Lenteur interminable
Forum Sécurité - Virus : Lenteur interminable
Bonjour Fabeme,
Pour vérifier que ce n'est pas un virus ou autre, le mieux est encore de commencer par poster ici un "rapport Hijackthis"
Télécharge Hijackthis (de Trend Micro) sur ton Bureau.
- Double clique sur HJTInstall.exe pour lancer l'installation.
- Clique sur Install.
- Double clique sur le raccourci d'HijackThis qui vient d'être créé pour le lancer. (Clique droit -> lancer en tant qu'admin si sous Vista)
- Accepte la licence en cliquant sur Yes.
- Clique sur Do a system scan and save a logfile.
- Poste ici le rapport généré.
Note : Le rapport se trouve également ici : C:\Program Files\Trend Micro\Hijackthis\Hijackthis.log
Je précise que ce n'est pas moi qui analysera ce log (pas compétente ! ![[:_set_]](http://img.infos-du-net.com/forum/images/perso/_set_.gif "[:_set_]")
) mais malgré la période d'exams approchant, il y aura bien un "helper" pour t'aider 
Bon courage
Voilà voilà 
Malwarebytes' Anti-Malware 1.36
Version de la base de données: 2047
Windows 5.1.2600 Service Pack 3
2009-04-27 10:32:23
mbam-log-2009-04-27 (10-32-22).txt
Type de recherche: Examen rapide
Eléments examinés: 79295
Temps écoulé: 47 minute(s), 25 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 2
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 4
Fichier(s) infecté(s): 274
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\RegTool (Rogue.RegTool) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\RegTool (Rogue.RegTool) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
C:\Documents and Settings\Fabella\Application Data\RegTool (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\Logs (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310 (Rogue.RegTool) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
C:\Documents and Settings\Fabella\Application Data\RegTool\resultsw.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\Logs\2009-02-04 21-26-350.log (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\filelist.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-0.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-1.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-10.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-100.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-101.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-102.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-103.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-104.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-105.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-106.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-107.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-108.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-109.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-11.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-110.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-111.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-112.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-113.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-114.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-115.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-116.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-117.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-118.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-119.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-12.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-120.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-121.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-122.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-123.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-124.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-125.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-126.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-127.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-128.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-129.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-13.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-130.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-131.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-132.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-133.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-134.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-135.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-136.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-137.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-138.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-139.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-14.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-140.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-141.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-142.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-143.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-144.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-145.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-146.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-147.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-148.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-149.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-15.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-150.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-151.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-152.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-153.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-154.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-155.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-156.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-157.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-158.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-159.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-16.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-160.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-161.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-162.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-163.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-164.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-165.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-166.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-167.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-168.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-169.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-17.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-170.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-171.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-172.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-173.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-174.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-175.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-176.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-177.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-178.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-179.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-18.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-180.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-181.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-182.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-183.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-184.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-185.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-186.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-187.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-188.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-189.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-19.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-190.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-191.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-192.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-193.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-194.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-195.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-196.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-197.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-198.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-199.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-2.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-20.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-200.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-201.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-202.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-203.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-204.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-205.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-206.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-207.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-208.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-209.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-21.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-210.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-211.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-212.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-213.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-214.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-215.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-216.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-217.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-218.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-219.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-22.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-220.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-221.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-222.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-223.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-224.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-225.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-226.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-227.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-228.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-229.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-23.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-230.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-231.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-232.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-233.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-234.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-235.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-236.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-237.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-238.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-239.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-24.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-240.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-241.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-242.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-243.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-244.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-245.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-246.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-247.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-248.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-249.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-25.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-250.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-251.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-252.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-253.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-254.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-255.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-256.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-257.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-258.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-259.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-26.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-260.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-261.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-262.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-263.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-264.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-265.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-266.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-267.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-268.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-269.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-27.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-28.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-29.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-3.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-30.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-31.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-32.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-33.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-34.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-35.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-36.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-37.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-38.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-39.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-4.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-40.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-41.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-42.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-43.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-44.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-45.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-46.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-47.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-48.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-49.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-5.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-50.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-51.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-52.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-53.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-54.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-55.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-56.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-57.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-58.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-59.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-6.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-60.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-61.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-62.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-63.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-64.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-65.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-66.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-67.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-68.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-69.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-7.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-70.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-71.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-72.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-73.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-74.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-75.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-76.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-77.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-78.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-79.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-8.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-80.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-81.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-82.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-83.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-84.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-85.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-86.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-87.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-88.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-89.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-9.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-90.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-91.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-92.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-93.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-94.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-95.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-96.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-97.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-98.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-99.db (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\WINDOWS\Tasks\RegTool Scan.job (Rogue.RegTool) -> Quarantined and deleted successfully.
