Se connecter / S'enregistrer
Votre question

Lenteur interminable

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
23 Avril 2009 23:17:50

Bonjour,
alors voilà, j'ouvre mon portable et j'attend qu'il démarre. Lorsque ma session est enfin ouverte, je clic sur msn puis sur firefox et j'attend... après 2 minutes msn s'ouvre et firefox suit aussitôt ce qui fait geler mon ordinateur pendant quelques secondes. Je veux aller sur msn et il bug complètement... je vois l'icone que je suis connectée, mais dans la fenêtre tout est blanc. Je veux la réduire... ça prend une bonne grosse minute pour que ce soit fait.

Côté firefox, il démarre avec la dernière page que j'avais d'ouverte lorsque je l'ai fermé. Ça a pris 4-5 minutes pour que la page load complètement. Et la lenteur par dessus tout!

Bref, je retourne vers msn et la il m'avertit que je n'ai pas pu être connectée. Le compte a rebours pour retenter se terminer et BANG mon ordi bug encore. Msn ne répond pas alors je ferme le processus (fin des tâches ne fait rien du tout!). Maintenant... mon portable avance aussi bien qu'avant... même si parfois il répond plus lentement que d'habitude et que c'est très long ouvrir une fenetre (ex. mes documents). Faire un clic gauche sur un fichier... alors là j'abandonne! 1 bonne minute avant que le menu déroulant apparaisse et mon ordi bug durant quelques secondes, ce qui fait que le menu se referme tout seul.

Je vais devenir folle... un virus ou bien mon portable à décidé d'être en grêve de lui-même?

Merci bien de me répondre.
Fa'b

Autres pages sur : lenteur interminable

24 Avril 2009 08:39:44

Bonjour Fabeme,

Pour vérifier que ce n'est pas un virus ou autre, le mieux est encore de commencer par poster ici un "rapport Hijackthis"

Télécharge Hijackthis (de Trend Micro) sur ton Bureau.
  • Double clique sur HJTInstall.exe pour lancer l'installation.
  • Clique sur Install.
  • Double clique sur le raccourci d'HijackThis qui vient d'être créé pour le lancer. (Clique droit -> lancer en tant qu'admin si sous Vista)
  • Accepte la licence en cliquant sur Yes.
  • Clique sur Do a system scan and save a logfile.
  • Poste ici le rapport généré.

    Note : Le rapport se trouve également ici : C:\Program Files\Trend Micro\Hijackthis\Hijackthis.log


  • Je précise que ce n'est pas moi qui analysera ce log (pas compétente ! [:_set_] ) mais malgré la période d'exams approchant, il y aura bien un "helper" pour t'aider :) 

    Bon courage


    24 Avril 2009 22:33:57

    Merci merci... alors voilà le résultat obtenu... pas besoin de se presser pour les réponses de toute façon je n'ai pas internet avant lundi alors à plus tard!

    1. Logfile of Trend Micro HijackThis v2.0.2
    2. Scan saved at 16:32:11, on 2009-04-24
    3. Platform: Windows XP SP3 (WinNT 5.01.2600)
    4. MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    5. Boot mode: Normal
    6.  
    7. Running processes:
    8. C:\WINDOWS\System32\smss.exe
    9. C:\WINDOWS\system32\winlogon.exe
    10. C:\WINDOWS\system32\services.exe
    11. C:\WINDOWS\system32\lsass.exe
    12. C:\WINDOWS\system32\Ati2evxx.exe
    13. C:\WINDOWS\system32\svchost.exe
    14. C:\WINDOWS\System32\svchost.exe
    15. C:\WINDOWS\system32\svchost.exe
    16. C:\WINDOWS\system32\ACS.exe
    17. C:\WINDOWS\system32\spoolsv.exe
    18. C:\Program Files\Avira\AntiVir Desktop\sched.exe
    19. C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    20. C:\Program Files\Java\jre6\bin\jqs.exe
    21. C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
    22. C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
    23. C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
    24. C:\WINDOWS\system32\svchost.exe
    25. C:\WINDOWS\system32\Ati2evxx.exe
    26. C:\WINDOWS\Explorer.EXE
    27. C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
    28. C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    29. C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    30. C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    31. C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    32. C:\WINDOWS\system32\ctfmon.exe
    33. C:\WINDOWS\system32\wbem\wmiapsrv.exe
    34. C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    35. C:\Program Files\Windows Live\Messenger\usnsvc.exe
    36. C:\Program Files\Mozilla Firefox\firefox.exe
    37. C:\Documents and Settings\Fabella\Bureau\HiJackThis.exe
    38.  
    39. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    40. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = <a href="http://go.microsoft.com/fwlink/?LinkId=69157" rel="nofollow" target="_blank">http://go.microsoft.com/fwlink/?LinkId=69157</a>
    41. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = <a href="http://go.microsoft.com/fwlink/?LinkId=54896" rel="nofollow" target="_blank">http://go.microsoft.com/fwlink/?LinkId=54896</a>
    42. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = <a href="http://go.microsoft.com/fwlink/?LinkId=54896" rel="nofollow" target="_blank">http://go.microsoft.com/fwlink/?LinkId=54896</a>
    43. R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = <a href="http://go.microsoft.com/fwlink/?LinkId=69157" rel="nofollow" target="_blank">http://go.microsoft.com/fwlink/?LinkId=69157</a>
    44. R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    45. O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll
    46. O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    47. O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    48. O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    49. O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
    50. O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    51. O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    52. O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    53. O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
    54. O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    55. O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    56. O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    57. O4 - HKLM\..\Run: [NodLogin] "C:\Program Files\ESET\ESET Smart Security\nodlogin.exe" /o
    58. O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
    59. O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    60. O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    61. O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    62. O8 - Extra context menu item: Add to Video Converter... - C:\Program Files\MP3 Player Utilities 5.11\AVIConverter\grab.html
    63. O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    64. O8 - Extra context menu item: Tout télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
    65. O8 - Extra context menu item: Télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
    66. O8 - Extra context menu item: Télécharger toutes les vidéos avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
    67. O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    68. O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll/206 (file missing)
    69. O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    70. O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    71. O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    72. O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    73. O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing
    74. O16 - DPF: CabBuilder - <a href="http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab" rel="nofollow" target="_blank">http://kiw.imgag.com/imgag/kiw/toolbar/download/Install...</a>
    75. O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - <a href="http://go.microsoft.com/fwlink/?linkid=39204" rel="nofollow" target="_blank">http://go.microsoft.com/fwlink/?linkid=39204</a>
    76. O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - <a href="http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab" rel="nofollow" target="_blank">http://messenger.zone.msn.com/binary/msgrchkr.cab56986....</a>
    77. O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - <a href="http://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1220359579272" rel="nofollow" target="_blank">http://catalog.update.microsoft.com/v7/site/ClientContr...</a>
    78. O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - <a href="http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab" rel="nofollow" target="_blank">http://messenger.zone.msn.com/binary/SolitaireShowdown....</a>
    79. O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - <a href="http://messenger.zone.msn.com/FR-CA/a-UNO1/GAME_UNO1.cab" rel="nofollow" target="_blank">http://messenger.zone.msn.com/FR-CA/a-UNO1/GAME_UNO1.ca...</a>
    80. O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} -
    81. O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - <a href="http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1220358329491" rel="nofollow" target="_blank">http://www.update.microsoft.com/windowsupdate/v6/V5Cont...</a>
    82. O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - <a href="http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1220358615975" rel="nofollow" target="_blank">http://www.update.microsoft.com/microsoftupdate/v6/V5Co...</a>
    83. O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - <a href="http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab" rel="nofollow" target="_blank">http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...</a>
    84. O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - <a href="http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab" rel="nofollow" target="_blank">http://messenger.zone.msn.com/binary/MessengerStatsPACl...</a>
    85. O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - <a href="http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab" rel="nofollow" target="_blank">http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...</a>
    86. O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - <a href="http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab" rel="nofollow" target="_blank">http://messenger.zone.msn.com/binary/MineSweeper.cab569...</a>
    87. O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - <a href="https://secure.gopetslive.com/dev/GoPetsWeb.cab" rel="nofollow" target="_blank">https://secure.gopetslive.com/dev/GoPetsWeb.cab</a>
    88. O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    89. O20 - AppInit_DLLs: wbsys.dll
    90. O23 - Service: ArcSoft Connect Daemon (ACDaemon) - - (no file)
    91. O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\ACS.exe
    92. O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
    93. O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    94. O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
    95. O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    96. O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    97. O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
    98. O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
    99.  
    100. --
    101. End of file - 8442 bytes
    Contenus similaires
    a c 293 8 Sécurité
    24 Avril 2009 22:39:14

