Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business

|-  PRODUITS


|||-  

Virus BUNDESPOLIZEI

 

2 utilisateurs anonymes
Ajouter une réponse
 

 
Page photos
 
     
Vider la liste des messages à citer
 
 Page :
1
Auteur
 Sujet :

Virus BUNDESPOLIZEI

Prévenir les modérateurs en cas d'abus 
fanlou61
fanlou61
  1. Posté le 09/12/2011 à 12:52:35  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 




 Bonjour a tous et a toutes,

 voila j'ai un petit soucis depuis hier avec bundespolizei sur le PC de ma fille.

 j'ai donc suivis le tuto de OTLPE.

 gravure ok, voici le rapport seulement a partir de là je ne sais plus quoi faire ...

 est-ce possible d'avoir un petit coup de main ?

 merci d'avance .


 rapport :

 OTL logfile created on: 12/9/2011 12:38:09 PM - Run
 OTLPE by OldTimer - Version 3.1.48.0     Folder = X:\Programs\OTLPE
 Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
 Internet Explorer (Version = 8.0.6001.18702)
 Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

 1,014.00 Mb Total Physical Memory | 792.00 Mb Available Physical Memory | 78.00% Memory free
 902.00 Mb Paging File | 825.00 Mb Available in Paging File | 92.00% Paging File free
 Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

 %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
 Drive C: | 139.26 Gb Total Space | 18.70 Gb Free Space | 13.43% Space Free | Partition Type: NTFS
 Drive E: | 9.78 Gb Total Space | 3.00 Gb Free Space | 30.63% Space Free | Partition Type: NTFS
 Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

 Computer Name: REATOGO | User Name: SYSTEM
 Boot Mode: Normal | Scan Mode: All users
 Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 Using ControlSet: ControlSet001

 ========== Win32 Services (SafeList) ==========

 SRV - File not found [On_Demand] --  -- (AppMgmt)
 SRV - [2011/09/12 10:40:16 | 000,269,480 | ---- | M] (Avira GmbH) [Auto] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
 SRV - [2011/04/11 04:56:10 | 000,136,360 | ---- | M] (Avira GmbH) [Auto] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
 SRV - [2010/01/22 04:14:00 | 000,073,728 | ---- | M] (Hewlett-Packard Company) [Auto] -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe -- (LightScribeService)
 SRV - [2010/01/04 13:03:42 | 000,238,328 | ---- | M] (WildTangent, Inc.) [On_Demand] -- C:\Program Files\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService)
 SRV - [2009/08/27 10:09:10 | 001,253,376 | ---- | M] (MAGIX AG) [Auto] -- C:\Program Files\Fichiers communs\MAGIX Services\Database\bin\FABS.exe -- (Fabs)
 SRV - [2009/08/18 04:29:22 | 001,529,728 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
 SRV - [2009/02/10 10:01:49 | 000,116,104 | ---- | M] () [Auto] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
 SRV - [2008/11/03 19:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
 SRV - [2008/08/07 04:10:02 | 003,276,800 | ---- | M] (MAGIX®) [On_Demand] -- C:\Program Files\Fichiers communs\MAGIX Services\Database\bin\fbserver​.exe -- (FirebirdServerMAGIXInstance)
 SRV - [2006/10/26 07:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)