Fichier log
Logfile of random's system information tool 1.06 (written by random/random)
Run by Fabella at 2009-04-27 13:17:24
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 19 GB (34%) free of 57 GB
Total RAM: 447 MB (15% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:19:58, on 2009-04-27
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ACS.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\HP\HP Software Update\HPWuSchd.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Fabella\Bureau\RSIT.exe
C:\Documents and Settings\Fabella\Bureau\Fabella.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: Add to Video Converter... - C:\Program Files\MP3 Player Utilities 5.11\AVIConverter\grab.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Tout télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Télécharger toutes les vidéos avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/too [...] ontrol.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - http://catalog.update.microsoft.co [...] 0359579272
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-C [...] E_UNO1.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} -
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wi [...] 0358329491
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/mi [...] 0358615975
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/bina [...] b56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O20 - AppInit_DLLs: wbsys.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - - (no file)
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\ACS.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
--
End of file - 8013 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Schedule Task Weekly.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{96319633-07FD-475D-A914-D1C8E88303D2}.job
C:\WINDOWS\tasks\WebReg 20090426142828.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll [2009-03-02 636216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-27 35840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-27 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-05 455168]
"PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-05 455168]
"IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-05 208952]
"ATIModeChange"=C:\WINDOWS\system32\Ati2mdxx.exe [2001-09-04 28672]
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2004-03-09 335872]
"SynTPLpr"=C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [2004-01-22 98304]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2004-01-22 495616]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd.exe [2003-08-04 49152]
"HP Component Manager"=C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [2003-12-22 241664]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent DNA]
C:\Program Files\DNA\btdna.exe [2009-01-08 342848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2007-10-18 5724184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2009-01-05 413696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="wbsys.dll "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2004-03-09 86016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
scecli
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled
NA"
"C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"="C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:*:Enabled:Veoh Web Player "
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fbb48e0a-9718-11dd-be07-00a0d1b969dc}]
shell\AutoRun\command - I:\LaunchU3.exe
======File associations======
.js - edit -
.js - open -
.txt - open -
======List of files/folders created in the last 1 months======
2009-04-27 13:17:24 ----D---- C:\rsit
2009-04-25 13:05:34 ----RA---- C:\WINDOWS\system32\MSXML4a.dll
2009-04-25 13:05:33 ----RA---- C:\WINDOWS\system32\hpvcr70.dll
2009-04-25 13:05:33 ----RA---- C:\WINDOWS\system32\hpvcp70.dll
2009-04-25 13:05:33 ----RA---- C:\WINDOWS\system32\hpvaut32.dll
2009-04-25 13:05:07 ----D---- C:\Program Files\Fichiers communs\Hewlett-Packard
