Désinfecter win32.dell.uv (RESOLU)

Sécurité et insécurité. Virus, Trojans, Spywares, Failles etc. …

Modérateur: Modérateurs et Modératrices

Règles du forum
Assiste.com a suspendu l'assistance à la décontamination après presque 15 ans sur l'ancien forum puis celui-ci. Voir :

Procédure de décontamination 1 - Anti-malware
Décontamination anti-malwares

Procédure de décontamination 2 - Anti-malware et antivirus (La Manip)
La Manip - Procédure standard de décontamination

Entretien périodique d'un PC sous Windows
Entretien périodique d'un PC sous Windows

Protection des navigateurs, de la navigation et de la vie privée
Protéger le navigateur, la navigation et la vie privée

Désinfecter win32.dell.uv (RESOLU)

Messagede kader-66 » 10 Déc 2009, 23:40

Bonsoir tous le monde,

Je me permet de vous solliciter, car j'ai un gros problème. En fait, en essayant d'installer Malware antimalware, ce logiciel ne fonctionne pas après l'installation et je me suis donc que je devais être contaminé, et donc j'ai fait un scan avec spybot et il a détecté le problème cité plus haut, mais impossible à enlever ! Même en mode administrateur. Ensuite, j'ai fait un scan avec combofix, mais là aussi, rien à faire. Vous pourrez trouver ci-dessous les logs des deux scans. J'espère que vous pourrez m'aider. Merci d'avance !

Scan spybot :


--- Search result list ---
Win32.Delf.uv: [SBI $32D4885B] Réglages (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bdagent.exe

Win32.Delf.uv: [SBI $68A02A96] Réglages (Clé du registre, fixing failed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vsserv.exe


--- Spybot - Search & Destroy version: 1.6.2 (build: 20090126) ---

2009-01-26 blindman.exe (1.0.0.8)
2009-01-26 SDFiles.exe (1.6.1.7)
2009-01-26 SDMain.exe (1.0.0.6)
2009-01-26 SDShred.exe (1.0.2.5)
2009-01-26 SDUpdate.exe (1.6.0.12)
2009-01-26 SDWinSec.exe (1.0.0.12)
2009-01-26 SpybotSD.exe (1.6.2.46)
2009-03-05 TeaTimer.exe (1.6.6.32)
2009-07-04 unins000.exe (51.49.0.0)
2009-01-26 Update.exe (1.6.0.7)
2009-01-26 advcheck.dll (1.6.2.15)
2007-04-02 aports.dll (2.1.0.0)
2008-06-14 DelZip179.dll (1.79.11.1)
2009-01-26 SDHelper.dll (1.6.2.14)
2008-06-19 sqlite3.dll
2009-01-26 Tools.dll (2.1.6.10)
2009-01-16 UninsSrv.dll (1.0.0.0)
2009-05-19 Includes\Adware.sbi (*)
2009-06-02 Includes\AdwareC.sbi (*)
2009-01-22 Includes\Cookies.sbi (*)
2009-05-19 Includes\Dialer.sbi (*)
2009-06-02 Includes\DialerC.sbi (*)
2009-01-22 Includes\HeavyDuty.sbi (*)
2009-05-26 Includes\Hijackers.sbi (*)
2009-06-23 Includes\HijackersC.sbi (*)
2009-06-23 Includes\Keyloggers.sbi (*)
2009-06-30 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2009-06-30 Includes\Malware.sbi (*)
2009-06-30 Includes\MalwareC.sbi (*)
2009-03-25 Includes\PUPS.sbi (*)
2009-06-30 Includes\PUPSC.sbi (*)
2009-01-22 Includes\Revision.sbi (*)
2009-01-13 Includes\Security.sbi (*)
2009-06-02 Includes\SecurityC.sbi (*)
2008-06-03 Includes\Spybots.sbi (*)
2008-06-03 Includes\SpybotsC.sbi (*)
2009-04-07 Includes\Spyware.sbi (*)
2009-06-02 Includes\SpywareC.sbi (*)
2009-06-08 Includes\Tracks.uti
2009-06-17 Includes\Trojans.sbi (*)
2009-06-30 Includes\TrojansC.sbi (*)
2008-03-04 Plugins\Chai.dll
2008-03-05 Plugins\Fennel.dll
2008-02-26 Plugins\Mate.dll
2007-12-24 Plugins\TCPIPAddress.dll



--- System information ---
Unknown Windows version 6.1 (Build: 7600) (6.1.7600)


--- Startup entries list ---
Located: HK_LM:Run, Adobe ARM
command: "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
file: C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
size: 935288
MD5: 3103FE27C967675B019E880AA6DA3D6D

Located: HK_LM:Run, Adobe Reader Speed Launcher
command: "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
file: C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
size: 35696
MD5: 33E5A8FC8EB0EE42478F8538D0215D8F

Located: HK_LM:Run, AppleSyncNotifier
command: C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
file: C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
size: 177440
MD5: 633B66014DDEDA70C21CFD327BDC214A

Located: HK_LM:Run, Athan
command: C:\Program Files\Athan\Athan.exe
file: C:\Program Files\Athan\Athan.exe
size: 1130496
MD5: 2E557B3302DD8FFEAE9E9B86A7EC40E3

Located: HK_LM:Run, BDAgent
command: "C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe"
file: C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe
size: 1118144
MD5: 560E2F3173DFD09AF0B0976EEEF95F7F

Located: HK_LM:Run, BitDefender Antiphishing Helper
command: "C:\Program Files\BitDefender\BitDefender 2010\IEShow.exe"
file: C:\Program Files\BitDefender\BitDefender 2010\IEShow.exe
size: 71152
MD5: F4A2B8D5E61443043F7BF07AA54A0EF5

Located: HK_LM:Run, HomePlayer
command: C:\Program Files\HomePlayer\HomePlayer.exe -autostart
file: C:\Program Files\HomePlayer\HomePlayer.exe
size: 294912
MD5: 86C9088E2DB222E57EE069151FCA84CB

Located: HK_LM:Run, ISUSScheduler
command: "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
file: C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
size: 81920
MD5: 7D58C9BDF9C0A3955BDCDE7387AD12AC

Located: HK_LM:Run, iTunesHelper
command: "C:\Program Files\iTunes\iTunesHelper.exe"
file: C:\Program Files\iTunes\iTunesHelper.exe
size: 141600
MD5: 68A553BDFA855C4F1074696682FCDEB6

Located: HK_LM:Run, KEMailKb
command: C:\PROGRA~1\KEMailKb\DsiMmKbd.EXE
file: C:\PROGRA~1\KEMailKb\DsiMmKbd.EXE
size: 471040
MD5: 3A8380A0F51000FC88676FD8515384EF

Located: HK_LM:Run, PAC7311_Monitor
command: C:\Windows\PixArt\PAC7311\Monitor.exe
file: C:\Windows\PixArt\PAC7311\Monitor.exe
size: 319488
MD5: 72334F906C2E2B002CDD2FF9022FD957

Located: HK_LM:Run, PWRISOVM.EXE
command: C:\Program Files\PowerISO\PWRISOVM.EXE
file: C:\Program Files\PowerISO\PWRISOVM.EXE
size: 180224
MD5: BF91B68606862A32CAB13C24A24DD9A9

Located: HK_LM:Run, QuickTime Task
command: "C:\Program Files\QuickTime\QTTask.exe" -atboottime
file: C:\Program Files\QuickTime\QTTask.exe
size: 417792
MD5: 55D7A219AD8D0DB8980528944152A6FD

Located: HK_LM:Run, RtHDVCpl
command: C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
file: C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
size: 7514656
MD5: D8039D9D877710CCE2C1125FE23010D2

Located: HK_LM:Run, ThreatFire
command: C:\Program Files\ThreatFire\TFTray.exe
file: C:\Program Files\ThreatFire\TFTray.exe
size: 378128
MD5: 9A20A0794B839B717EC23D5865061C66

Located: HK_LM:Run, tsnp2std
command: C:\Windows\tsnp2std.exe
file: C:\Windows\tsnp2std.exe
size: 258048
MD5: 7D440447C6FCDEC9BBB739A048AA90CD

Located: HK_LM:Run, Windows Mobile Device Center
command: %windir%\WindowsMobile\wmdc.exe
file: C:\Windows\WindowsMobile\wmdc.exe
size: 648072
MD5: 96B3C4E20F02CA16AA1E3E425BFFCC8B

Located: HK_LM:RunOnce, SpybotSnD
command: "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck
file: C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 5365592
MD5: 0477C2F9171599CA5BC3307FDFBA8D89

Located: HK_CU:Run, eyeBeam SIP Client
where: S-1-5-21-4165229912-2147149674-2309070950-1000...
command: "C:\Program Files\CounterPath\X-Lite\x-lite.exe"
file: C:\Program Files\CounterPath\X-Lite\x-lite.exe
size: 23207936
MD5: DD1E770D99BF051135751052E5C29C8E

Located: HK_CU:Run, ISUSPM Startup
where: S-1-5-21-4165229912-2147149674-2309070950-1000...
command: "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup
file: C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
size: 249856
MD5: 1C46FC1AB600766B8554580204806E84

Located: HK_CU:Run, Mon Widget RMC
where: S-1-5-21-4165229912-2147149674-2309070950-1000...
command: "C:\Program Files\Nosibay\Mon Widget RMC\launcher.exe"
file: C:\Program Files\Nosibay\Mon Widget RMC\launcher.exe
size: 185872
MD5: 92759B3149C2A2D61A86C2CF8BEE8954

Located: HK_CU:Run, Sidebar
where: S-1-5-21-4165229912-2147149674-2309070950-1000...
command: C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
file: C:\Program Files\Windows Sidebar\sidebar.exe
size: 1173504
MD5: EA6EADF6314E43783BA8EEE79F93F73C

Located: HK_CU:Run, Skype
where: S-1-5-21-4165229912-2147149674-2309070950-1000...
command: "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
file: C:\Program Files\Skype\Phone\Skype.exe
size: 25623336
MD5: BF9EAB227D409CE1E75C23BB10CF5DBC

Located: HK_CU:Run, Speech Recognition
where: S-1-5-21-4165229912-2147149674-2309070950-1000...
command: "C:\Windows\Speech\Common\sapisvr.exe" -SpeechUX -Startup
file: C:\Windows\Speech\Common\sapisvr.exe
size: 51712
MD5: 5C42A1C410C1EA4D71B655D3B05D3181

Located: HK_CU:Run, SpybotSD TeaTimer
where: S-1-5-21-4165229912-2147149674-2309070950-1000...
command: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
file: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
size: 2260480
MD5: 390679F7A217A5E73D756276C40AE887

Located: HK_CU:Run, Steam
where: S-1-5-21-4165229912-2147149674-2309070950-1000...
command: "C:\Program Files\Steam\Steam.exe" -silent
file: C:\Program Files\Steam\Steam.exe
size: 1217808
MD5: A740B005ADD7DEBEAF922C4AE86F7C2D

Located: Démarrage (tous utilisateurs), La Solution Ciel.lnk
where: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup...
command: C:\Program Files\Ciel\Starter.exe
file: C:\Program Files\Ciel\Starter.exe
size: 155648
MD5: 7DBA4B078084A8221B69A4BFF1F593B2

Located: Démarrage (tous utilisateurs), LaunchU3.exe.lnk
where: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup...
command: C:\Windows\Installer\{D8E363A7-88B7-446D-B2C0-E26CE4DC8E54}\_294823.exe
file: C:\Windows\Installer\{D8E363A7-88B7-446D-B2C0-E26CE4DC8E54}\_294823.exe
size: 22486
MD5: 03DFD337BFC127A7FF64BC75EBDCE8E2

Located: Démarrage (utilisateur), Notification de cadeaux MSN.lnk
where: C:\Users\Abdelkader\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup...
command: C:\Users\Abdelkader\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
file: C:\Users\Abdelkader\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
size: 135680
MD5: BC9C9BE7BB74D629362608ACE470E7DA

Located: Démarrage (utilisateur), Xfire.lnk
where: C:\Users\Abdelkader\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup...
command: C:\Program Files\Xfire\Xfire.exe
file: C:\Program Files\Xfire\Xfire.exe
size: 3181456
MD5: 553979654E995D31C8359CD4A1570790



