Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business

|-  SECURITE


|||-  

trojan ... Avast.exe n'est une application Win32 valide...

 

16 utilisateurs inconnus
 

 
Page photos
 
     
Vider la liste des messages à citer
 
 Page :
1
Auteur
 Sujet :

trojan ... Avast.exe n'est une application Win32 valide...

Prévenir les modérateurs en cas d'abus 
jodr
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 12/01/2009 à 11:13:38  
  1. Prévenir les modérateurs en cas d'abus
 
bonjour
 L'icone Avast a disparue de ma barre des taches et l'application ne veut plus se lancer. Bien evidemment impossible de le reinstaller et de plus le wifi ne repond plus.
 Suite à de nombreuses recherches depuis plusieurs jours j'ai supprimé le fichier que je pensais infecté et dans les differents topics dispo j'ai pu lire qu'il ne fallait pas reproduire les conseils de maniere generique mais poster les rapports.
 Je vous serais donc tres reconnaissant si vous pouviez m'indiquer la marche a suivre.

 configuration: windows XP SP3

 derniere question puis je brancher mon disque dur externe pour recuperer mes dossiers de travail presents sur mon ordi sans infecter mon disque dur externe?

 merci beaucoup pour le coup de main!!

mido70
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 12/01/2009 à 14:31:14  
  1. Prévenir les modérateurs en cas d'abus
 
salut,

 Toujours préférable de faire une sauvegarde de vos données personnelles, sur votre disque ou autre..


 Produisez un rapport d'Analyse de votre PC.
 HijackThis : Téléchargement - & - Tutoriel.
 • Créer un répertoire http://img214.imageshack.us/im​g214/4034/icone2rpcy5.jpg \HijackThis\..  et mettez y HijackThis.exe http://img133.imageshack.us/im​g133/24/iconehjtnz8.jpg
 • Renommer HijackThis.exe pour LeBigJack.exe,
 • Créez  un raccourci "par un clic-droit sur LeBigJack.exe" et placez le sur votre bureau.
 • Lancer HijackThis,
 • Appuyer sur [Do a system scan and save a logfile].
 • Le bloc-note va s'ouvrir avec un rapport,
 ► Afficher le rapport HijackThis sur votre prochain post.

(Publicité)
jodr
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 13/01/2009 à 14:32:33  
  1. Prévenir les modérateurs en cas d'abus
 
bonjour mido70,
 j'ai essaye de suivre a la lettre la marche avec la creation d'un repertoire et le fait de renommer le fichier Hijackthis mais lorsque je tente un clique droit sur le fichier il ne repond pas et la fenetre devient blanche...je ne peux donc pas suivre le tuto.
 De plus la sortie audio de mon samnsung nc10 ne fonctionne plus desormais.
 merci pour les conseils eclaires.

 jodr

mido70
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 15/01/2009 à 21:28:32  
  1. Prévenir les modérateurs en cas d'abus
 
salut,

 Pour de suite, ne faites que lancer HijakcThis.exe(par un double-clic) à partir de votre bureau ou répertoire de téléchargement et affichez le rapport..

jodr
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 16/01/2009 à 13:24:31  
  1. Prévenir les modérateurs en cas d'abus
 
salut

 bon là je suis au bord de la depression! je tente de lancer HiJackThis.exe comme tu me le recommandes mais j'ai un message d'erreur HiJackThis.exe n'est pas une application win32 valide!
 Que faire??
 merci beaucoup du coup de main

(Publicité)
mido70
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 16/01/2009 à 15:06:35  
  1. Prévenir les modérateurs en cas d'abus
 
re,

 Voici un >> [url=http://forum.telecharger.01net.com/microhebdo/questions-techniques-diverses/tuto-securite/renommer-combofix-353849/messages-1.html
 ]tutoriel[/url] << en images de la procédures de téléchargement de ComboFix.exe suivante.

 Procédures de téléchargement ComboFix.exe.
 &#9658; Désactiver votre antivirus.

 Renommez ComboFix.exe en CB-F.exe avant de lancer le téléchargement.
 • Faites un clic droit sur le lien de ComboFix >> [url=http://download.bleepingcomputer.com/sUBs/ComboFix.exe ] Lien de téléchargement[/url] - ou - Lien 2.
 --> soit avec  :
 - Internet Explorer --> Enregistrer la cible sous...
 - Firefox --> Enregistrer la cible du lien sous...
 - Opera --> Enregistrer le contenu lié sous...

 &#9658; Ainsi, renommer ComboFix.exe pour CB-F.exe et sauvegarder le sur votre bureau.


 Procédures d'utilisation de ComboFix.
 >> Déconnectez l'internet et durant toute l'étape suivante,
 >> Fermez tous le applications, n'ouvrez aucun programmes.
 >> Si ComboFix a besoin de redémarrer, laisser le aller.

 &#9658; Double-cliquer sur Combofix
 • Appuyer sur 1 si nécessaire
 • Attendre la fermeture de l’outil ( 5-10 mn ou plus si infection importante)

 >> Notez qu'une fois que vous avez lancé ComboFix,
 >> vous ne devez pas cliquer dans la fenêtre de ComboFix
 >> car cela pourrait entraîner un plantage du programme.

 &#9658; Afficher le rapport de ComboFix (C:\Combofix.txt).

 &#9658; Réactiver l'antivirus.

jodr
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 16/01/2009 à 17:50:14  
  1. Prévenir les modérateurs en cas d'abus
 
re

 c'est cool ta methode a bien marche!
 donc voici le rapport:
 ComboFix 09-01-15.01 - Jonathan 2009-01-16 16:39:07.1 - NTFSx86
 Microsoft Windows XP Édition familiale  5.1.2600.3.1252.1.1036.18.1014​.782 [GMT 1:00]
 Lancé depuis: c:\documents and settings\Jonathan\Bureau\CB-F.​exe
 AV: avast! antivirus 4.8.1296 [VPS 090109-0] *On-access scanning disabled* (Outdated)
 * Un nouveau point de restauration a été créé
 .

 ((((((((((((((((((((((((((((((​((((((   Autres suppressions   ))))))))))))))))))))))))))))))​))))))))))))))))))
 .

 c:\documents and settings\Jonathan\Application Data\drivers\downld
 c:\documents and settings\Jonathan\Application Data\drivers\downld\102453.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\104765.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\107265.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\111953.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\112343.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\112750.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\113125.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\123437.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\140703.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\141218.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\141281.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\141781.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\142484.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14656406.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14656437.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14656453.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14660234.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14667812.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14667828.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14667843.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14678578.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14684859.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14688296.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14688765.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14698968.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14699468.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14699859.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14701468.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14708406.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14709250.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14711000.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14711281.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14711296.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14714609.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14716046.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14729859.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14736156.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14739718.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14740078.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14763781.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14809125.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14809187.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14809250.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14826593.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14827859.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14828359.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14829031.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14829109.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14829125.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14829296.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14830093.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14830656.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14845796.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14847062.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14847687.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14848593.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14849718.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14850375.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14851906.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14851921.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14851968.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14852171.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14852812.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14853234.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14858437.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14866406.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14867343.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14867906.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14868640.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14869343.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14869875.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14871593.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14872093.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14872484.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14877984.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14893359.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14896515.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14896812.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14896906.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14922687.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14923281.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14923640.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14934296.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14962000.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14962281.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14962437.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14977437.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14977890.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\14977984.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\152109.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\152921.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\152937.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\154953.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\156500.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\157406.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\158000.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\158265.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\158718.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\159140.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\159625.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\159796.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\160500.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\161093.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\161359.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\162078.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\162093.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\167593.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\167984.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\168390.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\168406.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\169593.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\170156.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\170984.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\171875.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\172531.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\177484.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\178453.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\178500.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\180625.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\181156.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\181375.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\181812.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\181906.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\182484.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\182562.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\182718.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\182921.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\182953.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\183859.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\184453.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\184656.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\185109.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\185203.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\186109.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\186953.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\187375.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\187468.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\189625.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\191796.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\192718.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\193359.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\193578.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\193906.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\194062.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\194734.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\195531.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\196109.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\199000.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\205656.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\206343.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\207093.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\207468.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\208812.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\209593.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\209953.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\212734.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\215984.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\216703.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\217515.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\218140.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\218281.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\219312.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\219328.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\226343.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22662187.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22662218.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22662234.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\226625.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22666078.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22686625.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22687109.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22687546.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22700234.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22717078.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\227218.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\227234.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\227421.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\227437.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22750312.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22750359.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22750406.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22763171.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22764250.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22764781.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22765578.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\227656.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22766343.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22766843.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22788421.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22788984.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22789562.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22795578.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22840796.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22841375.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\22841515.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\229796.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\232796.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\234187.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\234828.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\235750.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\236515.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\237015.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\245593.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\252562.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\253218.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\253328.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\253437.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\254140.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\254234.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\256984.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\257859.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\258375.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\259140.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\262218.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\262796.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\263000.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\263078.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\263671.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\263812.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\266203.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29364718.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29364734.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29364750.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29369593.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29389796.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29390312.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29390703.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29407859.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29460093.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29460187.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29460203.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29480390.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29481390.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29481937.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29482828.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29483609.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29484250.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29507984.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29508515.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29508890.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29514125.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29517765.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29562093.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29562562.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\29562656.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\307875.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\308593.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\308718.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\363140.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\364562.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\365109.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\365937.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\366828.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\367390.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\392312.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\396375.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\396937.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\407484.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\43964796.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\43965203.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\43965312.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\43993671.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\43997765.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\43998187.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44014812.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44072375.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44072890.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44072937.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44087828.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44089250.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44089750.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44090562.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44091359.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44091843.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44135515.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44136359.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44136796.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44145156.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44192687.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44193468.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44193593.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\44843.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\45015.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\45109.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\45218.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\456781.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\457375.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\457531.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\45875.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\45984.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\46015.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\46156.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\46171.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\46343.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\46515.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\46546.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\46937.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\46984.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\47515.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\47546.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\47781.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\47812.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\49515.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\50171.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\51187.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\51453.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\51468.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\52250.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\53218.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\53500.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\56031.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58595765.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58595781.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58595812.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58600984.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58622640.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58623125.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58623656.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58637468.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58668281.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58706906.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58706937.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58724484.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58725609.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58726187.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58727187.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58728000.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58728531.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58750234.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58750734.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58751125.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58756500.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58804312.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58804671.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\58804796.e​xe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\71296.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\71828.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\72078.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\72468.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\72796.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\73109.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\73203.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\73734.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\73984.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\74421.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\74593.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\75015.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\75437.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\76250.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\76609.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\76796.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\77812.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\77890.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\78171.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\78765.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\79156.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\85156.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\85796.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\85812.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\86187.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\88406.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\89984.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\90250.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\92281.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\94046.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\95312.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\95453.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\99546.exe
 c:\documents and settings\Jonathan\Application Data\drivers\downld\99781.exe
 c:\documents and settings\Jonathan\Application Data\drivers\srosa.sys
 c:\documents and settings\Jonathan\Application Data\drivers\srosa2.sys
 c:\documents and settings\Jonathan\Application Data\drivers\winupgro.exe
 c:\documents and settings\Jonathan\Application Data\m
 c:\documents and settings\Jonathan\Application Data\m\data.oct
 c:\documents and settings\Jonathan\Application Data\m\flec006.exe
 c:\documents and settings\Jonathan\Application Data\m\list.oct
 c:\documents and settings\Jonathan\Application Data\m\shared\2002 FIFA World Cup Informer 1.9.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\2kDBEdit 0.9.7.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\3D Bungalow Aquarium Screensaver 1.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\70-225 Microsoft MCSE Messaging Exchange 6.08.05.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\A123 DVD to iPod Ripper 4.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\adminGtoolPro 1.7.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Advance mp3 sound Recorder 1.2.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Aesopica 2.0.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Airy Secrets Lite 4.0 r6.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\AllStar Video to PSP Converter 2.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\AmJFile 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Animated Cursors 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Apex Video Converter Super Free 8.41.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\AppGet 0.6.9.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\ASPActiveConvert​er Component 1.2.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Atlantis Creator 5.44.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Atomic Clock Time Synchronizer 1.4.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Avast.Profession​al.Edition.4.6.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Avira.AntiVir.Pr​emium.7.01-www.anti.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\BACKUP9 1.3.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Basic Wage and Overtime Calculator 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Bmp2Mc 1.15.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\boo-box tagging-tool 0.3.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Brain Challenge j2Me Nokia n92 n93 n73 e61 n71 e50 240x320 Symbian s60 v3 Os9.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\BrowserTraySwitc​h 1.02.01.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Budget Calculator 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\BuxBot 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Cekli Photolab 0.4.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Claves.de.panda.​antivirus.2005.titanium(una.as​egurada.ke.funciona).zip
 c:\documents and settings\Jonathan\Application Data\m\shared\CoffeeCup Free FTP 3.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\CoffeeCup Spam Blocker 4.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Color Pilot Junior 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Convert Doc 5.23.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Coral Island - Animated Wallpaper 5.07.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Customer Appointment Manager 3.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Diet Pills And Weight Loss 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Directory Checker 3.30.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\DIYScheduler.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\DWG to JPG 2.9.312.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Easy Web Creator 0.6.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\EasyCert 70-216 Exam Simulator 006 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\ebay Listing Database 1.0.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\eBook Compiler Gold 3.0.4.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\eDice 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Encrypt HTML source 2.05.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\ErotiCars Vol.2 Screensaver 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Explorer Suite III.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\EZ Backup IncrediMail Basic 6.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Ezy Documenter Premium Edition 6.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\File Viewer 2.00.02.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Find Navigatore Tom Tom Per Nokia n73 n95 Route 66 Mobile Using Emule Multimedia Toolbar(1).zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Fireworks on Brooklyn Bridge - Animated Screensaver 5.11.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Folder Watchdog Service 2 1.1.0.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Frost 28.06.07.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Funny Pictures Gadget 1.0.0.2.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\gDays Assistant 1.9.4.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Great One-horned Rhinoceros Screensaver 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Greeting Card Zoom 4.2.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\HashTab 2.1.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\HeavyMath Cam 3D 3.7.15.1800.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Hit Stations LK 1.0.0.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Holiday Stories 1.00.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\HTMLtoRTF Converter Pro 3.0.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\IE Toolbar Manager 1.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\IEFillForm 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Informatik Image Driver 3.5.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\inTone Matrix Pro 1.1.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\iPrecis 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Ivanov's Live Search 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Keyboard Keystroke Macro Automation Software 7.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\KillAd 0.11.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\LeadingReporter 1.0.2.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Look RS232 4.3.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Maid 1.0.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\MasterLister 2.2.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Matrix Screensaver 2.4.1.4.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Maximum Traffic Image Cropper 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\MB Free Learn Numerology 1.10.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Microsoft 70-221 Exam.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Midi Quartet 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\MiniExplorer 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Multi Tray Ping 1.0.11.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\My Reminders 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\My Timeboxing 1.91.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\MZMM 1.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Named anchors 0.3.2.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Norton AntiVirus 2006 WwW.MazodivX.CoM.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Okoker Brains Practicer 4.2.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\OldCmp 1.05.00.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Paglo Crawler 2.0.13.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\PAMO Easy Web Spy Cam 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\panda_titanium_c​rack_2004-2005.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\PartWord 1.0.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Pavtube DVD to Apple TV Converter 1.1.1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Privacy For Windows 3.2c.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\PS3 Homerow Iconset Wooden Bla.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\PSP Shuffle 1.2.3031.31772.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Quick Album 1.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Ranch Tooth! 1.1.10.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\ReaStyler 3.3.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Reciprocal Link Checker 2.5.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Recovery for PDF 1.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Report Writer 1.1.3.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\ScheduleAssist Reader 1.1.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\SD-Tabs 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\SendToClipboard 1.1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Serene Lakes Screensaver.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Sharptype 3.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\SiteVault 2.01.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Smart FLV Converter 3.3.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Step Counter Wizard 1.01.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\SUB to SSA 2.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Subject Search Server 1.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\SynthEditor 0.1.1 Beta.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\System Center Mobile Device Manager 2008 Best Practices Analyzer Tool 1.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\TagTooga Social Bookmarking ActiveX 2.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Thanksgiving Season.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\TicketCreator BarcodeChecker 1.1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\TitleFix 1.1.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Truc 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Turtle Screen Savers 3 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\uCertify Collection for test 220-221 220-222 6.10.05.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Virtual Salesman 3 3.3.0.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Visual-ISO 1.1 beta 7.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\Visual Day Planner 7.3.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\WinExit 2.8.8.7.zip
 c:\documents and settings\Jonathan\Application Data\m\shared\XPath Runner 1.0.zip
 c:\documents and settings\Jonathan\Application Data\m\srvlist.oct
 c:\program files\Picasa2\PicasaMediaDetec​tor.exe
 c:\windows\msetup
 c:\windows\msetup\MSetup.exe
 c:\windows\system32\mdelk.exe
 c:\windows\system32\wintems.ex​e

 .
 ((((((((((((((((((((((((((((((​(((((((((   Pilotes/Services   ))))))))))))))))))))))))))))))​)))))))))))))))))))
 .

 -------\Service_SROSA
 -------\Legacy_SROSA
 -------\Legacy_SK9OU0S
 -------\Service_sK9Ou0s


 (((((((((((((((((((((((((((((   Fichiers créés du 2008-12-16 au 2009-01-16  ))))))))))))))))))))))))))))))​))))))
 .