    Bonjour,

    Je ne vois pas d'infection dans ce rapport.

  • Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
  • Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
  • Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
  • Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
  • Sélectionne Exécuter un examen rapide.
  • Clique sur Rechercher. L'analyse démarre.
  • A la fin de l'analyse, un message s'affiche :
    Citation :
    L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

  • Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
  • Ferme tes navigateurs.
  • Si des malwares ont été détectés, clique sur Afficher les résultats.
  • Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
  • MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
    27 Avril 2009 16:33:09

    Voilà voilà :p 

    Malwarebytes' Anti-Malware 1.36
    Version de la base de données: 2047
    Windows 5.1.2600 Service Pack 3

    2009-04-27 10:32:23
    mbam-log-2009-04-27 (10-32-22).txt

    Type de recherche: Examen rapide
    Eléments examinés: 79295
    Temps écoulé: 47 minute(s), 25 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 2
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 4
    Fichier(s) infecté(s): 274

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    HKEY_LOCAL_MACHINE\SOFTWARE\RegTool (Rogue.RegTool) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\RegTool (Rogue.RegTool) -> Quarantined and deleted successfully.

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    C:\Documents and Settings\Fabella\Application Data\RegTool (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\Logs (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310 (Rogue.RegTool) -> Quarantined and deleted successfully.

    Fichier(s) infecté(s):
    C:\Documents and Settings\Fabella\Application Data\RegTool\resultsw.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\Logs\2009-02-04 21-26-350.log (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\filelist.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-0.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-1.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-10.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-100.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-101.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-102.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-103.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-104.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-105.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-106.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-107.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-108.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-109.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-11.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-110.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-111.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-112.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-113.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-114.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-115.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-116.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-117.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-118.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-119.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-12.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-120.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-121.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-122.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-123.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-124.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-125.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-126.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-127.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-128.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-129.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-13.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-130.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-131.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-132.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-133.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-134.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-135.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-136.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-137.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-138.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-139.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-14.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-140.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-141.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-142.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-143.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-144.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-145.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-146.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-147.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-148.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-149.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-15.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-150.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-151.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-152.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-153.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-154.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-155.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-156.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-157.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-158.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-159.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-16.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-160.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-161.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-162.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-163.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-164.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-165.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-166.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-167.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-168.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-169.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-17.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-170.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-171.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-172.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-173.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-174.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-175.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-176.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-177.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-178.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-179.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-18.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-180.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-181.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-182.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-183.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-184.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-185.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-186.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-187.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-188.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-189.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-19.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-190.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-191.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-192.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-193.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-194.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-195.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-196.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-197.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-198.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-199.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-2.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-20.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-200.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-201.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-202.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-203.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-204.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-205.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-206.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-207.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-208.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-209.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-21.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-210.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-211.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-212.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-213.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-214.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-215.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-216.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-217.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-218.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-219.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-22.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-220.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-221.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-222.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-223.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-224.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-225.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-226.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-227.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-228.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-229.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-23.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-230.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-231.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-232.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-233.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-234.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-235.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-236.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-237.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-238.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-239.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-24.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-240.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-241.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-242.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-243.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-244.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-245.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-246.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-247.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-248.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-249.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-25.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-250.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-251.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-252.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-253.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-254.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-255.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-256.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-257.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-258.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-259.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-26.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-260.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-261.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-262.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-263.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-264.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-265.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-266.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-267.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-268.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-269.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-27.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-28.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-29.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-3.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-30.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-31.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-32.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-33.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-34.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-35.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-36.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-37.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-38.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-39.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-4.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-40.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-41.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-42.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-43.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-44.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-45.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-46.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-47.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-48.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-49.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-5.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-50.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-51.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-52.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-53.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-54.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-55.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-56.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-57.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-58.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-59.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-6.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-60.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-61.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-62.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-63.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-64.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-65.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-66.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-67.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-68.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-69.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-7.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-70.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-71.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-72.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-73.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-74.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-75.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-76.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-77.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-78.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-79.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-8.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-80.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-81.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-82.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-83.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-84.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-85.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-86.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-87.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-88.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-89.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-9.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-90.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-91.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-92.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-93.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-94.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-95.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-96.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-97.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-98.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Fabella\Application Data\RegTool\QuarantineW\2009-02-04 21-38-310\regb-99.db (Rogue.RegTool) -> Quarantined and deleted successfully.
    C:\WINDOWS\Tasks\RegTool Scan.job (Rogue.RegTool) -> Quarantined and deleted successfully.
    a c 293 8 Sécurité
    27 Avril 2009 16:36:05

  • Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
  • Double-clique sur RSIT.exe afin de lancer le programme.
    (Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)
  • Clique sur Continue à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

    Note : les rapports sont sauvegardés dans le dossier C:\rsit.
    27 Avril 2009 19:25:10

    Fichier log

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Fabella at 2009-04-27 13:17:24
    Microsoft Windows XP Édition familiale Service Pack 3
    System drive C: has 19 GB (34%) free of 57 GB
    Total RAM: 447 MB (15% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 13:19:58, on 2009-04-27
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\ACS.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Avira\AntiVir Desktop\sched.exe
    C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\wbem\wmiapsrv.exe
    C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    C:\Program Files\HP\HP Software Update\HPWuSchd.exe
    C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\Fabella\Bureau\RSIT.exe
    C:\Documents and Settings\Fabella\Bureau\Fabella.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
    O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
    O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd.exe"
    O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O8 - Extra context menu item: Add to Video Converter... - C:\Program Files\MP3 Player Utilities 5.11\AVIConverter\grab.html
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Tout télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
    O8 - Extra context menu item: Télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
    O8 - Extra context menu item: Télécharger toutes les vidéos avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll/206 (file missing)
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing
    O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/Install...
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986....
    O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - http://catalog.update.microsoft.com/v7/site/ClientContr...
    O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-CA/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} -
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Cont...
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Co...
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
    O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
    O20 - AppInit_DLLs: wbsys.dll
    O23 - Service: ArcSoft Connect Daemon (ACDaemon) - - (no file)
    O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\ACS.exe
    O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
    O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

    --
    End of file - 8013 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    C:\WINDOWS\tasks\Schedule Task Weekly.job
    C:\WINDOWS\tasks\User_Feed_Synchronization-{96319633-07FD-475D-A914-D1C8E88303D2}.job
    C:\WINDOWS\tasks\WebReg 20090426142828.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
    BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll [2009-03-02 636216]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-27 35840]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-27 73728]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-05 455168]
    "PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-05 455168]
    "IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-05 208952]
    "ATIModeChange"=C:\WINDOWS\system32\Ati2mdxx.exe [2001-09-04 28672]
    "ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2004-03-09 335872]
    "SynTPLpr"=C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [2004-01-22 98304]
    "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2004-01-22 495616]
    "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
    "HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd.exe [2003-08-04 49152]
    "HP Component Manager"=C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [2003-12-22 241664]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
    C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent DNA]
    C:\Program Files\DNA\btdna.exe [2009-01-08 342848]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
    C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
    C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2007-10-18 5724184]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    C:\Program Files\QuickTime\QTTask.exe [2009-01-05 413696]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"="wbsys.dll "

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
    C:\WINDOWS\system32\Ati2evxx.dll [2004-03-09 86016]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
    "notification packages"=
    scecli
    scecli

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=145

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:D NA"
    "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"="C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:*:Enabled:Veoh Web Player "
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
    "C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fbb48e0a-9718-11dd-be07-00a0d1b969dc}]
    shell\AutoRun\command - I:\LaunchU3.exe


