Un spyware bien énnervant
Dernière réponse : dans Sécurité
Bonjour à tous,
Il se trouve que depuis un certain temps, j'ai un spyware nomée
"Located: HK_CU:Run, Storefind (DISABLED)
command: C:\DOCUME~1\ALEXAN~1\APPLIC~1\Eggs online fork\defydeleteboob.exe
file: "
Malgé mes nombreux anti-virus, ce-dernier ne se suprime pas.
Avez-vous une idée quoi faire?
Il se trouve que depuis un certain temps, j'ai un spyware nomée
"Located: HK_CU:Run, Storefind (DISABLED)
command: C:\DOCUME~1\ALEXAN~1\APPLIC~1\Eggs online fork\defydeleteboob.exe
file: "
Malgé mes nombreux anti-virus, ce-dernier ne se suprime pas.
Avez-vous une idée quoi faire?
Autres pages sur : spyware bien ennervant
Lassé par la pub ? Créez un compte
Bonsoir,
Infection LOP.
Télécharge Lopxp.zip
Dézippe le sur le Bureau
Lance le fichier lopxp.bat
Un rapport sera généré, poste son contenu ici.
- Télécharge Hijackthis de Merjin.
- Dézippe le dans un dossier ou sur ton bureau.
-- Clique Droit sur Hijackthis.exe :
-> Choisis "Renommer"
-> Tape Scanner.exe puis valide.
- Lance l'application
- Choisis l'option "Do a system scan and save a logfile"
-- Le Bloc-Notes s'ouvre :
-> Edition / Sélectionner Tout
-> Edition / Copier
- Colle le rapport ici.
AIDE : Aide sur Hijackthis (Malekal)
Infection LOP.
Télécharge Lopxp.zip
Dézippe le sur le Bureau
Lance le fichier lopxp.bat
Un rapport sera généré, poste son contenu ici.
- Télécharge Hijackthis de Merjin.
- Dézippe le dans un dossier ou sur ton bureau.
-- Clique Droit sur Hijackthis.exe :
-> Choisis "Renommer"
-> Tape Scanner.exe puis valide.
- Lance l'application
- Choisis l'option "Do a system scan and save a logfile"
-- Le Bloc-Notes s'ouvre :
-> Edition / Sélectionner Tout
-> Edition / Copier
- Colle le rapport ici.
AIDE : Aide sur Hijackthis (Malekal)
Bon alors, voici mon rapport:
Logfile of HijackThis v1.99.1
Scan saved at 2:07:30 PM, on 11/26/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\System32\alg.exe
C:\PROGRAM FILES\XFIRE\XFIRE.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\notepad.exe
C:\Documents and Settings\Alexandre\My Documents\Antivirus\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {131EB16C-BD58-443F-8151-6DFBB0DA1778} (Anark Client 3.0 ActiveX Control) - http://install.anark.com/client/version3/windows-ie/en/...
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {2931566C-B8A6-46C5-BF4D-E6AB9251E953} (Nexon Package Manager Control) - http://s.nx.com/activex/public_new/nxpm.cab
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.2.100.c...
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by113fd.bay113.hotmail.msn.com/resources/MsnPUpl...
O16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} (Housecall ActiveX 6.5) - http://housecall65.trendmicro.com/housecall/applet/html...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {9D8CCE0F-2E2C-41EB-B37F-9852DB989CAC} (WebLauncher Control) - http://www.spacecowboy.net/WebLauncher/WebLauncher.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab342...
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by113fd.bay113.hotmail.msn.com/activex/HMAtchmt....
O16 - DPF: {F127B9BA-89EA-4B04-9C67-2074A9DF61FD} (Photo Upload Plugin Class) - http://walmart.pnimedia.com/upload/activex/v2_0_0_9/PCA...
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\SYSTEM32\LEXBCES.EXE
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe
Logfile of HijackThis v1.99.1
Scan saved at 2:07:30 PM, on 11/26/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\System32\alg.exe
C:\PROGRAM FILES\XFIRE\XFIRE.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\notepad.exe
C:\Documents and Settings\Alexandre\My Documents\Antivirus\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {131EB16C-BD58-443F-8151-6DFBB0DA1778} (Anark Client 3.0 ActiveX Control) - http://install.anark.com/client/version3/windows-ie/en/...
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {2931566C-B8A6-46C5-BF4D-E6AB9251E953} (Nexon Package Manager Control) - http://s.nx.com/activex/public_new/nxpm.cab
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.2.100.c...
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by113fd.bay113.hotmail.msn.com/resources/MsnPUpl...
O16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} (Housecall ActiveX 6.5) - http://housecall65.trendmicro.com/housecall/applet/html...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {9D8CCE0F-2E2C-41EB-B37F-9852DB989CAC} (WebLauncher Control) - http://www.spacecowboy.net/WebLauncher/WebLauncher.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab342...
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by113fd.bay113.hotmail.msn.com/activex/HMAtchmt....
O16 - DPF: {F127B9BA-89EA-4B04-9C67-2074A9DF61FD} (Photo Upload Plugin Class) - http://walmart.pnimedia.com/upload/activex/v2_0_0_9/PCA...