 2009-01-10 16:56 . 2009-01-16 16:41 <REP> d--h----- c:\documents and settings\Jonathan\Application Data\drivers
 2009-01-10 15:55 . 2009-01-10 15:56 <REP> d-------- c:\documents and settings\Jonathan\Application Data\Filter Forge
 2009-01-10 15:43 . 2009-01-10 15:43 0 --ah----- c:\windows\system32\drivers\Ms​ftWdf_Kernel_01005_Coinstaller​_Critical.Wdf
 2009-01-10 15:43 . 2009-01-10 15:43 0 --ah----- c:\windows\system32\drivers\Ms​ft_Kernel_NuidFltr_01005.Wdf
 2009-01-10 15:42 . 2008-06-09 13:12 1,421,384 --a------ c:\windows\system32\wdfcoinsta​ller01005.dll
 2009-01-10 15:42 . 2008-04-13 19:33 21,504 --a------ c:\windows\system32\drivers\hi​dserv.dll
 2009-01-10 15:42 . 2008-06-09 13:12 18,504 --a------ c:\windows\system32\drivers\nu​idfltr.sys
 2009-01-10 15:41 . 2009-01-10 15:41 <REP> d-------- c:\program files\Microsoft IntelliPoint
 2009-01-10 15:41 . 2008-12-04 11:34 27,784 --a------ c:\windows\system32\drivers\po​int32.sys
 2009-01-09 13:28 . 2009-01-12 09:03 <REP> d-------- c:\program files\VstPlugins
 2009-01-09 13:28 . 2005-04-12 16:21 225,280 --a------ c:\windows\system32\rewire.dll
 2009-01-09 13:27 . 2002-07-07 23:14 1,294,336 --a------ c:\windows\system32\vorbis.acm
 2009-01-09 13:25 . 2009-01-12 09:02 <REP> d-------- c:\program files\Image-Line
 2009-01-08 19:14 . 2009-01-08 19:15 <REP> d-------- c:\documents and settings\Jonathan\Application Data\Filter Forge Freepack 2 - Photo Effects
 2009-01-08 19:13 . 2009-01-08 19:13 <REP> d-------- c:\program files\Filter Forge Freepack 2 - Photo Effects
 2009-01-08 19:13 . 2006-11-10 18:41 1,030,144 --a------ c:\windows\system32\dbghelp-xf​w.dll
 2009-01-06 19:15 . 2009-01-06 19:15 <REP> d-------- c:\documents and settings\Jonathan\lmms
 2009-01-06 19:11 . 2009-01-06 19:15 <REP> d-------- c:\program files\LMMS 0.4.2
 2008-12-28 00:36 . 2008-12-28 00:37 <REP> d-------- c:\program files\QuickMediaConverter
 2008-12-25 23:10 . 2009-01-02 23:34 268 --ah----- C:\sqmdata19.sqm
 2008-12-25 23:10 . 2009-01-02 23:34 244 --ah----- C:\sqmnoopt19.sqm
 2008-12-25 16:55 . 2009-01-02 23:30 268 --ah----- C:\sqmdata18.sqm
 2008-12-25 16:55 . 2009-01-02 23:30 244 --ah----- C:\sqmnoopt18.sqm
 2008-12-25 04:35 . 2009-01-02 04:08 268 --ah----- C:\sqmdata17.sqm
 2008-12-25 04:35 . 2009-01-02 04:08 244 --ah----- C:\sqmnoopt17.sqm
 2008-12-24 19:16 . 2008-12-31 23:02 268 --ah----- C:\sqmdata16.sqm
 2008-12-24 19:16 . 2008-12-31 23:02 244 --ah----- C:\sqmnoopt16.sqm
 2008-12-24 11:45 . 2008-12-31 01:51 268 --ah----- C:\sqmdata15.sqm
 2008-12-24 11:45 . 2008-12-31 01:51 244 --ah----- C:\sqmnoopt15.sqm
 2008-12-23 19:40 . 2008-12-30 18:51 268 --ah----- C:\sqmdata14.sqm
 2008-12-23 19:40 . 2008-12-30 18:51 244 --ah----- C:\sqmnoopt14.sqm
 2008-12-23 12:56 . 2008-12-30 18:48 268 --ah----- C:\sqmdata13.sqm
 2008-12-23 12:56 . 2008-12-30 18:48 244 --ah----- C:\sqmnoopt13.sqm
 2008-12-23 08:45 . 2008-12-30 09:15 268 --ah----- C:\sqmdata12.sqm
 2008-12-23 08:45 . 2008-12-30 09:15 244 --ah----- C:\sqmnoopt12.sqm
 2008-12-23 02:10 . 2008-12-30 00:45 268 --ah----- C:\sqmdata11.sqm
 2008-12-23 02:10 . 2008-12-30 00:45 244 --ah----- C:\sqmnoopt11.sqm
 2008-12-22 21:56 . 2008-12-29 11:22 268 --ah----- C:\sqmdata10.sqm
 2008-12-22 21:56 . 2008-12-29 11:22 244 --ah----- C:\sqmnoopt10.sqm
 2008-12-22 03:57 . 2008-12-29 08:33 268 --ah----- C:\sqmdata09.sqm
 2008-12-22 03:57 . 2008-12-29 08:33 244 --ah----- C:\sqmnoopt09.sqm
 2008-12-22 00:20 . 2008-12-29 01:48 268 --ah----- C:\sqmdata08.sqm
 2008-12-22 00:20 . 2008-12-29 01:48 244 --ah----- C:\sqmnoopt08.sqm
 2008-12-22 00:03 . 2008-12-28 01:53 268 --ah----- C:\sqmdata07.sqm
 2008-12-22 00:03 . 2008-12-28 01:53 244 --ah----- C:\sqmnoopt07.sqm
 2008-12-21 15:49 . 2008-12-27 18:59 268 --ah----- C:\sqmdata06.sqm
 2008-12-21 15:49 . 2008-12-27 18:59 244 --ah----- C:\sqmnoopt06.sqm
 2008-12-20 20:22 . 2008-12-27 18:24 268 --ah----- C:\sqmdata05.sqm
 2008-12-20 20:22 . 2008-12-27 18:24 244 --ah----- C:\sqmnoopt05.sqm
 2008-12-19 23:13 . 2009-01-05 01:29 268 --ah----- C:\sqmdata04.sqm
 2008-12-19 23:13 . 2009-01-05 01:29 244 --ah----- C:\sqmnoopt04.sqm
 2008-12-19 17:45 . 2009-01-04 13:42 268 --ah----- C:\sqmdata03.sqm
 2008-12-19 17:45 . 2009-01-04 13:42 244 --ah----- C:\sqmnoopt03.sqm
 2008-12-19 01:51 . 2009-01-04 06:41 268 --ah----- C:\sqmdata02.sqm
 2008-12-19 01:51 . 2009-01-04 06:41 244 --ah----- C:\sqmnoopt02.sqm

 .
 ((((((((((((((((((((((((((((((​((((   Compte-rendu de Find3M   ))))))))))))))))))))))))))))))​))))))))))))))))))
 .
 2009-01-16 15:42 --------- d-----w c:\program files\Picasa2
 2009-01-16 15:06 --------- d-----w c:\program files\eMule
 2009-01-01 21:21 --------- d-----w c:\documents and settings\Jonathan\Application Data\dvdcss
 2009-01-01 19:33 --------- d-----w c:\documents and settings\Jonathan\Application Data\Apple Computer
 2008-12-18 02:08 --------- d-----w c:\documents and settings\All Users\Application Data\Microsoft Help
 2008-12-13 19:27 --------- dcsh--w c:\program files\Fichiers communs\WindowsLiveInstaller
 2008-12-13 19:27 --------- d-----w c:\program files\Windows Live
 2008-12-13 19:23 --------- d-----w c:\documents and settings\All Users\Application Data\WLInstaller
 2008-12-12 17:06 --------- d-----w c:\program files\Hobbyist Software
 2008-12-12 12:17 --------- d-----w c:\documents and settings\Jonathan\Application Data\vlc
 2008-12-10 15:36 --------- d-----w c:\documents and settings\All Users\Application Data\McAfee
 2008-12-10 12:49 --------- d-----w c:\program files\MSBuild
 2008-12-10 12:49 --------- d-----w c:\program files\Microsoft Works
 2008-12-10 12:32 --------- d-----w c:\program files\Alwil Software
 2008-12-10 12:18 --------- d-----w c:\program files\iTunes
 2008-12-10 12:18 --------- d-----w c:\documents and settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_​CA64CB79BCF6}
 2008-12-10 12:17 --------- d-----w c:\program files\Windows Media Connect 2
 2008-12-10 12:17 --------- d-----w c:\program files\iPod
 2008-12-10 12:17 --------- d-----w c:\program files\Bonjour
 2008-12-10 12:17 --------- d-----w c:\documents and settings\All Users\Application Data\Apple Computer
 2008-12-10 12:16 --------- d-----w c:\program files\QuickTime
 2008-12-10 12:15 --------- d-----w c:\program files\Fichiers communs\Apple
 2008-12-10 12:14 --------- d-----w c:\program files\Google
 2008-12-10 12:14 --------- d-----w c:\program files\Apple Software Update
 2008-12-10 12:12 --------- d-----w c:\program files\VideoLAN
 2008-12-10 12:12 --------- d-----w c:\documents and settings\All Users\Application Data\Apple
 2008-10-23 12:36 286,720 ----a-w c:\windows\system32\gdi32.dll
 2008-10-16 13:13 202,776 ----a-w c:\windows\system32\wuweb.dll
 2008-10-16 13:13 1,809,944 ----a-w c:\windows\system32\wuaueng.dl​l
 2008-10-16 13:12 561,688 ----a-w c:\windows\system32\wuapi.dll
 2008-10-16 13:12 323,608 ----a-w c:\windows\system32\wucltui.dl​l
 2008-10-16 13:09 92,696 ----a-w c:\windows\system32\cdm.dll
 2008-10-16 13:09 51,224 ----a-w c:\windows\system32\wuauclt.ex​e
 2008-10-16 13:09 43,544 ----a-w c:\windows\system32\wups2.dll
 2008-10-16 13:08 34,328 ----a-w c:\windows\system32\wups.dll
 2008-10-16 13:06 268,648 ----a-w c:\windows\system32\mucltui.dl​l
 2008-10-16 13:06 208,744 ----a-w c:\windows\system32\muweb.dll
 2008-10-16 01:01 670,208 ----a-w c:\windows\system32\wininet.dl​l
 .

 ((((((((((((((((((((((((((((((​(((   Points de chargement Reg   ))))))))))))))))))))))))))))))​))))))))))))))))))
 .
 .
 *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
 REGEDIT4

 [HKEY_CURRENT_USER\SOFTWARE\Mic​rosoft\Windows\CurrentVersion\​Run]
 "MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 5724184]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Run]
 "SunJavaUpdateSched"="c:\progr​am files\Java\jre1.5.0\bin\jusche​d.exe" [2008-10-06 36972]
 "EDS"="c:\program files\Samsung\Samsung EDS\EDSAgent.exe" [2007-12-20 659456]
 "IgfxTray"="c:\windows\system3​2\igfxtray.exe" [2008-02-28 141848]
 "HotKeysCmds"="c:\windows\syst​em32\hkcmd.exe" [2008-02-28 166424]
 "Persistence"="c:\windows\syst​em32\igfxpers.exe" [2008-02-28 137752]
 "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh​.exe" [2008-08-28 1044480]
 "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 40048]
 "DMHotKey"="c:\program files\Samsung\Easy Display Manager\DMLoader.exe" [2006-12-27 466944]
 "BatteryManager"="c:\program files\Samsung\Samsung Battery Manager\BatteryManager.exe" [2007-10-31 2768896]
 "MagicKeyboard"="c:\program files\SAMSUNG\MagicKBD\PreMKBD​.exe" [2006-05-14 151552]
 "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2008-09-06 413696]
 "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2008-10-01 289576]
 "avast!"="c:\progra~1\ALWILS~1​\Avast4\ashDisp.exe" [2009-01-16 81000]
 "IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2008-06-10 1406024]
 "RTHDCPL"="RTHDCPL.EXE" [2008-08-26 c:\windows\RTHDCPL.EXE]

 [HKEY_USERS\.DEFAULT\Software\M​icrosoft\Windows\CurrentVersio​n\Run]
 "CTFMON.EXE"="c:\windows\syste​m32\CTFMON.EXE" [2008-04-14 15360]

 c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
 BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-04-01 568176]

 [HKLM\~\services\sharedaccess\p​arameters\firewallpolicy\stand​ardprofile\AuthorizedApplicati​ons\List]
 "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
 "%windir%\\system32\\sessmgr.e​xe"=
 "c:\\WINDOWS\\system32\\dpvset​up.exe"=
 "c:\\Program Files\\Bonjour\\mDNSResponder.​exe"=
 "c:\\Program Files\\iTunes\\iTunes.exe"=
 "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"​=
 "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
 "c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"​=

 [HKLM\~\services\sharedaccess\p​arameters\firewallpolicy\stand​ardprofile\GloballyOpenPorts\L​ist]
 "3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009

 R3 DNSeFilter;DNSeFilter;c:\windo​ws\system32\drivers\SamsungEDS​.SYS [2008-01-14 30208]
 R3 VMC326;Vimicro Camera Service VMC326;c:\windows\system32\dri​vers\VMC326.sys [2008-10-06 238464]
 R4 DOSMEMIO;MEMIO;c:\windows\syst​em32\MEMIO.SYS [2008-10-06 4300]
 R4 SNM WLAN Service;SNM WLAN Service;c:\program files\Samsung\Samsung Network Manager\SNMWLANService.exe [2006-10-30 36864]
 S1 aswSP;avast! Self Protection; [x]
 S4 aswFsBlk;aswFsBlk;c:\windows\s​ystem32\DRIVERS\aswFsBlk.sys --> c:\windows\system32\DRIVERS\as​wFsBlk.sys [?]

 [HKEY_CURRENT_USER\software\mic​rosoft\windows\currentversion\​explorer\mountpoints2\{e8aa83e​2-d4c0-11dd-876b-001377ad1b28}​]
 \Shell\AutoRun\command - umenu.exe
 .
 Contenu du dossier 'Tâches planifiées'

 2009-01-10 c:\windows\Tasks\Microsoft_Har​dware_Launch_IPoint_exe.job
 - c:\program files\Microsoft IntelliPoint\ipoint.exe [2008-06-10 12:56]
 .
 - - - - ORPHELINS SUPPRIMES - - - -

 HKCU-Run-Picasa Media Detector - c:\program files\Picasa2\PicasaMediaDetec​tor.exe


 .
 ------- Examen supplémentaire -------
 .
 uStart Page = hxxp://www.emule-france.com
 uInternet Settings,ProxyOverride = *.local
 IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\​EXCEL.EXE/3000
 IE: Envoyer au périphérique &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
 FF - ProfilePath - c:\documents and settings\Jonathan\Application Data\Mozilla\Firefox\Profiles\​8yktzqvd.default\
 FF - component: c:\documents and settings\Jonathan\Application Data\Mozilla\Firefox\Profiles\​8yktzqvd.default\extensions\pi​clens@cooliris.com\components\​coolirisstub.dll
 FF - plugin: c:\program files\Java\jre1.5.0\bin\NPJava​11.dll
 FF - plugin: c:\program files\Java\jre1.5.0\bin\NPJava​12.dll
 FF - plugin: c:\program files\Java\jre1.5.0\bin\NPJava​13.dll
 FF - plugin: c:\program files\Java\jre1.5.0\bin\NPJava​14.dll
 FF - plugin: c:\program files\Java\jre1.5.0\bin\NPJava​32.dll
 FF - plugin: c:\program files\Java\jre1.5.0\bin\NPJPI1​50.dll
 FF - plugin: c:\program files\Java\jre1.5.0\bin\NPOJI6​10.dll
 FF - plugin: c:\program files\Picasa2\npPicasa2.dll
 .

 ******************************​******************************​**************

 catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
 Rootkit scan 2009-01-16 16:44:18
 Windows 5.1.2600 Service Pack 3 NTFS

 Recherche de processus cachés ...

 Recherche d'éléments en démarrage automatique cachés ...

 Recherche de fichiers cachés ...

 Scan terminé avec succès
 Fichiers cachés: 0

 ******************************​******************************​**************
 .
 --------------------- CLES DE REGISTRE BLOQUEES ---------------------

 [HKEY_USERS\S-1-5-21-3981509958​-3128909344-3267737844-1005\So​ftware\Microsoft\Windows\Curre​ntVersion\Shell Extensions\Approved\{01106DC7-A7DD-1F2F-D0CC-0204A654CA31}*]
 @Allowed: (Read) (RestrictedCode)
 @Allowed: (Read) (RestrictedCode)
 "iadfopdppgepiebaok"=hex:6a,61​,61,6d,65,61,66,6a,65,6f,67,62​,6f,65,63,63,70,6c,

6b,6f,00,e8
 "handmnhndicdeecc"=hex:6a,61,6​1,6d,65,61,66,6a,65,6f,67,62,6​f,65,63,63,70,6c,

6b,6f,00,00

 [HKEY_LOCAL_MACHINE\software\Cl​asses\CLSID\{01106DC7-A7DD-1F2​F-D0CC-0204A654CA31}\InProcSer​ver32*]
 "jabfghgcgfpgpadlnhpb"=hex:6a,​61,61,6d,65,61,66,6a,65,6f,67,​62,6f,65,63,63,70,

6c,6b,6f,00,8e
 "iabfehibfenjnmdmif"=hex:6a,61​,61,6d,65,61,66,6a,65,6f,67,62​,6f,65,63,63,70,6c,

6b,6f,00,00
 .
 ------------------------ Autres processus actifs ------------------------
 .
 c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
 c:\program files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceS​ervice.exe
 c:\program files\Bonjour\mDNSResponder.ex​e
 c:\program files\Samsung\Samsung Update Plus\SLUBackgroundService.exe
 c:\windows\system32\igfxsrvc.e​xe
 c:\program files\Samsung\MagicKBD\MagicKB​D.exe
 c:\progra~1\WIDCOMM\BLUETO~1\B​TSTAC~1.EXE
 c:\program files\iPod\bin\iPodService.exe
 .
 ******************************​******************************​**************
 .
 Heure de fin: 2009-01-16 16:47:49 - La machine a redémarré
 ComboFix-quarantined-files.txt  2009-01-16 15:47:45

 Avant-CF: 21,165,858,816 octets libres
 Après-CF: 21,775,155,200 octets libres

 WindowsXP-KB310994-SP2-Home-Bo​otDisk-FRA.exe
 [boot loader]
 timeout=2
 default=multi(0)disk(0)rdisk(0​)partition(2)\WINDOWS
 [operating systems]
 c:\cmdcons\BOOTSECT.DAT="Micro​soft Windows Recovery Console" /cmdcons
 multi(0)disk(0)rdisk(0)partiti​on(2)\WINDOWS="Microsoft Windows XP dition familiale" /noexecute=optin /fastdetect

 744 --- E O F --- 2008-12-19 15:38:19

 je te remercie.

mido70
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 16/01/2009 à 19:25:50  
  1. Prévenir les modérateurs en cas d'abus
 
re,

 • Ouvrer le Bloc-note dans le Menu Démarrer --> Tout les programmes --> Accessoire.
 • Copier/ coller le contenu exact de la citation suivante dans le Bloc-Note,
 • Sauvegarder sous Affiche.bat
 • Double-cliquer sur le fichier Affiche.bat et valider

 



reg export "HKEY_USERS\S-1-5-21-398150995​8-3128909344-3267737844-1005\S​oftware\Microsoft\Windows\Curr​entVersion\Shell Extensions\Approved\{01106DC7-​A7DD-1F2F-D0CC-0204A654CA31}*" fic1.txt
 reg export "HKEY_LOCAL_MACHINE\software\C​lasses\CLSID\{01106DC7-A7DD-1F​2F-D0CC-0204A654CA31}\InProcSe​rver32*" fic2.txt
 Copy  fic1.txt +fic2.txt rap.txt
 del  fic*.txt
 start notepad rap.txt

 reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\M​icrosoft\Windows\CurrentVersio​n\Run" /v jusched.exe /f
 reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\M​icrosoft\Windows\CurrentVersio​n\Run" /v igfxpers.exe /f
 reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\M​icrosoft\Windows\CurrentVersio​n\Run" /v Reader_sl.exe /f
 reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\M​icrosoft\Windows\CurrentVersio​n\Run" /v QTTask.exe /f
 reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\M​icrosoft\Windows\CurrentVersio​n\Run" /v iTunesHelper.exe /f
 reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\M​icrosoft\Windows\CurrentVersio​n\Run" /v RTHDCPL.EXE /f
 reg delete "HKEY_USERS\.DEFAULT\Software\​Microsoft\Windows\CurrentVersi​on\Run" /v CTFMON.EXE /f
 reg delete "HKEY_CURRENT_USER\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Run" /v MsnMsgr /f


&#9658; Affichez le contenu de rap.txt sur votre prochain message.
 ______________________________​______________________________​________________________


 &#9658; Désactiver votre antivirus.