    ======File associations======

    .js - edit -
    .js - open -
    .txt - open -

    ======List of files/folders created in the last 1 months======

    2009-04-27 13:17:24 ----D---- C:\rsit
    2009-04-25 13:05:34 ----RA---- C:\WINDOWS\system32\MSXML4a.dll
    2009-04-25 13:05:33 ----RA---- C:\WINDOWS\system32\hpvcr70.dll
    2009-04-25 13:05:33 ----RA---- C:\WINDOWS\system32\hpvcp70.dll
    2009-04-25 13:05:33 ----RA---- C:\WINDOWS\system32\hpvaut32.dll
    2009-04-25 13:05:07 ----D---- C:\Program Files\Fichiers communs\Hewlett-Packard
    2009-04-25 13:00:25 ----D---- C:\Program Files\Fichiers communs\HP
    2009-04-25 12:56:15 ----D---- C:\Program Files\HP
    2009-04-25 12:55:34 ----RA---- C:\WINDOWS\system32\HPZipt12.dll
    2009-04-25 12:55:33 ----RA---- C:\WINDOWS\system32\HPZisn12.dll
    2009-04-25 12:55:33 ----RA---- C:\WINDOWS\system32\HPZipr12.dll
    2009-04-25 12:55:33 ----RA---- C:\WINDOWS\system32\HPZipm12.exe
    2009-04-25 12:55:33 ----RA---- C:\WINDOWS\system32\HPZinw12.exe
    2009-04-25 12:55:32 ----RA---- C:\WINDOWS\system32\HPZidr12.dll
    2009-04-25 12:54:32 ----RA---- C:\WINDOWS\system32\HPZc3212.dll
    2009-04-25 12:54:32 ----RA---- C:\WINDOWS\system32\hpovst08.dll
    2009-04-25 12:54:31 ----RA---- C:\WINDOWS\system32\hpotscl.dll
    2009-04-25 12:54:30 ----RA---- C:\WINDOWS\system32\hpgwiamd.dll
    2009-04-22 19:17:44 ----D---- C:\Program Files\Fichiers communs\eSellerate
    2009-04-21 16:25:21 ----D---- C:\Program Files\MediaMonkey
    2009-04-21 15:13:07 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
    2009-04-21 14:03:12 ----D---- C:\Documents and Settings\Fabella\Application Data\ESET
    2009-04-21 13:56:10 ----D---- C:\Documents and Settings\All Users\Application Data\ESET
    2009-04-14 18:31:50 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
    2009-04-14 18:31:38 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
    2009-04-14 18:27:44 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
    2009-04-14 18:27:13 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
    2009-04-14 18:26:57 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
    2009-04-14 18:21:43 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
    2009-04-13 22:42:06 ----D---- C:\WINDOWS\ie8updates
    2009-04-13 22:37:46 ----HDC---- C:\WINDOWS\ie8
    2009-04-11 14:57:35 ----D---- C:\Program Files\Trend Micro
    2009-04-10 00:54:48 ----A---- C:\WINDOWS\unin040c.exe
    2009-04-09 17:48:12 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-04-08 14:27:11 ----A---- C:\WINDOWS\system32\SynTPFcs.dll
    2009-04-08 14:27:11 ----A---- C:\WINDOWS\system32\SynTPCoI.dll
    2009-04-08 14:27:11 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
    2009-04-08 14:27:11 ----A---- C:\WINDOWS\system32\SynCtrl.dll
    2009-04-08 14:27:11 ----A---- C:\WINDOWS\system32\SynCOM.dll
    2009-04-08 14:27:10 ----D---- C:\Program Files\Synaptics
    2009-04-07 18:13:54 ----D---- C:\Documents and Settings\All Users\Application Data\comodo
    2009-04-07 18:13:50 ----D---- C:\Program Files\COMODO
    2009-04-07 17:33:51 ----D---- C:\Downloads
    2009-04-05 13:34:36 ----D---- C:\Program Files\Jeux
    2009-04-02 17:01:51 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$

    ======List of files/folders modified in the last 1 months======

    2009-04-27 13:13:50 ----D---- C:\Program Files\Mozilla Firefox
    2009-04-27 13:07:52 ----D---- C:\WINDOWS\Temp
    2009-04-27 13:06:39 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-04-27 10:38:16 ----D---- C:\WINDOWS\system32\drivers
    2009-04-27 10:32:20 ----SD---- C:\WINDOWS\Tasks
    2009-04-27 08:41:13 ----D---- C:\WINDOWS\Prefetch
    2009-04-27 08:34:36 ----D---- C:\WINDOWS
    2009-04-25 13:37:15 ----RD---- C:\Program Files
    2009-04-25 13:08:21 ----A---- C:\WINDOWS\win.ini
    2009-04-25 13:08:16 ----SHD---- C:\WINDOWS\Installer
    2009-04-25 13:05:51 ----RSD---- C:\WINDOWS\assembly
    2009-04-25 13:05:48 ----D---- C:\WINDOWS\system32
    2009-04-25 13:05:07 ----D---- C:\Program Files\Fichiers communs
    2009-04-25 12:54:51 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-04-25 12:54:43 ----HD---- C:\WINDOWS\inf
    2009-04-25 12:54:30 ----D---- C:\WINDOWS\twain_32
    2009-04-25 12:47:47 ----D---- C:\Documents and Settings\Fabella\Application Data\U3
    2009-04-25 12:28:47 ----D---- C:\Program Files\Fichiers communs\LogiShrd
    2009-04-25 12:28:47 ----D---- C:\Documents and Settings\All Users\Application Data\Logishrd
    2009-04-23 20:57:42 ----D---- C:\WINDOWS\network diagnostic
    2009-04-23 20:50:43 ----D---- C:\Program Files\BitComet
    2009-04-22 21:09:20 ----D---- C:\Program Files\Mozilla Firefox 3.1 Beta 3
    2009-04-21 15:13:07 ----D---- C:\Program Files\Avira
    2009-04-21 15:01:16 ----D---- C:\WINDOWS\WinSxS
    2009-04-21 15:01:14 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-04-21 14:38:07 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-04-17 23:22:24 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    2009-04-17 23:21:58 ----D---- C:\WINDOWS\Debug
    2009-04-17 21:52:25 ----D---- C:\Program Files\Fichiers communs\Adobe
    2009-04-17 21:52:25 ----D---- C:\Program Files\Adobe
    2009-04-17 21:52:16 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-04-17 21:47:32 ----D---- C:\Program Files\Diablo
    2009-04-17 21:29:47 ----D---- C:\Program Files\Starcraft
    2009-04-14 20:17:33 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-04-14 20:14:39 ----D---- C:\Program Files\eMule
    2009-04-14 20:12:32 ----D---- C:\WINDOWS\system32\wbem
    2009-04-14 20:12:32 ----D---- C:\WINDOWS\AppPatch
    2009-04-14 18:27:29 ----HD---- C:\WINDOWS\$hf_mig$
    2009-04-14 18:07:26 ----SD---- C:\Documents and Settings\Fabella\Application Data\Microsoft
    2009-04-14 15:16:06 ----D---- C:\Program Files\RealOTS
    2009-04-13 22:45:12 ----D---- C:\WINDOWS\system32\fr-fr
    2009-04-13 22:45:11 ----D---- C:\WINDOWS\Help
    2009-04-13 22:45:11 ----D---- C:\Program Files\Internet Explorer
    2009-04-13 22:40:24 ----D---- C:\WINDOWS\WBEM
    2009-04-13 22:40:11 ----D---- C:\WINDOWS\Media
    2009-04-13 19:03:46 ----A---- C:\WINDOWS\w32dasm8.ini
    2009-04-13 17:20:06 ----D---- C:\WINDOWS\system32\LogFiles
    2009-04-13 17:15:34 ----D---- C:\WINDOWS\Minidump
    2009-04-10 00:55:24 ----D---- C:\WINDOWS\system
    2009-04-08 14:30:22 ----D---- C:\WINDOWS\system32\ReinstallBackups
    2009-04-06 14:27:55 ----D---- C:\WINDOWS\system32\CatRoot
    2009-04-06 14:27:31 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-04-06 14:27:31 ----D---- C:\Program Files\ATI Technologies
    2009-04-06 10:57:24 ----A---- C:\WINDOWS\system32\MRT.exe
    2009-04-06 10:28:34 ----A---- C:\WINDOWS\WININIT.INI
    2009-04-05 17:23:25 ----A---- C:\WINDOWS\DUMP8ffb.tmp
    2009-04-05 16:32:07 ----D---- C:\Documents and Settings\Fabella\Application Data\DAEMON Tools Pro
    2009-04-02 17:08:27 ----D---- C:\WINDOWS\security
    2009-03-29 21:00:36 ----D---- C:\Documents and Settings\Fabella\Application Data\LimeWire
    2009-03-28 15:26:09 ----D---- C:\Program Files\WinRAR