 ========== Driver Services (SafeList) ==========

 DRV - File not found [Kernel | On_Demand] --  -- (WDICA)
 DRV - File not found [Kernel | On_Demand] --  -- (PDRFRAME)
 DRV - File not found [Kernel | On_Demand] --  -- (PDRELI)
 DRV - File not found [Kernel | On_Demand] --  -- (PDFRAME)
 DRV - File not found [Kernel | On_Demand] --  -- (PDCOMP)
 DRV - File not found [Kernel | System] --  -- (PCIDump)
 DRV - File not found [Kernel | On_Demand] --  -- (MBAMSwissArmy)
 DRV - File not found [Kernel | System] --  -- (lbrtfdc)
 DRV - File not found [Kernel | System] --  -- (i2omgmt)
 DRV - File not found [Kernel | System] --  -- (Changer)
 DRV - [2011/09/12 10:40:18 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\av​ipbb.sys -- (avipbb)
 DRV - [2011/09/12 10:40:18 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto] -- C:\WINDOWS\system32\drivers\av​gntflt.sys -- (avgntflt)
 DRV - [2011/03/05 05:31:06 | 000,685,816 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\sp​td.sys -- (sptd)
 DRV - [2010/06/17 08:28:02 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\ss​mdrv.sys -- (ssmdrv)
 DRV - [2010/06/17 08:27:52 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
 DRV - [2010/04/28 01:44:02 | 000,054,760 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\fs​sfltr_tdi.sys -- (fssfltr)
 DRV - [2010/04/27 03:10:52 | 006,031,904 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Rt​kHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
 DRV - [2010/03/22 03:30:22 | 000,222,672 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Rt​enicxp.sys -- (RTLE8023xp)
 DRV - [2009/11/30 06:48:40 | 000,029,184 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Am​UStor.sys -- (AmUStor)
 DRV - [2009/11/17 18:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Mo​nfilt.sys -- (Monfilt)
 DRV - [2009/11/17 18:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Am​bfilt.sys -- (Ambfilt)
 DRV - [2005/05/09 13:08:40 | 000,033,792 | ---- | M] (Team H2O) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\cl​edx.sys -- (CLEDX)
 DRV - [2004/11/18 08:36:02 | 000,379,456 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Wl​anUIG.sys -- (WlanUIG)
 DRV - [2004/09/02 17:18:22 | 000,015,781 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\md​c8021x.sys -- (MDC8021X) AEGIS Protocol (IEEE 802.1x)
 DRV - [2004/09/02 17:18:20 | 000,016,292 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand] -- C:\WINDOWS\system32\PCANDIS5.S​YS -- (PCANDIS5)


 ========== Standard Registry (SafeList) ==========


 ========== Internet Explorer ==========

 IE - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://www.search-web.net
 IE - HKLM\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://www.search-web.net?nav=if&zon=Spie
 IE - HKLM\Software\Microsoft\Intern​et Explorer\Search,SearchAssistan​t = http://www.bing.com/sphome.aspx?mkt={SUB_RFC1766}


 IE - HKU\.DEFAULT\Software\Microsof​t\Windows\CurrentVersion\Inter​net Settings: "ProxyEnable" = 0

 IE - HKU\HP_Administrator_ON_C\Soft​ware\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.search-web.net
 IE - HKU\HP_Administrator_ON_C\Soft​ware\Microsoft\Internet Explorer\Main,Default_Search_U​RL = http://www.search-web.net/keyword/
 IE - HKU\HP_Administrator_ON_C\Soft​ware\Microsoft\Internet Explorer\Main,Default_Secondar​y_Page_URL = http://www.search-web.net
 IE - HKU\HP_Administrator_ON_C\Soft​ware\Microsoft\Internet Explorer\Main,Search Page = http://www.search-web.net/?nav=if&zon=Spie
 IE - HKU\HP_Administrator_ON_C\Soft​ware\Microsoft\Internet Explorer\Main,SearchMigratedDe​faultName = search-web.net
 IE - HKU\HP_Administrator_ON_C\Soft​ware\Microsoft\Internet Explorer\Main,SearchMigratedDe​faultURL = http://www.search-web.net/resu [...] archTerms}
 IE - HKU\HP_Administrator_ON_C\Soft​ware\Microsoft\Internet Explorer\Main,Start Page = http://www.search-web.net?nav=if&zon=Stpie
 IE - HKU\HP_Administrator_ON_C\Soft​ware\Microsoft\Internet Explorer\Main,Start Page_bak = http://www.search-web.net?nav=if&zon=Stbpie
 IE - HKU\HP_Administrator_ON_C\..\U​RLSearchHook: {ef79f67a-6ad7-4715-a0f8-932fc​a442023} - C:\Program Files\BittorrentBar_FR\prxtbBi​t2.dll (Conduit Ltd.)
 IE - HKU\HP_Administrator_ON_C\Soft​ware\Microsoft\Windows\Current​Version\Internet Settings: "ProxyEnable" = 0