 • Sélectionnez le contenu exact de la citation dans son intégralité



File::
 C:\sqmdata19.sqm
 C:\sqmnoopt19.sqm
 C:\sqmdata18.sqm
 C:\sqmnoopt18.sqm
 C:\sqmdata17.sqm
 C:\sqmnoopt17.sqm
 C:\sqmdata16.sqm  
 C:\sqmnoopt16.sqm
 C:\sqmdata15.sqm
 C:\sqmnoopt15.sqm
 C:\sqmdata14.sqm  
 C:\sqmnoopt14.sqm
 C:\sqmdata13.sqm  
 C:\sqmnoopt13.sqm  
 C:\sqmdata12.sqm  
 C:\sqmnoopt12.sqm
 C:\sqmdata11.sqm
 C:\sqmnoopt11.sqm
 C:\sqmdata10.sqm
 C:\sqmnoopt10.sqm
 C:\sqmdata09.sqm  
 C:\sqmnoopt09.sqm
 C:\sqmdata08.sqm
 C:\sqmnoopt08.sqm
 C:\sqmdata07.sqm
 C:\sqmnoopt07.sqm  
 C:\sqmdata06.sqm  
 C:\sqmnoopt06.sqm
 C:\sqmdata05.sqm
 C:\sqmnoopt05.sqm
 C:\sqmdata04.sqm    
 C:\sqmnoopt04.sqm    
 C:\sqmdata03.sqm    
 C:\sqmnoopt03.sqm    
 C:\sqmdata02.sqm    
 C:\sqmnoopt02.sqm    
 c:\documents and settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_​CA64CB79BCF6}
 c:\windows\system32\drivers\Ms​ft_Kernel_NuidFltr_01005.Wdf  

 Folder::
 c:\documents and settings\Jonathan\Application Data\drivers  

 Registry::
 [-HKEY_CURRENT_USER\software\mi​crosoft\windows\currentversion​\explorer\mountpoints2\{e8aa83​e2-d4c0-11dd-876b-001377ad1b28​}]
 [-HKEY_LOCAL_MACHINE\software\C​lasses\CLSID\{01106DC7-A7DD-1F​2F-D0CC-0204A654CA31}\InProcSe​rver32*]    
 [-HKEY_USERS\S-1-5-21-398150995​8-3128909344-3267737844-1005\S​oftware\Microsoft\Windows\Curr​entVersion\Shell Extensions\Approved\{01106DC7-A7DD-1F2F-D0CC-0204A654CA31}*]


• Copiez le texte sélectionné (CTRL+C).
 • Ouvrez le Bloc-notes (programme>Accessoires >bloc-notes).
 • Collez le texte copié dans ce Bloc-notes (CTRL+V).
 • Sauvegarder sur votre Bureau ce fichier sous le nom de CFScript.txt

 >> Déconnectez vous du net et désactivez votre antivirus
 >> pour que ComboFix puisse s'exécuter normalement.

 • Par un clic glisser/déposer le fichier CFScript.txt sur l’icône ComboFix sur votre Bureau.
 http://img530.imageshack.us/im​g530/204/cfscriptdd4.gif

 Un "pop-up" va apparaître qui dit que "la version ComboFix est utilisé à vos risques et avec aucune garantie..".
 • Acceptez en cliquant sur "Oui"

 • Une fenêtre bleue va apparaître avec le message : Type 1 to continue, or 2 to abort , entrer 1 et validez.
 >>> Patientez le temps du scan. <<<
 Le Bureau va disparaître à plusieurs reprises : c'est normal!

 >> Ne touchez à rien tant que le scan n'est pas terminé.

 En fin de scan, il est possible que ComboFix ait besoin de redémarrer le PC pour finaliser la désinfection,
 Laissez-le aller.

 Une fois le scan achevé, un rapport va s'afficher.
 &#9658; Postez le contenu de ce rapport (C:\ComboFix.txt ).

 &#9658; Réactiver votre antivirus.

 Supprimer ComboFix en copiant/collant dans Démarrer &#61664;Exécuter : ComboFix /u et valider.
 
 ______________________________​______________________________​________________________

 Mettez à jours.
 • Java sun : http://www.java.com/fr/download/manual.jsp
 >>>> Désinstaller la version déjà installée de Java avant de màj.

 • Adobe reader : http://www.adobe.com/fr/produc [...] step2.html

 • Vérifier aussi pour Quick Time.
 ______________________________​______________________________​________________________

 Nettoyage des fichiers temporaires, Cookies..
 CCleaner version Slim (sans la Yahoo ToolBar) : Téléchargement - & - Tutoriel .
 • Installer et lancer CCleaner.
 • Appuyer sur [Analyse] et [Lancer le Nettoyage].

 Utiliser CCleaner après chaque session sur le net,
 installation de logiciels et/ou avant de fermer le PC.

 ______________________________​______________________________​________________________

 Produisez un rapport d'Analyse de votre PC.
 HijackThis : Téléchargement - & - Tutoriel.
 • Créer un répertoire http://img214.imageshack.us/im​g214/4034/icone2rpcy5.jpg \HijackThis\..  et mettez y HijackThis.exe http://img133.imageshack.us/im​g133/24/iconehjtnz8.jpg
 • Créez  un raccourci sur votre bureau "par un clic-droit sur HijackThis.exe".
 • Lancer HijackThis,
 • Appuyer sur [Do a system scan and save a logfile].
 • Le bloc-note va s'ouvrir avec un rapport,
 &#9658; Afficher le rapport HijackThis sur votre prochain post.

(Publicité)
jodr
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 18/01/2009 à 18:39:19  
  1. Prévenir les modérateurs en cas d'abus
 
salut,

 Alors j'ai fait comme tu m'as indique:

 -pour le dichier rap.txt: le rapport ne donne rien, le fichier .txt est vide.

 -pour combofix.txt: voici le resultat:
 ComboFix 09-01-15.01 - Jonathan 2009-01-18 16:26:37.2 - NTFSx86
 Microsoft Windows XP Édition familiale  5.1.2600.3.1252.1.1036.18.1014​.628 [GMT 1:00]
 Lancé depuis: c:\documents and settings\Jonathan\Bureau\CB-F.​exe
 Commutateurs utilisés :: c:\documents and settings\Jonathan\Bureau\CFScr​ipt.txt
 * Un nouveau point de restauration a été créé

 FILE ::
 c:\documents and settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_​CA64CB79BCF6}
 C:\sqmdata02.sqm
 C:\sqmdata03.sqm
 C:\sqmdata04.sqm
 C:\sqmdata05.sqm
 C:\sqmdata06.sqm
 C:\sqmdata07.sqm
 C:\sqmdata08.sqm
 C:\sqmdata09.sqm
 C:\sqmdata10.sqm
 C:\sqmdata11.sqm
 C:\sqmdata12.sqm
 C:\sqmdata13.sqm
 C:\sqmdata14.sqm
 C:\sqmdata15.sqm
 C:\sqmdata16.sqm
 C:\sqmdata17.sqm
 C:\sqmdata18.sqm
 C:\sqmdata19.sqm
 C:\sqmnoopt02.sqm
 C:\sqmnoopt03.sqm
 C:\sqmnoopt04.sqm
 C:\sqmnoopt05.sqm
 C:\sqmnoopt06.sqm
 C:\sqmnoopt07.sqm
 C:\sqmnoopt08.sqm
 C:\sqmnoopt09.sqm
 C:\sqmnoopt10.sqm
 C:\sqmnoopt11.sqm
 C:\sqmnoopt12.sqm
 C:\sqmnoopt13.sqm
 C:\sqmnoopt14.sqm
 C:\sqmnoopt15.sqm
 C:\sqmnoopt16.sqm
 C:\sqmnoopt17.sqm
 C:\sqmnoopt18.sqm
 C:\sqmnoopt19.sqm
 c:\windows\system32\drivers\Ms​ft_Kernel_NuidFltr_01005.Wdf
 .

 ((((((((((((((((((((((((((((((​((((((   Autres suppressions   ))))))))))))))))))))))))))))))​))))))))))))))))))
 .

 c:\documents and settings\Jonathan\Application Data\drivers
 C:\sqmdata02.sqm
 C:\sqmdata03.sqm
 C:\sqmdata04.sqm
 C:\sqmdata05.sqm
 C:\sqmdata06.sqm
 C:\sqmdata07.sqm
 C:\sqmdata08.sqm
 C:\sqmdata09.sqm
 C:\sqmdata10.sqm
 C:\sqmdata11.sqm
 C:\sqmdata12.sqm
 C:\sqmdata13.sqm
 C:\sqmdata14.sqm
 C:\sqmdata15.sqm
 C:\sqmdata16.sqm
 C:\sqmdata17.sqm
 C:\sqmdata18.sqm
 C:\sqmdata19.sqm
 C:\sqmnoopt02.sqm
 C:\sqmnoopt03.sqm
 C:\sqmnoopt04.sqm
 C:\sqmnoopt05.sqm
 C:\sqmnoopt06.sqm
 C:\sqmnoopt07.sqm
 C:\sqmnoopt08.sqm
 C:\sqmnoopt09.sqm
 C:\sqmnoopt10.sqm
 C:\sqmnoopt11.sqm
 C:\sqmnoopt12.sqm
 C:\sqmnoopt13.sqm
 C:\sqmnoopt14.sqm
 C:\sqmnoopt15.sqm
 C:\sqmnoopt16.sqm
 C:\sqmnoopt17.sqm
 C:\sqmnoopt18.sqm
 C:\sqmnoopt19.sqm
 c:\windows\system32\drivers\Ms​ft_Kernel_NuidFltr_01005.Wdf

 .
 (((((((((((((((((((((((((((((   Fichiers créés du 2008-12-18 au 2009-01-18  ))))))))))))))))))))))))))))))​))))))
 .

 2009-01-17 13:36 . 2009-01-17 13:36 <REP> d-------- c:\documents and settings\Jonathan\.thumbnails
 2009-01-17 13:33 . 2009-01-17 14:01 <REP> d-------- c:\documents and settings\Jonathan\Application Data\gtk-2.0
 2009-01-17 13:27 . 2009-01-17 13:27 <REP> d-------- c:\program files\GIMP-2.0
 2009-01-17 13:27 . 2009-01-17 20:16 <REP> d-------- c:\documents and settings\Jonathan\.gimp-2.6
 2009-01-17 13:27 . 2009-01-17 13:27 <REP> d-------- c:\documents and settings\Jonathan\.gegl-0.0
 2009-01-16 18:56 . 2009-01-18 16:24 <REP> d-------- c:\program files\PhotoFiltre
 2009-01-10 15:55 . 2009-01-10 15:56 <REP> d-------- c:\documents and settings\Jonathan\Application Data\Filter Forge
 2009-01-10 15:43 . 2009-01-10 15:43 0 --ah----- c:\windows\system32\drivers\Ms​ftWdf_Kernel_01005_Coinstaller​_Critical.Wdf
 2009-01-10 15:42 . 2008-06-09 13:12 1,421,384 --a------ c:\windows\system32\wdfcoinsta​ller01005.dll
 2009-01-10 15:42 . 2008-04-13 19:33 21,504 --a------ c:\windows\system32\drivers\hi​dserv.dll
 2009-01-10 15:42 . 2008-06-09 13:12 18,504 --a------ c:\windows\system32\drivers\nu​idfltr.sys
 2009-01-10 15:41 . 2009-01-10 15:41 <REP> d-------- c:\program files\Microsoft IntelliPoint
 2009-01-10 15:41 . 2008-12-04 11:34 27,784 --a------ c:\windows\system32\drivers\po​int32.sys
 2009-01-09 13:28 . 2009-01-12 09:03 <REP> d-------- c:\program files\VstPlugins
 2009-01-09 13:28 . 2005-04-12 16:21 225,280 --a------ c:\windows\system32\rewire.dll
 2009-01-09 13:27 . 2002-07-07 23:14 1,294,336 --a------ c:\windows\system32\vorbis.acm
 2009-01-09 13:25 . 2009-01-12 09:02 <REP> d-------- c:\program files\Image-Line
 2009-01-08 19:14 . 2009-01-08 19:15 <REP> d-------- c:\documents and settings\Jonathan\Application Data\Filter Forge Freepack 2 - Photo Effects
 2009-01-08 19:13 . 2009-01-08 19:13 <REP> d-------- c:\program files\Filter Forge Freepack 2 - Photo Effects
 2009-01-08 19:13 . 2006-11-10 18:41 1,030,144 --a------ c:\windows\system32\dbghelp-xf​w.dll
 2009-01-06 19:15 . 2009-01-06 19:15 <REP> d-------- c:\documents and settings\Jonathan\lmms
 2009-01-06 19:11 . 2009-01-06 19:15 <REP> d-------- c:\program files\LMMS 0.4.2
 2008-12-28 00:36 . 2008-12-28 00:37 <REP> d-------- c:\program files\QuickMediaConverter

 .
 ((((((((((((((((((((((((((((((​((((   Compte-rendu de Find3M   ))))))))))))))))))))))))))))))​))))))))))))))))))
 .
 2009-01-18 14:38 --------- d-----w c:\program files\eMule
 2009-01-17 21:47 --------- d-----w c:\documents and settings\Jonathan\Application Data\dvdcss
 2009-01-17 02:01 --------- d-----w c:\documents and settings\All Users\Application Data\Microsoft Help
 2009-01-16 15:42 --------- d-----w c:\program files\Picasa2
 2009-01-01 19:33 --------- d-----w c:\documents and settings\Jonathan\Application Data\Apple Computer
 2008-12-13 19:27 --------- dcsh--w c:\program files\Fichiers communs\WindowsLiveInstaller
 2008-12-13 19:27 --------- d-----w c:\program files\Windows Live
 2008-12-13 19:23 --------- d-----w c:\documents and settings\All Users\Application Data\WLInstaller
 2008-12-12 17:06 --------- d-----w c:\program files\Hobbyist Software
 2008-12-12 12:17 --------- d-----w c:\documents and settings\Jonathan\Application Data\vlc
 2008-12-11 10:57 333,952 ----a-w c:\windows\system32\drivers\sr​v.sys
 2008-12-10 15:36 --------- d-----w c:\documents and settings\All Users\Application Data\McAfee
 2008-12-10 12:49 --------- d-----w c:\program files\MSBuild
 2008-12-10 12:49 --------- d-----w c:\program files\Microsoft Works
 2008-12-10 12:32 --------- d-----w c:\program files\Alwil Software
 2008-12-10 12:18 --------- d-----w c:\program files\iTunes
 2008-12-10 12:18 --------- d-----w c:\documents and settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_​CA64CB79BCF6}
 2008-12-10 12:17 --------- d-----w c:\program files\Windows Media Connect 2
 2008-12-10 12:17 --------- d-----w c:\program files\iPod
 2008-12-10 12:17 --------- d-----w c:\program files\Bonjour
 2008-12-10 12:17 --------- d-----w c:\documents and settings\All Users\Application Data\Apple Computer
 2008-12-10 12:16 --------- d-----w c:\program files\QuickTime
 2008-12-10 12:15 --------- d-----w c:\program files\Fichiers communs\Apple
 2008-12-10 12:14 --------- d-----w c:\program files\Google
 2008-12-10 12:14 --------- d-----w c:\program files\Apple Software Update
 2008-12-10 12:12 --------- d-----w c:\program files\VideoLAN
 2008-12-10 12:12 --------- d-----w c:\documents and settings\All Users\Application Data\Apple
 2008-10-23 12:36 286,720 ----a-w c:\windows\system32\gdi32.dll
 .

 (((((((((((((((((((((((((((((   snapshot@2009-01-16_16.45.58.8​9   ))))))))))))))))))))))))))))))​)))))))))))
 .
 + 2008-06-20 11:48:03 138,496 ----a-w c:\windows\$hf_mig$\KB951748\S​P3QFE\afd.sys
 + 2008-06-20 17:44:02 147,968 ----a-w c:\windows\$hf_mig$\KB951748\S​P3QFE\dnsapi.dll
 + 2008-06-20 17:44:02 247,808 ----a-w c:\windows\$hf_mig$\KB951748\S​P3QFE\mswsock.dll
 + 2008-06-20 11:59:02 361,600 ----a-w c:\windows\$hf_mig$\KB951748\S​P3QFE\tcpip.sys
 + 2008-06-20 11:16:44 225,856 ----a-w c:\windows\$hf_mig$\KB951748\S​P3QFE\tcpip6.sys
 + 2007-11-30 12:39:29 18,296 ----a-w c:\windows\$hf_mig$\KB951748\s​pmsg.dll
 + 2007-11-30 12:39:29 234,872 ----a-w c:\windows\$hf_mig$\KB951748\s​puninst.exe
 + 2007-11-30 12:39:29 26,488 ----a-w c:\windows\$hf_mig$\KB951748\u​pdate\spcustom.dll
 + 2007-11-30 12:39:26 767,352 ----a-w c:\windows\$hf_mig$\KB951748\u​pdate\update.exe
 + 2007-11-30 12:39:29 406,392 ----a-w c:\windows\$hf_mig$\KB951748\u​pdate\updspapi.dll
 - 2008-12-18 02:05:55 1,165,584 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​accicons.exe
 + 2009-01-17 02:02:02 1,165,584 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​accicons.exe
 - 2008-12-18 02:05:56 20,240 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​cagicon.exe
 + 2009-01-17 02:02:02 20,240 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​cagicon.exe
 - 2008-12-18 02:05:55 159,504 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​inficon.exe
 + 2009-01-17 02:02:02 159,504 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​inficon.exe
 - 2008-12-18 02:05:56 217,864 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​misc.exe
 + 2009-01-17 02:02:02 217,864 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​misc.exe
 - 2008-12-18 02:05:57 18,704 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​mspicons.exe
 + 2009-01-17 02:02:02 18,704 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​mspicons.exe
 - 2008-12-18 02:05:57 35,088 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​oisicon.exe
 + 2009-01-17 02:02:02 35,088 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​oisicon.exe
 - 2008-12-18 02:05:55 845,584 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​outicon.exe
 + 2009-01-17 02:02:02 845,584 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​outicon.exe
 - 2008-12-18 02:05:56 922,384 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​pptico.exe
 + 2009-01-17 02:02:02 922,384 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​pptico.exe
 - 2008-12-18 02:05:56 272,648 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​pubs.exe
 + 2009-01-17 02:02:02 272,648 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​pubs.exe
 - 2008-12-18 02:05:57 888,080 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​wordicon.exe
 + 2009-01-17 02:02:02 888,080 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​wordicon.exe
 - 2008-12-18 02:05:55 1,172,240 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​xlicons.exe
 + 2009-01-17 02:02:02 1,172,240 ----a-r c:\windows\Installer\{90120000​-0011-0000-0000-0000000FF1CE}\​xlicons.exe
 - 2008-04-14 12:00:00 147,968 -c--a-w c:\windows\system32\dllcache\d​nsapi.dll
 + 2008-06-20 17:47:22 147,968 -c--a-w c:\windows\system32\dllcache\d​nsapi.dll
 - 2008-04-14 12:00:00 247,808 -c--a-w c:\windows\system32\dllcache\m​swsock.dll
 + 2008-06-20 17:47:22 247,808 -c--a-w c:\windows\system32\dllcache\m​swsock.dll
 - 2008-09-08 10:41:42 333,824 -c--a-w c:\windows\system32\dllcache\s​rv.sys
 + 2008-12-11 10:57:09 333,952 -c--a-w c:\windows\system32\dllcache\s​rv.sys
 - 2008-04-14 12:00:00 361,344 -c--a-w c:\windows\system32\dllcache\t​cpip.sys
 + 2008-06-20 11:51:12 361,600 -c--a-w c:\windows\system32\dllcache\t​cpip.sys
 - 2008-04-14 12:00:00 225,664 -c--a-w c:\windows\system32\dllcache\t​cpip6.sys
 + 2008-06-20 11:08:27 225,856 -c--a-w c:\windows\system32\dllcache\t​cpip6.sys
 - 2008-04-14 12:00:00 147,968 ----a-w c:\windows\system32\dnsapi.dll
 + 2008-06-20 17:47:22 147,968 ----a-w c:\windows\system32\dnsapi.dll
 - 2008-04-14 12:00:00 361,344 ----a-w c:\windows\system32\drivers\tc​pip.sys
 + 2008-06-20 11:51:12 361,600 ----a-w c:\windows\system32\drivers\tc​pip.sys
 - 2008-04-14 12:00:00 225,664 ----a-w c:\windows\system32\drivers\tc​pip6.sys
 + 2008-06-20 11:08:27 225,856 ----a-w c:\windows\system32\drivers\tc​pip6.sys
 - 2008-04-14 12:00:00 247,808 ----a-w c:\windows\system32\mswsock.dl​l
 + 2008-06-20 17:47:22 247,808 ----a-w c:\windows\system32\mswsock.dl​l
 .
 -- Instantané actualisé --
 .
 ((((((((((((((((((((((((((((((​(((   Points de chargement Reg   ))))))))))))))))))))))))))))))​))))))))))))))))))
 .
 .
 *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
 REGEDIT4

