10-23 46640]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-04-16 144672]

R2 Application Updater;Application Updater; C:\Program Files\Application Updater\ApplicationUpdater.exe [2010-01-08 380928]

R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2010-04-08 345376]

R2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\System32\CTsvcCDA.exe [1999-12-13 44032]

R2 CTAudSvcService;Creative Audio Service; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [2010-02-12 286720]

R2 LexBceS;LexBce Server; C:\WINDOWS\system32\LEXBCES.EXE [2003-06-02 303104]

R2 OAcat;Online Armor Helper Service; C:\Program Files\Tall Emu\Online Armor\OAcat.exe [2010-04-20 1284600]

R2 SvcOnlineArmor;Online Armor; C:\Program Files\Tall Emu\Online Armor\oasrv.exe [2010-04-20 3364856]

R2 WANMiniportService;WAN Miniport (ATW) Service; C:\WINDOWS\wanmpsvc.exe [2003-08-27 65536]

R2 WMDM PMSP Service;WMDM PMSP Service; C:\WINDOWS\System32\MsPMSPSv.exe [2000-06-26 53520]

S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2010-02-10 593920]

S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]

S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]

S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files\Fichiers communs\Creative Labs Shared\Service\CTAELicensing.exe [2010-04-19 79360]

S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]

S3 getPlusHelper;getPlus® Helper; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]

S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]

S3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2010-04-24 545576]

S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]

S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

S4 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-02-11 602112]

S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

 

6. Peux-tu stp m'indiquer comment supprimer les outils utilisés et traces : QOOBOX, par ex.

Y'a-t-il d'autres manipulations à effectuer stp ?

 

Merci pour tout !

Tonton