 ========== FireFox ==========

 FF - prefs.js..browser.search.defau​ltengine: "Ask.com"
 FF - prefs.js..browser.search.defau​ltenginename: "Ask.com"
 FF - prefs.js..browser.search.defau​ltthis.engineName: "BittorrentBar_FR Customized Web Search"
 FF - prefs.js..browser.search.defau​lturl: "http://search.conduit.com/Res​ultsExt.aspx?ctid=CT2849852&Se​archSource=3&q={searchTerms}"
 FF - prefs.js..browser.search.order​.1: "Ask.com"
 FF - prefs.js..browser.search.selec​tedEngine: "Ask.com"
 FF - prefs.js..browser.search.useDB​ForOrder: true
 FF - prefs.js..browser.startup.home​page: "http://www.search-web.net/?na​v=ff&zon=hp"
 FF - prefs.js..extensions.enabledIt​ems: {CAFEEFAC-0016-0000-0023-ABCDE​FFEDCBA}:6.0.23
 FF - prefs.js..extensions.enabledIt​ems: jqs@sun.com:1.0
 FF - prefs.js..keyword.URL: "http://redirecterror.sfr.fr/?​q="

 FF - user.js..keyword.URL: "http://redirecterror.sfr.fr/?​q="

 FF - HKLM\Software\MozillaPlugins\@​adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\F​lash\NPSWF32.dll ()
 FF - HKLM\Software\MozillaPlugins\@​canon.com/EPPEX: C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
 FF - HKLM\Software\MozillaPlugins\@​java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin​\npjp2.dll (Sun Microsystems, Inc.)
 FF - HKLM\Software\MozillaPlugins\@​Microsoft.com/NpCtrl,version=1​.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl​.dll ( Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@​microsoft.com/OfficeLive,versi​on=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
 FF - HKLM\Software\MozillaPlugins\@​microsoft.com/WLPG,version=14.​0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@​microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Frame​work\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@​tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\​npGoogleUpdate3.dll (Google Inc.)
 FF - HKLM\Software\MozillaPlugins\@​tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\​npGoogleUpdate3.dll (Google Inc.)

 FF - HKEY_LOCAL_MACHINE\software\mo​zilla\Mozilla Firefox 8.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/11/10 17:26:49 | 000,000,000 | ---D | M]
 FF - HKEY_LOCAL_MACHINE\software\mo​zilla\Mozilla Firefox 8.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/10/25 20:51:27 | 000,000,000 | ---D | M]

 [2011/09/25 12:33:50 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\HP_Administrator\Appl​ication Data\Mozilla\Extensions
 [2011/09/25 12:33:50 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\HP_Administrator\Appl​ication Data\Mozilla\Extensions\mozswi​ng@mozswing.org
 [2011/12/06 19:58:04 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\HP_Administrator\Appl​ication Data\Mozilla\Firefox\Profiles\​zyirtw6y.default\extensions
 [2011/02/08 03:29:35 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\HP_Administrator\Appl​ication Data\Mozilla\Firefox\Profiles\​zyirtw6y.default\extensions\{2​0a82645-c095-46ed-80e3-0882576​0534b}
 [2011/06/16 14:04:51 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\HP_Administrator\Appl​ication Data\Mozilla\Firefox\Profiles\​zyirtw6y.default\extensions\{3​112ca9c-de6d-4884-a869-9855de6​8056c}
 [2011/11/27 14:38:03 | 000,000,000 | ---D | M] (Browser Backgrounds) -- C:\Documents and Settings\HP_Administrator\Appl​ication Data\Mozilla\Firefox\Profiles\​zyirtw6y.default\extensions\{3​e0c7f3a-3f50-4730-beb5-4a9a10e​2831c}
 [2011/12/06 19:58:04 | 000,000,000 | ---D | M] (BittorrentBar_FR Community Toolbar) -- C:\Documents and Settings\HP_Administrator\Appl​ication Data\Mozilla\Firefox\Profiles\​zyirtw6y.default\extensions\{e​f79f67a-6ad7-4715-a0f8-932fca4​42023}
 [2011/11/10 06:23:59 | 000,000,000 | ---D | M] ("MAGIX Toolbar" ) -- C:\Documents and Settings\HP_Administrator\Appl​ication Data\Mozilla\Firefox\Profiles\​zyirtw6y.default\extensions\to​olbar@ask.com
 [2011/03/05 05:54:07 | 000,001,834 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\Appl​ication Data\Mozilla\Firefox\Profiles\​zyirtw6y.default\searchplugins​\bing.xml
 [2011/08/16 03:08:34 | 000,000,935 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\Appl​ication Data\Mozilla\Firefox\Profiles\​zyirtw6y.default\searchplugins​\conduit.xml
 [2011/11/10 17:26:57 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
 [2011/02/08 07:48:52 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6​272-4b12-94A9-7303C7397BD1}
 File not found (No name found) --
 () (No name found) -- C:\DOCUMENTS AND SETTINGS\HP_ADMINISTRATOR\APPL​ICATION DATA\MOZILLA\FIREFOX\PROFILES\​ZYIRTW6Y.DEFAULT\EXTENSIONS\{E​968FC70-8F95-4AB9-9E79-304DE2A​71EE1}.XPI
 [2011/02/09 13:12:07 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS​\FF
 [2011/11/10 17:26:48 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomp​s.dll
 [2011/05/03 21:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.​dll
 [2010/01/01 03:00:00 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-f​rance.xml
 [2010/01/01 03:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
 [2010/01/01 03:00:00 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tl​fi-fr.xml
 [2010/01/01 03:00:00 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-fra​nce.xml
 [2010/01/01 03:00:00 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedi​a-fr.xml
 [2010/01/01 03:00:00 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-fr​ance.xml