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Run]
 "SunJavaUpdateSched"="c:\progr​am files\Java\jre1.5.0\bin\jusche​d.exe" [2008-10-06 36972]
 "EDS"="c:\program files\Samsung\Samsung EDS\EDSAgent.exe" [2007-12-20 659456]
 "IgfxTray"="c:\windows\system3​2\igfxtray.exe" [2008-02-28 141848]
 "HotKeysCmds"="c:\windows\syst​em32\hkcmd.exe" [2008-02-28 166424]
 "Persistence"="c:\windows\syst​em32\igfxpers.exe" [2008-02-28 137752]
 "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh​.exe" [2008-08-28 1044480]
 "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 40048]
 "DMHotKey"="c:\program files\Samsung\Easy Display Manager\DMLoader.exe" [2006-12-27 466944]
 "BatteryManager"="c:\program files\Samsung\Samsung Battery Manager\BatteryManager.exe" [2007-10-31 2768896]
 "MagicKeyboard"="c:\program files\SAMSUNG\MagicKBD\PreMKBD​.exe" [2006-05-14 151552]
 "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2008-09-06 413696]
 "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2008-10-01 289576]
 "IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2008-06-10 1406024]
 "RTHDCPL"="RTHDCPL.EXE" [2008-08-26 c:\windows\RTHDCPL.EXE]

 c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
 BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-04-01 568176]

 [HKLM\~\services\sharedaccess\p​arameters\firewallpolicy\stand​ardprofile]
 "EnableFirewall"= 0 (0x0)

 [HKLM\~\services\sharedaccess\p​arameters\firewallpolicy\stand​ardprofile\AuthorizedApplicati​ons\List]
 "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
 "%windir%\\system32\\sessmgr.e​xe"=
 "c:\\WINDOWS\\system32\\dpvset​up.exe"=
 "c:\\Program Files\\Bonjour\\mDNSResponder.​exe"=
 "c:\\Program Files\\iTunes\\iTunes.exe"=
 "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"​=
 "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
 "c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"​=
 "c:\\Program Files\\eMule\\emule.exe"=
 "c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"​=

 [HKLM\~\services\sharedaccess\p​arameters\firewallpolicy\stand​ardprofile\GloballyOpenPorts\L​ist]
 "3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009

 R3 DNSeFilter;DNSeFilter;c:\windo​ws\system32\drivers\SamsungEDS​.SYS [2008-01-14 30208]
 R3 VMC326;Vimicro Camera Service VMC326;c:\windows\system32\dri​vers\VMC326.sys [2008-10-06 238464]
 R4 DOSMEMIO;MEMIO;c:\windows\syst​em32\MEMIO.SYS [2008-10-06 4300]
 R4 SNM WLAN Service;SNM WLAN Service;c:\program files\Samsung\Samsung Network Manager\SNMWLANService.exe [2006-10-30 36864]
 .
 Contenu du dossier 'Tâches planifiées'

 2009-01-10 c:\windows\Tasks\Microsoft_Har​dware_Launch_IPoint_exe.job
 - c:\program files\Microsoft IntelliPoint\ipoint.exe [2008-06-10 12:56]
 .
 .
 ------- Examen supplémentaire -------
 .
 uStart Page = hxxp://www.emule-france.com
 uInternet Settings,ProxyOverride = *.local
 IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\​EXCEL.EXE/3000
 IE: Envoyer au périphérique &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
 FF - ProfilePath - c:\documents and settings\Jonathan\Application Data\Mozilla\Firefox\Profiles\​8yktzqvd.default\
 FF - component: c:\documents and settings\Jonathan\Application Data\Mozilla\Firefox\Profiles\​8yktzqvd.default\extensions\pi​clens@cooliris.com\components\​coolirisstub.dll
 FF - plugin: c:\program files\Java\jre1.5.0\bin\NPJava​11.dll
 FF - plugin: c:\program files\Java\jre1.5.0\bin\NPJava​12.dll
 FF - plugin: c:\program files\Java\jre1.5.0\bin\NPJava​13.dll
 FF - plugin: c:\program files\Java\jre1.5.0\bin\NPJava​14.dll
 FF - plugin: c:\program files\Java\jre1.5.0\bin\NPJava​32.dll
 FF - plugin: c:\program files\Java\jre1.5.0\bin\NPJPI1​50.dll
 FF - plugin: c:\program files\Java\jre1.5.0\bin\NPOJI6​10.dll
 FF - plugin: c:\program files\Picasa2\npPicasa2.dll
 .

 ******************************​******************************​**************

 catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
 Rootkit scan 2009-01-18 16:28:23
 Windows 5.1.2600 Service Pack 3 NTFS

 Recherche de processus cachés ...

 Recherche d'éléments en démarrage automatique cachés ...

 Recherche de fichiers cachés ...

 Scan terminé avec succès
 Fichiers cachés: 0

 ******************************​******************************​**************
 .
 --------------------- CLES DE REGISTRE BLOQUEES ---------------------

 [HKEY_USERS\S-1-5-21-3981509958​-3128909344-3267737844-1005\So​ftware\Microsoft\Windows\Curre​ntVersion\Shell Extensions\Approved\{01106DC7-A7DD-1F2F-D0CC-0204A654CA31}*]
 @Allowed: (Read) (RestrictedCode)
 @Allowed: (Read) (RestrictedCode)
 "iadfopdppgepiebaok"=hex:6a,61​,61,6d,65,61,66,6a,65,6f,67,62​,6f,65,63,63,70,6c,

6b,6f,00,e8
 "handmnhndicdeecc"=hex:6a,61,6​1,6d,65,61,66,6a,65,6f,67,62,6​f,65,63,63,70,6c,

6b,6f,00,00

 [HKEY_LOCAL_MACHINE\software\Cl​asses\CLSID\{01106DC7-A7DD-1F2​F-D0CC-0204A654CA31}\InProcSer​ver32*]
 "jabfghgcgfpgpadlnhpb"=hex:6a,​61,61,6d,65,61,66,6a,65,6f,67,​62,6f,65,63,63,70,

6c,6b,6f,00,8e
 "iabfehibfenjnmdmif"=hex:6a,61​,61,6d,65,61,66,6a,65,6f,67,62​,6f,65,63,63,70,6c,

6b,6f,00,00
 .
 Heure de fin: 2009-01-18 16:29:49
 ComboFix-quarantined-files.txt  2009-01-18 15:29:46
 ComboFix2.txt  2009-01-16 15:47:50

 Avant-CF: 14 335 594 496 octets libres
 Après-CF: 14,334,353,408 octets libres

 292 --- E O F --- 2009-01-17 02:02:05

 je te renvoie les autres rapports en suivant.
 Merci beaucoup

jodr
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 18/01/2009 à 21:00:33  
  1. Prévenir les modérateurs en cas d'abus
 
re,

 pour le rapport avec HiJackThis j'ai beau faire le raccourcis sur le bureau ou faire l'execution sur le fichier directement j'ai tourjours le message HiJackThis n'est pas une application win32 valide...
 Desole de ne pas te faciliter la tache mais avec ma meilleure volonte je galere...
 Merci de me consacrer du temps.

 jodr

jodr
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 18/01/2009 à 21:02:17  
  1. Prévenir les modérateurs en cas d'abus
 
excuse moi j'ai oublie de te transmettre le rapport de CCleaner:

 NETTOYAGE COMPLET - (6.200 secs)
 ------------------------------​------------------------------​------------------------------
 7,07MB supprimés.
 ------------------------------​------------------------------​------------------------------