2009-04-25 13:00:25 ----D---- C:\Program Files\Fichiers communs\HP
2009-04-25 12:56:15 ----D---- C:\Program Files\HP
2009-04-25 12:55:34 ----RA---- C:\WINDOWS\system32\HPZipt12.dll
2009-04-25 12:55:33 ----RA---- C:\WINDOWS\system32\HPZisn12.dll
2009-04-25 12:55:33 ----RA---- C:\WINDOWS\system32\HPZipr12.dll
2009-04-25 12:55:33 ----RA---- C:\WINDOWS\system32\HPZipm12.exe
2009-04-25 12:55:33 ----RA---- C:\WINDOWS\system32\HPZinw12.exe
2009-04-25 12:55:32 ----RA---- C:\WINDOWS\system32\HPZidr12.dll
2009-04-25 12:54:32 ----RA---- C:\WINDOWS\system32\HPZc3212.dll
2009-04-25 12:54:32 ----RA---- C:\WINDOWS\system32\hpovst08.dll
2009-04-25 12:54:31 ----RA---- C:\WINDOWS\system32\hpotscl.dll
2009-04-25 12:54:30 ----RA---- C:\WINDOWS\system32\hpgwiamd.dll
2009-04-22 19:17:44 ----D---- C:\Program Files\Fichiers communs\eSellerate
2009-04-21 16:25:21 ----D---- C:\Program Files\MediaMonkey
2009-04-21 15:13:07 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2009-04-21 14:03:12 ----D---- C:\Documents and Settings\Fabella\Application Data\ESET
2009-04-21 13:56:10 ----D---- C:\Documents and Settings\All Users\Application Data\ESET
2009-04-14 18:31:50 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2009-04-14 18:31:38 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
2009-04-14 18:27:44 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2009-04-14 18:27:13 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2009-04-14 18:26:57 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2009-04-14 18:21:43 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2009-04-13 22:42:06 ----D---- C:\WINDOWS\ie8updates
2009-04-13 22:37:46 ----HDC---- C:\WINDOWS\ie8
2009-04-11 14:57:35 ----D---- C:\Program Files\Trend Micro
2009-04-10 00:54:48 ----A---- C:\WINDOWS\unin040c.exe
2009-04-09 17:48:12 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-04-08 14:27:11 ----A---- C:\WINDOWS\system32\SynTPFcs.dll
2009-04-08 14:27:11 ----A---- C:\WINDOWS\system32\SynTPCoI.dll
2009-04-08 14:27:11 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
2009-04-08 14:27:11 ----A---- C:\WINDOWS\system32\SynCtrl.dll
2009-04-08 14:27:11 ----A---- C:\WINDOWS\system32\SynCOM.dll
2009-04-08 14:27:10 ----D---- C:\Program Files\Synaptics
2009-04-07 18:13:54 ----D---- C:\Documents and Settings\All Users\Application Data\comodo
2009-04-07 18:13:50 ----D---- C:\Program Files\COMODO
2009-04-07 17:33:51 ----D---- C:\Downloads
2009-04-05 13:34:36 ----D---- C:\Program Files\Jeux
2009-04-02 17:01:51 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
======List of files/folders modified in the last 1 months======
2009-04-27 13:13:50 ----D---- C:\Program Files\Mozilla Firefox
2009-04-27 13:07:52 ----D---- C:\WINDOWS\Temp
2009-04-27 13:06:39 ----D---- C:\WINDOWS\system32\CatRoot2
2009-04-27 10:38:16 ----D---- C:\WINDOWS\system32\drivers
2009-04-27 10:32:20 ----SD---- C:\WINDOWS\Tasks
2009-04-27 08:41:13 ----D---- C:\WINDOWS\Prefetch
2009-04-27 08:34:36 ----D---- C:\WINDOWS
2009-04-25 13:37:15 ----RD---- C:\Program Files
2009-04-25 13:08:21 ----A---- C:\WINDOWS\win.ini
2009-04-25 13:08:16 ----SHD---- C:\WINDOWS\Installer
2009-04-25 13:05:51 ----RSD---- C:\WINDOWS\assembly
2009-04-25 13:05:48 ----D---- C:\WINDOWS\system32
2009-04-25 13:05:07 ----D---- C:\Program Files\Fichiers communs
2009-04-25 12:54:51 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-04-25 12:54:43 ----HD---- C:\WINDOWS\inf
2009-04-25 12:54:30 ----D---- C:\WINDOWS\twain_32
2009-04-25 12:47:47 ----D---- C:\Documents and Settings\Fabella\Application Data\U3
2009-04-25 12:28:47 ----D---- C:\Program Files\Fichiers communs\LogiShrd
2009-04-25 12:28:47 ----D---- C:\Documents and Settings\All Users\Application Data\Logishrd
2009-04-23 20:57:42 ----D---- C:\WINDOWS\network diagnostic
2009-04-23 20:50:43 ----D---- C:\Program Files\BitComet
2009-04-22 21:09:20 ----D---- C:\Program Files\Mozilla Firefox 3.1 Beta 3
2009-04-21 15:13:07 ----D---- C:\Program Files\Avira
2009-04-21 15:01:16 ----D---- C:\WINDOWS\WinSxS