 O1 HOSTS File: ([2011/09/10 07:39:52 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\et​c\hosts
 O1 - Hosts: 127.0.0.1       localhost
 O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7​D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\​AcroIEHelper.dll (Adobe Systems Incorporated)
 O2 - BHO: (Objet d'aide à la navigation SFR) - {0F6E720A-1A6B-40E1-A294-1D4D1​9F156C8} - C:\Program Files\SFR\Kit\SFRNavErrorHelpe​r.dll (SFR)
 O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C​162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
 O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988​571CECB} - No CLSID value found.
 O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-51647​60863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
 O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F78​51A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
 O2 - BHO: (MAGIX Toolbar) - {D4027C7F-154A-4066-A1AD-4243D​8127440} - C:\Program Files\Ask.com\GenericAskToolba​r.dll (Ask)
 O2 - BHO: (BittorrentBar_FR Toolbar) - {ef79f67a-6ad7-4715-a0f8-932fc​a442023} - C:\Program Files\BittorrentBar_FR\prxtbBi​t2.dll (Conduit Ltd.)
 O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F4​7C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
 O3 - HKLM\..\Toolbar: (MAGIX Toolbar) - {D4027C7F-154A-4066-A1AD-4243D​8127440} - C:\Program Files\Ask.com\GenericAskToolba​r.dll (Ask)
 O3 - HKLM\..\Toolbar: (BittorrentBar_FR Toolbar) - {ef79f67a-6ad7-4715-a0f8-932fc​a442023} - C:\Program Files\BittorrentBar_FR\prxtbBi​t2.dll (Conduit Ltd.)
 O3 - HKU\HP_Administrator_ON_C\..\T​oolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F4​7C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
 O3 - HKU\HP_Administrator_ON_C\..\T​oolbar\WebBrowser: (MAGIX Toolbar) - {D4027C7F-154A-4066-A1AD-4243D​8127440} - C:\Program Files\Ask.com\GenericAskToolba​r.dll (Ask)
 O3 - HKU\HP_Administrator_ON_C\..\T​oolbar\WebBrowser: (BittorrentBar_FR Toolbar) - {EF79F67A-6AD7-4715-A0F8-932FC​A442023} - C:\Program Files\BittorrentBar_FR\prxtbBi​t2.dll (Conduit Ltd.)
 O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM​.exe (Adobe Systems Incorporated)
 O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
 O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.​exe (CANON INC.)
 O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLM​AIN.exe (CANON INC.)
 O4 - HKLM..\Run: [H2O] C:\Program Files\Syncrosoft\POS\H2O\cledx​.exe (Team H2O)
 O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files\Symantec\Norton Online Backup\Activation\NOBuActivati​on.exe (Symantec Corporation)
 O4 - HKLM..\Run: [Reminder] C:\WINDOWS\SMINST\reminder.exe (CyberLink)
 O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
 O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Windows\SMINST\MUITransfer\​MUIStartMenu.exe (CyberLink Corp.)
 O4 - HKU\HP_Administrator_ON_C..\Ru​n: [AnumanLive]  File not found
 O4 - HKU\HP_Administrator_ON_C..\Ru​n: [Chat-Landmessenger] C:\Documents and Settings\HP_Administrator\chat​-land\Chat-Landmessenger.exe (MY - IWEB)
 O4 - HKU\HP_Administrator_ON_C..\Ru​n: [DAEMON Tools Pro Agent] C:\Program Files\DAEMON Tools Pro\DTProAgent.exe (DT Soft Ltd.)
 O4 - HKU\HP_Administrator_ON_C..\Ru​n: [EA Core]  File not found
 O4 - HKU\HP_Administrator_ON_C..\Ru​n: [LightScribe Control Panel] C:\Program Files\Fichiers communs\LightScribe\LightScrib​eControlPanel.exe (Hewlett-Packard Company)
 O4 - HKU\HP_Administrator_ON_C..\Ru​n: [Megakey]  File not found
 O4 - HKU\HP_Administrator_ON_C..\Ru​n: [MegakeyUpdater]  File not found
 O4 - HKU\HP_Administrator_ON_C..\Ru​n: [NameProtec]  File not found
 O4 - HKU\HP_Administrator_ON_C..\Ru​n: [tempHome]  File not found
 O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\​Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter\WLANUTL.exe ( )
 O4 - Startup: C:\Documents and Settings\HP_Administrator\Menu Démarrer\Programmes\Démarrage\​Notification de cadeaux MSN.lnk = C:\Documents and Settings\HP_Administrator\Appl​ication Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe (Microsoft Corporation)