 Détails des fichiers effacés
 ------------------------------​------------------------------​------------------------------
 Fichiers Temporaires d'Internet Explorer (fichiers 4) 32,54KB
 C:\Documents and Settings\Jonathan\Cookies\jona​than@subscribe.free[1].txt 307 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@yahoo[1].txt 81 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@quantserve[2].txt 183 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@mediaplex[1].txt 79 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@journaldugeek[2].txt 364 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@tradedoubler[2].txt 213 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@download.mozilla[1].txt 100 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@atdmt[2].txt 94 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@casio.solution.weborama[2].txt 365 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@serving-sys[2].txt 701 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@t.msn[1].txt 398 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@atraxio[1].txt 115 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@fr.msn[2].txt 338 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@apmebf[1].txt 89 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@www.emule-france[2].txt 106 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@bluestreak[2].txt 260 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@mozilla-europe[1].txt 294 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@www.gowindowslive[1].txt 360 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@smartadserver[2].txt 378 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@netscape.aol[2].txt 70 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@commentcamarche[2].txt 432 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@rueducommerce[1].txt 1,32KB
 C:\Documents and Settings\Jonathan\Cookies\jona​than@free[1].txt 273 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@weborama[2].txt 154 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@pubtr.rueducommerce[2].txt 108 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@msn.co[2].txt 336 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@emule-france[1].txt 268 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@flickr[2].txt 164 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@messenger.msn[1].txt 95 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@247realmedia[1].txt 402 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@adviva[1].txt 72 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@google[2].txt 324 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@msn[2].txt 430 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@live[2].txt 513 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@facebook[2].txt 496 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@google[1].txt 131 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@login.live[2].txt 348 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@rad.msn[1].txt 822 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@edt02[1].txt 202 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@doubleclick[2].txt 116 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@rad.live[1].txt 728 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@addons.mozilla[2].txt 308 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@bs.serving-sys[2].txt 129 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@cetelem.solution.weborama[2].txt 373 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@boursoramabanque.solution​.weborama[2].txt 409 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@p.live[1].txt 103 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@verify[1].txt 129 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@msnportal.112.2o7[1].txt 118 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@xiti[1].txt 100 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@dailymotion[1].txt 85 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@serviceswitching[1].txt 146 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@hotmail.msn[1].txt 70 bytes
 C:\Documents and Settings\Jonathan\Cookies\jona​than@eulerian[1].txt 377 bytes
 Marqué pour l'effacement: C:\Documents and Settings\Jonathan\Local Settings\Temporary Internet Files\Content.IE5\index.dat
 Marqué pour l'effacement: C:\Documents and Settings\Jonathan\Cookies\inde​x.dat
 Marqué pour l'effacement: C:\Documents and Settings\Jonathan\Local Settings\Historique\History.IE​5\index.dat
 Marqué pour l'effacement: C:\Documents and Settings\Jonathan\Local Settings\Historique\History.IE​5\MSHist012009011820090119\ind​ex.dat
 C:\Documents and Settings\Jonathan\Recent\-(fre​nch)-2009.The Wrestler.(HD-DTS).bonne qualite.[FR_French]DVDRiP-Xvid-AC3.avi.​lnk 1,10KB
 C:\Documents and Settings\Jonathan\Recent\--J--​.lnk 331 bytes
 C:\Documents and Settings\Jonathan\Recent\095.l​nk 576 bytes
 C:\Documents and Settings\Jonathan\Recent\105_P​ANA.lnk 308 bytes
 C:\Documents and Settings\Jonathan\Recent\106NC​D40.lnk 308 bytes
 C:\Documents and Settings\Jonathan\Recent\162.l​nk 576 bytes
 C:\Documents and Settings\Jonathan\Recent\19.ln​k 571 bytes
 C:\Documents and Settings\Jonathan\Recent\27358​93588_10beb881dd.lnk 600 bytes
 C:\Documents and Settings\Jonathan\Recent\300.F​RENCH.DVDRiP.REPACK.1CD.XViD-E​LiTE-CasualFirm.lnk 483 bytes
 C:\Documents and Settings\Jonathan\Recent\42gue​ssjewff6.lnk 552 bytes
 C:\Documents and Settings\Jonathan\Recent\51S95​C7BB6L._SL500_AA240_.lnk 585 bytes
 C:\Documents and Settings\Jonathan\Recent\A1093​7.lnk 472 bytes
 C:\Documents and Settings\Jonathan\Recent\Adult Swim And Stones Throw Present Chrome Children Dvdrip Xvid 2006-Ncse.lnk 552 bytes
 C:\Documents and Settings\Jonathan\Recent\air sneakers nyc.lnk 571 bytes
 C:\Documents and Settings\Jonathan\Recent\Amphi​s.De.France.5,.Les.(Sciences.E​t.Philosophie).03.Le.Monde.Est​-il.Mathématique.FR.REPACK.DVB​.x264-Axio.[tvu.org.ru].lnk 1,29KB
 C:\Documents and Settings\Jonathan\Recent\aout 2007-01 (7).lnk 490 bytes
 C:\Documents and Settings\Jonathan\Recent\Batma​n - The Dark Knight.lnk 369 bytes
 C:\Documents and Settings\Jonathan\Recent\Battl​estar.Galactica.1x01.33.minute​s.DVDRip.Fr.lnk 956 bytes
 C:\Documents and Settings\Jonathan\Recent\Battl​estar.Galactica.1x05.Crash.sur​.la.lune.DVDRip.Fr.lnk 991 bytes
 C:\Documents and Settings\Jonathan\Recent\BB courrier rabbin.lnk 537 bytes
 C:\Documents and Settings\Jonathan\Recent\Big.B​ang.Theory,.The.1x16.The.Peanu​t.Reaction.ENG.-.sub.FR.HDTV.X​viD-Z@Zou.[tvu.org.ru].lnk 720 bytes
 C:\Documents and Settings\Jonathan\Recent\Big.B​ang.Theory,.The.1x17.The.Tange​rine.Factor.ENG.-.sub.FR.HDTV.​XviD-Z@Zou.[tvu.org.ru].lnk 723 bytes
 C:\Documents and Settings\Jonathan\Recent\Burea​u.lnk 966 bytes
 C:\Documents and Settings\Jonathan\Recent\Calif​ornication.S01E01.PREAIR.VOSTF​R-PM4.lnk 656 bytes
 C:\Documents and Settings\Jonathan\Recent\Calif​ornication.S01E02.VOSTFR-PM4.l​nk 635 bytes
 C:\Documents and Settings\Jonathan\Recent\Calif​ornication.S01E03.HDTV.XViD-Ca​ph.VOSTFR-PM4.lnk 1,00KB
 C:\Documents and Settings\Jonathan\Recent\Calif​ornication.S01E05.HR.VOSTFR-PM​4 (2).lnk 644 bytes
 C:\Documents and Settings\Jonathan\Recent\Captu​re Video.lnk 359 bytes
 C:\Documents and Settings\Jonathan\Recent\cauti​on_in_lomo_by_iamshutterhappy.​lnk 763 bytes
 C:\Documents and Settings\Jonathan\Recent\CFScr​ipt.lnk 391 bytes
 C:\Documents and Settings\Jonathan\Recent\Clair​e.lnk 553 bytes
 C:\Documents and Settings\Jonathan\Recent\Combo​Fix.lnk 415 bytes
 C:\Documents and Settings\Jonathan\Recent\COVER​S.lnk 367 bytes
 C:\Documents and Settings\Jonathan\Recent\DataB​ackup#(2008-12-09.193134).lnk 593 bytes
 C:\Documents and Settings\Jonathan\Recent\Disqu​e local (C).lnk 293 bytes
 C:\Documents and Settings\Jonathan\Recent\DIVER​S.lnk 406 bytes
 C:\Documents and Settings\Jonathan\Recent\downl​oad.blog.lnk 559 bytes
 C:\Documents and Settings\Jonathan\Recent\DSCN1​175-1.lnk 747 bytes
 C:\Documents and Settings\Jonathan\Recent\DSCN1​327.lnk 735 bytes
 C:\Documents and Settings\Jonathan\Recent\DSC_0​071.lnk 431 bytes
 C:\Documents and Settings\Jonathan\Recent\DSC_0​172.lnk 431 bytes
 C:\Documents and Settings\Jonathan\Recent\DSC_0​177.lnk 431 bytes
 C:\Documents and Settings\Jonathan\Recent\e48a7​d86cc0d8800c9d846280cfa.lnk 648 bytes
 C:\Documents and Settings\Jonathan\Recent\Equil​ibrium.lnk 472 bytes
 C:\Documents and Settings\Jonathan\Recent\Gil Scott Heron live blackwax-1.lnk 881 bytes
 C:\Documents and Settings\Jonathan\Recent\Girl - Yeah Right ! (Spike Jonze).lnk 432 bytes
 C:\Documents and Settings\Jonathan\Recent\halfw​aythrough3.lnk 564 bytes
 C:\Documents and Settings\Jonathan\Recent\hall of fame snkrs.fr.lnk 564 bytes
 C:\Documents and Settings\Jonathan\Recent\Hellb​oy.2.The.Golden.Army.FRENCH.CA​M.XVID-KING.Upload.(Steph53).M​ininova.org..lnk 564 bytes
 C:\Documents and Settings\Jonathan\Recent\HiJac​kThis (2).lnk 448 bytes
 C:\Documents and Settings\Jonathan\Recent\HiJac​kThis.lnk 575 bytes
 C:\Documents and Settings\Jonathan\Recent\histo​ry.lnk 801 bytes
 C:\Documents and Settings\Jonathan\Recent\Human​Traffic.lnk 369 bytes
 C:\Documents and Settings\Jonathan\Recent\Incom​ing.lnk 587 bytes
 C:\Documents and Settings\Jonathan\Recent\index​.lnk 638 bytes
 C:\Documents and Settings\Jonathan\Recent\INSTA​LL.lnk 671 bytes
 C:\Documents and Settings\Jonathan\Recent\Insta​ntTimeZone_WEST.lnk 738 bytes
 C:\Documents and Settings\Jonathan\Recent\Jon-P​icture.lnk 394 bytes
 C:\Documents and Settings\Jonathan\Recent\kidko​ala_nocover.lnk 532 bytes
 C:\Documents and Settings\Jonathan\Recent\klr.l​nk 411 bytes
 C:\Documents and Settings\Jonathan\Recent\KRS ONE.lnk 341 bytes
 C:\Documents and Settings\Jonathan\Recent\Lense​.lnk 466 bytes
 C:\Documents and Settings\Jonathan\Recent\Lettr​e motivation - Asset Manager Junior.lnk 506 bytes
 C:\Documents and Settings\Jonathan\Recent\liber​ez.lnk 480 bytes
 C:\Documents and Settings\Jonathan\Recent\live_​sast.lnk 489 bytes
 C:\Documents and Settings\Jonathan\Recent\Lomo (2).lnk 355 bytes
 C:\Documents and Settings\Jonathan\Recent\lomo photo jo.lnk 359 bytes
 C:\Documents and Settings\Jonathan\Recent\lomo.​lnk 499 bytes
 C:\Documents and Settings\Jonathan\Recent\Madvi​llain (Madlib & Mf Doom) - All Caps.lnk 589 bytes
 C:\Documents and Settings\Jonathan\Recent\Madvi​llain (MF Doom + Madlib) - Rhinestone Cowboy video.lnk 634 bytes
 C:\Documents and Settings\Jonathan\Recent\MARSE​ILLE.lnk 492 bytes
 C:\Documents and Settings\Jonathan\Recent\Marti​n.lnk 313 bytes
 C:\Documents and Settings\Jonathan\Recent\Micha​el Jordan Frozen Momentquot Nike Commercial.lnk 603 bytes
 C:\Documents and Settings\Jonathan\Recent\midge​tzk5.lnk 528 bytes
 C:\Documents and Settings\Jonathan\Recent\murs - the end of beginning.lnk 1,10KB
 C:\Documents and Settings\Jonathan\Recent\NBA BASKET-BALL.lnk 342 bytes
 C:\Documents and Settings\Jonathan\Recent\niz basse 2.lnk 579 bytes
 C:\Documents and Settings\Jonathan\Recent\niz basse.lnk 569 bytes
 C:\Documents and Settings\Jonathan\Recent\NYC 2008.lnk 432 bytes
 C:\Documents and Settings\Jonathan\Recent\Offic​e 2007.lnk 394 bytes
 C:\Documents and Settings\Jonathan\Recent\okeda​kor_IV.lnk 752 bytes
 C:\Documents and Settings\Jonathan\Recent\okeda​kor_ones.lnk 764 bytes
 C:\Documents and Settings\Jonathan\Recent\okeda​kor_undftd.lnk 776 bytes
 C:\Documents and Settings\Jonathan\Recent\P1050​617.lnk 431 bytes
 C:\Documents and Settings\Jonathan\Recent\perip​heriques_moniteur_lcd_selectio​n_GROSBILL_LCD_26_pouces_HDMI_​DVI_VGA_Wide_5ms_Noir_-79849-i​mages250png_soldes-1.lnk 1,14KB
 C:\Documents and Settings\Jonathan\Recent\photo​1370fo8.lnk 759 bytes
 C:\Documents and Settings\Jonathan\Recent\Photo​5413.lnk 492 bytes
 C:\Documents and Settings\Jonathan\Recent\post-​452451-1156137839.lnk 568 bytes
 C:\Documents and Settings\Jonathan\Recent\R-150​-484759-1203968060.lnk 580 bytes
 C:\Documents and Settings\Jonathan\Recent\rap.l​nk 456 bytes
 C:\Documents and Settings\Jonathan\Recent\REFLE​XION SUR LA QUESTION DE LA CONVERSION.lnk 657 bytes
 C:\Documents and Settings\Jonathan\Recent\Reser​voir Dogs - Quentin Tarantino - Vostfr.lnk 941 bytes
 C:\Documents and Settings\Jonathan\Recent\Reube​n Wilson & Bernie Worrell - Boogaloo To The Beastie Boys.lnk 1,32KB
 C:\Documents and Settings\Jonathan\Recent\rsz_1​rsz_niz basse.lnk 537 bytes
 C:\Documents and Settings\Jonathan\Recent\rsz_n​icolomonikon.lnk 532 bytes
 C:\Documents and Settings\Jonathan\Recent\rsz_n​iz basse.lnk 512 bytes
 C:\Documents and Settings\Jonathan\Recent\samou​rai champloo.lnk 348 bytes
 C:\Documents and Settings\Jonathan\Recent\sampl​es a tribe called quest 1993 midnight marauders.lnk 787 bytes
 C:\Documents and Settings\Jonathan\Recent\Samur​ai_Champloo_11_[Nerae].lnk 550 bytes
 C:\Documents and Settings\Jonathan\Recent\seioz​190107.lnk 752 bytes
 C:\Documents and Settings\Jonathan\Recent\Seria​l.lnk 605 bytes
 C:\Documents and Settings\Jonathan\Recent\Shaun​_Of_The_Dead.FRENCH.DVDRip.XVi​D-TNS-GGT.teste.lnk 976 bytes
 C:\Documents and Settings\Jonathan\Recent\sl11.​lnk 499 bytes
 C:\Documents and Settings\Jonathan\Recent\sneak​ers_by_sfi.lnk 648 bytes
 C:\Documents and Settings\Jonathan\Recent\SOULW​AX - Part Of The Weekend Never Dies.lnk 417 bytes
 C:\Documents and Settings\Jonathan\Recent\space​ball.lnk 528 bytes
 C:\Documents and Settings\Jonathan\Recent\Star.​Wars.I-VI.Collection.DvDrip-aX​Xo.lnk 412 bytes
 C:\Documents and Settings\Jonathan\Recent\stop sign.lnk 528 bytes
 C:\Documents and Settings\Jonathan\Recent\tags.​lnk 499 bytes
 C:\Documents and Settings\Jonathan\Recent\The Wackness.lnk 786 bytes
 C:\Documents and Settings\Jonathan\Recent\The.F​ountain.FRENCH.DVDRip.XviD-LRD​-AceBot.lnk 936 bytes
 C:\Documents and Settings\Jonathan\Recent\True.​Romance.French.Dvdrip.Xvid.Mit​ch-Specmedia.[emule-island.com].lnk 1,03KB
 C:\Documents and Settings\Jonathan\Recent\ubunt​u-eee-8.04.1.lnk 532 bytes
 C:\Documents and Settings\Jonathan\Recent\vans_​authentic_chocolate_truffle_su​ede_ex_2.lnk 662 bytes
 C:\Documents and Settings\Jonathan\Recent\VIDEO​S.lnk 248 bytes
 C:\Documents and Settings\Jonathan\Recent\vlcsn​ap-110531.lnk 528 bytes
 C:\Documents and Settings\Jonathan\Recent\walki​ng with my loves.lnk 600 bytes
 C:\Documents and Settings\Jonathan\Recent\white​-hand.lnk 535 bytes
 C:\Documents and Settings\Jonathan\Recent\z0807​06.lnk 728 bytes
 C:\Documents and Settings\Jonathan\Recent\[Basket].[USA.-.Croacia].[Final​.Barcelona.92].[Dream.Team].[B​y.InDaGeThO].lnk 1,07KB
 C:\Documents and Settings\Jonathan\Recent\[sv]Lakai.Fully.Flared.lnk 399 bytes
 C:\Documents and Settings\Jonathan\Recent\__ecq​lipse_2___PNG_by_chrfb.lnk 773 bytes
 C:\WINDOWS\system32\wbem\Logs\​FrameWork.log 256 bytes
 C:\WINDOWS\system32\wbem\Logs\​mofcomp.log 10,31KB
 C:\WINDOWS\system32\wbem\Logs\​replog.log 400 bytes
 C:\WINDOWS\system32\wbem\Logs\​setup.log 4,77KB
 C:\WINDOWS\system32\wbem\Logs\​wbemcore.log 20,90KB
 C:\WINDOWS\system32\wbem\Logs\​wbemess.log 42,45KB
 C:\WINDOWS\system32\wbem\Logs\​wbemprox.log 75 bytes
 C:\WINDOWS\system32\wbem\Logs\​wmiadap.log 3,59KB
 C:\WINDOWS\system32\wbem\Logs\​wmiprov.log 5,82KB
 C:\WINDOWS\system32\wbem\Logs\​wbemcore.lo_ 64,08KB
 C:\WINDOWS\system32\wbem\Logs\​wbemess.lo_ 64,08KB
 C:\WINDOWS\0.log 0 bytes
 C:\WINDOWS\cmsetacl.log 200 bytes
 C:\WINDOWS\comsetup.log 91,28KB
 C:\WINDOWS\DPINST.LOG 6,16KB
 C:\WINDOWS\DtcInstall.log 626 bytes
 C:\WINDOWS\FaxSetup.log 0,24MB
 C:\WINDOWS\iis6.log 38,53KB
 C:\WINDOWS\imsins.log 1,34KB
 C:\WINDOWS\KB898461.log 6,87KB
 C:\WINDOWS\KB929399.log 7,86KB
 C:\WINDOWS\KB936782.log 6,32KB
 C:\WINDOWS\KB938464.log 5,99KB
 C:\WINDOWS\KB939683.log 9,02KB
 C:\WINDOWS\KB941569.log 9,42KB
 C:\WINDOWS\KB946648.log 10,79KB
 C:\WINDOWS\KB950762.log 8,45KB
 C:\WINDOWS\KB950974.log 13,44KB
 C:\WINDOWS\KB951066.log 8,13KB
 C:\WINDOWS\KB951376-v2.log 11,06KB
 C:\WINDOWS\KB951698.log 12,67KB
 C:\WINDOWS\KB951748.log 14,48KB
 C:\WINDOWS\KB951978.log 14,58KB
 C:\WINDOWS\KB952069.log 11,45KB
 C:\WINDOWS\KB952287.log 8,15KB
 C:\WINDOWS\KB952954.log 15,96KB
 C:\WINDOWS\KB954154.log 4,07KB
 C:\WINDOWS\KB954211.log 8,61KB
 C:\WINDOWS\KB954459.log 12,20KB
 C:\WINDOWS\KB954600.log 8,23KB
 C:\WINDOWS\KB955069.log 8,03KB
 C:\WINDOWS\KB955839.log 28,40KB
 C:\WINDOWS\KB956391.log 10,46KB
 C:\WINDOWS\KB956802.log 12,00KB
 C:\WINDOWS\KB956803.log 10,86KB
 C:\WINDOWS\KB956841.log 9,53KB
 C:\WINDOWS\KB957095.log 10,97KB
 C:\WINDOWS\KB957097.log 8,51KB
 C:\WINDOWS\KB958215.log 11,51KB
 C:\WINDOWS\KB958644.log 8,54KB
 C:\WINDOWS\KB958687.log 9,67KB
 C:\WINDOWS\KB960714.log 7,37KB
 C:\WINDOWS\MSCompPackV1.log 4,33KB
 C:\WINDOWS\msgsocm.log 12,32KB
 C:\WINDOWS\msxml4-KB954430-enu​.LOG 0,29MB
 C:\WINDOWS\ntdtcsetup.log 53,58KB
 C:\WINDOWS\ocgen.log 0,12MB
 C:\WINDOWS\ocmsn.log 13,56KB
 C:\WINDOWS\regopt.log 2,95KB
 C:\WINDOWS\RHDSetup.log 675 bytes
 C:\WINDOWS\SamsungInstaller.lo​g 172 bytes
 C:\WINDOWS\sessmgr.setup.log 2,67KB
 C:\WINDOWS\SetDisplayResolutio​n.log 20,48KB
 C:\WINDOWS\setup.log 187 bytes
 C:\WINDOWS\setupact.log 0,21MB
 C:\WINDOWS\setupapi.log 0,94MB
 C:\WINDOWS\setuperr.log 123 bytes
 C:\WINDOWS\spupdsvc.log 47,58KB
 C:\WINDOWS\SynInst.log 528 bytes
 C:\WINDOWS\tsoc.log 98,04KB
 C:\WINDOWS\updspapi.log 7,57KB
 C:\WINDOWS\Wdf01005Inst.log 8,09KB
 C:\WINDOWS\WMFDist11.log 23,27KB
 C:\WINDOWS\wmp11.log 15,87KB
 C:\WINDOWS\wmsetup.log 23,01KB
 C:\WINDOWS\wmsetup10.log 2,32KB
 C:\WINDOWS\Wudf01000Inst.log 8,64KB
 C:\WINDOWS\ydi.log 0,11MB
 C:\WINDOWS\imsins.BAK 1,34KB
 C:\WINDOWS\OEWABLog.txt 1,15KB
 C:\WINDOWS\setuplog.txt 0,85MB
 C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\drwtsn32.log 0,70MB
 C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp 0,21MB
 C:\WINDOWS\Debug\blastcln.log 286 bytes
 C:\WINDOWS\Debug\NetSetup.LOG 2,44KB
 C:\WINDOWS\security\logs\backu​p.log 3,59KB
 C:\WINDOWS\security\logs\SceRo​ot.log 622 bytes
 C:\WINDOWS\security\logs\scese​tup.log 0,14MB
 C:\WINDOWS\security\logs\sceco​mp.old 72,76KB
 Cache Internet de Firefox/Mozilla (27 fichiers) 1,91MB
 Cookie supprimé: google.com
 Cookie supprimé: google.fr
 Cookie supprimé: mozilla.com
 Cookie supprimé: addons.mozilla.org
 Cookie supprimé: bbc.co.uk
 Cookie supprimé: foxmarks.com
 Cookie supprimé: smartadserver.com
 Cookie supprimé: adviva.net
 Cookie supprimé: flickr.com
 Cookie supprimé: yahoo.com
 Cookie supprimé: marketing30.fr
 Cookie supprimé: youtube.com
 Cookie supprimé: tradedoubler.com
 Cookie supprimé: journaldugeek.com
 Cookie supprimé: xiti.com
 Cookie supprimé: cybermonitor.com
 Cookie supprimé: doubleclick.net
 Cookie supprimé: lycos.fr
 Cookie supprimé: generationmp3.com
 Cookie supprimé: bluestreak.com
 Cookie supprimé: blogeee.net
 Cookie supprimé: www.sneakers.fr
 Cookie supprimé: sneakers.fr
 Cookie supprimé: ad.yieldmanager.com
 Cookie supprimé: imageshack.us
 Cookie supprimé: quantserve.com
 Cookie supprimé: login.live.com
 Cookie supprimé: live.com
 Cookie supprimé: msn.com
 Cookie supprimé: rad.live.com
 Cookie supprimé: atdmt.com
 Cookie supprimé: mediaplex.com
 Cookie supprimé: advertising.com
 Cookie supprimé: www.deezer.com
 Cookie supprimé: deezer.com
 Cookie supprimé: bs.serving-sys.com