2009-04-21 15:01:14 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-04-21 14:38:07 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-04-17 23:22:24 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-04-17 23:21:58 ----D---- C:\WINDOWS\Debug
2009-04-17 21:52:25 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-04-17 21:52:25 ----D---- C:\Program Files\Adobe
2009-04-17 21:52:16 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-04-17 21:47:32 ----D---- C:\Program Files\Diablo
2009-04-17 21:29:47 ----D---- C:\Program Files\Starcraft
2009-04-14 20:17:33 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-04-14 20:14:39 ----D---- C:\Program Files\eMule
2009-04-14 20:12:32 ----D---- C:\WINDOWS\system32\wbem
2009-04-14 20:12:32 ----D---- C:\WINDOWS\AppPatch
2009-04-14 18:27:29 ----HD---- C:\WINDOWS\$hf_mig$
2009-04-14 18:07:26 ----SD---- C:\Documents and Settings\Fabella\Application Data\Microsoft
2009-04-14 15:16:06 ----D---- C:\Program Files\RealOTS
2009-04-13 22:45:12 ----D---- C:\WINDOWS\system32\fr-fr
2009-04-13 22:45:11 ----D---- C:\WINDOWS\Help
2009-04-13 22:45:11 ----D---- C:\Program Files\Internet Explorer
2009-04-13 22:40:24 ----D---- C:\WINDOWS\WBEM
2009-04-13 22:40:11 ----D---- C:\WINDOWS\Media
2009-04-13 19:03:46 ----A---- C:\WINDOWS\w32dasm8.ini
2009-04-13 17:20:06 ----D---- C:\WINDOWS\system32\LogFiles
2009-04-13 17:15:34 ----D---- C:\WINDOWS\Minidump
2009-04-10 00:55:24 ----D---- C:\WINDOWS\system
2009-04-08 14:30:22 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-04-06 14:27:55 ----D---- C:\WINDOWS\system32\CatRoot
2009-04-06 14:27:31 ----HD---- C:\Program Files\InstallShield Installation Information
2009-04-06 14:27:31 ----D---- C:\Program Files\ATI Technologies
2009-04-06 10:57:24 ----A---- C:\WINDOWS\system32\MRT.exe
2009-04-06 10:28:34 ----A---- C:\WINDOWS\WININIT.INI
2009-04-05 17:23:25 ----A---- C:\WINDOWS\DUMP8ffb.tmp
2009-04-05 16:32:07 ----D---- C:\Documents and Settings\Fabella\Application Data\DAEMON Tools Pro
2009-04-02 17:08:27 ----D---- C:\WINDOWS\security
2009-03-29 21:00:36 ----D---- C:\Documents and Settings\Fabella\Application Data\LimeWire
2009-03-28 15:26:09 ----D---- C:\Program Files\WinRAR
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-02-13 95576]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 40576]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-02-13 28376]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-02-13 55640]
R2 MDC8021X;AEGIS Protocol (IEEE 802.1x) v2.3.1.9; C:\WINDOWS\system32\DRIVERS\mdc8021x.sys [2008-09-02 15781]
R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-02-27 611820]
R3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2004-05-28 390944]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-03-09 680448]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2004-01-22 178816]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
S3 a88di6yq;a88di6yq; C:\WINDOWS\system32\drivers\a88di6yq.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2004-02-26 51056]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2004-02-26 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2004-02-26 21488]
S3 LVRS;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs.sys [2008-07-26 627864]
S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\LVUSBSta.sys [2008-07-26 41752]
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2008-07-26 13848]
S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2008-07-26 2570520]
S3 RTL8023;Realtek RTL8139/810x/8169/8110 all in one NDIS NT Driver; C:\WINDOWS\system32\DRIVERS\Rtlnic51.sys [2003-12-05 68352]
S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ACS;Atheros Configuration Service; C:\WINDOWS\system32\ACS.exe [2004-04-09 20480]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-03-05 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-03-02 185089]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2004-03-09 397312]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-27 152984]