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\SYSTEM32\LEXBCES.EXE
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe
Mon Dieu je suis Désolé !! J'ai eu bon attendre, mais rien! PAs de rapport rien. j'ai attendu 5 mins!
Bon après quelques longues minutes ( 10 ) voici le rapport (désolé encore! ) :
Rapport fait à 14:07:13.50 le Sun 11/26/2006
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Administrator\Application Data
04/21/2006 10:25 AM 62 desktop.ini
04/21/2006 10:25 AM <DIR> ..
04/21/2006 10:25 AM <DIR> Microsoft
04/21/2006 10:25 AM <DIR> .
1 File(s) 62 bytes
3 Dir(s) 5872046080 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Alex2\Application Data
08/31/2006 08:23 PM <DIR> Help
04/09/2006 11:37 AM <DIR> Skype
04/09/2006 09:39 AM <DIR> PC Tools
03/16/2006 06:58 PM <DIR> Sun
03/15/2006 06:42 PM <DIR> Leadertech
03/01/2006 07:50 PM <DIR> AdobeUM
03/01/2006 07:41 PM <DIR> Adobe
03/01/2006 07:41 PM 1702 AdobeDLM.log
02/11/2006 12:32 PM <DIR> Apple Computer
12/03/2005 10:26 AM <DIR> Real
11/20/2005 05:54 PM <DIR> Google
11/18/2005 11:52 AM <DIR> Lavasoft
11/18/2005 11:22 AM <DIR> Macromedia
11/18/2005 11:19 AM <DIR> Mozilla
11/14/2005 07:52 PM <DIR> ATI
11/14/2005 07:50 PM <DIR> Identities
11/14/2005 07:50 PM 62 desktop.ini
11/14/2005 07:50 PM <DIR> Microsoft
11/14/2005 07:50 PM <DIR> .
11/14/2005 07:50 PM <DIR> ..
2 File(s) 1764 bytes
18 Dir(s) 5872041984 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Alexandre\Application Data
11/03/2006 03:49 PM <DIR> DivX
10/28/2006 06:06 PM <DIR> CyberLink
10/28/2006 09:42 AM <DIR> Opera
10/16/2006 09:39 AM <DIR> Sony Corporation
09/11/2006 08:13 PM <DIR> Cakebold
09/11/2006 08:13 PM <DIR> Eggs online fork
09/07/2006 06:42 PM <DIR> TuneUp Software
09/03/2006 12:37 PM <DIR> Ventrilo
09/01/2006 07:22 PM <DIR> PC Tools
08/19/2006 11:41 AM 1165 AdobeDLM.log
08/14/2006 10:27 AM <DIR> Xfire
07/28/2006 07:53 PM <DIR> Syntrillium
07/04/2006 10:23 AM <DIR> vlc
07/03/2006 10:26 AM <DIR> yahoo!
06/25/2006 07:00 PM <DIR> BitTorrent
04/28/2006 07:51 PM <DIR> IGN_DLM
03/08/2006 09:53 PM <DIR> VoipStunt
03/08/2006 07:38 AM <DIR> XemiComputers
03/05/2006 01:03 PM <DIR> Atari
03/01/2006 08:17 PM <DIR> AdobeUM
02/01/2006 05:49 PM 21536 GDIPFONTCACHEV1.DAT
12/16/2005 09:22 PM <DIR> ArcSoft
11/23/2005 05:47 PM <DIR> Real
11/22/2005 06:02 PM <DIR> Skype
11/22/2005 05:56 PM <DIR> teamspeak2
11/18/2005 09:01 AM <DIR> Lavasoft
11/12/2005 08:18 PM <DIR> Talkback
11/12/2005 08:18 PM <DIR> Mozilla
11/12/2005 02:53 PM <DIR> Apple Computer
11/10/2005 09:41 PM <DIR> NeroVision
11/09/2005 06:08 PM <DIR> Publish Providers
11/09/2005 06:06 PM <DIR> Sony
11/07/2005 10:30 AM <DIR> Help
11/02/2005 09:38 PM <DIR> Sun
11/02/2005 09:30 PM <DIR> MSN6
10/29/2005 09:23 PM <DIR> Google
10/29/2005 07:34 PM <DIR> Adobe
10/29/2005 04:07 PM <DIR> ATI
10/29/2005 03:29 PM <DIR> Macromedia
10/29/2005 03:28 PM <DIR> Microsoft Games
10/29/2005 02:19 PM <DIR> Identities
10/29/2005 02:18 PM 62 desktop.ini
10/29/2005 02:18 PM <DIR> Microsoft
10/29/2005 02:18 PM <DIR> .
10/29/2005 02:18 PM <DIR> ..