 Cookie supprimé: serving-sys.com
 Cookie supprimé: ad.zanox.com
 Cookie supprimé: rueducommerce.fr
 Cookie supprimé: 247realmedia.com
 Cookie supprimé: crookedtongues.com
 Cookie supprimé: a2dfp.net
 Cookie supprimé: weborama.fr
 Cookie supprimé: cetelem.solution.weborama.fr
 Cookie supprimé: ebay.fr
 Cookie supprimé: ebay.com
 Cookie supprimé: fr.ebayrtm.com
 Cookie supprimé: ebayrtm.com
 Cookie supprimé: ebayobjects.com
 Cookie supprimé: adserver.aol.fr
 Cookie supprimé: by125w.bay125.mail.live.com
 Cookie supprimé: dailymotion.com
 Cookie supprimé: xnxx.com
 Cookie supprimé: www8.addfreestats.com
 Cookie supprimé: adrevolver.com
 Cookie supprimé: media.adrevolver.com
 Cookie supprimé: adtech.de
 Cookie supprimé: clearspring.com
 Cookie supprimé: rad.msn.com
 Cookie supprimé: video.xnxx.com
 Cookie supprimé: ad2.doublepimp.com
 Cookie supprimé: promo.badoink.com
 Cookie supprimé: xvideoslive.com
 Cookie supprimé: fling.com
 Cookie supprimé: www.journaldugeek.com
 Cookie supprimé: sneakerfreaker.com
 Cookie supprimé: cc-dt.com
 Cookie supprimé: www.sneakerfreaker.com
 Cookie supprimé: statcounter.com
 Cookie supprimé: 2o7.net
 Cookie supprimé: iphone.generationmp3.com
 Cookie supprimé: criteo.com
 Cookie supprimé: specificclick.net
 Cookie supprimé: mp3.generationmp3.com
 Cookie supprimé: gigya.com
 Cookie supprimé: myspace.com
 Cookie supprimé: wordpress.com
 Cookie supprimé: abmr.net
 Cookie supprimé: slide.com
 Cookie supprimé: vente-privee.com
 Cookie supprimé: pubtr.rueducommerce.fr
 Cookie supprimé: aus2.mozilla.org
 Cookie supprimé: com.com
 Cookie supprimé: intellitxt.com
 Cookie supprimé: free.fr
 Cookie supprimé: cdiscount.com
 Cookie supprimé: weba.cdiscount.com
 Cookie supprimé: www.cdiscount.com
 Cookie supprimé: atraxio.com
 Cookie supprimé: fastclick.net
 Cookie supprimé: mozilla.org
 Cookie supprimé: lemonde.fr
 Cookie supprimé: photobucket.com
 Cookie supprimé: www.lesnumeriques.com
 Cookie supprimé: 16h12.com
 Cookie supprimé: www.pixmania.com
 Cookie supprimé: advertstream.com
 Cookie supprimé: zanox.com
 Cookie supprimé: lamaisondevalerie.fr
 Cookie supprimé: adbrite.com
 Cookie supprimé: forum.hardware.fr
 Cookie supprimé: reussissonsensemble.fr
 Cookie supprimé: www.swear-london.com
 Cookie supprimé: swear-london.com
 Cookie supprimé: finance.yahoo.com
 Cookie supprimé: flatspot.com
 Cookie supprimé: www.flatspot.com
 Cookie supprimé: cas.criteo.com
 Cookie supprimé: facebook.com
 Cookie supprimé: www.smartadserver.com
 Cookie supprimé: lycos.it
 Cookie supprimé: cnetfrance.fr
 Cookie supprimé: www.cnetfrance.fr
 Cookie supprimé: ldlc.com
 Cookie supprimé: pub.groupe-ldlc.com
 Cookie supprimé: www.novoidplus.com
 Cookie supprimé: urbanoutfitters.co.uk
 Cookie supprimé: www2.urbanoutfitters.co.uk
 Cookie supprimé: www.urbanoutfitters.co.uk
 Cookie supprimé: ak.cdiscount.com
 Cookie supprimé: amgdgt.com
 Cookie supprimé: adopt.euroclick.com
 Cookie supprimé: www.legrandforum.com
 Cookie supprimé: drjays.com
 Cookie supprimé: www.drjays.com
 Cookie supprimé: hitbox.com
 Cookie supprimé: ehg-drjays.hitbox.com
 Cookie supprimé: cooliris.com
 Cookie supprimé: a01.gestionpub.com
 Cookie supprimé: fl01.ct2.comclick.com
 Cookie supprimé: www.ciao.fr
 Cookie supprimé: grosbill.com
 Cookie supprimé: typepad.com
 Cookie supprimé: dynamic.media.adrevolver.com
 Cookie supprimé: fr.yahoo.com
 Cookie supprimé: liveleak.com
 Cookie supprimé: yahoo.net
 Cookie supprimé: store.yahoo.com
 Cookie supprimé: store.yahoo.net
 Cookie supprimé: journaldumac.com
 Cookie supprimé: online.carrefour.fr
 Cookie supprimé: commentcamarche.net
 Cookie supprimé: emailing.extrafilm.fr
 Cookie supprimé: www.extrafilm.fr
 Cookie supprimé: extrafilm.fr
 Cookie supprimé: tomshardware.com
 Cookie supprimé: presence-pc.com
 Cookie supprimé: www.presence-pc.com
 Cookie supprimé: shopmania.fr
 Cookie supprimé: rzostore.com
 Cookie supprimé: xvideos.com
 Cookie supprimé: overkillshop.com
 Cookie supprimé: www.pcinpact.com
 Cookie supprimé: pcinpact.com
 Cookie supprimé: sdv.fr
 Cookie supprimé: sneakerhead.com
 Cookie supprimé: www.sneakerhead.com
 Cookie supprimé: sneakerheadoutlet.com
 Cookie supprimé: www.sneakerheadoutlet.com
 Cookie supprimé: www.finishline.com
 Cookie supprimé: finishline.com
 Cookie supprimé: ifastnet.com
 Cookie supprimé: barebone.fr
 Cookie supprimé: www.tt-hardware.com
 Cookie supprimé: tt-hardware.com
 Cookie supprimé: admin.weknowwhatyoudidlastnigh​t.com
 Cookie supprimé: weknowwhatyoudidlastnight.com
 Cookie supprimé: www2.partage-facile.com
 Cookie supprimé: promobenef.com
 Cookie supprimé: espace.netavenir.com
 Cookie supprimé: netavenir.com
 Cookie supprimé: bubblestat.com
 Cookie supprimé: aimfar.solution.weborama.fr
 Cookie supprimé: www.rencontres-webcam.com
 Cookie supprimé: rencontres-webcam.com
 Cookie supprimé: estat.com
 Cookie supprimé: solecollector.com
 Cookie supprimé: outbrain.com
 Cookie supprimé: eu.shuttle.com
 Cookie supprimé: forum.telecharger.01net.com
 Cookie supprimé: 01net.com
 Cookie supprimé: clubic.com
 Cookie supprimé: mac4ever.com
 Cookie supprimé: live.eurekoo.com
 Cookie supprimé: aol.com
 Cookie supprimé: atwola.com
 Cookie supprimé: ads.pointroll.com
 Cookie supprimé: insanelymac.com
 Cookie supprimé: mac-on-pc.xooit.fr
 Cookie supprimé: maconpc.niloo.fr
 Cookie supprimé: content.yieldmanager.com
 Cookie supprimé: nike.com
 Cookie supprimé: nike.112.2o7.net
 Cookie supprimé: galileo-web.com
 Cookie supprimé: bombingart.com
 Cookie supprimé: sourceforge.net
 Cookie supprimé: openads.dimcab.com
 Cookie supprimé: forum.macbidouille.com
 Cookie supprimé: guitariste.com
 Cookie supprimé: ext.infos-du-net.com
 Cookie supprimé: infos-du-net.com
 Cookie supprimé: mybloglog.com
 Cookie supprimé: sur-la-toile.com
 Cookie supprimé: www.59hardware.net
 Cookie supprimé: www.01net.com
 Cookie supprimé: iframe.mediaplazza.com
 Cookie supprimé: t836.trafiz.net
 Cookie supprimé: ladepeche.fr
 Cookie supprimé: redcatsusa.com
 Cookie supprimé: blogger.com
 Cookie supprimé: skyregie.com
 Cookie supprimé: carrefour.fr
 Cookie supprimé: img.i2as.com
 Cookie supprimé: journaldunet.com
 Cookie supprimé: indextools.com
 Cookie supprimé: www.testfreaks.fr
 Cookie supprimé: www.testseek.fr
 Cookie supprimé: testseek.co.uk
 Cookie supprimé: testseek.fr
 Cookie supprimé: pcmag.com
 Cookie supprimé: tacoda.net
 Cookie supprimé: at.atwola.com
 Cookie supprimé: circuitcity.com
 Cookie supprimé: alatest.fr
 Cookie supprimé: opt.fimserve.com
 Cookie supprimé: forum.rue-montgallet.com
 Cookie supprimé: surcouf.com
 Cookie supprimé: groupe-ldlc.com
 Cookie supprimé: shelta.eu
 Cookie supprimé: www.shelta.eu
 Cookie supprimé: blip.tv
 Cookie supprimé: yahooapis.com
 Cookie supprimé: teracent.net
 Cookie supprimé: www.materiel.net
 Cookie supprimé: ldlc.be
 Cookie supprimé: www.mandmdirect.com
 Cookie supprimé: ehg-logantod.hitbox.com
 Cookie supprimé: endclothing.co.uk
 Cookie supprimé: www.hanon-shop.com
 Cookie supprimé: hanon-shop.com
 Cookie supprimé: www.lesprixnumeriques.com
 Cookie supprimé: lesprixnumeriques.com
 Cookie supprimé: digixo.com
 Cookie supprimé: magma.fr
 Cookie supprimé: www.topachat.com
 Cookie supprimé: edt02.net
 Cookie supprimé: topachat.com
 Cookie supprimé: unicast.com
 Cookie supprimé: vimeo.com
 Cookie supprimé: samplestation.net
 Cookie supprimé: www.samplestation.net
 Cookie supprimé: shoe-shop.com
 Cookie supprimé: search.shoe-shop.com
 Cookie supprimé: lorealparis.solution.weborama.​fr
 Cookie supprimé: www.shoe-shop.com
 Cookie supprimé: yourmedia.com
 Cookie supprimé: download11.com
 Cookie supprimé: intellipoint.download11.com
 Cookie supprimé: gmodules.com
 Cookie supprimé: interhome.solution.weborama.fr
 Cookie supprimé: channelintelligence.com
 Cookie supprimé: microsoft.com
 Cookie supprimé: www.microsoft.com
 Cookie supprimé: m.webtrends.com
 Cookie supprimé: www.filterforge.com
 Cookie supprimé: avast.com
 Cookie supprimé: marmiton.org
 Cookie supprimé: memoclic.com
 Cookie supprimé: everybodylovesphoto.com
 Cookie supprimé: voyages-sncf.com
 Cookie supprimé: www999.shopping.com
 Cookie supprimé: shopzilla.fr
 Cookie supprimé: www.mappy.fr
 Cookie supprimé: www.pagesjaunes.fr
 Cookie supprimé: pagesjaunes.fr
 Cookie supprimé: mappy.com
 Cookie supprimé: lycos.co.uk
 Cookie supprimé: starcow.net
 Cookie supprimé: imageshack-france.com
 Cookie supprimé: macway.com
 Cookie supprimé: www.adopteunmec.com
 Cookie supprimé: adopteunmec.com
 Cookie supprimé: p.live.com
 Cookie supprimé: reactivpub.fr
 Cookie supprimé: lense.fr
 Cookie supprimé: deviantart.com
 Cookie supprimé: media6degrees.com
 Cookie supprimé: crwdcntrl.net
 Cookie supprimé: tc.sfr.fr
 Cookie supprimé: sfr.122.2o7.net
 Cookie supprimé: fr.sitestat.com
 Cookie supprimé: www.inmac-wstore.com
 Cookie supprimé: inmac-wstore.com
 Cookie supprimé: services.nuconomy.com
 Cookie supprimé: p13n.services.nuconomy.com
 Cookie supprimé: www.virusphoto.com
 Cookie supprimé: xfruits.com
 Cookie supprimé: boutique.01net.com
 Cookie supprimé: linternaute.com
 Cookie supprimé: juiceadv.com
 Cookie supprimé: registry.gimp.org
 Cookie supprimé: inphotos.org
 Cookie supprimé: caliroots.com
 Cookie supprimé: allocine.fr
 Cookie supprimé: wunderloop.net
 Cookie supprimé: www.picresize.com
 Cookie supprimé: ads.internich.com
 Cookie supprimé: picresize.com
 Cookie supprimé: www.drpic.com
 Cookie supprimé: drpic.com
 Cookie supprimé: services.google.com
 Cookie supprimé: voila.fr
 Cookie supprimé: t.voila.fr
 Cookie supprimé: viceland.com
 Cookie supprimé: www.viceland.com
 Cookie supprimé: www.clubic.com
 Cookie supprimé: content.yieldmanager.edgesuite​.net
 Cookie supprimé: adobe.com
 C:\Documents and Settings\Jonathan\Application Data\Mozilla\Firefox\Profiles\​8yktzqvd.default\downloads.sql​ite 64,00KB
 C:\Documents and Settings\Jonathan\Application Data\Microsoft\Office\Recent\B​B courrier rabbin.LNK 471 bytes
 C:\Documents and Settings\Jonathan\Application Data\Microsoft\Office\Recent\B​ureau.LNK 306 bytes
 C:\Documents and Settings\Jonathan\Application Data\Microsoft\Office\Recent\C​laire.LNK 473 bytes
 C:\Documents and Settings\Jonathan\Application Data\Microsoft\Office\Recent\D​esktop.ini 95 bytes
 C:\Documents and Settings\Jonathan\Application Data\Microsoft\Office\Recent\i​ndex.dat 268 bytes
 C:\Documents and Settings\Jonathan\Application Data\Microsoft\Office\Recent\L​ettre motivation - Asset Manager Junior.LNK 482 bytes
 C:\Documents and Settings\Jonathan\Application Data\Microsoft\Office\Recent\L​M.LNK 297 bytes
 C:\Documents and Settings\Jonathan\Application Data\Microsoft\Office\Recent\M​ARSEILLE.LNK 426 bytes
 C:\Documents and Settings\Jonathan\Application Data\Microsoft\Office\Recent\M​es documents (2).LNK 363 bytes
 C:\Documents and Settings\Jonathan\Application Data\Microsoft\Office\Recent\M​es documents.LNK 363 bytes
 C:\Documents and Settings\Jonathan\Application Data\Microsoft\Office\Recent\R​EFLEXION SUR LA QUESTION DE LA CONVERSION.LNK 591 bytes
 C:\Documents and Settings\Jonathan\Application Data\Microsoft\Office\Recent\T​emplates.LNK 779 bytes
 C:\Program Files\eMule\config\AC_SearchSt​rings.dat 816 bytes
 C:\Documents and Settings\Jonathan\Application Data\Sun\Java\Deployment\cache​\javapi\v1.0\file\MyAddress.cl​ass-7336bafc-6b908d1c.class 4,80KB
 C:\Documents and Settings\Jonathan\Application Data\Sun\Java\Deployment\cache​\javapi\v1.0\file\MyAddress.cl​ass-7336bafc-6b908d1c.idx 277 bytes
 C:\Documents and Settings\Jonathan\Application Data\Microsoft\MSN Messenger\2917300385\sqmnoopt0​0.sqm 244 bytes
 C:\Documents and Settings\Jonathan\Application Data\Microsoft\MSN Messenger\2917300385\sqmnoopt0​1.sqm 244 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\a69.g.akamai.net\Preferences.​sol 90 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\bin.clearspring.com\clearspri​ng.sol 724 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\broadcast.piximedia.fr\pixime​dia.sol 55 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\cache.reverbnation.com\com.qu​antserve.sol 74 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\cdn-ll-static.viddler.com\fla​sh\player582.swf\undefined.sol 174 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\d.yimg.com\VolumePrefs.sol 55 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\e.blip.tv\com.quantserve.sol 74 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\flash.quantserve.com\com.quan​tserve.sol 74 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\googleads.g.doubleclick.net\p​agead\googleadplayer.swf\media​PlayerUserSettings.sol 94 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\images.amazon.com\AlbumSample​r.sol 52 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\img.mail.ru\mailru_video_conf​1.sol 69 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\js1.pp.sohu.com.cn\volume.sol 52 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\lads.myspace.com\videos\Main.​swf\preferences.sol 170 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\lads.myspace.com\videos\vplay​er.swf\preferences.sol 136 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\mail.google.com\wakeup.sol 37 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\msntest.serving-sys.com\EB_FR​_1283765.sol 112 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\nike.com\nikeid_global.sol 122 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\pixmania.com\pixsettings.sol 96 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\pixmania.com\pixsettings_fr.s​ol 99 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\qik.com\swfs\qikPlayer4.swf\u​serPreferences.sol 51 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\s.ytimg.com\soundData.sol 58 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\s.ytimg.com\videostats.sol 199 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\secureinclude.ebaystatic.com\​ebayLSO.sol 160 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\st.deviantart.com\styles\swf\​sitback.swf\v_0_9_2_19.swf\set​tings.sol 71 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\tubemogul.com\StreamMinerInfo​.sol 59 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\video.google.com\googleplayer​.swf\mediaPlayerUserSettings.s​ol 94 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\video.xnxx.com\sitevideos\flv​_player_site_v4.swf\VolCookie.​sol 46 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\wat.tv\images\v2.5\flash\play​er.swf\watPlayer.sol 108 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\www.80spurple.com\frontpage09​d.swf\img.sol 40 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\www.blogger.com\img\videoplay​er.swf\mediaPlayerUserSettings​.sol 94 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\www.canalplus.fr\flash\loader​\loader_canalplus_V0_1.swf\bwD​etect.sol 87 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\www.dailymotion.com\flash\dmp​layer\dmplayer-fr.swf\dmplayer​.sol 89 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\www.deezer.com\deezer.sol 145 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\www.deezer.com\dzSearch.sol 2,23KB
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\www.maboutiquephoto.com\flash​\scroll_panel_dyn.swf\TestMovi​e_Config_Info.sol 341 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\#SharedObjects\H7REWKF5​\www.xvideos.com\sitevideos\fl​v_player_site_v4.swf\VolCookie​.sol 46 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#a69.g.akamai.​net\settings.sol 86 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#bin.clearspri​ng.com\settings.sol 89 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#broadcast.pix​imedia.fr\settings.sol 92 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#cache.reverbn​ation.com\settings.sol 92 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#cdn-ll-static​.viddler.com\settings.sol 95 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#cdn.speeddate​.com\settings.sol 87 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#d.yimg.com\se​ttings.sol 80 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#e.blip.tv\set​tings.sol 79 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#flash.quantse​rve.com\settings.sol 90 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#googleads.g.d​oubleclick.net\settings.sol 97 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#images.amazon​.com\settings.sol 87 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#img.mail.ru\s​ettings.sol 81 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#js1.pp.sohu.c​om.cn\settings.sol 88 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#lads.myspace.​com\settings.sol 86 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#mail.google.c​om\settings.sol 85 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#msntest.servi​ng-sys.com\settings.sol 93 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#nike.com\sett​ings.sol 78 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#pixmania.com\​settings.sol 82 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#qik.com\setti​ngs.sol 77 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#s.ytimg.com\s​ettings.sol 81 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#secureinclude​.ebaystatic.com\settings.sol 98 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#st.deviantart​.com\settings.sol 87 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#static.twitte​r.com\settings.sol 88 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#tubemogul.com​\settings.sol 83 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#video.google.​com\settings.sol 86 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#video.xnxx.co​m\settings.sol 84 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#wat.tv\settin​gs.sol 76 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#www.80spurple​.com\settings.sol 87 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#www.blogger.c​om\settings.sol 85 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#www.canalplus​.fr\settings.sol 86 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#www.dailymoti​on.com\settings.sol 89 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#www.deezer.co​m\settings.sol 84 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#www.facebook.​com\settings.sol 86 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#www.flickr.co​m\settings.sol 84 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#www.maboutiqu​ephoto.com\settings.sol 93 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\#www.xvideos.c​om\settings.sol 85 bytes
 C:\Documents and Settings\Jonathan\Application Data\Macromedia\Flash Player\macromedia.com\support\​flashplayer\sys\settings.sol 1,16KB
 C:\Documents and Settings\Jonathan\Application Data\Apple Computer\QuickTime\QTPlayerSes​sion.xml 2,17KB
 C:\Documents and Settings\Jonathan\Local Settings\Application Data\Apple Computer\QuickTime\downloads\0​3\06\36e9b7d6-e11e8f4d-35fecb2​4-89d4f0fd.qtch 32,62KB
 C:\Documents and Settings\Jonathan\Local Settings\Application Data\Apple Computer\QuickTime\downloads\1​4\03\e3ea336a-73ad4ac3-57b44ec​9-6fcb6052.qtch 1,74KB
 ------------------------------​------------------------------​------------------------------

(Publicité)
mido70
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 19/01/2009 à 02:35:45  
  1. Prévenir les modérateurs en cas d'abus
 
salut,

 Supprimez votre Hijackthis.exe et répertoire.

 Téléchargez sur votre bureau >> RSIT  << (de random/random).
 • Double cliquez sur RSIT.exe,
 • Cliquez sur Continue à l'écran Disclaimer,
 • RSIT téléchargera HijackThis s'il n'est pas détecté sur votre PC, devrez alors accepter la licence,
 &#9658; Affichez les rapports suivants sur votre prochain message, soit :
 
log.txt (qui sera affiché)  & info.txt (qui sera réduit dans la Barre de Tâche).

jodr
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 19/01/2009 à 16:31:04  
  1. Prévenir les modérateurs en cas d'abus
 
salut mido70,

 pour le rapport log:
 Logfile of random's system information tool 1.05 (written by random/random)
 Run by Jonathan at 2009-01-19 15:28:50
 Microsoft Windows XP Édition familiale Service Pack 3
 System drive C: has 15 GB (20%) free of 73 GB
 Total RAM: 1014 MB (50% free)

 Logfile of Trend Micro HijackThis v2.0.2
 Scan saved at 15:28:58, on 19/01/2009
 Platform: Windows XP SP3 (WinNT 5.01.2600)
 MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
 Boot mode: Normal

 Running processes:
 C:\WINDOWS\System32\smss.exe
 C:\WINDOWS\system32\winlogon.e​xe
 C:\WINDOWS\system32\services.e​xe
 C:\WINDOWS\system32\lsass.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\System32\svchost.ex​e
 C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
 C:\WINDOWS\system32\spoolsv.ex​e
 C:\WINDOWS\Explorer.EXE
 C:\Program Files\Java\jre1.5.0\bin\jusche​d.exe
 C:\WINDOWS\RTHDCPL.EXE
 C:\Program Files\Samsung\Samsung EDS\EDSAgent.exe
 C:\WINDOWS\system32\igfxtray.e​xe
 C:\WINDOWS\system32\hkcmd.exe
 C:\WINDOWS\system32\igfxpers.e​xe
 C:\Program Files\Synaptics\SynTP\SynTPEnh​.exe
 C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe
 C:\WINDOWS\system32\igfxsrvc.e​xe
 C:\Program Files\iTunes\iTunesHelper.exe
 C:\Program Files\Microsoft IntelliPoint\ipoint.exe
 C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
 C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
 C:\Program Files\SAMSUNG\MagicKBD\MagicKB​D.exe
 C:\Program Files\SAMSUNG\MagicKBD\Perform​anceManager.exe
 C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceS​ervice.exe
 C:\Program Files\Bonjour\mDNSResponder.ex​e
 C:\Program Files\Samsung\Samsung Update Plus\SLUBackgroundService.exe
 C:\Program Files\samsung\Samsung Network Manager\SNMWLANService.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\PROGRA~1\WIDCOMM\BLUETO~1\B​TSTAC~1.EXE
 C:\WINDOWS\system32\igfxext.ex​e
 C:\Program Files\iPod\bin\iPodService.exe
 C:\WINDOWS\system32\wscntfy.ex​e
 C:\Program Files\Mozilla Firefox\firefox.exe
 C:\WINDOWS\system32\wuauclt.ex​e
 C:\WINDOWS\system32\wuauclt.ex​e
 C:\Documents and Settings\Jonathan\Bureau\RSIT.​exe
 C:\Program Files\trend micro\Jonathan.exe

 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://www.emule-france.com
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Search_U​RL = http://go.microsoft.com/fwlink/?LinkId=54896
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 R1 - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings,ProxyOverride = *.local
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me = Liens
 O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5​E23E045} - (no file)
 O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0\bin\jusche​d.exe
 O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
 O4 - HKLM\..\Run: [EDS] C:\Program Files\Samsung\Samsung EDS\EDSAgent.exe
 O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.e​xe
 O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
 O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.e​xe
 O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh​.exe
 O4 - HKLM\..\Run: [DMHotKey] C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe
 O4 - HKLM\..\Run: [BatteryManager] C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe
 O4 - HKLM\..\Run: [MagicKeyboard] C:\Program Files\SAMSUNG\MagicKBD\PreMKBD​.exe
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
 O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
 O4 - Global Startup: BTTray.lnk = ?
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Off​ice12\EXCEL.EXE/3000
 O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C5​71A8263} - C:\PROGRA~1\MICROS~2\Office12\​REFIEBAR.DLL
 O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4​460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
 O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4​460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
 O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba3​8496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
 O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba3​8496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceS​ervice.exe
 O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.ex​e
 O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
 O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe
 O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: Samsung Update Plus - Unknown owner - C:\Program Files\Samsung\Samsung Update Plus\SLUBackgroundService.exe
 O23 - Service: SNM WLAN Service - Unknown owner - C:\Program Files\samsung\Samsung Network Manager\SNMWLANService.exe

 --
 End of file - 5663 bytes

 ======Scheduled tasks folder======

 C:\WINDOWS\tasks\Microsoft_Har​dware_Launch_IPoint_exe.job

 ======Registry dump======

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Run]
 "SunJavaUpdateSched"=C:\Progra​m Files\Java\jre1.5.0\bin\jusche​d.exe [2008-10-06 36972]
 "RTHDCPL"=C:\WINDOWS\RTHDCPL.E​XE [2008-08-26 16851456]
 "EDS"=C:\Program Files\Samsung\Samsung EDS\EDSAgent.exe [2007-12-20 659456]
 "IgfxTray"=C:\WINDOWS\system32​\igfxtray.exe [2008-02-28 141848]
 "HotKeysCmds"=C:\WINDOWS\syste​m32\hkcmd.exe [2008-02-28 166424]
 "Persistence"=C:\WINDOWS\syste​m32\igfxpers.exe [2008-02-28 137752]
 "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh​.exe [2008-08-28 1044480]
 "DMHotKey"=C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe [2006-12-27 466944]
 "BatteryManager"=C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe [2007-10-31 2768896]
 "MagicKeyboard"=C:\Program Files\SAMSUNG\MagicKBD\PreMKBD​.exe [2006-05-14 151552]
 "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
 "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-10-01 289576]
 "IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2008-06-10 1406024]

 C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
 BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
 C:\WINDOWS\system32\igfxdev.dl​l [2008-02-15 208896]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\ShellServiceObjectDelayLoad]
 WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D52​4869DB5} - C:\WINDOWS\system32\WPDShServi​ceObj.dll [2006-10-18 133632]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{1a3e09be-1e45-494b-9​174-d7385b45bbf5}]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\System]
 "dontdisplaylastusername"=0
 "legalnoticecaption"=
 "legalnoticetext"=
 "shutdownwithoutlogon"=1
 "undockwithoutlogon"=1

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​Policies\explorer]
 "NoDriveTypeAutoRun"=323
 "NoDriveAutoRun"=67108863
 "NoDrives"=0

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\explorer]
 "NoDriveAutoRun"=
 "NoDriveTypeAutoRun"=
 "NoDrives"=

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\standardprofile\authorizedap​plications\list]
 "%windir%\Network Diagnostic\xpnetdiag.exe"="%wi​ndir%\Network Diagnostic\xpnetdiag.exe:*:Ena​bled:@xpsp3res.dll,-20000"
 "%windir%\system32\sessmgr.exe​"="%windir%\system32\sessmgr.e​xe:*:enabled:@xpsp2res.dll,-22​019"
 "C:\WINDOWS\system32\dpvsetup.​exe"="C:\WINDOWS\system32\dpvs​etup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
 "C:\Program Files\Bonjour\mDNSResponder.ex​e"="C:\Program Files\Bonjour\mDNSResponder.ex​e:*:Enabled:Bonjour"
 "C:\Program Files\iTunes\iTunes.exe"="C:\P​rogram Files\iTunes\iTunes.exe:*:Enab​led:iTunes"
 "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="​C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:​Enabled:Microsoft Office Outlook"
 "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C​:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:E​nabled:Windows Live Messenger"
 "C:\Program Files\Windows Live\Messenger\livecall.exe"="​C:\Program Files\Windows Live\Messenger\livecall.exe:*:​Enabled:Windows Live Messenger (Phone)"
 "C:\Program Files\eMule\emule.exe"="C:\Pro​gram Files\eMule\emule.exe:*:Enable​d:eMule"
 "C:\Program Files\VideoLAN\VLC\vlc.exe"="C​:\Program Files\VideoLAN\VLC\vlc.exe:*:E​nabled:VLC media player"

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\domainprofile\authorizedappl​ications\list]
 "%windir%\Network Diagnostic\xpnetdiag.exe"="%wi​ndir%\Network Diagnostic\xpnetdiag.exe:*:Ena​bled:@xpsp3res.dll,-20000"
 "%windir%\system32\sessmgr.exe​"="%windir%\system32\sessmgr.e​xe:*:enabled:@xpsp2res.dll,-22​019"
 "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C​:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:E​nabled:Windows Live Messenger"
 "C:\Program Files\Windows Live\Messenger\livecall.exe"="​C:\Program Files\Windows Live\Messenger\livecall.exe:*:​Enabled:Windows Live Messenger (Phone)"

 ======List of files/folders created in the last 1 months======

 2009-01-19 15:28:50 ----D---- C:\rsit
 2009-01-19 15:28:50 ----D---- C:\Program Files\trend micro
 2009-01-18 17:39:48 ----SHD---- C:\RECYCLER
 2009-01-18 17:38:12 ----D---- C:\Program Files\CCleaner
 2009-01-18 17:29:07 ----SHD---- C:\Config.Msi
 2009-01-18 17:27:27 ----D---- C:\CB-F
 2009-01-18 16:29:52 ----D---- C:\WINDOWS\temp
 2009-01-18 16:29:51 ----A---- C:\ComboFix.txt
 2009-01-17 13:33:36 ----D---- C:\Documents and Settings\Jonathan\Application Data\gtk-2.0
 2009-01-17 13:27:14 ----D---- C:\Program Files\GIMP-2.0
 2009-01-17 03:01:03 ----HDC---- C:\WINDOWS\$NtUninstallKB95868​7$
 2009-01-17 03:00:52 ----HDC---- C:\WINDOWS\$NtUninstallKB95174​8$
 2009-01-16 18:56:05 ----D---- C:\Program Files\PhotoFiltre
 2009-01-16 16:34:25 ----A---- C:\Boot.bak
 2009-01-16 16:34:21 ----RASHD---- C:\cmdcons
 2009-01-16 16:27:41 ----D---- C:\WINDOWS\ERDNT
 2009-01-10 15:55:26 ----D---- C:\Documents and Settings\Jonathan\Application Data\Filter Forge
 2009-01-10 15:43:11 ----HDC---- C:\WINDOWS\$NtUninstallWdf0100​5$
 2009-01-10 15:42:18 ----A---- C:\WINDOWS\system32\wdfcoinsta​ller01005.dll
 2009-01-10 15:41:37 ----D---- C:\Program Files\Microsoft IntelliPoint
 2009-01-09 13:28:10 ----D---- C:\Program Files\VstPlugins
 2009-01-09 13:28:10 ----A---- C:\WINDOWS\system32\rewire.dll
 2009-01-09 13:25:19 ----D---- C:\Program Files\Image-Line
 2009-01-08 19:14:24 ----D---- C:\Documents and Settings\Jonathan\Application Data\Filter Forge Freepack 2 - Photo Effects
 2009-01-08 19:13:31 ----A---- C:\WINDOWS\system32\dbghelp-xf​w.dll
 2009-01-08 19:13:25 ----D---- C:\Program Files\Filter Forge Freepack 2 - Photo Effects
 2009-01-06 19:11:39 ----D---- C:\Program Files\LMMS 0.4.2
 2008-12-28 00:36:57 ----D---- C:\Program Files\QuickMediaConverter

 ======List of files/folders modified in the last 1 months======

 2009-01-19 15:28:50 ----RD---- C:\Program Files
 2009-01-19 15:28:49 ----D---- C:\WINDOWS\Prefetch
 2009-01-19 15:24:55 ----D---- C:\Program Files\Mozilla Firefox
 2009-01-19 15:24:25 ----D---- C:\WINDOWS
 2009-01-19 00:04:05 ----A---- C:\WINDOWS\SchedLgU.Txt
 2009-01-18 20:54:01 ----D---- C:\WINDOWS\system32\CatRoot2
 2009-01-18 17:39:48 ----D---- C:\WINDOWS\Debug
 2009-01-18 17:31:02 ----SHD---- C:\System Volume Information
 2009-01-18 17:31:02 ----D---- C:\WINDOWS\system32\Restore
 2009-01-18 17:29:28 ----SHD---- C:\WINDOWS\Installer
 2009-01-18 17:29:14 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
 2009-01-18 17:28:57 ----D---- C:\WINDOWS\system32
 2009-01-18 16:28:25 ----A---- C:\WINDOWS\system.ini
 2009-01-18 16:27:41 ----D---- C:\WINDOWS\system32\drivers
 2009-01-18 16:27:40 ----D---- C:\WINDOWS\AppPatch
 2009-01-18 16:27:40 ----D---- C:\Program Files\Fichiers communs
 2009-01-18 15:38:15 ----D---- C:\Program Files\eMule
 2009-01-18 13:01:45 ----SD---- C:\Documents and Settings\Jonathan\Application Data\Microsoft
 2009-01-17 22:47:34 ----D---- C:\Documents and Settings\Jonathan\Application Data\dvdcss
 2009-01-17 03:08:17 ----RSHDC---- C:\WINDOWS\system32\dllcache
 2009-01-17 03:01:58 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
 2009-01-17 03:01:06 ----HD---- C:\WINDOWS\inf
 2009-01-17 03:01:03 ----HD---- C:\WINDOWS\$hf_mig$
 2009-01-16 16:42:53 ----D---- C:\WINDOWS\system32\config
 2009-01-16 16:42:15 ----D---- C:\Program Files\Picasa2
 2009-01-16 16:34:26 ----RASH---- C:\boot.ini
 2009-01-10 15:54:00 ----SD---- C:\WINDOWS\Tasks
 2009-01-10 15:42:22 ----D---- C:\WINDOWS\system32\ReinstallB​ackups
 2009-01-10 15:42:18 ----DC---- C:\WINDOWS\system32\DRVSTORE
 2009-01-10 15:41:42 ----RSD---- C:\WINDOWS\Fonts
 2009-01-01 20:33:33 ----D---- C:\Documents and Settings\Jonathan\Application Data\Apple Computer
 2008-12-30 18:51:05 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
 2008-12-27 14:25:49 ----D---- C:\WINDOWS\Network Diagnostic

 ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\in​telppm.sys [2008-04-14 40576]
 R2 DOSMEMIO;MEMIO; \??\C:\WINDOWS\system32\MEMIO.​SYS []
 R3 AR5416;Atheros AR5008 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\at​hw.sys [2008-08-30 1318784]
 R3 BTKRNL;Enumérateur de bus Bluetooth; C:\WINDOWS\system32\DRIVERS\bt​krnl.sys [2007-03-31 876384]
 R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\bt​wusb.sys [2007-03-23 67960]
 R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\Cm​Batt.sys [2008-04-13 13952]
 R3 DNSeFilter;DNSeFilter; C:\WINDOWS\system32\drivers\Sa​msungEDS.sys [2008-01-14 30208]
 R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HD​AudBus.sys [2008-04-14 144384]
 R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ig​xpmp32.sys [2008-02-15 5854752]
 R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\Rt​kHDAud.sys [2008-08-27 4753920]
 R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\Sy​nTP.sys [2008-08-28 224736]
 R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\us​behci.sys [2008-04-13 30208]
 R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\us​bhub.sys [2008-04-13 59520]
 R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\us​buhci.sys [2008-04-13 20608]
 R3 VMC326;Vimicro Camera Service VMC326; C:\WINDOWS\System32\Drivers\VM​C326.sys [2008-09-04 238464]
 R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk​51x86.sys [2008-06-27 289024]
 S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kb​dhid.sys [2008-04-13 14720]
 S3 catchme;catchme; \??\C:\CB-F\catchme.sys []
 S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CC​DECODE.sys [2008-04-13 17024]
 S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GE​ARAspiWDM.sys [2008-04-17 15464]
 S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hi​dusb.sys [2008-04-13 10368]
 S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mo​uhid.sys [2001-08-23 12288]
 S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MS​TEE.sys [2008-04-13 5504]
 S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NA​BTSFEC.sys [2008-04-13 85248]
 S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\Nd​isIP.sys [2008-04-13 10880]
 S3 NuidFltr;NUID filter driver; C:\WINDOWS\system32\DRIVERS\Nu​idFltr.sys [2008-06-09 18504]
 S3 Point32;Microsoft IntelliPoint Filter Driver; C:\WINDOWS\system32\DRIVERS\po​int32.sys [2008-12-04 27784]
 S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SL​IP.sys [2008-04-13 11136]
 S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\St​reamIP.sys [2008-04-13 15232]
 S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\us​baapl.sys [2008-10-01 32000]
 S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\us​bccgp.sys [2008-04-14 32128]
 S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\us​bscan.sys [2008-04-13 15104]
 S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\US​BSTOR.SYS [2008-04-13 26368]
 S3 usbvideo;Périphérique vidéo USB (WDM); C:\WINDOWS\System32\Drivers\us​bvideo.sys [2008-04-13 121984]
 S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wd​f01000.sys [2006-11-02 492000]
 S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WS​TCODEC.SYS [2008-04-13 19200]
 S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\Wu​dfPf.sys [2006-09-28 77568]
 S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wu​dfrd.sys [2006-09-28 82944]
 S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\In​telIde.sys []

 ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceS​ervice.exe [2008-10-01 116040]
 R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.ex​e [2008-08-29 238888]
 R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2007-04-01 273256]
 R2 Samsung Update Plus;Samsung Update Plus; C:\Program Files\Samsung\Samsung Update Plus\SLUBackgroundService.exe [2008-05-13 77480]
 R2 SNM WLAN Service;SNM WLAN Service; C:\Program Files\samsung\Samsung Network Manager\SNMWLANService.exe [2006-10-30 36864]
 R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-10-01 536872]
 S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Frame​work\v2.0.50727\aspnet_state.e​xe [2005-09-23 29896]
 S3 clr_optimization_v2.0.50727_32​;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Frame​work\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
 S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe [2007-01-04 136120]
 S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
 S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
 S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
 S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
 S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
 S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.ex​e [2008-04-14 14336]

 -----------------EOF----------​-------




 et pour le rapport info:
 info.txt logfile of random's system information tool 1.05 2009-01-19 15:29:01