--- Browser helper object list ---
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} (AcroIEHelperStub)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name: AcroIEHelperStub
CLSID name: Adobe PDF Link Helper
Path: C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\
Long name: AcroIEHelperShim.dll
Short name: ACROIE~2.DLL
Date (created): 27/02/2009 12:07:26
Date (last access): 19/10/2009 15:15:00
Date (last write): 27/02/2009 12:07:26
Filesize: 75128
Attributes: archive
MD5: 5CF6190CD875DA6B35256FEE573E7908
CRC32: 764BA81B
Version: 9.1.0.163

{5C255C8A-E604-49b4-9D64-90988571CECB} ()
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name:

{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} (Search Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name: Search Helper
CLSID name: Search Helper
Path: C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\
Long name: SEPsearchhelperie.dll
Short name: SEPSEA~1.DLL
Date (created): 19/05/2009 10:36:18
Date (last access): 08/06/2009 10:28:06
Date (last write): 19/05/2009 10:36:18
Filesize: 137600
Attributes: archive
MD5: F655CDD5506FBB4C40C08C9C6A66F7C8
CRC32: 579241EB
Version: 1.3.59.0

{9030D464-4C02-4ABF-8ECC-5164760863C6} (Programme d'aide de l'Assistant de connexion Windows Live ID)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Programme d'aide de l'Assistant de connexion Windows Live ID
Path: C:\Program Files\Common Files\Microsoft Shared\Windows Live\
Long name: WindowsLiveLogin.dll
Short name: WINDOW~1.DLL
Date (created): 30/03/2009 15:31:54
Date (last access): 04/07/2009 00:07:36
Date (last write): 30/03/2009 15:31:54
Filesize: 403824
Attributes: archive
MD5: 9144D1A2D7AC4CE489C863E11FC5E478
CRC32: 55343708
Version: 6.500.3146.0

{CF070CB8-F02F-4af4-A7B7-8D45CAD4BB54} (NitroPDFBHO Class)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name: NitroPDFBHO Class
CLSID name:

{DBC80044-A445-435b-BC74-9C25C1C588A9} (Java(tm) Plug-In 2 SSV Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Java(tm) Plug-In 2 SSV Helper
Path: C:\Program Files\Java\jre6\bin\
Long name: jp2ssv.dll
Short name:
Date (created): 07/12/2009 20:36:16
Date (last access): 07/12/2009 20:36:16
Date (last write): 07/12/2009 20:36:16
Filesize: 41760
Attributes: archive
MD5: 1E57B1A44C7DFFA1C38534279C14B3CE
CRC32: BA79295C
Version: 6.0.150.3

{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} (Windows Live Toolbar Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Windows Live Toolbar Helper
Path: C:\Program Files\Windows Live\Toolbar\
Long name: wltcore.dll
Short name:
Date (created): 06/02/2009 17:17:46
Date (last access): 07/06/2009 12:49:20
Date (last write): 06/02/2009 17:17:46
Filesize: 1068904
Attributes: archive
MD5: 28455424E3C8B81661C5A40E18066BB1
CRC32: E5BA354B
Version: 14.0.8064.206



--- ActiveX list ---
Microsoft XML Parser for Java (Microsoft XML Parser for Java)
DPF name: Microsoft XML Parser for Java
CLSID name:
Installer:
Codebase: file:///C:/Windows/Java/classes/xmldso.cab
description:
classification: Legitimate
known filename: %WINDIR%\Java\classes\xmldso.cab
info link:
info source: Patrick M. Kolla

{8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_15
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
description: Sun Java
classification: Legitimate
known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin\npjava131.dll
info link:
info source: Patrick M. Kolla
Path: C:\Program Files\Java\jre6\bin\
Long name: jp2iexp.dll
Short name:
Date (created): 07/12/2009 20:36:14
Date (last access): 07/12/2009 20:36:14
Date (last write): 07/12/2009 20:36:14
Filesize: 100128
Attributes: archive
MD5: C1968E3263202DC9CCF9A832C5018F90
CRC32: 5D6D1C9B
Version: 6.0.150.3

{8FFBE65D-2C9C-4669-84BD-5829DC0B603C} ()
DPF name:
CLSID name:
Installer: C:\Windows\Downloaded Program Files\erma.inf
Codebase: http://fpdownload.macromedia.com/get/fl ... rashim.cab

{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_15
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Path: C:\Program Files\Java\jre6\bin\
Long name: jp2iexp.dll
Short name:
Date (created): 07/12/2009 20:36:14
Date (last access): 07/12/2009 20:36:14
Date (last write): 07/12/2009 20:36:14
Filesize: 100128
Attributes: archive
MD5: C1968E3263202DC9CCF9A832C5018F90
CRC32: 5D6D1C9B
Version: 6.0.150.3

{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_15
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Path: C:\Program Files\Java\jre6\bin\
Long name: npjpi160_15.dll
Short name:
Date (created): 07/12/2009 20:36:16
Date (last access): 07/12/2009 20:36:16
Date (last write): 07/12/2009 20:36:16
Filesize: 136992
Attributes: archive
MD5: C79293AA0C64855B6FC3E0E874B472CE
CRC32: EA2282C5
Version: 6.0.150.3



--- Process list ---
PID: 416 ( 4) \SystemRoot\System32\smss.exe
size: 69632
PID: 552 ( 480) C:\Windows\system32\csrss.exe
size: 6144
MD5: 342271F6142E7C70805B8A81E1BA5F5C
PID: 612 ( 480) C:\Windows\system32\wininit.exe
size: 96256
MD5: B5C5DCAD3899512020D135600129D665
PID: 624 ( 604) C:\Windows\system32\csrss.exe
size: 6144
MD5: 342271F6142E7C70805B8A81E1BA5F5C
PID: 660 ( 612) C:\Windows\system32\services.exe
size: 259072
MD5: 5F1B6A9C35D3D5CA72D6D6FDEF9747D6
PID: 684 ( 612) C:\Windows\system32\lsass.exe
size: 22528
MD5: F42309C4191C506B71DB5D1126D26318
PID: 692 ( 612) C:\Windows\system32\lsm.exe
size: 261120
MD5: 398DC10274C0CB861338CFC56E727C9F
PID: 752 ( 604) C:\Windows\system32\winlogon.exe
size: 285696
MD5: 8EC6A4AB12B8F3759E21F8E3A388F2CF
PID: 856 ( 660) C:\Windows\system32\svchost.exe
size: 20992
MD5: 54A47F6B5E09A77E61649109C6A08866
PID: 928 ( 660) C:\Windows\system32\nvvsvc.exe
size: 215656
MD5: 387DC341E2AED29EB8F67B6EE53BB43B
PID: 968 ( 660) C:\Windows\system32\svchost.exe
size: 20992
MD5: 54A47F6B5E09A77E61649109C6A08866
PID: 1012 ( 660) C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
size: 335344
MD5: A3CD21BCFC0B82666CCA3FCE6EE77AE3
PID: 1108 ( 660) C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
size: 1622320
MD5: 530F777102C2BF4BF8320BDC8CDAB150
PID: 1204 ( 660) C:\Windows\System32\svchost.exe
size: 20992
MD5: 54A47F6B5E09A77E61649109C6A08866
PID: 1272 ( 660) C:\Windows\System32\svchost.exe
size: 20992
MD5: 54A47F6B5E09A77E61649109C6A08866
PID: 1300 ( 660) C:\Windows\system32\svchost.exe
size: 20992
MD5: 54A47F6B5E09A77E61649109C6A08866
PID: 1472 ( 660) C:\Windows\system32\svchost.exe
size: 20992
MD5: 54A47F6B5E09A77E61649109C6A08866
PID: 1548 ( 928) C:\Windows\system32\nvvsvc.exe
size: 215656
MD5: 387DC341E2AED29EB8F67B6EE53BB43B
PID: 1672 ( 660) C:\Windows\system32\svchost.exe
size: 20992
MD5: 54A47F6B5E09A77E61649109C6A08866
PID: 1788 ( 660) C:\Windows\System32\spoolsv.exe
size: 316416
MD5: 49B6DD6AB3715B7A67965F17194E98A9
PID: 1824 ( 660) C:\Windows\system32\svchost.exe
size: 20992
MD5: 54A47F6B5E09A77E61649109C6A08866
PID: 1924 ( 660) C:\Program Files\a-squared Free\a2service.exe
size: 1858144
MD5: 0ADFA052C927F2A214133E4DF2EF5AB0
PID: 1968 ( 660) C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
size: 144712
MD5: 557F35D1CA42AEA14A6690E21887A31F
PID: 2008 ( 660) C:\Program Files\Bonjour\mDNSResponder.exe
size: 238888
MD5: 3F56903E124E820AEECE6D471583C6C1
PID: 292 ( 660) C:\ProgramData\EPSON\EPW!3 SSRP\E_S30RP1.EXE
size: 102400
MD5: CDCA791AFA0483F44BBA576DBFAFD04D
PID: 452 ( 660) C:\Windows\system32\svchost.exe
size: 20992
MD5: 54A47F6B5E09A77E61649109C6A08866
PID: 1228 ( 660) C:\Windows\system32\PnkBstrA.exe
size: 75064
MD5: A1DD33D16F277CE34124EE52AB2C0F14
PID: 1596 ( 660) C:\Windows\system32\PnkBstrB.exe
size: 215104
MD5: F482F214BFFDF46DC35F47BA5B453E84
PID: 1844 ( 660) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
size: 240512
MD5: 271077B91D7AD1B616F8AFDFE8E3F981
PID: 2120 ( 660) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
size: 240232
MD5: 55141DBD546F86517D2381522BA0D1F1
PID: 2168 ( 660) C:\Windows\System32\PAStiSvc.exe
size: 53248
MD5: ED78DFAD8EFCDFBC89500492C4D14645
PID: 2196 ( 660) C:\Windows\system32\svchost.exe
size: 20992
MD5: 54A47F6B5E09A77E61649109C6A08866
PID: 2272 ( 660) C:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe
size: 185640
MD5: 392E619012F752D071910917E9307CC9
PID: 2300 ( 660) C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
size: 185640
MD5: 2C269C49285184DE9DE8E0FA341B1DFD
PID: 2320 ( 660) C:\Program Files\ThreatFire\TFService.exe
size: 70928
MD5: AA19DB48428F34C6867D3A1B6A84B8C7
PID: 2364 ( 660) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
size: 1533808
MD5: D9250B31B353EE3322C1CAD411997E38
PID: 2428 ( 660) C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
size: 1153368
MD5: 794D4B48DFB6E999537C7C3947863463
PID: 2928 ( 660) C:\Windows\system32\SearchIndexer.exe
size: 428032
MD5: 622D95520182F6D3D05310D5810CA8B3
PID: 3164 (2364) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
size: 183152
MD5: D19FD7F155F2C282A5F4683B450AADF3
PID: 3196 ( 660) C:\Windows\system32\svchost.exe
size: 20992
MD5: 54A47F6B5E09A77E61649109C6A08866
PID: 3444 (1272) C:\Windows\system32\WUDFHost.exe
size: 195584
MD5: C6E7AB7E798167095987EBCCB76DF61B
PID: 2636 (3484) C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe
size: 1118144
MD5: 560E2F3173DFD09AF0B0976EEEF95F7F
PID: 3916 (1272) C:\Windows\system32\Dwm.exe
size: 92672
MD5: 505BF4D1CADEB8D4F8BCD08D944DE25D
PID: 3972 (2636) C:\Program Files\BitDefender\BitDefender 2010\seccenter.exe
size: 1085720
MD5: 0C6CF4292C0BB6505C0AC3062A2F483F
PID: 4224 (1864) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
size: 7514656
MD5: D8039D9D877710CCE2C1125FE23010D2
PID: 4312 (1864) C:\Program Files\Athan\Athan.exe
size: 1130496
MD5: 2E557B3302DD8FFEAE9E9B86A7EC40E3
PID: 4352 (1864) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
size: 81920
MD5: 7D58C9BDF9C0A3955BDCDE7387AD12AC
PID: 4364 (1864) C:\Windows\PixArt\Pac7311\Monitor.exe
size: 319488
MD5: 72334F906C2E2B002CDD2FF9022FD957
PID: 4372 (1864) C:\Program Files\ThreatFire\TFTray.exe
size: 378128
MD5: 9A20A0794B839B717EC23D5865061C66
PID: 4432 (1864) C:\Windows\tsnp2std.exe
size: 258048
MD5: 7D440447C6FCDEC9BBB739A048AA90CD
PID: 4448 (1864) C:\Windows\WindowsMobile\wmdc.exe
size: 648072
MD5: 96B3C4E20F02CA16AA1E3E425BFFCC8B
PID: 4512 (1864) C:\Program Files\KEMailKb\DsiMmKbd.EXE
size: 471040
MD5: 3A8380A0F51000FC88676FD8515384EF
PID: 4568 (1864) C:\Program Files\PowerISO\PWRISOVM.EXE
size: 180224
MD5: BF91B68606862A32CAB13C24A24DD9A9
PID: 4672 ( 660) C:\Windows\system32\svchost.exe
size: 20992
MD5: 54A47F6B5E09A77E61649109C6A08866
PID: 4792 (1864) C:\Program Files\iTunes\iTunesHelper.exe
size: 141600
MD5: 68A553BDFA855C4F1074696682FCDEB6
PID: 4824 (1864) C:\Program Files\Windows Sidebar\sidebar.exe
size: 1173504
MD5: EA6EADF6314E43783BA8EEE79F93F73C
PID: 4844 (1864) C:\Program Files\CounterPath\X-Lite\x-lite.exe
size: 23207936
MD5: DD1E770D99BF051135751052E5C29C8E
PID: 4940 (1864) C:\Program Files\Nosibay\Mon Widget RMC\Launcher.exe
size: 185872
MD5: 92759B3149C2A2D61A86C2CF8BEE8954
PID: 5704 ( 660) C:\Program Files\Windows Media Player\wmpnetwk.exe
size: 1121280
MD5: 77FBD400984CF72BA0FC4B3489D65F74
PID: 5788 (4940) C:\Program Files\Nosibay\Mon Widget RMC\Mon Widget RMC.exe
size: 2160144
MD5: D004D9FFCE96CE588815B9D94D076D9E
PID: 5920 (1864) C:\Program Files\Skype\Phone\Skype.exe
size: 25623336
MD5: BF9EAB227D409CE1E75C23BB10CF5DBC
PID: 6132 (1864) C:\Users\Abdelkader\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
size: 135680
MD5: BC9C9BE7BB74D629362608ACE470E7DA
PID: 1148 (1864) C:\Program Files\Xfire\Xfire.exe
size: 3181456
MD5: 553979654E995D31C8359CD4A1570790
PID: 244 ( 660) C:\Program Files\iPod\bin\iPodService.exe
size: 545568
MD5: 7A3611564FCE7C8BE50B03F58CB3EB7D
PID: 5608 ( 660) C:\Windows\system32\taskhost.exe
size: 49152
MD5: 8F4F5A5C1BAE72CE6EAEEA1CA3F98CA2
PID: 3740 (5920) C:\Program Files\Skype\Plugin Manager\skypePM.exe
size: 78008
MD5: 89CF33E9040E3CC39F097238D3D97032
PID: 6392 ( 660) C:\Windows\System32\svchost.exe
size: 20992
MD5: 54A47F6B5E09A77E61649109C6A08866
PID: 6360 (1300) C:\Windows\system32\wuauclt.exe
size: 47104
MD5: B0DA80FF42A0819D162A86612896AAF2
PID: 6628 ( 660) C:\Windows\system32\msfeedssync.exe
size: 12800
MD5: 66715BE349973C785A833830A246D08A
PID: 5960 (7344) C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
size: 2260480
MD5: 390679F7A217A5E73D756276C40AE887
PID: 4684 (7344) C:\Windows\explorer.exe
size: 2613248
MD5: 15BC38A7492BEFE831966ADB477CF76F
PID: 7304 (4684) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 5365592
MD5: 0477C2F9171599CA5BC3307FDFBA8D89
PID: 6688 ( 856) C:\Windows\system32\DllHost.exe
size: 7168
MD5: A63DC5C2EA944E6657203E0C8EDEAF61
PID: 4692 (2928) C:\Windows\system32\SearchProtocolHost.exe
size: 164352
MD5: 89ED7C028A487340B7D93D5A38FDCB54
PID: 2088 (2928) C:\Windows\system32\SearchFilterHost.exe
size: 86528
MD5: 8A674F9AB20B4937357BF6F5A0938EBF
PID: 0 ( 0) [System Process]
PID: 4 ( 0) System
PID: 1408 (1204) audiodg.exe
size: 100864