3 File(s) 22763 bytes
42 Dir(s) 5872041984 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\All Users\Application Data
11/17/2006 10:35 AM 1396 QTSBandwidthCache
10/28/2006 06:05 PM <DIR> CyberLink
10/24/2006 09:07 PM <DIR> TEMP
10/16/2006 09:41 AM <DIR> Sony Corporation
09/17/2006 10:25 AM <DIR> SRS Labs
09/07/2006 06:42 PM <DIR> TuneUp Software
09/06/2006 06:34 PM <DIR> Google
08/31/2006 07:11 PM <DIR> Adobe Systems
08/31/2006 06:39 PM <DIR> BVRP Software
04/29/2006 09:12 AM <DIR> Trymedia
03/19/2006 08:35 PM <DIR> element5
01/25/2006 09:02 PM <DIR> Messenger Plus!
01/04/2006 06:06 PM <DIR> Spybot - Search & Destroy
11/28/2005 09:45 PM <DIR> BOONTY
11/22/2005 06:02 PM <DIR> Skype
11/13/2005 04:14 PM <DIR> QuickTime
11/13/2005 12:54 PM <DIR> PopCap
11/13/2005 10:30 AM <DIR> Yahoo! Companion
11/12/2005 02:52 PM <DIR> Apple Computer
11/07/2005 10:29 AM <DIR> Macrovision
11/02/2005 09:30 PM <DIR> MSN6
10/29/2005 09:20 PM <DIR> RoboForm
10/29/2005 07:32 PM <DIR> Adobe
10/29/2005 05:36 PM <DIR> Windows Genuine Advantage
10/29/2005 11:03 AM 62 desktop.ini
10/29/2005 11:03 AM <DIR> ..
10/29/2005 11:03 AM <DIR> .
10/29/2005 11:03 AM <DIR> Microsoft
2 File(s) 1458 bytes
26 Dir(s) 5872037888 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Default User\Application Data
10/29/2005 11:03 AM 62 desktop.ini
10/29/2005 11:03 AM <DIR> ..
10/29/2005 11:03 AM <DIR> Microsoft
10/29/2005 11:03 AM <DIR> .
1 File(s) 62 bytes
3 Dir(s) 5872037888 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Guest\Application Data
11/25/2005 09:35 PM <DIR> Real
11/15/2005 08:04 PM <DIR> Macromedia
11/15/2005 06:05 PM <DIR> ATI
11/15/2005 06:04 PM <DIR> Identities
11/15/2005 06:04 PM 62 desktop.ini
11/15/2005 06:04 PM <DIR> Microsoft
11/15/2005 06:04 PM <DIR> ..
11/15/2005 06:04 PM <DIR> .
1 File(s) 62 bytes
7 Dir(s) 5872037888 bytes free
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\WINDOWS\Tasks
09/07/2006 06:42 PM 416 Maintenance en 1 clic.job
06/08/2006 05:56 PM 330 MP Scheduled Scan.job
10/29/2005 02:14 PM 6 SA.DAT
10/29/2005 02:13 PM 65 desktop.ini
10/29/2005 02:12 PM <DIR> ..
10/29/2005 02:12 PM <DIR> .
4 File(s) 817 bytes
2 Dir(s) 5,872,037,888 bytes free
******************************************
Recherche dans Program files
Le dossier C:\Program Files\C2Media n'existe pas
*************** Fin du rapport ****************
Rapport fait à 15:13:31.59 le Sun 11/26/2006
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Administrator\Application Data
04/21/2006 10:25 AM 62 desktop.ini
04/21/2006 10:25 AM <DIR> ..
04/21/2006 10:25 AM <DIR> Microsoft
04/21/2006 10:25 AM <DIR> .
1 File(s) 62 bytes
3 Dir(s) 5855129600 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Alex2\Application Data
08/31/2006 08:23 PM <DIR> Help
04/09/2006 11:37 AM <DIR> Skype
04/09/2006 09:39 AM <DIR> PC Tools
03/16/2006 06:58 PM <DIR> Sun
03/15/2006 06:42 PM <DIR> Leadertech
03/01/2006 07:50 PM <DIR> AdobeUM
03/01/2006 07:41 PM <DIR> Adobe
03/01/2006 07:41 PM 1702 AdobeDLM.log
02/11/2006 12:32 PM <DIR> Apple Computer
12/03/2005 10:26 AM <DIR> Real
11/20/2005 05:54 PM <DIR> Google
11/18/2005 11:52 AM <DIR> Lavasoft
11/18/2005 11:22 AM <DIR> Macromedia
11/18/2005 11:19 AM <DIR> Mozilla
11/14/2005 07:52 PM <DIR> ATI
11/14/2005 07:50 PM <DIR> Identities
11/14/2005 07:50 PM 62 desktop.ini
11/14/2005 07:50 PM <DIR> Microsoft
11/14/2005 07:50 PM <DIR> .
11/14/2005 07:50 PM <DIR> ..
2 File(s) 1764 bytes
18 Dir(s) 5855125504 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Alexandre\Application Data
11/26/2006 02:23 PM 0 dm.ini
11/03/2006 03:49 PM <DIR> DivX
10/28/2006 06:06 PM <DIR> CyberLink
10/28/2006 09:42 AM <DIR> Opera
10/16/2006 09:39 AM <DIR> Sony Corporation
09/11/2006 08:13 PM <DIR> Cakebold
09/11/2006 08:13 PM <DIR> Eggs online fork
09/07/2006 06:42 PM <DIR> TuneUp Software
09/03/2006 12:37 PM <DIR> Ventrilo
09/01/2006 07:22 PM <DIR> PC Tools
08/19/2006 11:41 AM 1355 AdobeDLM.log
08/14/2006 10:27 AM <DIR> Xfire
07/28/2006 07:53 PM <DIR> Syntrillium
07/04/2006 10:23 AM <DIR> vlc
07/03/2006 10:26 AM <DIR> yahoo!
06/25/2006 07:00 PM <DIR> BitTorrent
04/28/2006 07:51 PM <DIR> IGN_DLM
03/08/2006 09:53 PM <DIR> VoipStunt
03/08/2006 07:38 AM <DIR> XemiComputers
03/05/2006 01:03 PM <DIR> Atari
03/01/2006 08:17 PM <DIR> AdobeUM
02/01/2006 05:49 PM 21536 GDIPFONTCACHEV1.DAT
12/16/2005 09:22 PM <DIR> ArcSoft
11/23/2005 05:47 PM <DIR> Real
11/22/2005 06:02 PM <DIR> Skype
11/22/2005 05:56 PM <DIR> teamspeak2
11/18/2005 09:01 AM <DIR> Lavasoft
11/12/2005 08:18 PM <DIR> Talkback
11/12/2005 08:18 PM <DIR> Mozilla
11/12/2005 02:53 PM <DIR> Apple Computer
11/10/2005 09:41 PM <DIR> NeroVision
11/09/2005 06:08 PM <DIR> Publish Providers
11/09/2005 06:06 PM <DIR> Sony
11/07/2005 10:30 AM <DIR> Help
11/02/2005 09:38 PM <DIR> Sun
11/02/2005 09:30 PM <DIR> MSN6
10/29/2005 09:23 PM <DIR> Google
10/29/2005 07:34 PM <DIR> Adobe
10/29/2005 04:07 PM <DIR> ATI
10/29/2005 03:29 PM <DIR> Macromedia
10/29/2005 03:28 PM <DIR> Microsoft Games
10/29/2005 02:19 PM <DIR> Identities
10/29/2005 02:18 PM 62 desktop.ini
10/29/2005 02:18 PM <DIR> Microsoft
10/29/2005 02:18 PM <DIR> .
10/29/2005 02:18 PM <DIR> ..
4 File(s) 22953 bytes
42 Dir(s) 5855125504 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\All Users\Application Data
11/17/2006 10:35 AM 1396 QTSBandwidthCache
10/28/2006 06:05 PM <DIR> CyberLink
10/24/2006 09:07 PM <DIR> TEMP
10/16/2006 09:41 AM <DIR> Sony Corporation
09/17/2006 10:25 AM <DIR> SRS Labs
09/07/2006 06:42 PM <DIR> TuneUp Software
09/06/2006 06:34 PM <DIR> Google
08/31/2006 07:11 PM <DIR> Adobe Systems
08/31/2006 06:39 PM <DIR> BVRP Software
04/29/2006 09:12 AM <DIR> Trymedia
03/19/2006 08:35 PM <DIR> element5
01/25/2006 09:02 PM <DIR> Messenger Plus!
01/04/2006 06:06 PM <DIR> Spybot - Search & Destroy
11/28/2005 09:45 PM <DIR> BOONTY
11/22/2005 06:02 PM <DIR> Skype
11/13/2005 04:14 PM <DIR> QuickTime
11/13/2005 12:54 PM <DIR> PopCap
11/13/2005 10:30 AM <DIR> Yahoo! Companion
11/12/2005 02:52 PM <DIR> Apple Computer
11/07/2005 10:29 AM <DIR> Macrovision
11/02/2005 09:30 PM <DIR> MSN6
10/29/2005 09:20 PM <DIR> RoboForm
10/29/2005 07:32 PM <DIR> Adobe
10/29/2005 05:36 PM <DIR> Windows Genuine Advantage
10/29/2005 11:03 AM 62 desktop.ini
10/29/2005 11:03 AM <DIR> ..
10/29/2005 11:03 AM <DIR> .
10/29/2005 11:03 AM <DIR> Microsoft
2 File(s) 1458 bytes
26 Dir(s) 5855121408 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Default User\Application Data
10/29/2005 11:03 AM 62 desktop.ini
10/29/2005 11:03 AM <DIR> ..
10/29/2005 11:03 AM <DIR> Microsoft
10/29/2005 11:03 AM <DIR> .
1 File(s) 62 bytes
3 Dir(s) 5855121408 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Guest\Application Data
11/25/2005 09:35 PM <DIR> Real
11/15/2005 08:04 PM <DIR> Macromedia
11/15/2005 06:05 PM <DIR> ATI
11/15/2005 06:04 PM <DIR> Identities
11/15/2005 06:04 PM 62 desktop.ini
11/15/2005 06:04 PM <DIR> Microsoft
11/15/2005 06:04 PM <DIR> ..
11/15/2005 06:04 PM <DIR> .