 ======Uninstall list======

 -->rundll32.exe setupapi.dll,InstallHinfSectio​n DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6​538D419}
 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-040C-0000-00000​00FF1CE} /uninstall {A0353900-21A2-42CF-B973-88350​0A027F7}
 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-00000​00FF1CE} /uninstall {A0353900-21A2-42CF-B973-88350​0A027F7}
 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-00000​00FF1CE} /uninstall {A0353900-21A2-42CF-B973-88350​0A027F7}
 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-040C-0000-00000​00FF1CE} /uninstall {A0353900-21A2-42CF-B973-88350​0A027F7}
 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-040C-0000-00000​00FF1CE} /uninstall {A0353900-21A2-42CF-B973-88350​0A027F7}
 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-00000​00FF1CE} /uninstall {A0353900-21A2-42CF-B973-88350​0A027F7}
 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-00000​00FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17​824982D}
 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-00000​00FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4​CD33CA9}
 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-00000​00FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565​E796173}
 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-00000​00FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C09​5BAB72C}
 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-00000​00FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C130​12D99D4}
 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-00000​00FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B​91D7BF1}
 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0044-040C-0000-00000​00FF1CE} /uninstall {A0353900-21A2-42CF-B973-88350​0A027F7}
 Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\M​acromed\Flash\uninstall_plugin​.exe
 Adobe Flash Player ActiveX-->C:\WINDOWS\system32\​Macromed\Flash\uninstall_activ​eX.exe
 Apple Mobile Device Support-->MsiExec.exe /I{976C2B2A-CE59-4AB3-83FB-BF8​95E28F2E6}
 Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F4​95BE32033}
 Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
 Atheros WLAN Client-->C:\Program Files\InstallShield Installation Information\{F4F41D14-E0DD-4FB​4-AA09-A14225C769BD}\setup.exe -runfromtemp -l0x040c -removeonly
 Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15​DDC5B0959}
 CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
 Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUn​installKB939683$\spuninst\spun​inst.exe"
 Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUn​installKB952287$\spuninst\spun​inst.exe"
 Easy Display Manager-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\​PROFES~1\RunTime\10\00\Intel32​\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17283B95-21A8-499​6-97DA-547A48DB266F}\setup.exe​" -l0x9  -removeonly
 eMule-->"C:\Program Files\eMule\Uninstall.exe"
 Filter Forge Freepack 2 - Photo Effects 1.012-->"C:\Program Files\Filter Forge Freepack 2 - Photo Effects\unins000.exe"
 GIMP 2.6.4-->"C:\Program Files\GIMP-2.0\setup\unins000.​exe"
 HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
 Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUn​installKB929399$\spuninst\spun​inst.exe"
 imagine digital freedom - Samsung-->MsiExec.exe /X{00AF10C1-44BD-4862-9D7F-24E​6BA3E87FD}
 Intel(R) Graphics Media Accelerator Driver-->C:\WINDOWS\system32\i​gxpun.exe -uninstall
 iTunes-->MsiExec.exe /I{DDDE0BE3-0CBE-4BF6-B75A-E3F​69C947843}
 J2SE Runtime Environment 5.0-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B​0D0150000}
 Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
 Linux MultiMedia Studio (LMMS)-->C:\Program Files\LMMS 0.4.2\Uninstall.exe
 Magic Keyboard-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\​PROFES~1\RunTime\0701\Intel32\​Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BD723E53-A42C-470​2-AA04-1D74A0311590}\Setup.exe​" -l0x9 Remove
 Marvell Miniport Driver-->C:\Program Files\Marvell\Miniport Driver\Uninst.exe
 Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET​\Framework\v2.0.50727\Microsof​t .NET Framework 2.0\install.exe
 Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallM​SCompPackV1$\spuninst\spuninst​.exe"
 Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstall​Wdf01005$\spuninst\spuninst.ex​e"
 Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-000​0000FF1CE}
 Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-000​0000FF1CE}
 Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-000​0000FF1CE}
 Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-00000​00FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA5​40AADFB}
 Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-000​0000FF1CE}
 Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-000​0000FF1CE}
 Microsoft Office Professional Plus 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
 Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-000​0000FF1CE}
 Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-000​0000FF1CE}
 Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-000​0000FF1CE}
 Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-000​0000FF1CE}
 Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-000​0000FF1CE}
 Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-000​0000FF1CE}
 Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-000​0000FF1CE}
 Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-000​0000FF1CE}
 Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-000​0000FF1CE}
 Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-000​0000FF1CE}
 Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-000​0000FF1CE}
 Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstall​Wudf01000$\spuninst\spuninst.e​xe"
 Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUn​installKB952069_WM9$\spuninst\​spuninst.exe"
 Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUn​installKB936782_WMP11$\spunins​t\spuninst.exe"
 Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUn​installKB954154_WM11$\spuninst​\spuninst.exe"
 Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUn​installKB938464$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUn​installKB941569$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUn​installKB946648$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUn​installKB950762$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUn​installKB950974$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUn​installKB951066$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$N​tUninstallKB951376-v2$\spunins​t\spuninst.exe"
 Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUn​installKB951698$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUn​installKB951748$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUn​installKB952954$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUn​installKB954211$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUn​installKB954459$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUn​installKB954600$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUn​installKB955069$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUn​installKB956391$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUn​installKB956802$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUn​installKB956803$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUn​installKB956841$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUn​installKB957095$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUn​installKB957097$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB958215)-->"C:\WINDOWS\$NtUn​installKB958215$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUn​installKB958644$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUn​installKB958687$\spuninst\spun​inst.exe"
 Mise à jour de sécurité pour Windows XP (KB960714)-->"C:\WINDOWS\$NtUn​installKB960714$\spuninst\spun​inst.exe"
 Mise à jour pour Windows XP (KB898461)-->"C:\WINDOWS\$NtUn​installKB898461$\spuninst\spun​inst.exe"
 Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUn​installKB951978$\spuninst\spun​inst.exe"
 Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUn​installKB955839$\spuninst\spun​inst.exe"
 Mozilla Firefox (3.0.5)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
 MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5​DCDC52A71}
 MSXML 4.0 SP2 Parser and SDK-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC​4E9376BAC}
 Namuga 1.3M Webcam-->C:\Program Files\InstallShield Installation Information\{71A51B59-E7D3-11D​B-A386-005056C00008}\setup.exe -runfromtemp -l0x0009 -removeonly
 PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"
 Picasa 2-->"C:\Program Files\Picasa2\Uninstall.exe"
 Play Camera-->C:\Program Files\InstallShield Installation Information\{7B46F9CF-CF60-492​E-816E-95EB1A9D1BB4}\setup.exe -runfromtemp -l0x040c
 QuickTime-->MsiExec.exe /I{8DC42D05-680B-41B0-8878-6C1​4D24602DB}
 Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\​PROFES~1\RunTime\11\50\Intel32​\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4ED​E-8A7C-958108FE7DBC}\setup.exe​" -l0x40c  -removeonly
 Samsung Battery Manager-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\​PROFES~1\RunTime\0701\Intel32\​Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6F730513-8688-4C3​C-90A3-6B9792CE2EF3}\Setup.exe​" -l0x40c Remove
 Samsung EDS-->MsiExec.exe /X{ABB14904-A11B-4F42-996C-80F​D608A0F17}
 Samsung Magic Doctor-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\​PROFES~1\RunTime\0701\Intel32\​Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32D6A58F-9659-446​C-BBFC-E6F2B41F24DC}\Setup.exe​" -l0x40c Remove
 Samsung Network Manager 2.0-->C:\PROGRA~1\FICHIE~1\INS​TAL~1\Driver\10\INTEL3~1\IDriv​er.exe /M{DEA48EFD-22C1-4CD6-B887-EB2​E6B2E4735} /l1036
 Samsung Recovery Solution III-->"C:\Program Files\InstallShield Installation Information\{145DE957-0679-4A2​A-BB5C-1D3E9808FAB2}\setup.exe​" -runfromtemp -l0x040c -removeonly
 Samsung Update Plus-->C:\PROGRA~1\FICHIE~1\IN​STAL~1\Driver\10\INTEL3~1\IDri​ver.exe /M{685707A4-911C-468D-BFC4-64A​50E5E3A0C} /l1036
 Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486F​D82DC85}
 Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3​A0103C7}
 Security Update for 2007 Microsoft Office System (KB958439)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {6491B8AA-D11C-4648-A461-6234B​31EB7E2}
 Security Update for Microsoft Office Excel 2007 (KB958437)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {648FC016-2D6B-4A16-8D87-40453​3642F4B}
 Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A889​0641E77}
 Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D​3ACDD85}
 Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F38​5D82C5F}
 Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4B​E468FAC}
 Security Update for Microsoft Office Word 2007 (KB956358)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2​E64517C}
 Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL​.dll",standAloneUninstall
 Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE​788A756}
 Update for Office 2007 (KB946691)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {A420F522-7395-4872-9882-C591B​4B92278}
 Update for Outlook 2007 Junk Email Filter (kb959141)-->msiexec /package {90120000-0011-0000-0000-00000​00FF1CE} /uninstall {CC6191C2-B0CE-473C-AD77-61EA3​497D796}
 User Guide-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\​PROFES~1\RunTime\0701\Intel32\​Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BAE68339-B0F6-4D3​3-9554-5A3DB2DFF5DA}\setup.exe​" -l0x40c Remove
 VLC iPhone Connection Utility-->MsiExec.exe /I{7C84E006-D044-4441-A294-E31​8B147476C}
 VLC media player 0.9.6-->C:\Program Files\VideoLAN\VLC\uninstall.e​xe
 WIDCOMM Bluetooth Software-->MsiExec.exe /X{84814E6B-2581-46EC-926A-823​BD1C670F6}
 Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE​1A1300390}
 Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4​995401D65}
 Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
 Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUnins​tallWMFDist11$\spuninst\spunin​st.exe"
 Windows Media Player 11-->"C:\WINDOWS\$NtUninstallw​mp11$\spuninst\spuninst.exe"

 System event log

 Computer Name: JO
 Event Code: 7035
 Message: Un contrôle Démarrer a correctement été envoyé au service Service de la passerelle de la couche Application.

 Record Number: 1652
 Source Name: Service Control Manager
 Time Written: 20081222093415.000000+060
 Event Type: Informations
 User: AUTORITE NT\SYSTEM

 Computer Name: JO
 Event Code: 7036
 Message: Le service Service de découvertes SSDP est entré dans l'état : en cours d'exécution.

 Record Number: 1651
 Source Name: Service Control Manager
 Time Written: 20081222093415.000000+060
 Event Type: Informations
 User:

 Computer Name: JO
 Event Code: 7036
 Message: Le service Service de l’iPod est entré dans l'état : en cours d'exécution.

 Record Number: 1650
 Source Name: Service Control Manager
 Time Written: 20081222093415.000000+060
 Event Type: Informations
 User:

 Computer Name: JO
 Event Code: 7035
 Message: Un contrôle Démarrer a correctement été envoyé au service aswRdr.

 Record Number: 1649
 Source Name: Service Control Manager
 Time Written: 20081222093415.000000+060
 Event Type: Informations
 User: AUTORITE NT\SYSTEM

 Computer Name: JO
 Event Code: 7036
 Message: Le service NLA (Network Location Awareness) est entré dans l'état : en cours d'exécution.

 Record Number: 1648
 Source Name: Service Control Manager
 Time Written: 20081222093415.000000+060
 Event Type: Informations
 User:

 Application event log

 Computer Name: JO
 Event Code: 1000
 Message: Les compteurs de performances pour le service WmiApRpl (WmiApRpl) ont été chargés.
 Les données d'enregistrement contiennent les nouvelles valeurs d'index
 assignées à ce service.

 Record Number: 5
 Source Name: LoadPerf
 Time Written: 20081111000407.000000+060
 Event Type: Informations
 User:

 Computer Name: JO
 Event Code: 1001
 Message: Les compteurs de performances pour le service WmiApRpl (WmiApRpl) ont été supprimés.
 Les données d'enregistrement contiennent les nouvelles valeurs du dernier compteur système
 et les dernières entrées du registre d'aide.

 Record Number: 4
 Source Name: LoadPerf
 Time Written: 20081111000407.000000+060
 Event Type: Informations
 User:

 Computer Name: JO
 Event Code: 101
 Message: wuauclt (1684) Le moteur de base de données est arrêté.

 Record Number: 3
 Source Name: ESENT
 Time Written: 20081111000308.000000+060
 Event Type: Informations
 User:

 Computer Name: JO
 Event Code: 103
 Message: wuaueng.dll (1684) SUS20ClientDataStore: Le moteur de base de données a arrêté une instance (0).

 Record Number: 2
 Source Name: ESENT
 Time Written: 20081111000308.000000+060
 Event Type: Informations
 User:

 Computer Name: JO
 Event Code: 11728
 Message: Product: WebFldrs XP -- La configuration s'est terminée correctement.

 Record Number: 1
 Source Name: MsiInstaller
 Time Written: 20081111000249.000000+060
 Event Type: Informations
 User: JO\Jonathan

 ======Environment variables======

 "ComSpec"=%SystemRoot%\system3​2\cmd.exe
 "Path"=%systemroot%\system32;%​systemroot%;%systemroot%\syste​m32\wbem;C:\Program Files\QuickTime\QTSystem
 "windir"=%SystemRoot%
 "FP_NO_HOST_CHECK"=NO
 "OS"=Windows_NT
 "PROCESSOR_ARCHITECTURE"=x86
 "PROCESSOR_LEVEL"=6
 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 28 Stepping 2, GenuineIntel
 "PROCESSOR_REVISION"=1c02
 "NUMBER_OF_PROCESSORS"=2
 "PATHEXT"=.COM;.EXE;.BAT;.CMD;​.VBS;.VBE;.JS;.JSE;.WSF;.WSH
 "TEMP"=%SystemRoot%\TEMP
 "TMP"=%SystemRoot%\TEMP
 "CLASSPATH"=.;C:\Program Files\Java\jre1.5.0\lib\ext\QT​Java.zip
 "QTJAVA"=C:\Program Files\Java\jre1.5.0\lib\ext\QT​Java.zip

 -----------------EOF----------​-------


 merci!!

mido70
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 19/01/2009 à 18:59:20  
  1. Prévenir les modérateurs en cas d'abus
 
re,


 Relancer HijackThis,
 • Appuyer sur [Do a system scan only],
 • Cocher http://img243.imageshack.us/im​g243/8113/carreauzys3.jpg toutes les lignes suivantes et
 >>> Fermer les navigateurs, logiciels.. <<<
 • Appuyer sur [Fix Checked] pour les supprimer.

 (&#8730; = infection, &#8730;  = optimisation)
 &#8730; O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5​E23E045} - (no file)
 &#8730; O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.e​xe
 &#8730; O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.e​xe
 &#8730; O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
 &#8730; O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

 ______________________________​______________________________​___________________________

 Aller dans Démarrer --> Exécuter.., copier/coller y  (unes après l’autre) les lignes suivantes  et
 valider pour chacune :
 sc stop gusvc
 sc config gusvc start= disable


 >>>>>> • Redémarrer votre PC pour que prennent effet ces suppressions • <<<<<<<<

 ______________________________​______________________________​___________________________

 Supprimer ComboFix en copiant/collant dans Démarrer --> Exécuter : ComboFix /u et valider.
 ______________________________​______________________________​___________________________

 Mettez à jours.
 Java sun : http://www.java.com/fr/download/manual.jsp

 Faites les mise à jours proposées par Update Checker.

 La majorité des màj de ces logiciels, ont pour but de réparer leurs failles de sécurités.
 ______________________________​______________________________​___________________________

 Nettoyage des fichiers temporaires, Cookies..
 CCleaner version Slim (sans la Yahoo ToolBar) : Téléchargement - & - Tutoriel .
 • Installer et lancer CCleaner,
 • Décochez la mise à jour automatique,
 • Appuyer sur [Analyse] et [Lancer le Nettoyage].

 Utiliser CCleaner après chaque session sur le net,
 installation de logiciels et/ou avant de fermer le PC.

(Publicité)
jodr
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 19/01/2009 à 23:49:19  
  1. Prévenir les modérateurs en cas d'abus
 
re

 je n arrive pas a effacer combix, quand j execute l instruction ca me repond que combix est introuvable...
 j'ai fais les mises a jour.
 mais ma connexion wifi est toujours HS...que dois-je faire?
 merci (encore et encore) pour le derangement.

mido70
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 20/01/2009 à 03:19:59  
  1. Prévenir les modérateurs en cas d'abus
 
salut,

 



je n arrive pas a effacer combix


S'il y a un répertoire ComboFix - Qoobox sur le C:\, supprimez le.

 Sinon pour désinstaller tout les logiciels de désinfection sur votre PC.
 >> Fermez toutes les applications en cours,
 Téléchargez "ToolsCleaner2" (de A.Rothstein et Dj Quiou) sur votre Bureau : http://pc-system.fr/TC/ToolsCleaner2.exe
 • Double cliquez sur ToolsCleaner2.exe > cliquez sur Recherche et laissez le scan se terminer.
 • Cliquez sur Suppression pour finaliser
 • Vous pouvez, si vous le souhaites, vous servir des Options facultatives.
 • Cliquez sur Quitter, pour que le rapport puisse se créer.  
 &#9658; Afficher le rapport (TCleaner.txt)  qui est sur le C:\. .

 Noter : votre  bureau va disparaître, c'est normal. S'il n'apparaît pas à la fin du scan, faire la manip suivante :
 CTRL+ALT+SUPP pour ouvrir le Gestionnaire des tâches.
 Puis rendez vous à l'onglet "Processus", cliquez en haut à gauche sur "Fichiers" et choisissez "Exécuter"
 Tapez : explorer.exe et validez. Cela fera réapparaître votre Bureau.

 ** Postez le rapport obtenu.
 ______________________________​______________________________​____________

 Pour Wifi, je n'y connais pas grand chose, autrement que la fonction d'une installation WiFi, soit une connexion par onde.

 Sans vouloir trop trop m'avancer sur la procédure à suivre, et pour cause, la réinstallation logiciel devrait remettre en force ce wifi sur votre PC.

 Quel est le logiciel.. Je pourrais essayé de vérifier ça avec vous.
 Sinon il y a toujours la section logiciel du forum "Windows & logiciels".

 Une chose est certaine, si c'était l'infection qui avait endommagé votre Wifi, cette infection n'y est plus.

 Donc, sans vouloir trop trop m'avancer sur la procédure et pour cause, la réinstallation devrait remettre en force ce wifi sur votre PC.


jodr
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 25/01/2009 à 20:11:38  
  1. Prévenir les modérateurs en cas d'abus
 
salut mido70

 donc voici TCcleaner.txt:
 [ Rapport ToolsCleaner version 2.3.0 (par A.Rothstein & dj QUIOU) ]

 -->- Recherche:

 C:\Rsit: trouvé !
 C:\Documents and Settings\Jonathan\Bureau\Rsit.​exe: trouvé !
 C:\Program Files\trend micro\HijackThis.exe: trouvé !
 C:\Program Files\trend micro\hijackthis.log: trouvé !

 ------------------------------​---
 -->- Suppression:

 C:\Program Files\trend micro\HijackThis.exe: supprimé !
 C:\Documents and Settings\Jonathan\Bureau\Rsit.​exe: supprimé !
 C:\Program Files\trend micro\hijackthis.log: supprimé !
 C:\Rsit: supprimé !

 et merci beaucoup pour le coup de main et le temps consacré.
 derniere question: penses tu qu'en restaurant mon systeme je pourrai recuperer ma connexion wifi?

 merci! et bonne continuation.

 jodr

mido70
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 25/01/2009 à 20:55:37  
  1. Prévenir les modérateurs en cas d'abus
 



je pourrai recuperer ma connexion wifi?


Ça ramènerait tout les autres problèmes que l'ont vient d'arranger.
 Sans être certain du résultat pour le wifi.

 Voici un tutoriel sur wifi >> par ici ?!

 Sinon, avez vous affichez sur la section de >> Windows & logiciels << avec pour titre Comment réinstaller wifi !
 Certain qu'à l'interieur de quelques heures vous aurez réponses.

jodr
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 27/01/2009 à 10:48:12  
  1. Prévenir les modérateurs en cas d'abus
 
salut
 j'ai regarde le tuto que tu as mis en lien...je t'avoue que ça commence à depasser mes maigres connaissances!
 j'ai donc poste sur tes conseils dans le forum à la partie indiquée.
 En tout cas merci bien pour le coup de main!
 @+

  1. homepage
jmpcomputer
Assidu (de 10 000 à 19 999 messages postés) Fan Club de Clic-Clic
  1. Posté le 13/01/2018 à 23:07:15  
  1. Prévenir les modérateurs en cas d'abus
 
Ce sujet a été fermé par JMPCOMPUTER


---------------

Vous avez le même problème ? Merci de créer votre propre sujet.
Téléchargez vos logiciels et mises à jour de préférence chez l'éditeur.
Lien vers mon blog: Astuces & tutos
 Page :
1

Aller à :
 

Sujets relatifs
Application.Aseye.BEK [résolu] BAGLE "avast.exe pas une application win32 valide"
trojan horse!!!! [résolu]trojan dans win32 album photo 2007
besoin d'aide pour supprimer Trojan Win32 [RESOLU] Avast et Centre de Sécurité disparu ????
encor ce trojan  
Plus de sujets relatifs à : trojan ... Avast.exe n'est une application Win32 valide...

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
A l'aide je m'en sors pas trojan virus ? 6
Plus rien ne va sur mon PC [résolu] 18
Message au démarrage 21
iaplayer_2.70.13.0823_esd RESOLU 2
Infection 0