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
    R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-02-13 95576]
    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 40576]
    R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-02-13 28376]
    R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-02-13 55640]
    R2 MDC8021X;AEGIS Protocol (IEEE 802.1x) v2.3.1.9; C:\WINDOWS\system32\DRIVERS\mdc8021x.sys [2008-09-02 15781]
    R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384]
    R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-02-27 611820]
    R3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2004-05-28 390944]
    R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
    R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-03-09 680448]
    R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
    R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
    R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2004-01-22 178816]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
    S3 a88di6yq;a88di6yq; C:\WINDOWS\system32\drivers\a88di6yq.sys []
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
    S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
    S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2004-02-26 51056]
    S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2004-02-26 16496]
    S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2004-02-26 21488]
    S3 LVRS;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs.sys [2008-07-26 627864]
    S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\LVUSBSta.sys [2008-07-26 41752]
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
    S3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2008-07-26 13848]
    S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2008-07-26 2570520]
    S3 RTL8023;Realtek RTL8139/810x/8169/8110 all in one NDIS NT Driver; C:\WINDOWS\system32\DRIVERS\Rtlnic51.sys [2003-12-05 68352]
    S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
    S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
    S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
    S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 ACS;Atheros Configuration Service; C:\WINDOWS\system32\ACS.exe [2004-04-09 20480]
    R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-03-05 108289]
    R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-03-02 185089]
    R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2004-03-09 397312]
    R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-27 152984]
    R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
    R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]
    R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
    S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
    S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
    S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
    S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
    S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-02-26 65795]
    S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

    -----------------EOF-----------------


    info

    info.txt logfile of random's system information tool 1.06 2009-04-27 13:20:43

    ======Uninstall list======

    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Shockwave Player 11.5-->C:\WINDOWS\system32\Adobe\uninstaller.exe
    Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
    Atheros Client Utility-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{71D658CF-4E0D-4DA8-AA67-8C0B6F1C01FE}\Setup.exe" -l0x40c
    ATI - Utilitaire de désinstallation du logiciel-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
    ATI Control Panel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
    ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:D ISPLAY -clean
    Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
    BitComet 1.10-->C:\Program Files\BitComet\uninst.exe
    CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
    Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
    Coffret de pilotes Logitech Legacy USB Camera-->"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\legacyqcam\10.51.2023\LgDrvInst.exe" -remove -instdir"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\legacyqcam\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -promptuninstall -arpregkey"legacyqcam_10.51" /clone_wait /hide_progress
    Coffret de pilotes Logitech QuickCam-->"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\lvdrivers\11.80.1048\LgDrvInst.exe" -remove -instdir"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\lvdrivers\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -promptuninstall -arpregkey"lvdrivers_11.80" /clone_wait /hide_progress
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    Dungeon Keeper-->C:\WINDOWS\unin040c.exe -fC:\WINDOWS\SYSTEM\KEEPER\DeIsL1.isu
    eMule-->"C:\Program Files\eMule\Uninstall.exe"
    filehippo.com Update Checker-->"C:\Program Files\filehippo.com\uninstall.exe"
    FileZilla Client 3.2.3.1-->C:\Program Files\FileZilla FTP Client\uninstall.exe
    Gestion d'énergie TOSHIBA-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\TOSHIBA\Power Saver\Uninst.isu" -c"C:\WINDOWS\system32\TPSDel.dll"
    HijackThis 2.0.2-->"C:\Documents and Settings\Fabella\Bureau\HijackThis.exe" /uninstall
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
    HP Image Zone 3.5-->C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
    HP PSC & OfficeJet 3.5-->"C:\Program Files\HP\Digital Imaging\{18E0918E-1060-48f3-925C-56C82E88551B}\setup\hpzscr01.exe" -datfile hposcr03.dat
    HP Software Update-->MsiExec.exe /X{34957B51-9676-41CE-9E52-44AE91B73F1C}
    Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
    Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
    K-Lite Codec Pack 4.7.0 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
    Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Les Sims 2 Académie-->C:\Program Files\Jeux\EA GAMES\Les Sims 2 Académie\EAUninstall.exe
    Les Sims 2 Fun en Famille Kit-->C:\Program Files\Jeux\EA GAMES\Les Sims 2 Fun en Famille Kit\EAUninstall.exe
    Les Sims 2 : La bonne affaire-->C:\Program Files\Jeux\EA GAMES\Les Sims 2  La bonne affaire\EAUninstall.exe
    Les Sims™ 2 Animaux & Cie-->C:\Program Files\Jeux\EA GAMES\Les Sims 2 Animaux & Cie\EAUninstall.exe
    Les Sims™ 2 Double Deluxe-->C:\Program Files\Jeux\EA GAMES\Les Sims 2 Double Deluxe\EAUninstall.exe
    Les Sims™ 2 Au fil des saisons-->C:\Program Files\Jeux\EA GAMES\Les Sims 2 Au fil des saisons\EAUninstall.exe
    Les Sims™ 2 Bon Voyage-->C:\Program Files\Jeux\EA GAMES\Les Sims 2 Bon Voyage\EAUninstall.exe
    LimeWire 5.1.2-->"C:\Program Files\LimeWire\uninstall.exe"
    Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
    MediaMonkey 3.0-->"C:\Program Files\MediaMonkey\unins000.exe"
    Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
    Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
    Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{72AD53CC-CCC0-3757-8480-9EE176866A7C}
    Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
    Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{0BD83598-C2EF-3343-847B-7D2E84599128}
    Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
    Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
    Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
    Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
    Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
    Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
    Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
    Microsoft Office Basic Edition 2003-->MsiExec.exe /I{91130409-6000-11D3-8CFE-0150048383C9}
    Microsoft Office PowerPoint Viewer 2003-->MsiExec.exe /X{90AF040C-6000-11D3-8CFE-0150048383C9}
    Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
    Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
    Microsoft Tool Web Package : EXCTRLST.EXE-->MsiExec.exe /X{B0650E3D-FDCA-4908-B74B-0CC1731BDB93}
    Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
    Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
    Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
    Mise à jour pour Windows Internet Explorer 8 (KB968220)-->"C:\WINDOWS\ie8updates\KB968220-IE8\spuninst\spuninst.exe"
    Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
    Mozilla Firefox (3.0.9)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    MP3 Player Utilities 5.11-->MsiExec.exe /I{8E79F5DD-4A0A-452B-B3F8-0651E4D24854}
    MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
    MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    MSXML4 Parser-->MsiExec.exe /I{01501EBA-EC35-4F9F-8889-3BE346E5DA13}
    ObjectDock Plus-->C:\PROGRA~1\Stardock\OBJECT~2\objectdock.exe /uninstall
    Outil de diagnostic PC TOSHIBA-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\TOSHIBA\PCDiag\Uninst.isu"
    Package de base Microsoft de service de chiffrement pour cartes à puce-->"C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe"
    QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
    RealOTS-->C:\Program Files\RealOTS\\uninstall.exe
    Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" REMOVE
    REALTEK Gigabit and Fast Ethernet NIC Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{94FB906A-CF42-4128-A509-D353026A607E}\SETUP.EXE" -l0xc0c REMOVE
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
    Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
    VC 9.0 Runtime-->MsiExec.exe /I{A040AC77-C1AA-4CC9-8931-9F648AF178F6}
    Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
    Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
    Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
    Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
    Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
    Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
    WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
    Wireless Hotkey-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7862BAD8-A379-4128-8AA1-EFD5A9603C53}\Setup.exe"
    XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"