1 File(s) 62 bytes
7 Dir(s) 5855121408 bytes free
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\WINDOWS\Tasks
09/07/2006 06:42 PM 416 Maintenance en 1 clic.job
06/08/2006 05:56 PM 330 MP Scheduled Scan.job
10/29/2005 02:14 PM 6 SA.DAT
10/29/2005 02:13 PM 65 desktop.ini
10/29/2005 02:12 PM <DIR> ..
10/29/2005 02:12 PM <DIR> .
4 File(s) 817 bytes
2 Dir(s) 5,855,121,408 bytes free
******************************************
Recherche dans Program files
Le dossier C:\Program Files\C2Media n'existe pas
*************** Fin du rapport ****************
Rapport fait à 14:07:13.50 le Sun 11/26/2006
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Administrator\Application Data
04/21/2006 10:25 AM 62 desktop.ini
04/21/2006 10:25 AM <DIR> ..
04/21/2006 10:25 AM <DIR> Microsoft
04/21/2006 10:25 AM <DIR> .
1 File(s) 62 bytes
3 Dir(s) 5872046080 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Alex2\Application Data
08/31/2006 08:23 PM <DIR> Help
04/09/2006 11:37 AM <DIR> Skype
04/09/2006 09:39 AM <DIR> PC Tools
03/16/2006 06:58 PM <DIR> Sun
03/15/2006 06:42 PM <DIR> Leadertech
03/01/2006 07:50 PM <DIR> AdobeUM
03/01/2006 07:41 PM <DIR> Adobe
03/01/2006 07:41 PM 1702 AdobeDLM.log
02/11/2006 12:32 PM <DIR> Apple Computer
12/03/2005 10:26 AM <DIR> Real
11/20/2005 05:54 PM <DIR> Google
11/18/2005 11:52 AM <DIR> Lavasoft
11/18/2005 11:22 AM <DIR> Macromedia
11/18/2005 11:19 AM <DIR> Mozilla
11/14/2005 07:52 PM <DIR> ATI
11/14/2005 07:50 PM <DIR> Identities
11/14/2005 07:50 PM 62 desktop.ini
11/14/2005 07:50 PM <DIR> Microsoft
11/14/2005 07:50 PM <DIR> .
11/14/2005 07:50 PM <DIR> ..
2 File(s) 1764 bytes
18 Dir(s) 5872041984 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Alexandre\Application Data
11/03/2006 03:49 PM <DIR> DivX
10/28/2006 06:06 PM <DIR> CyberLink
10/28/2006 09:42 AM <DIR> Opera
10/16/2006 09:39 AM <DIR> Sony Corporation
09/11/2006 08:13 PM <DIR> Cakebold
09/11/2006 08:13 PM <DIR> Eggs online fork
09/07/2006 06:42 PM <DIR> TuneUp Software
09/03/2006 12:37 PM <DIR> Ventrilo
09/01/2006 07:22 PM <DIR> PC Tools
08/19/2006 11:41 AM 1165 AdobeDLM.log
08/14/2006 10:27 AM <DIR> Xfire
07/28/2006 07:53 PM <DIR> Syntrillium
07/04/2006 10:23 AM <DIR> vlc
07/03/2006 10:26 AM <DIR> yahoo!
06/25/2006 07:00 PM <DIR> BitTorrent
04/28/2006 07:51 PM <DIR> IGN_DLM
03/08/2006 09:53 PM <DIR> VoipStunt
03/08/2006 07:38 AM <DIR> XemiComputers
03/05/2006 01:03 PM <DIR> Atari
03/01/2006 08:17 PM <DIR> AdobeUM
02/01/2006 05:49 PM 21536 GDIPFONTCACHEV1.DAT
12/16/2005 09:22 PM <DIR> ArcSoft
11/23/2005 05:47 PM <DIR> Real
11/22/2005 06:02 PM <DIR> Skype
11/22/2005 05:56 PM <DIR> teamspeak2
11/18/2005 09:01 AM <DIR> Lavasoft
11/12/2005 08:18 PM <DIR> Talkback
11/12/2005 08:18 PM <DIR> Mozilla
11/12/2005 02:53 PM <DIR> Apple Computer
11/10/2005 09:41 PM <DIR> NeroVision
11/09/2005 06:08 PM <DIR> Publish Providers
11/09/2005 06:06 PM <DIR> Sony
11/07/2005 10:30 AM <DIR> Help
11/02/2005 09:38 PM <DIR> Sun
11/02/2005 09:30 PM <DIR> MSN6
10/29/2005 09:23 PM <DIR> Google
10/29/2005 07:34 PM <DIR> Adobe
10/29/2005 04:07 PM <DIR> ATI
10/29/2005 03:29 PM <DIR> Macromedia
10/29/2005 03:28 PM <DIR> Microsoft Games
10/29/2005 02:19 PM <DIR> Identities
10/29/2005 02:18 PM 62 desktop.ini
10/29/2005 02:18 PM <DIR> Microsoft
10/29/2005 02:18 PM <DIR> .
10/29/2005 02:18 PM <DIR> ..