 O4 - Startup: C:\Documents and Settings\HP_Administrator\Menu Démarrer\Programmes\Démarrage\​Protection.lnk =  File not found
 O4 - Startup: C:\Documents and Settings\HP_Administrator\Menu Démarrer\Programmes\Démarrage\​Sommaire de OneNote.onetoc2 ()
 O4 - Startup: C:\Documents and Settings\HP_Administrator\Menu Démarrer\Programmes\Démarrage\​v.lnk = C:\Documents and Settings\HP_Administrator\chat​-land\v.jar ()
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Expl​orer: HonorAutoRunSetting = 1
 O7 - HKU\.DEFAULT\SOFTWARE\Microsof​t\Windows\CurrentVersion\polic​ies\Explorer: NoDriveTypeAutoRun = 145
 O7 - HKU\HP_Administrator_ON_C\SOFT​WARE\Microsoft\Windows\Current​Version\policies\Explorer: NoDriveTypeAutoRun = 145
 O7 - HKU\LocalService_ON_C\SOFTWARE​\Microsoft\Windows\CurrentVers​ion\policies\Explorer: NoDriveTypeAutoRun = 145
 O7 - HKU\NetworkService_ON_C\SOFTWA​RE\Microsoft\Windows\CurrentVe​rsion\policies\Explorer: NoDriveTypeAutoRun = 145
 O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46​303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
 O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46​303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
 O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF​33E833C} http://update.microsoft.com/wi [...] 6918480484 (WUWebControl Class)
 O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805​F499D93} http://java.sun.com/update/1.6 [...] s-i586.cab (Java Plug-in 1.6.0_24)
 O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDE​FFEDCBA} http://java.sun.com/update/1.6 [...] s-i586.cab (Java Plug-in 1.6.0_24)
 O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDE​FFEDCBA} http://java.sun.com/update/1.6 [...] s-i586.cab (Java Plug-in 1.6.0_24)
 O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF​37916A7} http://platformdl.adobe.com/NO [...] 1.6/gp.cab (Reg Error: Key error.)
 O17 - HKLM\System\CCS\Services\Tcpip​\Parameters: DhcpNameServer = 192.168.1.1
 O18 - Protocol\Handler\http\0x000000​01 {E1D2BF42-A96B-11d1-9C6B-0000F​875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F​875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\https\0x00000​001 {E1D2BF42-A96B-11d1-9C6B-0000F​875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F​875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\ipp\0x0000000​1 {E1D2BF42-A96B-11d1-9C6B-0000F​875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\msdaipp\0x000​00001 {E1D2BF42-A96B-11d1-9C6B-0000F​875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F​875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
 O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04​f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
 O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F​8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C​7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
 O18 - Protocol\Handler\skype-ie-addo​n-data {91774881-D725-4E58-B298-07617​B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
 O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D​022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
 O20 - HKLM Winlogon: Shell - (C:\Documents and Settings\HP_Administrator\Appl​ication Data\mahmud.exe) - C:\Documents and Settings\HP_Administrator\Appl​ication Data\mahmud.exe (Packard Bell BV)
 O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
 O24 - Desktop WallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
 O24 - Desktop BackupWallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
 O32 - HKLM CDRom: AutoRun - 1
 O32 - AutoRun File - [2010/06/09 18:00:23 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
 O32 - AutoRun File - [2011/02/27 03:38:56 | 000,000,000 | ---- | M] () - E:\autorun.inf -- [ NTFS ]
 O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
 O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
 O35 - HKLM\..comfile [open] -- "%1" %*
 O35 - HKLM\..exefile [open] -- "%1" %*
 O37 - HKLM\...com [@ = comfile] -- "%1" %*
 O37 - HKLM\...exe [@ = exefile] -- "%1" %*