    ======Hosts File======

    127.0.0.1 www.007guard.com
    127.0.0.1 007guard.com
    127.0.0.1 008i.com
    127.0.0.1 www.008k.com
    127.0.0.1 008k.com
    127.0.0.1 www.00hq.com
    127.0.0.1 00hq.com
    127.0.0.1 010402.com
    127.0.0.1 www.032439.com
    127.0.0.1 032439.com

    ======Security center information======

    AV: AntiVir Desktop

    ======System event log======

    Computer Name: NUM13
    Event Code: 8003
    Message: Le maître explorateur a reçu une annonce de serveur de l'ordinateur SEBASTIE-A4562C
    qui pense qu'il est le maître explorateur sur le domaine pour le transport NetBT_Tcpip_{EA52E517-CAC.
    Le maître explorateur s'arrête ou une élection est provoquée.

    Record Number: 18551
    Source Name: MRxSmb
    Time Written: 20090415150602.000000-240
    Event Type: error
    User:

    Computer Name: NUM13
    Event Code: 1003
    Message: Votre ordinateur n'a pas pu renouveler son adresse à partir du réseau (à partir
    du serveur DHCP) pour la carte réseau dont l'adresse réseau est 0011F530B006. Il s'est
    produit l'erreur suivante :
    L'opération a été annulée par l'utilisateur.
    .
    Votre ordinateur va continuer à essayer d'obtenir sa propre adresse auprès du
    serveur d'adresse réseau (DHCP).

    Record Number: 18520
    Source Name: Dhcp
    Time Written: 20090415141019.000000-240
    Event Type: warning
    User:

    Computer Name: NUM13
    Event Code: 8021
    Message: L'explorateur n'a pas pu retrouver la liste des serveurs du maître explorateur \\SEBASTIE-A4562C sur le réseau \Device\NetBT_Tcpip_{EA52E517-CAC7-4BA3-B7C5-CEA6CD0022DB}.
    La donnée est le code d'erreur.

    Record Number: 18513
    Source Name: BROWSER
    Time Written: 20090415123159.000000-240
    Event Type: warning
    User:

    Computer Name: NUM13
    Event Code: 7034
    Message: Le service Avira AntiVir Personal - Free Antivirus Guard s'est terminé de façon inattendue pour la 1ème fois.

    Record Number: 18487
    Source Name: Service Control Manager
    Time Written: 20090415120909.000000-240
    Event Type: error
    User:

    Computer Name: NUM13
    Event Code: 8021
    Message: L'explorateur n'a pas pu retrouver la liste des serveurs du maître explorateur \\SEBASTIE-A4562C sur le réseau \Device\NetBT_Tcpip_{EA52E517-CAC7-4BA3-B7C5-CEA6CD0022DB}.
    La donnée est le code d'erreur.

    Record Number: 18449
    Source Name: BROWSER
    Time Written: 20090415102558.000000-240
    Event Type: warning
    User:

    =====Application event log=====

    Computer Name: NUM13
    Event Code: 12001
    Message: The Messenger Sharing USN Journal Reader service started successfully.

    Record Number: 40
    Source Name: usnjsvc
    Time Written: 20090324152758.000000-240
    Event Type:
    User:

    Computer Name: NUM13
    Event Code: 12001
    Message: The Messenger Sharing USN Journal Reader service started successfully.