R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]
R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-02-26 65795]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
info
info.txt logfile of random's system information tool 1.06 2009-04-27 13:20:43
======Uninstall list======
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Shockwave Player 11.5-->C:\WINDOWS\system32\Adobe\uninstaller.exe
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Atheros Client Utility-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{71D658CF-4E0D-4DA8-AA67-8C0B6F1C01FE}\Setup.exe" -l0x40c
ATI - Utilitaire de désinstallation du logiciel-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Control Panel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_classISPLAY -clean
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
BitComet 1.10-->C:\Program Files\BitComet\uninst.exe
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Coffret de pilotes Logitech Legacy USB Camera-->"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\legacyqcam\10.51.2023\LgDrvInst.exe" -remove -instdir"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\legacyqcam\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -promptuninstall -arpregkey"legacyqcam_10.51" /clone_wait /hide_progress
Coffret de pilotes Logitech QuickCam-->"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\lvdrivers\11.80.1048\LgDrvInst.exe" -remove -instdir"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\lvdrivers\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -promptuninstall -arpregkey"lvdrivers_11.80" /clone_wait /hide_progress
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Dungeon Keeper-->C:\WINDOWS\unin040c.exe -fC:\WINDOWS\SYSTEM\KEEPER\DeIsL1.isu
eMule-->"C:\Program Files\eMule\Uninstall.exe"
filehippo.com Update Checker-->"C:\Program Files\filehippo.com\uninstall.exe"
FileZilla Client 3.2.3.1-->C:\Program Files\FileZilla FTP Client\uninstall.exe
Gestion d'énergie TOSHIBA-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\TOSHIBA\Power Saver\Uninst.isu" -c"C:\WINDOWS\system32\TPSDel.dll"
HijackThis 2.0.2-->"C:\Documents and Settings\Fabella\Bureau\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
HP Image Zone 3.5-->C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP PSC & OfficeJet 3.5-->"C:\Program Files\HP\Digital Imaging\{18E0918E-1060-48f3-925C-56C82E88551B}\setup\hpzscr01.exe" -datfile hposcr03.dat
HP Software Update-->MsiExec.exe /X{34957B51-9676-41CE-9E52-44AE91B73F1C}
Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
K-Lite Codec Pack 4.7.0 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Les Sims 2 Académie-->C:\Program Files\Jeux\EA GAMES\Les Sims 2 Académie\EAUninstall.exe
Les Sims 2 Fun en Famille Kit-->C:\Program Files\Jeux\EA GAMES\Les Sims 2 Fun en Famille Kit\EAUninstall.exe
Les Sims 2 : La bonne affaire-->C:\Program Files\Jeux\EA GAMES\Les Sims 2 La bonne affaire\EAUninstall.exe
Les Sims™ 2 Animaux & Cie-->C:\Program Files\Jeux\EA GAMES\Les Sims 2 Animaux & Cie\EAUninstall.exe
Les Sims™ 2 Double Deluxe-->C:\Program Files\Jeux\EA GAMES\Les Sims 2 Double Deluxe\EAUninstall.exe
Les Sims™ 2 Au fil des saisons-->C:\Program Files\Jeux\EA GAMES\Les Sims 2 Au fil des saisons\EAUninstall.exe
Les Sims™ 2 Bon Voyage-->C:\Program Files\Jeux\EA GAMES\Les Sims 2 Bon Voyage\EAUninstall.exe
LimeWire 5.1.2-->"C:\Program Files\LimeWire\uninstall.exe"
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
MediaMonkey 3.0-->"C:\Program Files\MediaMonkey\unins000.exe"
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{72AD53CC-CCC0-3757-8480-9EE176866A7C}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{0BD83598-C2EF-3343-847B-7D2E84599128}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Basic Edition 2003-->MsiExec.exe /I{91130409-6000-11D3-8CFE-0150048383C9}
Microsoft Office PowerPoint Viewer 2003-->MsiExec.exe /X{90AF040C-6000-11D3-8CFE-0150048383C9}
Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Tool Web Package : EXCTRLST.EXE-->MsiExec.exe /X{B0650E3D-FDCA-4908-B74B-0CC1731BDB93}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Mise à jour pour Windows Internet Explorer 8 (KB968220)-->"C:\WINDOWS\ie8updates\KB968220-IE8\spuninst\spuninst.exe"
Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
Mozilla Firefox (3.0.9)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MP3 Player Utilities 5.11-->MsiExec.exe /I{8E79F5DD-4A0A-452B-B3F8-0651E4D24854}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML4 Parser-->MsiExec.exe /I{01501EBA-EC35-4F9F-8889-3BE346E5DA13}
ObjectDock Plus-->C:\PROGRA~1\Stardock\OBJECT~2\objectdock.exe /uninstall
Outil de diagnostic PC TOSHIBA-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\TOSHIBA\PCDiag\Uninst.isu"
Package de base Microsoft de service de chiffrement pour cartes à puce-->"C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe"
QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
RealOTS-->C:\Program Files\RealOTS\\uninstall.exe
Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" REMOVE
REALTEK Gigabit and Fast Ethernet NIC Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{94FB906A-CF42-4128-A509-D353026A607E}\SETUP.EXE" -l0xc0c REMOVE
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
VC 9.0 Runtime-->MsiExec.exe /I{A040AC77-C1AA-4CC9-8931-9F648AF178F6}
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
Wireless Hotkey-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7862BAD8-A379-4128-8AA1-EFD5A9603C53}\Setup.exe"
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
======Hosts File======
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
======Security center information======
AV: AntiVir Desktop
======System event log======
Computer Name: NUM13
Event Code: 8003
Message: Le maître explorateur a reçu une annonce de serveur de l'ordinateur SEBASTIE-A4562C
qui pense qu'il est le maître explorateur sur le domaine pour le transport NetBT_Tcpip_{EA52E517-CAC.
Le maître explorateur s'arrête ou une élection est provoquée.
Record Number: 18551
Source Name: MRxSmb
Time Written: 20090415150602.000000-240
Event Type: error
User:
Computer Name: NUM13
Event Code: 1003
Message: Votre ordinateur n'a pas pu renouveler son adresse à partir du réseau (à partir
du serveur DHCP) pour la carte réseau dont l'adresse réseau est 0011F530B006. Il s'est
produit l'erreur suivante :
L'opération a été annulée par l'utilisateur.
.
Votre ordinateur va continuer à essayer d'obtenir sa propre adresse auprès du
serveur d'adresse réseau (DHCP).
Record Number: 18520
Source Name: Dhcp
Time Written: 20090415141019.000000-240
Event Type: warning
User:
Computer Name: NUM13
Event Code: 8021
Message: L'explorateur n'a pas pu retrouver la liste des serveurs du maître explorateur \\SEBASTIE-A4562C sur le réseau \Device\NetBT_Tcpip_{EA52E517-CAC7-4BA3-B7C5-CEA6CD0022DB}.
La donnée est le code d'erreur.
Record Number: 18513
Source Name: BROWSER
Time Written: 20090415123159.000000-240
Event Type: warning
User:
Computer Name: NUM13
Event Code: 7034
Message: Le service Avira AntiVir Personal - Free Antivirus Guard s'est terminé de façon inattendue pour la 1ème fois.
Record Number: 18487
Source Name: Service Control Manager
Time Written: 20090415120909.000000-240
Event Type: error
User:
Computer Name: NUM13
Event Code: 8021
Message: L'explorateur n'a pas pu retrouver la liste des serveurs du maître explorateur \\SEBASTIE-A4562C sur le réseau \Device\NetBT_Tcpip_{EA52E517-CAC7-4BA3-B7C5-CEA6CD0022DB}.
La donnée est le code d'erreur.
Record Number: 18449
Source Name: BROWSER
Time Written: 20090415102558.000000-240
Event Type: warning
User:
=====Application event log=====
Computer Name: NUM13
Event Code: 12001
Message: The Messenger Sharing USN Journal Reader service started successfully.
Record Number: 40
Source Name: usnjsvc
Time Written: 20090324152758.000000-240
Event Type:
User:
Computer Name: NUM13
Event Code: 12001
Message: The Messenger Sharing USN Journal Reader service started successfully.
Record Number: 21
Source Name: usnjsvc
Time Written: 20090324140756.000000-240
Event Type:
User:
Computer Name: NUM13
Event Code: 1004
Message: Échec de détection du produit '{BADF6744-3787-48F6-B8C9-4C4995401D65}', fonctionnalité 'MsgrFeat', composant '{33EF8657-5705-47D4-B01F-E96A27C1D8BD}. La ressource 'HKEY_CLASSES_ROOT\Typelib\{53CED51D-432B-45B2-A3E0-0CE2C24235D4}\' n'existe pas
Record Number: 19
Source Name: MsiInstaller
Time Written: 20090324140215.000000-240
Event Type: warning
User: NUM13\Fabella
Computer Name: NUM13
Event Code: 5603
Message: Un fournisseur, OffProv11, était inscrit dans l'espace de noms WMI, Root\MSAPPS11, mais n'a pas spécifié la propriété HostingModel. Ce fournisseur sera exécuté avec le compte LocalSystem. Ce compte bénéficie de privilèges et le fournisseur peut provoquer une violation de sécurité s'il ne représente pas correctement les demandes utilisateur. Vérifiez que le comportement sécuritaire du fournisseur a été contrôlé, et mettez à jour la propriété HostingModel de l'inscription du fournisseur vers un compte disposant du moins d'autorisations possible pour la fonctionnalité requise.
Record Number: 8
Source Name: WinMgmt
Time Written: 20090323000719.000000-240
Event Type: warning
User: AUTORITE NT\SYSTEM
Computer Name: NUM13
Event Code: 5603
Message: Un fournisseur, OffProv11, était inscrit dans l'espace de noms WMI, Root\MSAPPS11, mais n'a pas spécifié la propriété HostingModel. Ce fournisseur sera exécuté avec le compte LocalSystem. Ce compte bénéficie de privilèges et le fournisseur peut provoquer une violation de sécurité s'il ne représente pas correctement les demandes utilisateur. Vérifiez que le comportement sécuritaire du fournisseur a été contrôlé, et mettez à jour la propriété HostingModel de l'inscription du fournisseur vers un compte disposant du moins d'autorisations possible pour la fonctionnalité requise.
Record Number: 7
Source Name: WinMgmt
Time Written: 20090323000719.000000-240
Event Type: warning
User: AUTORITE NT\SYSTEM
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\;C:\Program Files\ATI Technologies\ATI Control Panel
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 3 Stepping 4, GenuineIntel
"PROCESSOR_REVISION"=0304
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"VERSION"=2.1.5
"SESSIONID"=1239828269342g1u0358c.austin.hp.com2c59213a:120e593930c:-3c0a
"COLLECTIONID"=COL7300
"ITEMID"=oj-21919-1
"UPDATEDIR"=C:\DOCUME~1\Fabella\LOCALS~1\Temp\rad2ADE5.tmp
"TOOLPATH"=/C
Program%20Files/HP/HP%20Software%20Update/install.htm
"HMSERVER"=https://vausnzisprob.austin.hp.com/wuss/servlet/WUSSServlet
"SWUTVER"=1.0.22.20030804
"OSVER"=winXPH
"LANG"=3084
"TIMEOUT"=0
-----------------EOF-----------------
Message édité par fabeme le 27-04-2009 à 19:59:05
Eh bien disons que mon portable est partagé avec ma petite soeur qui fait souvent des folies. Mais pour ce qui est de ce problème qui "gèle", c'est tout récent. Ça arrivait parfois, mais jamais au point que je sois obligée de fermer quelque chose dans les processus. J'ai cru remarquer que Malware répétait souvent le mot RegTool et a moins que je me trompe, c'était un logiciel qu'elle avait installé dans l'espoir d'accélérer l'ordinateur. Il semblerait qu'il pouvait "réparer" les erreurs. C'est après avoir fait une recherche plus poussée que j'ai constaté que ce n'était pas vraiment quelque chose de bon. Bref... tout ça pour dire que c'est apparu "comme ça" j'ai beau questionner ma soeur elle dit n'avoir rien téléchargé... enfin 
Defraggler? ok d'accord alors c'est terminé?
Merci pour tout