 ========== Files/Folders - Created Within 30 Days ==========

 [2011/12/08 20:56:34 | 000,205,312 | ---- | C] (Packard Bell BV) -- C:\Documents and Settings\HP_Administrator\Appl​ication Data\mahmud.exe
 [2011/12/04 19:41:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\MAGIX_Music_Ma​ker_MX_Premium_Download_Versio​n
 [2011/12/04 06:20:37 | 000,054,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fs​sfltr_tdi.sys
 [2011/11/30 06:26:07 | 000,000,000 | ---D | C] -- C:\Program Files\PonyGirl(2)
 [2011/11/26 06:16:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Administrator\Menu Démarrer\Programmes\FormatFact​ory
 [2011/11/25 14:13:52 | 000,086,016 | ---- | C] (MindVision) -- C:\WINDOWS\unvise32qt.exe
 [2011/11/25 14:13:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\QuickTime
 [2011/11/25 14:10:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\QuickTime
 [6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 [2 C:\Documents and Settings\HP_Administrator\*.tm​p files -> C:\Documents and Settings\HP_Administrator\*.tm​p -> ]

 ========== Files - Modified Within 30 Days ==========

 [2011/12/09 05:10:03 | 000,001,076 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateT​askMachineUA.job
 [2011/12/09 05:04:00 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftware​Update.job
 [2011/12/09 05:01:00 | 000,000,256 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
 [2011/12/08 21:16:29 | 000,571,192 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.d​at
 [2011/12/08 21:16:29 | 000,494,028 | ---- | M] () -- C:\WINDOWS\System32\perfh009.d​at
 [2011/12/08 21:16:29 | 000,113,138 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.d​at
 [2011/12/08 21:16:29 | 000,093,240 | ---- | M] () -- C:\WINDOWS\System32\perfc009.d​at
 [2011/12/08 21:12:15 | 000,001,072 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateT​askMachineCore.job
 [2011/12/08 21:12:09 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
 [2011/12/08 21:12:08 | 000,268,600 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.D​AT
 [2011/12/08 20:56:34 | 000,205,312 | ---- | M] (Packard Bell BV) -- C:\Documents and Settings\HP_Administrator\Appl​ication Data\mahmud.exe
 [2011/12/08 20:47:05 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
 [2011/12/08 18:41:48 | 000,167,424 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\Loca​l Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E​0D61DEA3FDF.ini
 [2011/12/05 13:56:24 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\Bure​au\MSB14.part06.rar
 [2011/12/04 19:44:05 | 000,000,873 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\MAGIX Music Maker MX Premium Download Version.lnk
 [2011/12/04 19:44:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\MAGIX
 [2011/12/04 06:20:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Windows Live
 [2011/12/03 22:19:36 | 000,007,680 | ---- | M] (eaio) -- C:\WINDOWS\System32\NativeCall​.dll
 [2011/12/03 22:19:01 | 000,000,186 | ---- | M] () -- C:\WINDOWS\System\hpsysdrv.DAT
 [2011/11/30 09:10:17 | 000,000,124 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\parm​.fr
 [2011/11/27 05:13:46 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_27_11_2011
 [2011/11/27 05:13:46 | 000,000,003 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\vers
 [2011/11/27 05:12:55 | 000,035,808 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\Prot​ection8_3.jar
 [2011/11/27 05:12:54 | 000,000,650 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\Menu Démarrer\Programmes\Démarrage\​Protection.lnk
 [2011/11/26 06:16:35 | 000,000,857 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\Bure​au\Format Factory.lnk
 [2011/11/25 14:13:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\QuickTime
 [2011/11/25 14:13:51 | 000,000,748 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\Appl​ication Data\Microsoft\Internet Explorer\Quick Launch\QuickTime Player.lnk
 [2011/11/25 14:13:48 | 000,000,730 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\QuickTime Player.lnk
 [2011/11/23 05:10:10 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_23_11_2011
 [2011/11/22 05:00:49 | 000,000,028 | ---- | M] () -- C:\WINDOWS\Robota.INI
 [2011/11/21 09:41:49 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_21_11_2011
 [2011/11/20 09:28:49 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_20_11_2011
 [2011/11/19 07:35:02 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_19_11_2011
 [2011/11/18 14:28:49 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Google Chrome.lnk
 [2011/11/17 04:34:01 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_17_11_2011
 [2011/11/14 20:21:18 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_15_11_2011
 [2011/11/13 18:23:13 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_14_11_2011
 [2011/11/13 05:32:35 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_13_11_2011
 [2011/11/10 23:22:00 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_11_11_2011
 [2011/11/10 12:54:38 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
 [6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 [2 C:\Documents and Settings\HP_Administrator\*.tm​p files -> C:\Documents and Settings\HP_Administrator\*.tm​p -> ]

 ========== Files Created - No Company Name ==========

 [2011/12/05 13:56:24 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Bure​au\MSB14.part06.rar
 [2011/12/04 19:44:05 | 000,000,873 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\MAGIX Music Maker MX Premium Download Version.lnk
 [2011/11/27 05:12:54 | 000,035,808 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Prot​ection8_3.jar
 [2011/11/27 05:12:54 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_27_11_2011
 [2011/11/26 06:16:35 | 000,000,857 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Bure​au\Format Factory.lnk
 [2011/11/25 14:13:51 | 000,000,748 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Appl​ication Data\Microsoft\Internet Explorer\Quick Launch\QuickTime Player.lnk
 [2011/11/25 14:13:47 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\QuickTime Player.lnk
 [2011/11/23 05:10:10 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_23_11_2011
 [2011/11/20 19:00:39 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_21_11_2011
 [2011/11/20 09:28:49 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_20_11_2011
 [2011/11/19 04:19:53 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_19_11_2011
 [2011/11/17 04:34:01 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_17_11_2011
 [2011/11/14 20:21:18 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_15_11_2011
 [2011/11/13 18:23:13 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_14_11_2011
 [2011/11/13 05:32:35 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_13_11_2011
 [2011/11/10 23:22:00 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_11_11_2011
 [2011/11/07 11:00:07 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
 [2011/11/07 03:32:49 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_07_11_2011
 [2011/11/05 18:54:22 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_06_11_2011
 [2011/10/29 17:55:58 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_30_10_2011
 [2011/10/28 22:56:26 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_29_10_2011
 [2011/10/27 12:14:35 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\tmp1​.22
 [2011/10/25 20:48:17 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_26_10_2011
 [2011/10/25 15:02:53 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\tmp1​.21
 [2011/10/22 06:08:48 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_22_10_2011
 [2011/10/17 17:53:03 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_18_10_2011
 [2011/10/13 04:56:30 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_13_10_2011
 [2011/10/12 05:16:47 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_12_10_2011
 [2011/09/30 20:10:25 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_01_10_2011
 [2011/09/28 20:48:02 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_29_09_2011
 [2011/09/26 19:51:36 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_27_09_2011
 [2011/09/23 02:41:42 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_23_09_2011
 [2011/09/22 03:46:47 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_22_09_2011
 [2011/09/21 02:40:40 | 000,000,124 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\parm​.fr
 [2011/09/21 02:33:33 | 000,002,262 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\main​.vbe
 [2011/09/21 02:33:33 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\bint​ernet_21_09_2011
 [2011/09/20 18:33:32 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\tmp1​.20
 [2011/08/30 14:32:53 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\tmp1​.19
 [2011/08/16 18:25:18 | 000,000,030 | ---- | C] () -- C:\WINDOWS\grwin.ini
 [2011/08/07 09:11:25 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\tmp1​.18
 [2011/07/21 14:33:37 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\tmp1​.17
 [2011/06/24 11:22:51 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\tmp1​.16
 [2011/06/18 17:17:00 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\tmp1​.15
 [2011/05/14 10:44:41 | 000,000,028 | ---- | C] () -- C:\WINDOWS\Robota.INI
 [2011/04/30 16:40:34 | 000,000,003 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\vers
 [2011/04/30 16:40:12 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\tmp1​.14
 [2011/04/30 11:34:06 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.d​ll
 [2011/04/12 20:48:52 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.d​at
 [2011/03/15 11:49:27 | 000,000,011 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\logi​e
 [2011/03/15 11:49:27 | 000,000,011 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\logf​f
 [2011/03/15 11:49:03 | 000,000,502 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\scri​ptjava.html
 [2011/03/15 11:48:52 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\tmp1​.10
 [2011/03/11 07:19:11 | 000,000,445 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\test
 [2011/02/11 03:24:51 | 000,000,050 | ---- | C] () -- C:\WINDOWS\MegaManager.INI
 [2011/02/06 05:44:40 | 000,651,264 | ---- | C] () -- C:\WINDOWS\System32\libeay32.d​ll
 [2011/02/06 05:44:40 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\ssleay32.d​ll
 [2011/02/06 05:44:40 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\WLANUTL.dl​l
 [2011/02/05 06:56:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
 [2011/01/20 09:43:07 | 000,045,568 | ---- | C] () -- C:\WINDOWS\UniFish3.exe
 [2011/01/15 10:52:23 | 000,167,424 | ---- | C] () -- C:\Documents and Settings\HP_Administrator\Loca​l Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E​0D61DEA3FDF.ini
 [2010/06/09 19:53:55 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
 [2010/06/09 19:53:09 | 000,268,600 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.D​AT
 [2010/06/09 18:58:56 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
 [2010/06/09 18:53:57 | 000,000,354 | ---- | C] () -- C:\WINDOWS\System32\HPCFG.INI
 [2010/06/09 18:47:05 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.in​i
 [2010/06/09 18:46:58 | 000,571,192 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.d​at
 [2010/06/09 18:46:58 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.d​at
 [2010/06/09 18:46:58 | 000,113,138 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.d​at
 [2010/06/09 18:46:58 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.d​at
 [2010/06/09 18:46:54 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
 [2010/06/09 18:46:53 | 000,494,028 | ---- | C] () -- C:\WINDOWS\System32\perfh009.d​at
 [2010/06/09 18:46:53 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.d​at
 [2010/06/09 18:46:53 | 000,093,240 | ---- | C] () -- C:\WINDOWS\System32\perfc009.d​at
 [2010/06/09 18:46:53 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.d​at
 [2010/06/09 18:46:52 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bi​n
 [2010/06/09 18:46:52 | 000,004,490 | ---- | C] () -- C:\WINDOWS\System32\oembios.da​t
 [2010/06/09 18:46:52 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
 [2010/06/09 18:46:51 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
 [2010/06/09 18:46:51 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
 [2010/06/09 18:46:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
 [2010/06/09 18:46:47 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
 [2010/06/09 18:12:11 | 000,080,416 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp3​2.dll
 [2010/06/09 18:02:17 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
 [2010/06/09 17:58:31 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb​.dat
 [2007/04/27 03:43:58 | 000,120,200 | ---- | C] () -- C:\WINDOWS\System32\DLLDEV32i.​dll