    Record Number: 21
    Source Name: usnjsvc
    Time Written: 20090324140756.000000-240
    Event Type:
    User:

    Computer Name: NUM13
    Event Code: 1004
    Message: Échec de détection du produit '{BADF6744-3787-48F6-B8C9-4C4995401D65}', fonctionnalité 'MsgrFeat', composant '{33EF8657-5705-47D4-B01F-E96A27C1D8BD}. La ressource 'HKEY_CLASSES_ROOT\Typelib\{53CED51D-432B-45B2-A3E0-0CE2C24235D4}\' n'existe pas

    Record Number: 19
    Source Name: MsiInstaller
    Time Written: 20090324140215.000000-240
    Event Type: warning
    User: NUM13\Fabella

    Computer Name: NUM13
    Event Code: 5603
    Message: Un fournisseur, OffProv11, était inscrit dans l'espace de noms WMI, Root\MSAPPS11, mais n'a pas spécifié la propriété HostingModel. Ce fournisseur sera exécuté avec le compte LocalSystem. Ce compte bénéficie de privilèges et le fournisseur peut provoquer une violation de sécurité s'il ne représente pas correctement les demandes utilisateur. Vérifiez que le comportement sécuritaire du fournisseur a été contrôlé, et mettez à jour la propriété HostingModel de l'inscription du fournisseur vers un compte disposant du moins d'autorisations possible pour la fonctionnalité requise.

    Record Number: 8
    Source Name: WinMgmt
    Time Written: 20090323000719.000000-240
    Event Type: warning
    User: AUTORITE NT\SYSTEM

    Computer Name: NUM13
    Event Code: 5603
    Message: Un fournisseur, OffProv11, était inscrit dans l'espace de noms WMI, Root\MSAPPS11, mais n'a pas spécifié la propriété HostingModel. Ce fournisseur sera exécuté avec le compte LocalSystem. Ce compte bénéficie de privilèges et le fournisseur peut provoquer une violation de sécurité s'il ne représente pas correctement les demandes utilisateur. Vérifiez que le comportement sécuritaire du fournisseur a été contrôlé, et mettez à jour la propriété HostingModel de l'inscription du fournisseur vers un compte disposant du moins d'autorisations possible pour la fonctionnalité requise.

    Record Number: 7
    Source Name: WinMgmt
    Time Written: 20090323000719.000000-240
    Event Type: warning
    User: AUTORITE NT\SYSTEM

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\;C:\Program Files\ATI Technologies\ATI Control Panel
    "windir"=%SystemRoot%
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_LEVEL"=15
    "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 3 Stepping 4, GenuineIntel
    "PROCESSOR_REVISION"=0304
    "NUMBER_OF_PROCESSORS"=1
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
    "QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip
    "VERSION"=2.1.5
    "SESSIONID"=1239828269342g1u0358c.austin.hp.com2c59213a:120e593930c:-3c0a
    "COLLECTIONID"=COL7300
    "ITEMID"=oj-21919-1
    "UPDATEDIR"=C:\DOCUME~1\Fabella\LOCALS~1\Temp\rad2ADE5.tmp
    "TOOLPATH"=/C:/Program%20Files/HP/HP%20Software%20Update/install.htm
    "HMSERVER"=https://vausnzisprob.austin.hp.com/wuss/servlet/WUSSSer...
    "SWUTVER"=1.0.22.20030804
    "OSVER"=winXPH
    "LANG"=3084
    "TIMEOUT"=0

    -----------------EOF-----------------
    a c 293 8 Sécurité
    27 Avril 2009 19:30:59

    Peux-tu poster les rapports sans la balise Code ?
    27 Avril 2009 20:02:06

    Voilà, c'est édité
    a c 293 8 Sécurité
    27 Avril 2009 20:22:04

    Ok, tes problèmes sont apparus "comme ça" ?
    27 Avril 2009 21:04:01

    Eh bien disons que mon portable est partagé avec ma petite soeur qui fait souvent des folies. Mais pour ce qui est de ce problème qui "gèle", c'est tout récent. Ça arrivait parfois, mais jamais au point que je sois obligée de fermer quelque chose dans les processus. J'ai cru remarquer que Malware répétait souvent le mot RegTool et a moins que je me trompe, c'était un logiciel qu'elle avait installé dans l'espoir d'accélérer l'ordinateur. Il semblerait qu'il pouvait "réparer" les erreurs. C'est après avoir fait une recherche plus poussée que j'ai constaté que ce n'était pas vraiment quelque chose de bon. Bref... tout ça pour dire que c'est apparu "comme ça" j'ai beau questionner ma soeur elle dit n'avoir rien téléchargé... enfin :sarcastic: 
    a c 293 8 Sécurité
    27 Avril 2009 21:08:32

    RegTool est un rogue, à ne pas utiliser.

    Tente une défragmentation avec Defraggler par exemple.
    27 Avril 2009 21:12:31

    Defraggler? ok d'accord alors c'est terminé?
    Merci pour tout :p 
    a c 293 8 Sécurité
    27 Avril 2009 21:20:35

    Niveau infection, tu peux vérifier avec ceci :

  • Fais un scan en ligne ici : http://webscanner.kaspersky.fr/ (Avec Internet Explorer)

  • En bas à droite, clique sur Démarrer Online-scanner.

  • Dans la nouvelle fenêtre qui s'affiche, clique sur J'accepte.

  • Accepte les Contrôles ActiveX.

  • Choisis Poste de travail pour le scan.

  • Celui-ci terminé, sauvegarde (Choisis fichier texte) et poste le rapport.