--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 10/12/2009 23:16:59

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
C:\Windows\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
C:\Windows\System32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm


--- Winsock Layered Service Provider list ---
Namespace Provider 1: Fournisseur Shim d’affectation de noms de messagerie
GUID: {964ACBA2-B2BC-40EB-8C6A-A6DB40161CAE}
Filename:

Namespace Provider 2: Fournisseur d’espace de noms du nuage PNRP
GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D}
Filename:

Namespace Provider 3: Fournisseur d’espace de noms du nom PNRP
GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D}
Filename:



--- Uninstall list ---
ThreatFire (3554AA4B-9B0B-451a-A269-2B5F53982209_is1)
install date: 20090609
install location: C:\Program Files\ThreatFire\
uninstall cmd: "C:\Program Files\ThreatFire\unins000.exe"
publisher: PC Tools
help link: http://www.threatfire.com/support

a-squared Free 4.5 4.5 (a-squared Free_is1)
install date: 20090705
install location: C:\Program Files\a-squared Free\
uninstall cmd: "C:\Program Files\a-squared Free\unins000.exe"
publisher: Emsi Software GmbH
comments: a-squared
help link: http://forum.emsisoft.com

(AddressBook)

Adobe Flash Player 10 ActiveX 10.0.32.18 (Adobe Flash Player ActiveX)
uninstall cmd: C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
publisher: Adobe Systems Incorporated
help link: http://www.adobe.com/go/flashplayer_support/

Adobe Flash Player 10 Plugin 10.0.32.18 (Adobe Flash Player Plugin)
uninstall cmd: C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
publisher: Adobe Systems Incorporated

adsl TV (adsl TV)
uninstall cmd: C:\Program Files\adslTV\Uninstal.exe

Athan Basic 3.6 (Athan)
uninstall cmd: C:\Windows\iun6002.exe "C:\Program Files\Athan\irunin.ini"

CCleaner (CCleaner)
version (major): 2
version (minor): 26
install location: C:\Program Files\CCleaner
uninstall cmd: "C:\Program Files\CCleaner\uninst.exe"
publisher: Piriform

(Connection Manager)

Digital Image Recovery 1.47 (Digital Image Recovery_is1)
uninstall cmd: "C:\Program Files\Digital Image Recovery\unins000.exe"
publisher: Alexander Grau
help link: http://home.nexgo.de/christian_grau/dir/index.html

(DirectDrawEx)

DivX Plus DirectShow Filters (DivX Plus DirectShow Filters)
install location: C:\Program Files\DivX\DivX Plus DirectShow Filters
uninstall cmd: C:\Program Files\DivX\DivXDSFiltersUninstall.exe /DSFILTERS
publisher: DivX, Inc.

Driver Genius Professional Edition (Driver Genius Professional Edition_is1)
install date: 20090606
install location: C:\Program Files\Driver-Soft\DriverGenius\
uninstall cmd: "C:\Program Files\Driver-Soft\DriverGenius\unins000.exe"
publisher: Driver-Soft Inc.
help link: http://www.avanquest.com/France/avanque ... .html?pg=7

(DXM_Runtime)

EPSON Logiciel imprimante (EPSON Printer and Utilities)
uninstall cmd: C:\Windows\system32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
publisher: SEIKO EPSON Corporation

EPSON Scan (EPSON Scanner)
uninstall cmd: C:\Program Files\epson\escndv\setup\setup.exe /r

(Fontcore)

FreePack (FreePack)
uninstall cmd: c:\FreePack\Uninstal.exe

Google Chrome 3.0.195.33 (Google Chrome)
install date: 20091210
install location: C:\Program Files\Google\Chrome\Application
uninstall cmd: "C:\Program Files\Google\Chrome\Application\3.0.195.33\Installer\setup.exe" --uninstall --system-level
publisher: Google Inc.

HijackThis 2.0.2 2.0.2 (HijackThis)
uninstall cmd: "C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
publisher: TrendMicro

HomePlayer 1.5.9 1.5.9 (HomePlayer)
uninstall cmd: C:\Program Files\HomePlayer\uninst.exe
publisher: HomePlayer

(IE40)

(IE4Data)

(IE5BAKEX)

(IEData)

(InstallShield Uninstall Information)

Call of Duty(R) 4 - Modern Warfare(TM) 1.3 Patch (InstallShield_{050C1C8E-4A4D-4C2F-B9AE-67E60EE91B7F})
uninstall cmd: C:\Program Files\InstallShield Installation Information\{050C1C8E-4A4D-4C2F-B9AE-67E60EE91B7F}\setup.exe -runfromtemp -l0x0409

PC-Camera 1.0.213 (InstallShield_{0C811605-BAB2-4129-AB15-0A9956B2F0D2})
version: 16777429
version (major): 1
estimated size: 19230
install date: 20091030
install location: C:\Program Files\KMEPC\PC-Camera\
install source: C:\Windows\Downloaded Installations\{A40D1DEF-11E5-4E77-A29F-7AB322A07B76}\
uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\1150\INTEL3~1\IDriver.exe /M{0C811605-BAB2-4129-AB15-0A9956B2F0D2} /l1036
publisher: Nom de votre société

Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch (InstallShield_{3BD633E0-4BF8-4499-9149-88F0767D449C})
uninstall cmd: C:\Program Files\InstallShield Installation Information\{3BD633E0-4BF8-4499-9149-88F0767D449C}\setup.exe -runfromtemp -l0x0409

Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Multiplayer Patch (InstallShield_{8503C901-85D7-4262-88D2-8D8B2A7B08B8})
uninstall cmd: C:\Program Files\InstallShield Installation Information\{8503C901-85D7-4262-88D2-8D8B2A7B08B8}\setup.exe -runfromtemp -l0x0409

Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE})
uninstall cmd: C:\Program Files\InstallShield Installation Information\{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}\setup.exe -runfromtemp -l0x0409

Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498})
uninstall cmd: C:\Program Files\InstallShield Installation Information\{931C37FC-594D-43A9-B10F-A2F2B1F03498}\setup.exe -runfromtemp -l0x0409

Quantum of Solace(TM) 1.1 Patch (InstallShield_{A1644527-B0FF-485B-8412-3C7504A2F188})
uninstall cmd: C:\Program Files\InstallShield Installation Information\{A1644527-B0FF-485B-8412-3C7504A2F188}\setup.exe -runfromtemp -l0x0409

Call of Duty(R) 4 - Modern Warfare(TM) 1.7 (InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217})
version: 16777216
version (major): 1
estimated size: 6510588
install date: 20091029
install location: C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\
install source: D:\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{E48469CC-635E-4FD5-A122-1497C286D217}\setup.exe -runfromtemp -l0x040c
publisher: Activision
contact: Support technique
help link: http://activision.custhelp.com

Call of Duty(R) 4 - Modern Warfare(TM) 1.2 Patch (InstallShield_{E5141379-B2D9-4BBC-BB2A-5805541571DD})
uninstall cmd: C:\Program Files\InstallShield Installation Information\{E5141379-B2D9-4BBC-BB2A-5805541571DD}\setup.exe -runfromtemp -l0x0409

StarCam mini 1.0.2.11 (InstallShield_{FA5CEDAB-60BF-4C3F-9DB3-FC51C45A9392})
version: 16777218
version (major): 1
estimated size: 15980
install date: 20090827
install location: C:\Program Files\StarCam mini\
install source: C:\Windows\Downloaded Installations\{055F2ADE-B9CD-415A-8F93-15A3B94925F1}\
uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{FA5CEDAB-60BF-4C3F-9DB3-FC51C45A9392} /l1036
publisher: Nom de votre société

Internet Download Manager (Internet Download Manager)
uninstall cmd: C:\Program Files\Internet Download Manager\Uninstall.exe

Cool Paint (iqksenu.ini)
uninstall cmd: C:\Program Files\Coolsoft\Cool Paint\remove.exe

JDownloader 0.89 (JDownloader)
uninstall cmd: C:\Program Files\JDownloader\uninstall.exe
publisher: AppWork UG (haftungsbeschränkt)

Jeyo Mobile Extender 2.5 pour Outlook 2.5 (Jeyo Mobile Extender 2.5 pour Outlook_is1)
install date: 20090607
install location: c:\Jeyo\JME_WM\
uninstall cmd: "c:\Jeyo\JME_WM\unins000.exe"
publisher: Jeyo, Inc.
help link: http://www.jeyo.com/

E-Mail Multimedia Keyboard for USB (KEMailKb)
uninstall cmd: C:\Windows\UnInst32.exe KEMailKb.UNI

Module linguistique Microsoft .NET Framework 3.5 SP1- fra (Microsoft .NET Framework 3.5 Language Pack SP1 - fra)
install location: C:\Windows\Microsoft.NET\Framework\v3.5\
uninstall cmd: C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
publisher: Microsoft Corporation
help link: http://go.microsoft.com/fwlink/?LinkId=120337

(MobileOptionPack)

Mon Widget RMC (remove only) (Mon Widget RMC)
uninstall cmd: C:\Program Files\Nosibay\Mon Widget RMC\Uninstall Mon Widget RMC.exe
publisher: Nosibay

Mozilla Firefox (3.5.5) 3.5.5 (fr) (Mozilla Firefox (3.5.5))
install location: C:\Program Files\Mozilla Firefox
uninstall cmd: C:\Program Files\Mozilla Firefox\uninstall\helper.exe
publisher: Mozilla
comments: Mozilla Firefox

(MPlayer2)

(MsJavaVM)

Multi Virus Cleaner 2009 (Multi Virus Cleaner 2009_is1)
install location: C:\Program Files\AxBx\Multi Virus Cleaner 2009\
uninstall cmd: "C:\Program Files\AxBx\Multi Virus Cleaner 2009\unins000.exe"
publisher: AxBx
help link: http://www.viruskeeper.com/fr/mvc.htm

Nero 8 Lite 8.1.1.4 8.1.1.4 (Nero8Lite_is1)
install date: 20090607
install location: C:\Program Files\Nero\
uninstall cmd: "C:\Program Files\Nero\unins000.exe"
publisher: Updatepack.nl

NVIDIA Drivers 1.10 (NVIDIA Drivers)
version (major): 1
version (minor): 10
install location: C:\Windows\system32
uninstall cmd: C:\Windows\system32\nvuninst.exe UninstallGUI
publisher: NVIDIA Corporation

NVIDIA Stereoscopic 3D Driver 7.16.11.9107 (NVIDIAStereo)
install location: C:\Program Files\NVIDIA Corporation\3D Vision
uninstall cmd: "C:\Program Files\NVIDIA Corporation\3D Vision\nvStInst.exe" /uninstall /ask
publisher: NVIDIA Corporation

PC Wizard 2009.1.90 (PC Wizard 2009_is1)
install date: 20090908
install location: C:\Program Files\CPUID\PC Wizard 2009\
uninstall cmd: "C:\Program Files\CPUID\PC Wizard 2009\unins000.exe"
publisher: Laurent KUTIL & Franck DELATTRE
help link: http://www.cpuid.com

PowerISO 4.6 (PowerISO)
install location: C:\Program Files\PowerISO
uninstall cmd: "C:\Program Files\PowerISO\uninstall.exe"
publisher: PowerISO Computing, Inc.

Microsoft Office Professional Plus 2007 12.0.6425.1000 (PROPLUS)
install location: C:\Program Files\Microsoft Office
uninstall cmd: "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
publisher: Microsoft Corporation

PunkBuster Services 0.987 (PunkBusterSvc)
uninstall cmd: C:\Windows\system32\pbsvc(2).exe -u
publisher: Even Balance, Inc.
help link: http://www.evenbalance.com/index.php?page=pbsvcfaq.php

Recuva (remove only) (Recuva)
uninstall cmd: "C:\Program Files\Recuva\uninst.exe"
publisher: Piriform

SAMSUNG Mobile Modem Driver Set (SAMSUNG Mobile Modem)
uninstall cmd: C:\Program Files\SAMSUNG\SAMSUNG Mobile Modem\SSCDUninstall.exe

(SchedulingAgent)

TeamSpeak 2 RC2 2.0.32.60 (Teamspeak 2 RC2_is1)
uninstall cmd: "C:\Program Files\Teamspeak2_RC2\unins000.exe"
publisher: Dominating Bytes Design
help link: http://www.teamspeak.org

TeamViewer 4 4.1.6911 (TeamViewer 4)
version (major): 4
version (minor): 1
install location: C:\Program Files\TeamViewer\Version4
uninstall cmd: C:\Program Files\TeamViewer\Version4\uninstall.exe
publisher: TeamViewer GmbH
help link: http://www.teamviewer.com

TeamViewer 5 5.0 7418 (TeamViewer 5)
version (major): 5
install location: C:\Program Files\TeamViewer\Version5
uninstall cmd: C:\Program Files\TeamViewer\Version5\uninstall.exe
publisher: TeamViewer GmbH
help link: http://www.teamviewer.com

VLC media player 1.0.3 1.0.3 (VLC media player)
install location: C:\Program Files\VideoLAN\VLC
uninstall cmd: C:\Program Files\VideoLAN\VLC\uninstall.exe
publisher: VideoLAN Team

(WIC)

Windows Genuine Advantage Validation v1.9.40.0 Cracked V4 1.5.0.0 (Windows Genuine Advantage Validation v1.9.40.0 Cracked V4)
uninstall cmd: msiexec.exe /x {3E9324D4-F434-4158-B011-AC3752533590}
publisher: Wocarson
comments: Windows Genuine Advantage Validation v1.9.40.0 Cracked V4
contact: wocarson@gmx.com

Installation Windows Live 14.0.8089.0726 (WinLiveSuite_Wave3)
install location: C:\Program Files\Windows Live\
uninstall cmd: C:\Program Files\Windows Live\Installer\wlarp.exe
publisher: Microsoft Corporation

Archiveur WinRAR (WinRAR archiver)
uninstall cmd: C:\Program Files\WinRAR\uninstall.exe

X-Lite 3.0 (X-Lite 1.5_is1)
install location: C:\Program Files\CounterPath\X-Lite\
uninstall cmd: "C:\Program Files\CounterPath\X-Lite\unins000.exe"
publisher: CounterPath Solutions Inc.
help link: http://www.counterpath.com/x-lite/

Xfire (remove only) (Xfire)
uninstall cmd: "C:\Program Files\Xfire\uninst.exe"

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 9.0.30729.4148 ({002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C})
version: 151025673
version (major): 9
estimated size: 199
install date: 20090819
install source: k:\240ddaf4af2a55419a54bfbd55\
uninstall cmd: MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
publisher: Microsoft Corporation

Steam 1.0.0.0 ({048298C9-A4D3-490B-9FF9-AB023A9238F3})
version: 16777216
version (major): 1
estimated size: 43234
install date: 20091111
install source: E:\resources\
uninstall cmd: MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
publisher: Valve Corporation
comments: Steam
help link: http://support.steampowered.com/

Call of Duty(R) 4 - Modern Warfare(TM) 1.3 Patch 1.3 ({050C1C8E-4A4D-4C2F-B9AE-67E60EE91B7F})
version: 16973824
version (major): 1
version (minor): 3
estimated size: 7692
install date: 20091029
install location: C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\
install source: C:\Users\ABDELK~1\AppData\Local\Temp\{2B1ABE88-D888-4163-A37A-57EC73665083}\
publisher: Activision

NVIDIA PureVideo Decoder 1.00.0000 ({055FEF8E-4B86-400F-A5C6-8FAC0042DCD9})
version: 16777216
install location: C:\Program Files\NVIDIA Corporation\ForceWare\nStant Media
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055FEF8E-4B86-400F-A5C6-8FAC0042DCD9}\setup.exe" -l0x40c -uninstall

Bonjour 1.0.106 ({07287123-B8AC-41CE-8346-3D777245C35B})
version: 16777322
version (major): 1
estimated size: 497
install date: 20090822
install location: C:\Program Files\Bonjour\
install source: C:\Users\ABDELK~1\AppData\Local\Temp\IXP647.TMP\
uninstall cmd: MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
publisher: Apple Inc.
contact: Assistance AppleCare
help link: http://www.apple.com/fr/support/
help telephone: (33) 0825 888 024

PC-Camera 1.0.213 ({0C811605-BAB2-4129-AB15-0A9956B2F0D2})
version: 16777429
version (major): 1
estimated size: 19230
install date: 20091030
install location: C:\Program Files\KMEPC\PC-Camera\
install source: C:\Windows\Downloaded Installations\{A40D1DEF-11E5-4E77-A29F-7AB322A07B76}\
publisher: Nom de votre société

Assistant de connexion Windows Live ID 6.500.3146.0 ({10A44844-4465-456E-8C97-80BDD4F68845})
version: 133434442
version (major): 6
version (minor): 500
estimated size: 4798
install date: 20090704
install source: C:\Windows\SoftwareDistribution\Download\2367532da88f3be2b2708386fdd18de2\img\
uninstall cmd: MsiExec.exe /X{10A44844-4465-456E-8C97-80BDD4F68845}
publisher: Microsoft Corporation

DivX Converter 7.1.0 ({13F3917B56CD4C25848BDC69916971BB})
install location: C:\Program Files\DivX\DivX Converter
publisher: DivX, Inc.

QuickTime 7.65.17.80 ({1451DE6B-ABE1-4F62-BE9A-B363A17588A2})
version: 121700369
version (major): 7
version (minor): 65
estimated size: 79146
install date: 20091206
install location: C:\Program Files\QuickTime\
install source: C:\Users\Abdelkader\AppData\Local\Apple\Apple Software Update\
uninstall cmd: MsiExec.exe /I{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}
publisher: Apple Inc.
contact: Assistance AppleCare
help link: http://www.apple.com/fr/support/
help telephone: (33) 0825 888 024

AutoUpdate 1.1 ({18D10072035C4515918F7E37EAFAACFC})
install location: C:\Program Files\DivX\AutoUpdate

({1C4551A6-4743-4093-91E4-1477CD655043})

Outil de téléchargement Windows Live 14.0.8014.1029 ({205C6BDD-7B73-42DE-8505-9A093F35A238})
version: 234889038
version (major): 14
estimated size: 225
install date: 20090607
install source: C:\Program Files\Common Files\Windows Live\.cache\2001800f1c9e764\
uninstall cmd: MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
publisher: Microsoft Corporation
help link: http://go.microsoft.com/fwlink/?LinkId=118310

Windows Live FolderShare 14.0.8089.726 ({2075CB0A-D26F-4DAA-B424-5079296B43BA})
version: 234889113
version (major): 14
estimated size: 2864
install date: 20090930
install source: C:\Program Files\Common Files\Windows Live\.cache\ebc2926f1c9e764\
uninstall cmd: MsiExec.exe /X{2075CB0A-D26F-4DAA-B424-5079296B43BA}
publisher: Microsoft Corporation

MSVCRT 14.0.1468.721 ({22B775E7-6C42-4FC5-8E10-9A5E3257BD94})
version: 234882492
version (major): 14
estimated size: 1856
install date: 20090607
install source: C:\Program Files\Common Files\Windows Live\.cache\f89dcef1c9e764\
uninstall cmd: MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
publisher: Microsoft

PDF2Office v5.0 - Trial 5.0 ({249F04CC-4824-44E6-A8D8-08013A4C79DA})
version: 83886080
install date: 20090702
install location: C:\Program Files\Recosoft PDF2Office\PDF2Office v5.0\
install source: C:\Users\ABDELK~1\AppData\Local\Temp\bye1E00.tmp\Disk1\
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{249F04CC-4824-44E6-A8D8-08013A4C79DA}\setup.exe" -l0x9 -removeonly
publisher: Recosoft Corporation
readme: C:\Program Files\Recosoft PDF2Office\PDF2Office v5.0\Read Me First Windows Pro.txt

Java(TM) 6 Update 15 6.0.150 ({26A24AE4-039D-4CA4-87B4-2F83216015FF})
version: 100663446
version (major): 6
estimated size: 97243
install date: 20091207
install location: C:\Program Files\Java\jre6\
install source: C:\Users\Abdelkader\AppData\LocalLow\Sun\Java\jre1.6.0_15\
uninstall cmd: MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216015FF}
publisher: Sun Microsystems, Inc.
contact: http://java.com
help link: http://java.com
readme: C:\Program Files\Java\jre6\README.txt

6.1.20091119 ({2CCBABCB-6427-4A55-B091-49864623C43F})
version: 20091119
version (major): 6
version (minor): 1

Bing Maps 3D 4.0.903.16005 ({2D87E961-577B-492B-AD54-1368680FB9A7})
version: 67109767
version (major): 4
estimated size: 15434
install date: 20090609
install source: C:\Program Files\Virtual Earth 3D\
uninstall cmd: MsiExec.exe /I{2D87E961-577B-492B-AD54-1368680FB9A7}
publisher: Microsoft Corporation

Microsoft Games for Windows - LIVE Redistributable 3.0.19.0 ({2E660A2A-A55F-43CD-9F73-CAD7382EEB78})
version: 50331667
version (major): 3
estimated size: 34309
install date: 20090904
install source: C:\Windows\SoftwareDistribution\Download\dd9ee488d9ba476026ed2ca98f31f0a6\img\
uninstall cmd: MsiExec.exe /X{2E660A2A-A55F-43CD-9F73-CAD7382EEB78}
publisher: Microsoft Corporation

MobileMe Control Panel 2.6.0.29 ({3AC54383-31D1-4907-961B-B12CBB1D0AE8})
version: 33947648
version (major): 2
version (minor): 6
estimated size: 7511
install date: 20090920
install source: C:\Users\Abdelkader\AppData\Local\Apple\Apple Software Update\
uninstall cmd: MsiExec.exe /I{3AC54383-31D1-4907-961B-B12CBB1D0AE8}
publisher: Apple Inc.
contact: Assistance AppleCare
help link: http://www.apple.com/fr/support/
help telephone: 1-800-275-2273

Windows Live Communications Platform 14.0.8064.206 ({3B4E636E-9D65-4D67-BA61-189800823F52})
version: 234889088
version (major): 14
estimated size: 1945
install date: 20090607
install source: C:\Program Files\Common Files\Windows Live\.cache\1541ca8f1c9e764\
uninstall cmd: MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
publisher: Microsoft Corporation

Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch 1.4 ({3BD633E0-4BF8-4499-9149-88F0767D449C})
version: 17039360
version (major): 1
version (minor): 4
estimated size: 13940
install date: 20091029
install location: C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\
install source: C:\Users\ABDELK~1\AppData\Local\Temp\{584C327E-5869-4074-A429-4CE5A49E71C7}\
publisher: Activision

Windows Genuine Advantage Validation v1.9.40.0 Cracked V4 1.5.0.0 ({3E9324D4-F434-4158-B011-AC3752533590})
version: 17104896
version (major): 1
version (minor): 5
estimated size: 4066
install date: 20091127
install location: C:\Windows\system32\
install source: C:\Users\Abdelkader\AppData\Roaming\Wocarson\Windows Genuine Advantage Validation v1.9.40.0 Cracked V4\install\2533590\
publisher: Wocarson
comments: Windows Genuine Advantage Validation v1.9.40.0 Cracked V4
contact: wocarson@gmx.com

Apple Application Support 1.1.0 ({3FA365DF-2D68-45ED-8F83-8C8A33E65143})
version: 16842752
version (major): 1
version (minor): 1
estimated size: 33137
install date: 20091206
install source: C:\Users\Abdelkader\AppData\Local\Apple\Apple Software Update\
uninstall cmd: MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143}
publisher: Apple Inc.
contact: AppleCare Support
help link: http://www.apple.com/support/
help telephone: 1-800-275-2273

DivX Version Checker 7.1.0.9 ({3FC7CBBC4C1E11DCA1A752EA55D89593})
install location: C:\Program Files\DivX\DivX Updater
publisher: DivX, Inc.

Ma-Config.com 3.1.255 ({425FFD94-36BD-4933-881B-FE0B9DADF2B7})
version: 50397439
version (major): 3
version (minor): 1
estimated size: 5854
install date: 20091029
install source: C:\Users\ABDELK~1\AppData\Local\Temp\testnsis\
uninstall cmd: MsiExec.exe /X{425FFD94-36BD-4933-881B-FE0B9DADF2B7}
publisher: Cybelsoft

Windows Live Writer 14.0.8089.0726 ({4634B21A-CC07-4396-890C-2B8168661FEA})
version: 234889113
version (major): 14
estimated size: 15760
install date: 20090930
install source: C:\Program Files\Common Files\Windows Live\.cache\bec0a7c01ca420f\
uninstall cmd: MsiExec.exe /X{4634B21A-CC07-4396-890C-2B8168661FEA}
publisher: Microsoft Corporation

Installation Windows Live 14.0.8089.726 ({46ABBC54-1872-4AA3-95E2-F2C063A63F31})
version: 234889113
version (major): 14
estimated size: 1255
install date: 20090930
install source: C:\Program Files\Common Files\Windows Live\.cache\ba8a10141ca2e4f\
uninstall cmd: MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
publisher: Microsoft Corporation
help link: http://support.live.com/

NVIDIA Media Center Extensions 1.00.0000 ({4BE15737-07C5-4705-9DFC-D9D533939942})
version: 16777216
install location: C:\Program Files\NVIDIA Corporation\MCE Scripts\Settings
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4BE15737-07C5-4705-9DFC-D9D533939942}\setup.exe" -l0x9 -uninstall

Microsoft Search Enhancement Pack 1.3.59.0 ({4CBA3D4C-8F51-4D60-B27E-F6B641C571E7})
version: 16973883
version (major): 1
version (minor): 3
estimated size: 762
install date: 20090608
install source: C:\Windows\SoftwareDistribution\Download\d261ac122901a09fbb3161480ae64e69\img\
uninstall cmd: MsiExec.exe /X{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
publisher: Microsoft Corporation

Windows Live Movie Maker 14.0.8091.0730 ({53B20C18-D8D4-4588-8737-9BBFE303C354})
version: 234889115
version (major): 14
estimated size: 14129
install date: 20090930
install source: C:\Program Files\Common Files\Windows Live\.cache\b6f6ca101ca420f\
uninstall cmd: MsiExec.exe /X{53B20C18-D8D4-4588-8737-9BBFE303C354}
publisher: Microsoft Corporation

Skype web features 1.0.3971 ({541DEAC0-5F3D-45E6-B7CB-94ECF3B96748})
version: 16781187
version (major): 1
estimated size: 4422
install date: 20091202
install source: C:\ProgramData\Skype\{D103C4BA-F905-437A-8049-DB24763BBE36}\
uninstall cmd: MsiExec.exe /I{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}
publisher: Skype Technologies S.A.
help link: http://www.skype.com/

({582876EC-A178-44D4-9823-C10D6C62EAFF})
uninstall cmd: MsiExec /X{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}

Windows Live Mail 14.0.8089.0726 ({5DD76286-9BE7-4894-A990-E905E91AC818})
version: 234889113
version (major): 14
estimated size: 31920
install date: 20090930
install source: C:\Program Files\Common Files\Windows Live\.cache\96c647c01ca420f\
uninstall cmd: MsiExec.exe /I{5DD76286-9BE7-4894-A990-E905E91AC818}
publisher: Microsoft Corporation

VC80CRTRedist - 8.0.50727.4053 1.1.0 ({5EE7D259-D137-4438-9A5F-42F432EC0421})
version: 16842752
version (major): 1
version (minor): 1
estimated size: 1584
install date: 20091109
install source: C:\Program Files\Common Files\DivX Shared\
uninstall cmd: MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421}
publisher: DivX, Inc
comments: Install VC80 C++ Runtimes
contact: DivX, Inc

({62369F2F77534556AEF4C58152E3BDE5})

Apple Software Update 2.1.1.116 ({6956856F-B6B3-4BE0-BA0B-8F495BE32033})
version: 33619969
version (major): 2
version (minor): 1
estimated size: 2208
install date: 20090822
install location: C:\Program Files\Apple Software Update\
install source: C:\Users\ABDELK~1\AppData\Local\Temp\IXP647.TMP\
uninstall cmd: MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
publisher: Apple Inc.
contact: Assistance AppleCare
help link: http://www.apple.com/fr/support/
help telephone: 0825 888 024

Windows Media Player Firefox Plugin 1.0.0.8 ({69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4})
version: 16777216
version (major): 1
estimated size: 296
install date: 20090628
install source: C:\Users\ABDELK~1\AppData\Local\Temp\IXP000.TMP\
uninstall cmd: MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
publisher: Microsoft Corp

Tom Clancy's H.A.W.X 1.02.00000 ({6E36A172-06FB-4BC8-B7FC-D30D219E6776})
version: 16908288
install date: 20090828
install location: C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X
install source: L:\
uninstall cmd: "C:\Program Files\InstallShield Installation Information\{6E36A172-06FB-4BC8-B7FC-D30D219E6776}\setup.exe" -runfromtemp -l0x040c -removeonly
publisher: Ubisoft

Microsoft Visual C++ 2005 Redistributable 8.0.56336 ({7299052b-02a4-4627-81f2-1818da5d550d})
version: 134274064
version (major): 8
estimated size: 2756
install date: 20091111
install source: C:\Users\ABDELK~1\AppData\Local\Temp\IXP001.TMP\
uninstall cmd: MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
publisher: Microsoft Corporation

USB2.0 PC Camera (SN9C201&202) 5.7.26000.0 ({75438C0E-9925-412E-AD85-D0E71C6CE2ED})
version: 86486080
install date: 20090607
install location: C:\Program Files\Sonix\USB2.0 PC Camera (SN9C201&202)
install source: C:\Users\Abdelkader\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6XT83Q0Y\download[1].exe
uninstall cmd: C:\Program Files\InstallShield Installation Information\{75438C0E-9925-412E-AD85-D0E71C6CE2ED}\setup.exe -runfromtemp -l0x040c -removeonly -u
publisher: Sonix

7.1.0 ({7585478E9D9B42108671C12F8714CEFE})
install location: C:\Program Files\DivX\DivX Converter
uninstall cmd: C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
publisher: DivX, Inc.

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 8.0.50727.4053 ({770657D0-A123-3C07-8E44-1C83EC895118})
version: 134268455
version (major): 8
estimated size: 251
install date: 20090819
install source: k:\5b8d6d061ff3ff6d2dfa9eb6\
uninstall cmd: MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
publisher: Microsoft Corporation

Windows Live Messenger 14.0.8089.0726 ({770F1BEC-2871-4E70-B837-FB8525FFA3B1})
version: 234889113
version (major): 14
estimated size: 40087
install date: 20090930
install source: C:\Program Files\Common Files\Windows Live\.cache\d48c8a641ca2e4f\
uninstall cmd: MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1}
publisher: Microsoft Corporation

DivX Codec 6.9.1 ({7B63B2922B174135AFC0E1377DD81EC2})
install location: C:\Program Files\DivX\DivX Codec
uninstall cmd: C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
publisher: DivX, Inc.

Windows Live Call 14.0.8064.0206 ({82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41})
version: 234889088
version (major): 14
estimated size: 1663
install date: 20090607
install source: C:\Program Files\Common Files\Windows Live\.cache\1ba0586f1c9e764\
uninstall cmd: MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
publisher: Microsoft Corporation

Microsoft Visual C++ 2005 Redistributable 8.0.59193 ({837b34e3-7c30-493c-8f6a-2b0f04e2912c})
version: 134276921
version (major): 8
estimated size: 341
install date: 20091007
install source: C:\Users\ABDELK~1\AppData\Local\Temp\IXP001.TMP\
uninstall cmd: MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
publisher: Microsoft Corporation

Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Patch 1.5 ({8503C901-85D7-4262-88D2-8D8B2A7B08B8})
version: 17104896
version (major): 1
version (minor): 5
estimated size: 3292
install date: 20091029
install location: C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\
install source: C:\Users\ABDELK~1\AppData\Local\Temp\{AEDFDF3A-1190-4893-B374-C6DCD4074251}\
publisher: Activision

MSXML 4.0 SP2 (KB954430) 4.20.9870.0 ({86493ADD-824D-4B8E-BD72-8C5DCDC52A71})
version: 68429454
version (major): 4
version (minor): 20
estimated size: 1309
install date: 20090625
install source: k:\19d0acc478d7fa21b0a3\
uninstall cmd: MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
publisher: Microsoft Corporation
help link: http://support.microsoft.com/kb/954430

Realtek Ethernet Controller Driver For Windows Vista and Later 1.00.0011 ({8833FFB6-5B0C-4764-81AA-06DFEED9A476})
version: 16777227
install date: 20091029
install location: C:\Program Files\Realtek\NICDRV_8169
install source: C:\Users\Abdelkader\Documents\Downloads\Compressed\Install_Vista_6227_10192009\Install_Vista_6227_Logo_10-19-2009_Revised\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -removeonly
publisher: Realtek

Microsoft Silverlight 3.0.40818.0 ({89F4137D-6C26-4A84-BDB8-2E5A4BB71E00})
version: 50372466
version (major): 3
estimated size: 54023
install date: 20090910
install location: C:\Program Files\Microsoft Silverlight\
install source: i:\83c83e14cc835c354f3a4256\
uninstall cmd: MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
publisher: Microsoft Corporation
help link: http://go.microsoft.com/fwlink/?LinkID=91955

Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch 1.6 ({8A15B7D9-908A-4EF9-BA84-5AEDE61743EE})
version: 17170432
version (major): 1
version (minor): 6
estimated size: 41968
install date: 20091029
install location: C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\
install source: C:\Users\ABDELK~1\AppData\Local\Temp\{425BB697-0D2D-43B7-82CB-4A6BFAE0A371}\
publisher: Activision

Microsoft Sync Framework Runtime Native v1.0 (x86) 1.0.1215.0 ({8A74E887-8F0F-4017-AF53-CBA42211AAA5})
version: 16778431
version (major): 1
estimated size: 624
install date: 20090607
install source: C:\Program Files\Common Files\Windows Live\.cache\4455fcaf1c9e765\
uninstall cmd: MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
publisher: Microsoft Corporation
contact: MS

DivX Player 7.2.0 ({8ADFC4160D694100B5B8A22DE9DCABD9})
install location: C:\Program Files\DivX\DivX Player
uninstall cmd: C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
publisher: DivX, Inc.

Microsoft Office Professional Plus 2007 12.0.6425.1000 ({90120000-0011-0000-0000-0000000FF1CE})
version: 201333017
version (major): 12
estimated size: 743853
install date: 20091015
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-0011-0000-0000-0000000FF1CE}-C\
uninstall cmd: MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office 2007 Service Pack 2 (SP2) ({90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B})
uninstall cmd: msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
publisher: Microsoft
help link: http://support.microsoft.com/kb/954711

Security Update for Microsoft Office Outlook 2007 (KB972363) ({90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{120BE9A0-9B09-4855-9E0C-7DEE45CB03C0})
uninstall cmd: msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {120BE9A0-9B09-4855-9E0C-7DEE45CB03C0}
publisher: Microsoft
help link: http://support.microsoft.com/kb/972363

Security Update for Microsoft Office system 2007 (972581) ({90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF})
uninstall cmd: msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
publisher: Microsoft
help link: http://support.microsoft.com/kb/972581

Security Update for Microsoft Office system 2007 (KB969613) ({90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C})
uninstall cmd: msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C}
publisher: Microsoft
help link: http://support.microsoft.com/kb/969613

Security Update for 2007 Microsoft Office System (KB969559) ({90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08})
uninstall cmd: msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
publisher: Microsoft
help link: http://support.microsoft.com/kb/969559

Security Update for Microsoft Office Visio Viewer 2007 (KB973709) ({90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D})
uninstall cmd: msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
publisher: Microsoft
help link: http://support.microsoft.com/kb/973709

Security Update for Microsoft Office PowerPoint 2007 (KB957789) ({90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7559E742-FF9F-4FAE-B279-008ED296CB4D})
uninstall cmd: msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D}
publisher: Microsoft
help link: http://support.microsoft.com/kb/957789

Security Update for Microsoft Office Publisher 2007 (KB969693) ({90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7BE67088-1EB3-4569-8E75-DDAFBF61BC4E})
uninstall cmd: msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {7BE67088-1EB3-4569-8E75-DDAFBF61BC4E}
publisher: Microsoft
help link: http://support.microsoft.com/kb/969693

Security Update for Microsoft Office Excel 2007 (KB969682) ({90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C03803BD-745A-46F8-8557-817DED578780})
uninstall cmd: msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {C03803BD-745A-46F8-8557-817DED578780}
publisher: Microsoft
help link: http://support.microsoft.com/kb/969682

Update for Outlook 2007 Junk Email Filter (KB974810) ({90120000-0011-0000-0000-00
kader-66
 
Messages: 31
Inscription: 10 Déc 2009, 23:23

Messagede nickW » 10 Déc 2009, 23:52

Bonsoir,

Rappel:
Vous ne devez pas utiliser ComboFix sans qu'un assistant vous demande expressément de le faire.
http://www.bleepingcomputer.com/combofi ... r-combofix


Peux-tu envoyer le rapport de ComboFix.
S'il est trop long pour tenir dans un seul message, il faut le découper en plusieurs parties que tu enverras en utilisant toujours le bouton "Répondre"
Image pour continuer dans ce fil de discussion.

Salut,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede kader-66 » 11 Déc 2009, 00:06

Je te renvoie le log combofix

ComboFix 09-12-09.04 - Abdelkader 10/12/2009 22:24:58.2.2 - x86
Microsoft Windows 7 Édition Intégrale 6.1.7600.0.1252.33.1036.18.2046.627 [GMT 1:00]
Lancé depuis: c:\users\Abdelkader\Desktop\ComboFix.exe
AV: Antivirus BitDefender *On-access scanning disabled* (Updated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB}
SP: BitDefender AntiSpam *disabled* (Updated) {8B2012EC-32D4-494F-BC03-832DB3BDF911}
SP: Spybot - Search and Destroy *disabled* (Outdated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}
* Un antivirus résident est actif

.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\idmmbc.dll

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-11-10 au 2009-12-10 ))))))))))))))))))))))))))))))))))))
.

2009-12-10 21:48 . 2009-12-10 21:48 -------- d-----w- c:\users\Public\AppData\Local\temp
2009-12-10 21:48 . 2009-12-10 21:48 -------- d-----w- c:\users\Default\AppData\Local\temp
2009-12-10 21:16 . 2009-12-10 21:18 -------- d-----w- C:\32788R22FWJFW
2009-12-10 19:09 . 2009-12-10 19:09 -------- d-----w- c:\program files\Trend Micro
2009-12-10 19:01 . 2009-12-10 19:01 -------- d-----w- C:\$WINDOWS.~LS
2009-12-10 18:58 . 2009-12-10 18:58 -------- d-----w- C:\$UPGRADE.~OS
2009-12-10 12:58 . 2009-12-10 12:59 -------- d-----w- c:\program files\Internet Download Manager
2009-12-09 21:29 . 2009-12-09 21:31 -------- d-----w- c:\program files\TVUPlayer
2009-12-09 21:29 . 2009-12-09 21:31 -------- d-----w- c:\users\Abdelkader\Rar$EX00.366
2009-12-09 20:51 . 2009-12-09 20:51 409088 ----a-w- c:\windows\system32\systemcpl.dll
2009-12-09 20:43 . 2009-12-09 20:43 -------- d-----w- C:\vcs5BGEffects
2009-12-07 19:36 . 2009-12-08 18:54 -------- d-----w- c:\program files\JDownloader
2009-12-07 19:36 . 2009-12-07 19:36 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-12-07 19:36 . 2009-12-07 19:36 -------- d-----w- c:\program files\Java
2009-12-06 07:43 . 2009-05-18 13:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2009-12-06 07:43 . 2008-04-17 12:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2009-12-06 07:43 . 2009-12-06 07:43 -------- d-----w- c:\program files\iPod
2009-12-06 07:43 . 2009-12-06 07:43 -------- d-----w- c:\program files\iTunes
2009-12-06 07:41 . 2009-12-06 07:41 79144 ----a-w- c:\programdata\Apple Computer\Installer Cache\iTunes 9.0.2.25\SetupAdmin.exe
2009-12-06 07:39 . 2009-12-06 07:40 -------- d-----w- c:\program files\QuickTime
2009-12-06 07:35 . 2009-12-06 07:35 79144 ----a-w- c:\programdata\Apple Computer\Installer Cache\Safari 5.31.21.10\SetupAdmin.exe
2009-12-02 13:42 . 2009-12-10 18:04 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\skypePM
2009-12-02 13:40 . 2009-12-10 21:33 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\Skype
2009-12-02 13:39 . 2009-12-02 13:39 -------- d-----w- c:\program files\Common Files\Skype
2009-12-02 13:39 . 2009-12-02 13:40 -------- d-----r- c:\program files\Skype
2009-12-02 13:39 . 2009-12-02 13:39 -------- d-----w- c:\programdata\Skype
2009-12-02 09:49 . 2009-12-02 09:49 -------- d-----w- c:\program files\AxBx
2009-11-30 19:33 . 2009-11-30 19:33 41872 ----a-w- c:\windows\system32\xfcodec.dll
2009-11-28 21:19 . 2008-02-17 16:16 90112 ----a-w- c:\users\Abdelkader\AppData\Roaming\Mozilla\Firefox\Profiles\92x8qyx0.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}\platform\WINNT_x86-msvc\components\ipc.dll
2009-11-28 21:19 . 2007-12-28 10:15 172032 ----a-w- c:\users\Abdelkader\AppData\Roaming\Mozilla\Firefox\Profiles\92x8qyx0.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}\platform\WINNT_x86-msvc\puttygen.exe
2009-11-28 21:19 . 2007-10-08 00:57 307200 ----a-w- c:\users\Abdelkader\AppData\Roaming\Mozilla\Firefox\Profiles\92x8qyx0.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}\platform\WINNT_x86-msvc\psftp.exe
2009-11-27 15:58 . 2009-11-27 15:58 -------- d-----w- c:\users\Abdelkader\AppData\Local\Runscanner.net
2009-11-27 15:52 . 2009-11-27 15:54 -------- d-----w- c:\users\Abdelkader\Bureau
2009-11-25 22:03 . 2009-05-12 20:01 233888 ----a-w- c:\windows\system32\DreamScene.dll
2009-11-25 14:25 . 2009-07-14 17:23 343 ----a-w- c:\windows\FIN2.cmd
2009-11-25 00:22 . 2009-11-19 10:48 872960 ----a-w- c:\users\Abdelkader\AppData\Roaming\Mozilla\Firefox\Profiles\92x8qyx0.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
2009-11-25 00:22 . 2009-11-19 10:48 43008 ----a-w- c:\users\Abdelkader\AppData\Roaming\Mozilla\Firefox\Profiles\92x8qyx0.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbarloader.dll
2009-11-25 00:22 . 2009-11-19 10:48 340480 ----a-w- c:\users\Abdelkader\AppData\Roaming\Mozilla\Firefox\Profiles\92x8qyx0.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff2.dll
2009-11-25 00:22 . 2009-11-19 10:48 346624 ----a-w- c:\users\Abdelkader\AppData\Roaming\Mozilla\Firefox\Profiles\92x8qyx0.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff3.dll
2009-11-23 19:27 . 2009-11-23 19:49 33552 ----a-w- c:\windows\system32\drivers\TfNetMon.sys
2009-11-23 19:27 . 2009-11-23 19:49 59664 ----a-w- c:\windows\system32\drivers\TfSysMon.sys
2009-11-23 19:27 . 2009-11-23 19:49 51984 ----a-w- c:\windows\system32\drivers\TfFsMon.sys
2009-11-20 14:58 . 2009-11-20 14:58 -------- d-----w- c:\users\Abdelkader\temp
2009-11-19 21:19 . 2009-12-10 16:47 -------- d-----w- c:\users\Abdelkader\AppData\Local\ElevatedDiagnostics
2009-11-17 02:17 . 2009-12-10 21:13 132 ----a-w- c:\windows\system32\rezumatenoi.dat
2009-11-16 21:24 . 2009-11-16 21:24 4 ----a-w- c:\windows\system32\aspdict-en.dat
2009-11-16 21:24 . 2009-11-16 21:24 16 ----a-w- c:\windows\system32\asdict.dat
2009-11-16 21:24 . 2009-11-16 21:24 0 ----a-w- C:\pcwords2.dat
2009-11-16 21:24 . 2009-11-16 21:24 0 ----a-w- C:\pcwords.dat
2009-11-16 21:15 . 2009-11-16 21:15 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\BitDefender
2009-11-16 21:14 . 2009-11-26 23:12 -------- d-----w- c:\programdata\BitDefender
2009-11-14 07:56 . 2009-11-16 15:56 -------- d-----w- c:\program files\Call of duty modern warfare 2
2009-11-13 18:30 . 2009-11-13 18:30 69632 ----a-w- c:\users\Abdelkader\AppData\Local\binkmake.dll
2009-11-13 18:30 . 2009-11-13 18:30 248832 ----a-w- c:\users\Abdelkader\AppData\Local\radutil.dll
2009-11-13 18:30 . 2009-11-13 18:30 20480 ----a-w- c:\users\Abdelkader\AppData\Local\binkmix.exe
2009-11-13 18:30 . 2009-11-13 18:30 155648 ----a-w- c:\users\Abdelkader\AppData\Local\oggdec.exe
2009-11-13 15:37 . 2009-12-10 16:46 -------- d-----w- c:\users\Abdelkader\AppData\Local\Diagnostics
2009-11-11 20:14 . 2009-12-10 21:16 -------- d-----w- c:\program files\Steam
2009-11-11 19:14 . 2009-11-27 09:18 -------- d-----w- c:\program files\Common Files\Steam
2009-11-11 18:54 . 2009-11-11 18:54 -------- d-----w- c:\program files\PowerISO

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-12-10 21:14 . 2009-06-06 23:13 -------- d-----w- c:\programdata\NVIDIA
2009-12-10 19:16 . 2009-06-22 09:54 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2009-12-10 19:13 . 2009-07-04 22:39 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-12-10 17:08 . 2009-06-07 13:02 -------- d-----w- c:\program files\Google
2009-12-09 21:31 . 2009-09-28 11:07 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\DMCache
2009-12-09 20:51 . 2009-07-13 23:36 13824 ----a-w- c:\windows\system32\slwga.dll
2009-12-09 17:21 . 2009-07-14 08:39 697522 ----a-w- c:\windows\system32\perfh00C.dat
2009-12-09 17:21 . 2009-07-14 08:39 128356 ----a-w- c:\windows\system32\perfc00C.dat
2009-12-08 23:00 . 2009-08-20 12:34 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\vlc
2009-12-06 16:10 . 2009-06-07 12:36 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\Xfire
2009-12-06 14:45 . 2009-07-05 09:29 138576 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2009-12-06 14:45 . 2009-06-07 13:59 215104 ----a-w- c:\windows\system32\PnkBstrB.exe
2009-12-06 07:43 . 2009-08-22 14:15 -------- d-----w- c:\program files\Common Files\Apple
2009-12-06 07:37 . 2009-09-13 10:22 -------- d-----w- c:\program files\Safari
2009-12-04 14:11 . 2009-06-07 12:36 -------- d-----w- c:\programdata\Xfire
2009-12-03 20:13 . 2009-06-07 12:36 -------- d-----w- c:\program files\Xfire
2009-12-03 15:13 . 2009-07-04 22:39 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-12-03 14:32 . 2009-09-11 18:57 -------- d-----w- c:\program files\TeamViewer
2009-12-03 02:36 . 2009-06-09 20:42 -------- d-----w- c:\program files\ThreatFire
2009-12-02 13:42 . 2009-12-02 13:42 48 ---ha-w- c:\programdata\ezsidmv.dat
2009-12-02 13:33 . 2009-08-18 15:58 304160 ----a-w- C:\PA7311.DAT
2009-12-02 10:55 . 2009-06-07 18:55 -------- d-----w- c:\program files\HomePlayer
2009-11-28 20:23 . 2009-06-09 11:59 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\dvdcss
2009-11-28 16:05 . 2009-07-04 22:45 -------- d-----w- c:\program files\a-squared Free
2009-11-27 03:04 . 2009-10-08 14:25 152456 ----a-w- c:\windows\system32\drivers\bdfm.sys
2009-11-27 03:04 . 2009-09-17 15:11 105736 ----a-w- c:\windows\system32\drivers\bdhv.sys
2009-11-25 10:41 . 2009-06-07 12:36 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\teamspeak2
2009-11-16 21:14 . 2009-06-07 10:17 -------- d-----w- c:\program files\Common Files\BitDefender
2009-11-16 21:14 . 2009-06-07 10:17 -------- d-----w- c:\program files\BitDefender
2009-11-16 20:06 . 2009-06-07 10:24 81984 ----a-w- c:\windows\system32\bdod.bin
2009-11-12 12:26 . 2009-10-30 12:41 109608 ----a-w- c:\users\Abdelkader\AppData\Local\GDIPFONTCACHEV1.DAT
2009-11-11 18:51 . 2009-06-07 12:38 721904 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-11-11 18:19 . 2009-06-09 11:07 -------- d-----w- c:\program files\CounterPath
2009-11-10 12:26 . 2009-11-10 12:26 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2009-11-09 03:21 . 2009-11-09 03:21 59388 ----a-w- c:\windows\system32\drivers\scdemu.sys
2009-11-09 01:19 . 2009-06-22 15:27 -------- d-----w- c:\program files\DivX
2009-11-09 01:19 . 2009-06-22 15:28 -------- d-----w- c:\program files\Common Files\PX Storage Engine
2009-11-09 01:19 . 2009-06-22 15:27 -------- d-----w- c:\program files\Common Files\DivX Shared
2009-11-04 17:19 . 2009-11-04 16:40 675 ----a-w- c:\programdata\Ciel\Données Communes\pdf.dll
2009-11-04 16:41 . 2009-11-04 16:41 2232 ----a-w- c:\windows\Java\Packages\Data\31713P75.DAT
2009-11-04 16:41 . 2009-11-04 16:41 155995 ----a-w- c:\windows\Java\Packages\OGI7D393.ZIP
2009-11-04 16:41 . 2009-11-04 16:41 2678 ----a-w- c:\windows\Java\Packages\Data\XFRTFRPV.DAT
2009-11-04 16:41 . 2009-11-04 16:41 2678 ----a-w- c:\windows\Java\Packages\Data\I1BZZ77J.DAT
2009-11-04 16:41 . 2009-11-04 16:41 2678 ----a-w- c:\windows\Java\Packages\Data\HZDBVPNH.DAT
2009-11-04 16:41 . 2009-11-04 16:41 2678 ----a-w- c:\windows\Java\Packages\Data\0FJ5BJXJ.DAT
2009-11-04 16:41 . 2009-11-04 16:41 2678 ----a-w- c:\windows\Java\Packages\Data\A8L3NV9R.DAT
2009-11-04 16:40 . 2009-11-04 16:39 -------- d-----w- c:\programdata\Ciel
2009-11-04 16:40 . 2009-11-04 16:40 -------- d-----w- c:\program files\Common Files\Ciel
2009-11-04 16:39 . 2009-11-04 16:38 -------- d-----w- c:\program files\Ciel
2009-10-31 13:33 . 2009-06-06 22:03 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-10-30 12:25 . 2009-10-30 12:25 -------- d-sh--we c:\programdata\Modèles
2009-10-30 12:25 . 2009-10-30 12:25 -------- d-sh--we c:\programdata\Menu Démarrer
2009-10-30 12:25 . 2009-10-30 12:25 -------- d-sh--we c:\programdata\Favoris
2009-10-30 12:25 . 2009-10-30 12:25 -------- d-sh--we c:\programdata\Bureau
2009-10-30 12:25 . 2009-10-30 12:25 -------- d-sh--we c:\program files\Fichiers communs
2009-10-30 12:12 . 2009-10-30 12:12 21680 ----a-w- c:\windows\system32\emptyregdb.dat
2009-10-30 12:01 . 2009-08-29 17:47 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\U3
2009-10-30 12:01 . 2009-09-11 18:57 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\TeamViewer
2009-10-30 12:01 . 2009-06-23 15:10 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\Nosibay
2009-10-30 12:01 . 2009-06-07 19:59 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\Nero
2009-10-30 12:01 . 2009-09-29 10:12 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\Leadertech
2009-10-30 12:01 . 2009-07-04 22:39 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\Malwarebytes
2009-10-30 12:01 . 2009-06-07 10:43 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\Jeyo
2009-10-30 12:01 . 2009-06-07 07:31 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\InstallShield
2009-10-30 12:01 . 2009-08-22 14:20 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\Apple Computer
2009-10-30 12:01 . 2009-06-27 09:41 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\DivX
2009-10-30 12:01 . 2009-06-07 12:38 -------- d-----w- c:\users\Abdelkader\AppData\Roaming\DAEMON Tools Lite
2009-10-30 11:53 . 2009-09-13 10:23 -------- d-----w- c:\program files\Utilitaire de configuration iPhone
2009-10-30 11:53 . 2009-06-07 17:29 -------- d-----w- c:\program files\VideoLAN
2009-10-30 11:53 . 2009-08-28 18:18 -------- d-----w- c:\program files\Ubisoft
2009-10-30 11:53 . 2009-06-07 12:35 -------- d-----w- c:\program files\Teamspeak2_RC2
2009-10-30 11:53 . 2009-08-27 19:09 -------- d-----w- c:\program files\StarCam mini
2009-10-30 11:53 . 2009-06-22 09:54 -------- d-----w- c:\program files\Spybot - Search & Destroy
2009-10-30 11:51 . 2009-08-19 01:07 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2009-10-30 11:51 . 2009-07-14 04:52 -------- d-----w- c:\program files\Microsoft Games
2009-10-30 11:51 . 2009-06-07 11:47 -------- d-----w- c:\program files\Microsoft
2009-10-30 11:51 . 2009-08-27 19:00 -------- d-----w- c:\program files\ma-config.com
2009-10-30 11:51 . 2009-10-29 23:14 -------- d-----w- c:\program files\KMEPC
2009-10-30 11:51 . 2009-08-18 16:02 -------- d-----w- c:\program files\KEMailKb
2009-10-30 11:51 . 2009-06-07 07:35 -------- d-----w- c:\program files\Intel
2009-10-30 11:51 . 2009-06-07 11:04 -------- d-----w- c:\program files\EPSON
2009-10-30 11:49 . 2009-06-10 11:00 -------- d-----w- c:\program files\Common Files\Adobe
2009-10-30 11:49 . 2009-10-07 20:05 -------- d-----w- c:\program files\Codemasters
2009-10-30 11:49 . 2009-08-22 14:18 -------- d-----w- c:\program files\Bonjour
2009-10-30 11:49 . 2009-06-21 18:25 -------- d-----w- c:\program files\CCleaner
2009-10-30 11:49 . 2009-06-07 07:33 -------- d-----w- c:\program files\BitLocker
2009-10-30 11:49 . 2009-06-07 19:25 -------- d-----w- c:\program files\Athan
2009-10-30 11:48 . 2009-08-22 14:17 -------- d-----w- c:\program files\Apple Software Update
2009-10-30 11:48 . 2009-10-29 10:24 -------- d-----w- c:\program files\alaplaya
2009-10-30 11:48 . 2009-06-07 06:57 -------- d-----w- c:\program files\AGEIA Technologies
2009-10-30 11:48 . 2009-06-07 19:08 -------- d-----w- c:\program files\adslTV
2009-10-30 11:47 . 2009-06-07 13:47 -------- d-----w- c:\program files\Activision
2009-10-30 11:45 . 2009-10-30 11:45 -------- d-----w- c:\programdata\EPSON
2009-10-30 11:41 . 2009-10-30 11:41 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2009-10-30 00:28 . 2009-06-07 10:55 12 ----a-w- c:\windows\bthservsdp.dat
2009-10-29 12:28 . 2009-06-07 13:59 75064 ----a-w- c:\windows\system32\PnkBstrA.exe
2009-10-29 11:24 . 2009-06-07 13:59 22328 ----a-w- c:\users\Abdelkader\AppData\Roaming\PnkBstrK.sys
2009-10-29 11:24 . 2009-06-07 13:59 22328 ----a-w- c:\users\Abdelkader\AppData\Roaming\PnkBstrK.sys
2009-09-27 16:46 . 2009-09-27 16:46 4942440 ----a-w- c:\windows\system32\nvdisps.dll
2009-09-27 16:46 . 2009-09-27 16:46 13949544 ----a-w- c:\windows\system32\nvcpl.dll
2009-11-27 02:58 . 2009-06-07 14:32 47104 ----a-w- c:\program files\mozilla firefox\components\FFComm.dll
2009-09-25 16:41 . 2009-09-25 16:41 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll
2009-09-25 16:41 . 2009-09-25 16:41 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
kader-66
 
Messages: 31
Inscription: 10 Déc 2009, 23:23

Messagede kader-66 » 11 Déc 2009, 00:08

((((((((((((((((((((((((((((( SnapShot@2009-12-08_17.09.09 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-10-30 13:01 . 2009-12-10 19:53 40990 c:\windows\System32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 04:55 . 2009-12-10 19:53 50998 c:\windows\System32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2009-10-30 16:13 . 2009-12-10 18:41 67584 c:\windows\System32\LogFiles\Srt\bootstat.dat
- 2009-10-30 16:13 . 2009-10-31 11:02 67584 c:\windows\System32\LogFiles\Srt\bootstat.dat
- 2009-10-30 11:46 . 2009-12-08 16:17 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-10-30 11:46 . 2009-12-10 21:16 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-10-30 11:46 . 2009-12-08 16:17 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-10-30 11:46 . 2009-12-10 21:16 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:41 . 2009-12-10 21:16 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 04:41 . 2009-12-08 16:17 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-10-30 16:23 . 2009-12-10 21:13 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-10-30 16:23 . 2009-12-08 16:11 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:34 . 2009-12-10 19:54 20808 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
- 2009-10-30 16:23 . 2009-12-08 16:11 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-10-30 16:23 . 2009-12-10 21:13 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-10-30 16:23 . 2009-12-08 16:11 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-10-30 16:23 . 2009-12-10 21:13 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-10-30 15:24 . 2009-12-10 21:19 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-10-30 15:24 . 2009-12-08 16:03 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-10-30 16:23 . 2009-12-08 02:03 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\History\History.IE5\index.dat
+ 2009-10-30 16:23 . 2009-12-09 20:03 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\History\History.IE5\index.dat
+ 2009-10-30 16:23 . 2009-12-09 20:03 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\Fichiers Internet temporaires\Content.IE5\index.dat
- 2009-10-30 16:23 . 2009-12-08 02:03 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\Fichiers Internet temporaires\Content.IE5\index.dat
- 2009-10-30 16:23 . 2009-12-08 02:03 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\Cookies\index.dat
+ 2009-10-30 16:23 . 2009-12-09 20:03 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\Cookies\index.dat
- 2009-10-30 15:24 . 2009-12-08 16:03 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-10-30 15:24 . 2009-12-10 21:19 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-10-30 15:24 . 2009-12-08 16:03 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-10-30 15:24 . 2009-12-10 21:19 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-11-03 02:18 . 2009-12-10 12:32 6256 c:\windows\System32\wdi\ERCQueuedResolutions.dat
- 2009-11-03 02:18 . 2009-11-28 02:17 6256 c:\windows\System32\wdi\ERCQueuedResolutions.dat
- 2009-11-02 15:21 . 2009-11-28 02:00 2248 c:\windows\System32\wdi\{88d4896f-f553-446a-9c75-9dec124ff8b7}.bin
+ 2009-11-02 15:21 . 2009-12-10 10:05 2248 c:\windows\System32\wdi\{88d4896f-f553-446a-9c75-9dec124ff8b7}.bin
+ 2009-10-30 13:46 . 2009-12-10 19:53 7814 c:\windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-4165229912-2147149674-2309070950-1000_UserData.bin
- 2009-12-08 16:13 . 2009-12-08 16:13 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2009-12-10 21:14 . 2009-12-10 21:14 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2009-12-10 21:14 . 2009-12-10 21:14 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2009-12-08 16:13 . 2009-12-08 16:13 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-10-31 11:27 . 2009-07-14 01:16 410624 c:\windows\winsxs\x86_microsoft-windows-systemcpl_31bf3856ad364e35_6.1.7600.16385_none_e0abcaa7bf6258b5\systemcpl.dll
- 2009-10-30 17:19 . 2009-07-14 01:16 410624 c:\windows\winsxs\x86_microsoft-windows-systemcpl_31bf3856ad364e35_6.1.7600.16385_none_e0abcaa7bf6258b5\systemcpl.dll
+ 2006-10-18 09:32 . 2006-10-18 09:32 807032 c:\windows\System32\wmv9dmod.dll
+ 2009-10-30 15:22 . 2009-12-10 10:05 339586 c:\windows\System32\wdi\SuspendPerformanceDiagnostics_SystemData_FastS4.bin
- 2009-07-14 02:05 . 2009-12-08 11:13 609896 c:\windows\System32\perfh009.dat
+ 2009-07-14 02:05 . 2009-12-09 17:21 609896 c:\windows\System32\perfh009.dat
- 2009-07-14 02:05 . 2009-12-08 11:13 104214 c:\windows\System32\perfc009.dat
+ 2009-07-14 02:05 . 2009-12-09 17:21 104214 c:\windows\System32\perfc009.dat
- 2009-07-14 04:33 . 2009-12-08 02:27 411112 c:\windows\System32\FNTCACHE.DAT
+ 2009-07-14 04:33 . 2009-12-08 18:46 411112 c:\windows\System32\FNTCACHE.DAT
- 2009-07-14 02:03 . 2009-12-08 03:22 6553600 c:\windows\System32\SMI\Store\Machine\SCHEMA.DAT
+ 2009-07-14 02:03 . 2009-12-10 18:15 6553600 c:\windows\System32\SMI\Store\Machine\SCHEMA.DAT
.
-- Instantané actualisé --
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe -startup" [X]
"Speech Recognition"="c:\windows\Speech\Common\sapisvr.exe -SpeechUX -Startup" [X]
"Steam"="c:\program files\Steam\Steam.exe -silent" [X]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"eyeBeam SIP Client"="c:\program files\CounterPath\X-Lite\x-lite.exe" [2009-06-05 23207936]
"Mon Widget RMC"="c:\program files\Nosibay\Mon Widget RMC\launcher.exe" [2008-10-13 185872]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2009-10-09 25623336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe -start" [X]
"HomePlayer"="c:\program files\HomePlayer\HomePlayer.exe -autostart" [X]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe -atboottime" [X]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-05-22 7514656]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2009-08-13 177440]
"Athan"="c:\program files\Athan\Athan.exe" [2009-05-01 1130496]
"PAC7311_Monitor"="c:\windows\PixArt\PAC7311\Monitor.exe" [2006-11-03 319488]
"ThreatFire"="c:\program files\ThreatFire\TFTray.exe" [2009-11-23 378128]
"tsnp2std"="c:\windows\tsnp2std.exe" [2007-01-05 258048]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]
"KEMailKb"="c:\progra~1\KEMailKb\DsiMmKbd.EXE" [2007-01-08 471040]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2009-11-09 180224]
"BitDefender Antiphishing Helper"="c:\program files\BitDefender\BitDefender 2010\IEShow.exe" [2009-11-27 71152]
"BDAgent"="c:\program files\BitDefender\BitDefender 2010\bdagent.exe" [2009-11-27 1118144]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-11-12 141600]

c:\users\Abdelkader\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Notification de cadeaux MSN.lnk - c:\users\Abdelkader\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe [2009-9-5 135680]
Xfire.lnk - c:\program files\Xfire\Xfire.exe [2009-11-30 3181456]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
La Solution Ciel.lnk - c:\program files\Ciel\Starter.exe [2009-11-4 155648]
LaunchU3.exe.lnk - c:\windows\Installer\{D8E363A7-88B7-446D-B2C0-E26CE4DC8E54}\_294823.exe [2009-8-29 22486]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv

R0 TfFsMon;TfFsMon;c:\windows\System32\drivers\TfFsMon.sys [23/11/2009 20:27 51984]
R0 TfSysMon;TfSysMon;c:\windows\System32\drivers\TfSysMon.sys [23/11/2009 20:27 59664]
R1 bdfwfpf;bdfwfpf;c:\program files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys [01/09/2009 15:24 79368]
R2 mmkbd;Dritek USB HID Device Filter Driver;c:\windows\System32\drivers\mmkbd.sys [05/01/2007 10:59 29712]
R3 BDFM;BDFM;c:\windows\System32\drivers\bdfm.sys [08/10/2009 15:25 152456]
R3 PAC7311;StarCam mini;c:\windows\System32\drivers\PA707UCM.SYS [13/02/2007 17:01 448896]
R3 TfNetMon;TfNetMon;c:\windows\System32\drivers\TfNetMon.sys [23/11/2009 20:27 33552]
S0 sptd;sptd;c:\windows\System32\drivers\sptd.sys [07/06/2009 13:38 721904]
S3 fssfltr;fssfltr;c:\windows\System32\drivers\fssfltr.sys [30/09/2009 21:56 54632]

--- Autres Services/Pilotes en mémoire ---

*Deregistered* - MBAMProtector

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
bdx REG_MULTI_SZ scan
.
------- Examen supplémentaire -------
.
uInternet Settings,ProxyOverride = *.local
Trusted Zone: google.fr\www
Trusted Zone: msn.com\fr
TCP: {0CB6DAF2-5DE8-4689-A3CD-9ED21599B4A1} = 212.27.40.240,212.27.40.241
DPF: Microsoft XML Parser for Java - file:///C:/Windows/Java/classes/xmldso.cab
FF - ProfilePath - c:\users\Abdelkader\AppData\Roaming\Mozilla\Firefox\Profiles\92x8qyx0.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/news?hl=fr&q=&sou ... r&ie=UTF-8
FF - prefs.js: keyword.URL - hxxp://search.live.com/results.aspx?mkt ... =MIMWA5&q=
FF - component: c:\program files\Mozilla Firefox\components\FFComm.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\ma-config.com\nphardwaredetection.dll
FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Virtual Earth 3D\npVE3D.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- PARAMETRES FIREFOX ----
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
.
kader-66
 
Messages: 31
Inscription: 10 Déc 2009, 23:23

Messagede kader-66 » 11 Déc 2009, 00:08

--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_USERS\S-1-5-21-4165229912-2147149674-2309070950-1000_Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):1f,7b,76,a7,a1,2b,58,36,37,6c,0f,33,fe,87,ff,2e,56,9b,ce,7f,b9,
c6,22,03,e4,3e,5a,12,19,0d,37,aa,55,d7,86,e4,4f,9b,13,9a,00,00,00,00,00,00,\

[HKEY_USERS\S-1-5-21-4165229912-2147149674-2309070950-1000_Classes\CLSID\{be98f003-9e28-4b6f-bf90-f09c9af0c592}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:00000150
"Therad"=dword:0000000a
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'winlogon.exe'(752)
c:\program files\ThreatFire\TFWAH.dll

- - - - - - - > 'lsass.exe'(684)
c:\program files\ThreatFire\TFWAH.dll
.
Heure de fin: 2009-12-10 22:58:18
ComboFix-quarantined-files.txt 2009-12-10 21:58
ComboFix2.txt 2009-12-08 17:19

Avant-CF: 38 113 783 808 octets libres
Après-CF: 37 556 572 160 octets libres

- - End Of File - - A9242F5E6A7667EAB3C54CC50B4FB06A
kader-66
 
Messages: 31
Inscription: 10 Déc 2009, 23:23

Messagede kader-66 » 11 Déc 2009, 00:09

Voilà tu as les deux rapports
kader-66
 
Messages: 31
Inscription: 10 Déc 2009, 23:23

Messagede nickW » 11 Déc 2009, 00:29

Bonsoir,

As-tu essayé de renommer mbam.exe en bidule.exe avant de le lancer (via un double clic sur bidule.exe)?

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede kader-66 » 11 Déc 2009, 00:37

Je viens d'essayer et rien à faire impossible de le faire démarrer. Cependant, j'arrive à le lancer en mode sans echec, et il a découvert 3 objets infectés "hijjack", je ne sais ce que cela veut dire et à quoi cela correspond.
kader-66
 
Messages: 31
Inscription: 10 Déc 2009, 23:23

Messagede kader-66 » 16 Déc 2009, 18:22

Mon problème n'est toujours pas réglé et plus personne pour m'aider, c'est dommage !
kader-66
 
Messages: 31
Inscription: 10 Déc 2009, 23:23

Messagede nickW » 16 Déc 2009, 19:06

Bonsoir,

1/ Tu envoies un rapport de Spybot-S&D incomplet: il manque la fin, qui détaille les éléments nuisibles détectés.

2/ Tu as utilisé seul ComboFix, malgré les mises en garde officielles: http://www.bleepingcomputer.com/combofi ... r-combofix

3/ Je te demande le rapport de ComboFix, et tu envoies le rapport d'une seconde exécution de ComboFix (10/12/2009).
Le rapport généré par la première exécution de ComboFix (le 08/12/2009) m'est également indispensable (contenu du fichier ComboFix2.txt).

4/ Pourquoi n'as-tu pas envoyé le rapport de MBAM exécuté en mode sans échec?

5/ Tu as fait analyser ton PC sur RunScanner. Où est le résultat de cette analyse? Qu'as-tu corrigé?


Tu ne me donnes pas d'éléments pour t'aider!

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Suivante

Retourner vers Sécurité (Contamination - Décontamination)

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 14 invités

cron