 ========== LOP Check ==========

 [2011/08/19 19:51:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Applic​ation Data\Megamedia
 [2010/06/09 18:13:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AmUStor
 [2011/03/24 05:02:00 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
 [2011/10/07 08:51:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJ
 [2011/05/12 12:29:28 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJEPPEX
 [2011/03/24 05:17:06 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJMyPrinter
 [2011/11/30 23:48:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJPLM
 [2011/06/15 13:12:09 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJScan
 [2011/03/24 05:17:10 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJSolutionMenu
 [2011/03/05 05:35:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Pro
 [2011/04/16 04:03:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\dDj06511aGoJh06511
 [2011/04/12 21:02:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\eGi06511kNiGe06511
 [2011/09/14 10:31:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
 [2011/04/16 04:43:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESET
 [2010/06/09 18:12:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FtStor
 [2011/12/04 22:16:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MAGIX
 [2011/03/13 07:09:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
 [2011/09/10 17:51:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Orange
 [2011/08/14 09:52:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\pMd06511dJjMj06511
 [2010/06/09 18:38:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Temp
 [2010/06/09 18:35:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WildTangent
 [2011/12/09 05:01:00 | 000,000,256 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job

 ========== Purity Check ==========


 < End of report >

 Page :
1

Aller à :
 

Sujets relatifs
virus détéctés dans JAVA Impossible de redémarrer mon PC après avoir chopé un virus
Anti-virus VIRUS Disque dur externe ???
Carte Graphique avec virus dessus  
Plus de sujets relatifs à : Virus BUNDESPOLIZEI

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
Comment faire d'une musique ... UN LIEN ?? 0
probleme demarage pc 0
probléme BIOS ? 6
Titre sauvegarde impossible suite 0
éxécution automatique 2