3 File(s) 22763 bytes
42 Dir(s) 5872041984 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\All Users\Application Data
11/17/2006 10:35 AM 1396 QTSBandwidthCache
10/28/2006 06:05 PM <DIR> CyberLink
10/24/2006 09:07 PM <DIR> TEMP
10/16/2006 09:41 AM <DIR> Sony Corporation
09/17/2006 10:25 AM <DIR> SRS Labs
09/07/2006 06:42 PM <DIR> TuneUp Software
09/06/2006 06:34 PM <DIR> Google
08/31/2006 07:11 PM <DIR> Adobe Systems
08/31/2006 06:39 PM <DIR> BVRP Software
04/29/2006 09:12 AM <DIR> Trymedia
03/19/2006 08:35 PM <DIR> element5
01/25/2006 09:02 PM <DIR> Messenger Plus!
01/04/2006 06:06 PM <DIR> Spybot - Search & Destroy
11/28/2005 09:45 PM <DIR> BOONTY
11/22/2005 06:02 PM <DIR> Skype
11/13/2005 04:14 PM <DIR> QuickTime
11/13/2005 12:54 PM <DIR> PopCap
11/13/2005 10:30 AM <DIR> Yahoo! Companion
11/12/2005 02:52 PM <DIR> Apple Computer
11/07/2005 10:29 AM <DIR> Macrovision
11/02/2005 09:30 PM <DIR> MSN6
10/29/2005 09:20 PM <DIR> RoboForm
10/29/2005 07:32 PM <DIR> Adobe
10/29/2005 05:36 PM <DIR> Windows Genuine Advantage
10/29/2005 11:03 AM 62 desktop.ini
10/29/2005 11:03 AM <DIR> ..
10/29/2005 11:03 AM <DIR> .
10/29/2005 11:03 AM <DIR> Microsoft
2 File(s) 1458 bytes
26 Dir(s) 5872037888 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Default User\Application Data
10/29/2005 11:03 AM 62 desktop.ini
10/29/2005 11:03 AM <DIR> ..
10/29/2005 11:03 AM <DIR> Microsoft
10/29/2005 11:03 AM <DIR> .
1 File(s) 62 bytes
3 Dir(s) 5872037888 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Guest\Application Data
11/25/2005 09:35 PM <DIR> Real
11/15/2005 08:04 PM <DIR> Macromedia
11/15/2005 06:05 PM <DIR> ATI
11/15/2005 06:04 PM <DIR> Identities
11/15/2005 06:04 PM 62 desktop.ini
11/15/2005 06:04 PM <DIR> Microsoft
11/15/2005 06:04 PM <DIR> ..
11/15/2005 06:04 PM <DIR> .
1 File(s) 62 bytes
7 Dir(s) 5872037888 bytes free
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\WINDOWS\Tasks
09/07/2006 06:42 PM 416 Maintenance en 1 clic.job
06/08/2006 05:56 PM 330 MP Scheduled Scan.job
10/29/2005 02:14 PM 6 SA.DAT
10/29/2005 02:13 PM 65 desktop.ini
10/29/2005 02:12 PM <DIR> ..
10/29/2005 02:12 PM <DIR> .
4 File(s) 817 bytes
2 Dir(s) 5,872,037,888 bytes free
******************************************
Recherche dans Program files
Le dossier C:\Program Files\C2Media n'existe pas
*************** Fin du rapport ****************
Rapport fait à 15:13:31.59 le Sun 11/26/2006
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Administrator\Application Data
04/21/2006 10:25 AM 62 desktop.ini
04/21/2006 10:25 AM <DIR> ..
04/21/2006 10:25 AM <DIR> Microsoft
04/21/2006 10:25 AM <DIR> .
1 File(s) 62 bytes
3 Dir(s) 5855129600 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Alex2\Application Data
08/31/2006 08:23 PM <DIR> Help
04/09/2006 11:37 AM <DIR> Skype
04/09/2006 09:39 AM <DIR> PC Tools
03/16/2006 06:58 PM <DIR> Sun
03/15/2006 06:42 PM <DIR> Leadertech
03/01/2006 07:50 PM <DIR> AdobeUM
03/01/2006 07:41 PM <DIR> Adobe
03/01/2006 07:41 PM 1702 AdobeDLM.log
02/11/2006 12:32 PM <DIR> Apple Computer
12/03/2005 10:26 AM <DIR> Real
11/20/2005 05:54 PM <DIR> Google
11/18/2005 11:52 AM <DIR> Lavasoft
11/18/2005 11:22 AM <DIR> Macromedia
11/18/2005 11:19 AM <DIR> Mozilla
11/14/2005 07:52 PM <DIR> ATI
11/14/2005 07:50 PM <DIR> Identities
11/14/2005 07:50 PM 62 desktop.ini
11/14/2005 07:50 PM <DIR> Microsoft
11/14/2005 07:50 PM <DIR> .
11/14/2005 07:50 PM <DIR> ..
2 File(s) 1764 bytes
18 Dir(s) 5855125504 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Alexandre\Application Data
11/26/2006 02:23 PM 0 dm.ini
11/03/2006 03:49 PM <DIR> DivX
10/28/2006 06:06 PM <DIR> CyberLink
10/28/2006 09:42 AM <DIR> Opera
10/16/2006 09:39 AM <DIR> Sony Corporation
09/11/2006 08:13 PM <DIR> Cakebold
09/11/2006 08:13 PM <DIR> Eggs online fork
09/07/2006 06:42 PM <DIR> TuneUp Software
09/03/2006 12:37 PM <DIR> Ventrilo
09/01/2006 07:22 PM <DIR> PC Tools
08/19/2006 11:41 AM 1355 AdobeDLM.log
08/14/2006 10:27 AM <DIR> Xfire
07/28/2006 07:53 PM <DIR> Syntrillium
07/04/2006 10:23 AM <DIR> vlc
07/03/2006 10:26 AM <DIR> yahoo!
06/25/2006 07:00 PM <DIR> BitTorrent
04/28/2006 07:51 PM <DIR> IGN_DLM
03/08/2006 09:53 PM <DIR> VoipStunt
03/08/2006 07:38 AM <DIR> XemiComputers
03/05/2006 01:03 PM <DIR> Atari
03/01/2006 08:17 PM <DIR> AdobeUM
02/01/2006 05:49 PM 21536 GDIPFONTCACHEV1.DAT
12/16/2005 09:22 PM <DIR> ArcSoft
11/23/2005 05:47 PM <DIR> Real
11/22/2005 06:02 PM <DIR> Skype
11/22/2005 05:56 PM <DIR> teamspeak2
11/18/2005 09:01 AM <DIR> Lavasoft
11/12/2005 08:18 PM <DIR> Talkback
11/12/2005 08:18 PM <DIR> Mozilla
11/12/2005 02:53 PM <DIR> Apple Computer
11/10/2005 09:41 PM <DIR> NeroVision
11/09/2005 06:08 PM <DIR> Publish Providers
11/09/2005 06:06 PM <DIR> Sony
11/07/2005 10:30 AM <DIR> Help
11/02/2005 09:38 PM <DIR> Sun
11/02/2005 09:30 PM <DIR> MSN6
10/29/2005 09:23 PM <DIR> Google
10/29/2005 07:34 PM <DIR> Adobe
10/29/2005 04:07 PM <DIR> ATI
10/29/2005 03:29 PM <DIR> Macromedia
10/29/2005 03:28 PM <DIR> Microsoft Games
10/29/2005 02:19 PM <DIR> Identities
10/29/2005 02:18 PM 62 desktop.ini
10/29/2005 02:18 PM <DIR> Microsoft
10/29/2005 02:18 PM <DIR> .
10/29/2005 02:18 PM <DIR> ..
4 File(s) 22953 bytes
42 Dir(s) 5855125504 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\All Users\Application Data
11/17/2006 10:35 AM 1396 QTSBandwidthCache
10/28/2006 06:05 PM <DIR> CyberLink
10/24/2006 09:07 PM <DIR> TEMP
10/16/2006 09:41 AM <DIR> Sony Corporation
09/17/2006 10:25 AM <DIR> SRS Labs
09/07/2006 06:42 PM <DIR> TuneUp Software
09/06/2006 06:34 PM <DIR> Google
08/31/2006 07:11 PM <DIR> Adobe Systems
08/31/2006 06:39 PM <DIR> BVRP Software
04/29/2006 09:12 AM <DIR> Trymedia
03/19/2006 08:35 PM <DIR> element5
01/25/2006 09:02 PM <DIR> Messenger Plus!
01/04/2006 06:06 PM <DIR> Spybot - Search & Destroy
11/28/2005 09:45 PM <DIR> BOONTY
11/22/2005 06:02 PM <DIR> Skype
11/13/2005 04:14 PM <DIR> QuickTime
11/13/2005 12:54 PM <DIR> PopCap
11/13/2005 10:30 AM <DIR> Yahoo! Companion
11/12/2005 02:52 PM <DIR> Apple Computer
11/07/2005 10:29 AM <DIR> Macrovision
11/02/2005 09:30 PM <DIR> MSN6
10/29/2005 09:20 PM <DIR> RoboForm
10/29/2005 07:32 PM <DIR> Adobe
10/29/2005 05:36 PM <DIR> Windows Genuine Advantage
10/29/2005 11:03 AM 62 desktop.ini
10/29/2005 11:03 AM <DIR> ..
10/29/2005 11:03 AM <DIR> .
10/29/2005 11:03 AM <DIR> Microsoft
2 File(s) 1458 bytes
26 Dir(s) 5855121408 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Default User\Application Data
10/29/2005 11:03 AM 62 desktop.ini
10/29/2005 11:03 AM <DIR> ..
10/29/2005 11:03 AM <DIR> Microsoft
10/29/2005 11:03 AM <DIR> .
1 File(s) 62 bytes
3 Dir(s) 5855121408 bytes free
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\Documents and Settings\Guest\Application Data
11/25/2005 09:35 PM <DIR> Real
11/15/2005 08:04 PM <DIR> Macromedia
11/15/2005 06:05 PM <DIR> ATI
11/15/2005 06:04 PM <DIR> Identities
11/15/2005 06:04 PM 62 desktop.ini
11/15/2005 06:04 PM <DIR> Microsoft
11/15/2005 06:04 PM <DIR> ..
11/15/2005 06:04 PM <DIR> .
1 File(s) 62 bytes
7 Dir(s) 5855121408 bytes free
******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks
Volume in drive C is Win Xp
Volume Serial Number is 585F-D46E
Directory of C:\WINDOWS\Tasks
09/07/2006 06:42 PM 416 Maintenance en 1 clic.job
06/08/2006 05:56 PM 330 MP Scheduled Scan.job
10/29/2005 02:14 PM 6 SA.DAT
10/29/2005 02:13 PM 65 desktop.ini
10/29/2005 02:12 PM <DIR> ..
10/29/2005 02:12 PM <DIR> .
4 File(s) 817 bytes
2 Dir(s) 5,855,121,408 bytes free
******************************************
Recherche dans Program files
Le dossier C:\Program Files\C2Media n'existe pas
*************** Fin du rapport ****************
Voici mon rapport Hijack-This: Logfile of HijackThis v1.99.1
Scan saved at 3:26:40 PM, on 11/26/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\System32\alg.exe
C:\PROGRAM FILES\XFIRE\XFIRE.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Documents and Settings\Alexandre\My Documents\Antivirus\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {131EB16C-BD58-443F-8151-6DFBB0DA1778} (Anark Client 3.0 ActiveX Control) - http://install.anark.com/client/version3/windows-ie/en/...
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {2931566C-B8A6-46C5-BF4D-E6AB9251E953} (Nexon Package Manager Control) - http://s.nx.com/activex/public_new/nxpm.cab
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.2.100.c...
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by113fd.bay113.hotmail.msn.com/resources/MsnPUpl...
O16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} (Housecall ActiveX 6.5) - http://housecall65.trendmicro.com/housecall/applet/html...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {9D8CCE0F-2E2C-41EB-B37F-9852DB989CAC} (WebLauncher Control) - http://www.spacecowboy.net/WebLauncher/WebLauncher.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab342...
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by113fd.bay113.hotmail.msn.com/activex/HMAtchmt....
O16 - DPF: {F127B9BA-89EA-4B04-9C67-2074A9DF61FD} (Photo Upload Plugin Class) - http://walmart.pnimedia.com/upload/activex/v2_0_0_9/PCA...
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\SYSTEM32\LEXBCES.EXE
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe
Scan saved at 3:26:40 PM, on 11/26/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\System32\alg.exe
C:\PROGRAM FILES\XFIRE\XFIRE.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Documents and Settings\Alexandre\My Documents\Antivirus\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {131EB16C-BD58-443F-8151-6DFBB0DA1778} (Anark Client 3.0 ActiveX Control) - http://install.anark.com/client/version3/windows-ie/en/...
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {2931566C-B8A6-46C5-BF4D-E6AB9251E953} (Nexon Package Manager Control) - http://s.nx.com/activex/public_new/nxpm.cab
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.2.100.c...
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by113fd.bay113.hotmail.msn.com/resources/MsnPUpl...
O16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} (Housecall ActiveX 6.5) - http://housecall65.trendmicro.com/housecall/applet/html...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {9D8CCE0F-2E2C-41EB-B37F-9852DB989CAC} (WebLauncher Control) - http://www.spacecowboy.net/WebLauncher/WebLauncher.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab342...
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by113fd.bay113.hotmail.msn.com/activex/HMAtchmt....
O16 - DPF: {F127B9BA-89EA-4B04-9C67-2074A9DF61FD} (Photo Upload Plugin Class) - http://walmart.pnimedia.com/upload/activex/v2_0_0_9/PCA...
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\SYSTEM32\LEXBCES.EXE
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe
Redémarre en mode sans échec
- Assure toi d'avoir accès aux dossiers/fichiers cachés
-> Démarrer
-> Panneau de configuration
-> Options des Dossiers, onglet Affichage :
. Clique sur Afficher les dossiers cachés
. Décoche Masquer les extensions des fichiers dont le type est connu
. Décoche Masquer les fichiers protégés du système d'exploitation
- Suppime ces fichiers et/ou dossiers s'ils existent encore :
C:\Documents and Settings\Alexandre\Application Data\Eggs online fork
- Assure toi d'avoir accès aux dossiers/fichiers cachés
-> Démarrer
-> Panneau de configuration
-> Options des Dossiers, onglet Affichage :
. Clique sur Afficher les dossiers cachés
. Décoche Masquer les extensions des fichiers dont le type est connu
. Décoche Masquer les fichiers protégés du système d'exploitation
- Suppime ces fichiers et/ou dossiers s'ils existent encore :
C:\Documents and Settings\Alexandre\Application Data\Eggs online fork
Lassé par la pub ? Créez un compte
- Contenus similaires :
- ForumUn bon anti spyware gratuit
- ForumUn mechant spyware
- ForumSpyware pub, warning a spyware
- ForumSpyware infecte au spyware-secure et autres
- ForumSpyware
- ForumPub anti-spyware spyware
- ForumSpyware fenetres spyware secure
- ForumSpyware infecte par spyware-secure
- ForumSpyware doctor ou spyware terminator
- Voir plus