  • Pour t'aider à utiliser le scan en ligne : Tutoriel

    Note : Si tu reçois le message La licence de Kaspersky On-line Scanner est périmée, va dans Ajout/Suppression de programmes puis désinstalle On-Line Scanner, reconnecte-toi sur le site de Kaspersky pour retenter le scan en ligne.
    29 Avril 2009 12:21:09

    Voilà le résultat :

    -------------------------------------------------------------------------------
    KASPERSKY ON-LINE SCANNER REPORT
    Wednesday, April 29, 2009 6:18:58 AM
    Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 3 (Build 2600)
    Kaspersky On-line Scanner version : 5.0.84.2
    Dernière mise à jour de la base antivirus Kaspersky : 28/04/2009
    Enregistrements dans la base antivirus Kaspersky : 1888433
    -------------------------------------------------------------------------------

    Paramètres d'analyse:
    Analyser avec la base antivirus suivante: standard
    Analyser les archives: vrai
    Analyser les bases de messagerie: vrai

    Cible de l'analyse - Poste de travail:
    C:\
    D:\
    E:\
    F:\
    G:\

    Statistiques de l'analyse:
    Total d'objets analysés: 57303
    Nombre de virus trouvés: 1
    Nombre d'objets infectés: 2 / 0
    Nombre d'objets suspects: 2
    Durée de l'analyse: 04:42:57

    Nom de l'objet infecté / Nom du virus / Dernière action
    C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\avguard.tmp L'objet est verrouillé ignoré
    C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp L'objet est verrouillé ignoré
    C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Cookies\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\IECompatCache\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\CardSpace\CardSpaceSP2.db L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\CardSpace\CardSpaceSP2.db.shadow L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\Internet Explorer\Recovery\Active\RecoveryStore.{7D137BA5-344C-11DE-BF9C-0011F530B006}.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\Internet Explorer\Recovery\Active\{914B8CE0-344C-11DE-BF9C-0011F530B006}.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\Internet Explorer\Recovery\Active\{914B8CE2-344C-11DE-BF9C-0011F530B006}.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\Messenger\fab-4ever@live.ca\SharingMetadata\Logs\Dfsr00005.log L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\Messenger\fab-4ever@live.ca\SharingMetadata\pending.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\Messenger\fab-4ever@live.ca\SharingMetadata\Working\database_54DC_9EF9_DC9E_D498\dfsr.db L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\Messenger\fab-4ever@live.ca\SharingMetadata\Working\database_54DC_9EF9_DC9E_D498\fsr.log L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\Messenger\fab-4ever@live.ca\SharingMetadata\Working\database_54DC_9EF9_DC9E_D498\fsrtmp.log L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\Messenger\fab-4ever@live.ca\SharingMetadata\Working\database_54DC_9EF9_DC9E_D498\tmp.edb L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\Windows Live Contacts\fab-4ever@live.ca\real\members.stg L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Application Data\Microsoft\Windows Live Contacts\fab-4ever@live.ca\shadow\members.stg L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Temp\fla95.tmp L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Temp\~DF255C.tmp L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Temp\~DF9BB1.tmp L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Temp\~DF9BC3.tmp L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Temp\~DF9CDD.tmp L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Temp\~DFA31B.tmp L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Temp\~DFE03.tmp L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Temp\~DFE59.tmp L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Temporary Internet Files\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\Local Settings\Temporary Internet Files\SuggestedSites.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\NTUSER.DAT L'objet est verrouillé ignoré
    C:\Documents and Settings\Fabella\ntuser.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
    C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
    C:\System Volume Information\_restore{C968027C-9A7A-4FAB-B541-2C56A5B76AE4}\RP202\A0197244.exe Suspect : EICAR-Test-File ignoré
    C:\System Volume Information\_restore{C968027C-9A7A-4FAB-B541-2C56A5B76AE4}\RP202\A0197245.exe Infecté : EICAR-Test-File ignoré
    C:\System Volume Information\_restore{C968027C-9A7A-4FAB-B541-2C56A5B76AE4}\RP202\A0197246.exe Infecté : EICAR-Test-File ignoré
    C:\System Volume Information\_restore{C968027C-9A7A-4FAB-B541-2C56A5B76AE4}\RP202\A0197247.exe Suspect : EICAR-Test-File ignoré
    C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré
    C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré
    C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré
    C:\WINDOWS\system32\CatRoot2\edb.log L'objet est verrouillé ignoré
    C:\WINDOWS\system32\CatRoot2\tmp.edb L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\DriverScanner.evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\Internet.evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\drivers\sptd.sys L'objet est verrouillé ignoré
    C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\LogFiles\WUDF\WUDFTrace.etl L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré
    C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré
    C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré

    Analyse terminée.
    a c 293 8 Sécurité
    29 Avril 2009 12:56:58

    Il n'a rien trouvé de grave.

    Pour Antivir 9, la version gratuite française est disponible.
    7 Mai 2009 21:23:11

    Je l'ai installé, merci pour tout
    8 Mai 2009 00:24:23

    J'ai été voir et il ne l'Est pas
    a c 293 8 Sécurité
    8 Mai 2009 08:39:02

    Ok, je n'ai rien d'autre à te proposer.
    26 Décembre 2010 20:54:42

    Bonjour


    J'ai le même souci que Fabeme, puis je te poster le rapport que je vais obtenir avec Hijackthis ?
    26 Décembre 2010 21:01:10

    Destrio5 a dit :
    Ok, je n'ai rien d'autre à te proposer.


    Je me permet de poster le log... si quelqu'un sait analyser cela, je suis preneur !
    Merci d'avance

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 20:58:03, on 26/12/2010
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\WLTRYSVC.EXE
    C:\WINDOWS\System32\bcmwltry.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    C:\WINDOWS\system32\basfipm.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Mozilla Firefox\plugin-container.exe
    C:\Documents and Settings\Pierre Emmanuel\Bureau\HijackThis.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
    O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    O23 - Service: Broadcom ASF IP monitoring service v6.0.4 (BAsfIpM) - Broadcom Corp. - C:\WINDOWS\system32\basfipm.exe
    O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
    O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
    O23 - Service: Fax - Unknown owner - C:\WINDOWS\system32\fxssvc.exe
    O23 - Service: Google Update Service (gupdate1c9ca40784e2638) (gupdate1c9ca40784e2638) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
    O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
    O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
    O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
    O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
    O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
    O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
    O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
    O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
    O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe

    --
    End of file - 5353 bytes

    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS