spyware qui ralentissent l'ouverture des page

Bonjour !

Télécharge random's system information tool (RSIT) (de random/random) et sauvegarde-le sur le Bureau.

Double-clique sur RSIT.exe afin de lancer RSIT    .

Clique Continue  à l'écran Disclaimer    .

Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de  log.txt  (<<qui sera affiché)
ainsi que de  nfo.txt  (<<qui sera réduit dans la Barre des Tâche

NB : Les rapports sont sauvegardés dans le dossier C:\rsit  

Veille bien à me poster l'intégralité des rapports, vérifie qu'ils soient complets une fois que tu les as postés.

Logfile of random's system information tool 1.04 (written by random/random)
Run by vincent at 2008-10-31 15:18:17
Microsoft Windows XP Édition familiale Service Pack 2
System drive C: has 2 GB (5%) free of 40 GB
Total RAM: 255 MB (12% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:18:42, on 2008-10-31
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\system32\SLEE503.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Alwil Software\Avast4\setup\avast.setup
C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\vincent.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Copernic Desktop Search 2 - {968631B6-4729-440D-9BF4-251F5593EC9A} - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by141fd.bay141.hotmail.msn.com/resources/MsnPUpl...
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Unknown owner - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE (file missing)
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe
O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe
O23 - Service: Steganos Live Encryption Engine (Version 503) [Service] (SLEE_503_SERVICE) - Unknown owner - C:\WINDOWS\system32\SLEE503.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: StarOpen - Unknown owner - (no file)
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 10422 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\B7FD719190DEE5CD.job
C:\WINDOWS\tasks\Maintenance en 1 clic.job
C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll [2007-12-05 464184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-07-07 1562448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll [2007-09-25 501136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar2.dll [2007-12-30 2403392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll [2008-10-31 652784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar avec bloqueur de fenêtres pop-up - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]
{968631B6-4729-440D-9BF4-251F5593EC9A} - Copernic Desktop Search 2 - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll [2007-08-01 1052192]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar2.dll [2007-12-30 2403392]
{D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll [2008-04-01 352256]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-10-22 7700480]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-07-19 78008]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2007-10-18 5724184]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2008-09-03 1576176]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-03-19 68856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!AVG Anti-Spyware]
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe [2007-06-11 6731312]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Arovax AntiSpyware]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast!]
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-07-19 78008]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
C:\WINDOWS\system32\ctfmon.exe [2004-08-05 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\fdpofhppoa]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hanobtuhcm]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igyac]
c:\documents and settings\vincent.zoroo-a6ec98604.000\local settings\application data\igyac.exe igyac []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2007-12-11 267048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoRepair]
C:\Program Files\Logitech\Video\ISStart.exe [2005-06-08 458752]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoTray]
C:\Program Files\Logitech\Video\LogiTray.exe [2005-06-08 217088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]
C:\WINDOWS\system32\LVCOMSX.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\News Service]
C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nForce Tray Options]
sstray.exe /r []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2006-10-22 7700480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\WINDOWS\system32\NvMcTray.dll [2006-10-22 86016]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NVMixerTray]
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe [2004-06-03 131072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PROGRAM 64 REGS THUNK]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2007-12-11 286720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiSUSBRG]
C:\WINDOWS\SiSUSBrg.exe [2002-07-12 106496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2006-11-24 487424]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2008-07-07 2156368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe [2007-09-25 132496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuperRam]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-03-19 68856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Veoh]
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe [2008-04-01 3587120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WINSOS VERIFY]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Antivirus Firewall.lnk]
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\fspex.exe -startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Launchy.lnk]
C:\PROGRA~1\Launchy\Launchy.exe [2007-04-20 552960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Outil de mise à jour Google.lnk]
C:\PROGRA~1\Google\GOOGLE~2\GOOGLE~1.EXE [2008-10-31 161264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-07-23 352256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WRNotifier]
WRLogonNTF.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"=C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll [2007-05-30 79408]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Driver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Driver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Guard]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Alwil Software\Avast4\ashAvast.exe"="C:\Program Files\Alwil Software\Avast4\ashAvast.exe:*:Enabled:avast! Antivirus"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\Shareaza\Shareaza.exe"="C:\Program Files\Shareaza\Shareaza.exe:*:Enabled:Shareaza"
"C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe"="C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe:*:Enabled:SiSoftware Database Agent Service"
"C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe"="C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe:*:Enabled:SiSoftware Sandra Agent Service"
"C:\Program Files\Morpheus\Morpheus.exe"="C:\Program Files\Morpheus\Morpheus.exe:*:Enabled:Morpheus"
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\Program Files\Veoh Networks\Veoh\VeohClient.exe"="C:\Program Files\Veoh Networks\Veoh\VeohClient.exe:*:Enabled:Veoh Client"
"C:\Program Files\SopCast\adv\SopAdver.exe"="C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver"
"C:\Program Files\SopCast\SopCast.exe"="C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0dd90b97-20e8-11dd-b762-00138feea14f}]
shell\AutoRun\command - K:\setupSNK.exe


======List of files/folders created in the last 1 months======

2008-10-31 15:16:19 ----D---- C:\rsit
2008-10-30 19:59:02 ----A---- C:\WINDOWS\system32\aswBoot.exe
2008-10-28 15:05:50 ----D---- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2008-10-28 15:04:15 ----D---- C:\Program Files\SUPERAntiSpyware
2008-10-28 15:04:14 ----D---- C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\Application Data\SUPERAntiSpyware.com
2008-10-27 13:07:19 ----D---- C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\Application Data\Malwarebytes
2008-10-27 13:07:03 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-10-27 13:07:02 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-10-26 14:53:36 ----D---- C:\Program Files\CUP
2008-10-24 02:01:59 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2008-10-17 02:07:07 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2008-10-17 02:06:57 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$
2008-10-17 02:06:44 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2008-10-17 02:06:30 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2008-10-17 02:05:35 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2008-10-17 02:01:49 ----HDC---- C:\WINDOWS\$NtUninstallKB956390$
2008-10-02 20:20:29 ----D---- C:\Program Files\K-Lite Codec Pack
2008-10-02 20:17:15 ----A---- C:\WINDOWS\system32\regsvr32.exe.log

======List of files/folders modified in the last 1 months======

2008-10-31 15:17:49 ----D---- C:\WINDOWS\Temp
2008-10-31 15:16:39 ----D---- C:\WINDOWS\Prefetch
2008-10-31 14:32:09 ----D---- C:\Program Files\Mozilla Firefox
2008-10-31 12:17:11 ----D---- C:\Documents and Settings\All Users\Application Data\Google Updater
2008-10-31 11:10:24 ----D---- C:\WINDOWS\system32\ias
2008-10-31 00:39:40 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-10-30 19:59:34 ----D---- C:\WINDOWS\system32\drivers
2008-10-30 19:59:29 ----D---- C:\WINDOWS\system32\config
2008-10-30 19:59:29 ----D---- C:\WINDOWS\system32
2008-10-29 08:59:10 ----RSD---- C:\WINDOWS\Fonts
2008-10-28 17:01:12 ----SH---- C:\boot.ini
2008-10-28 17:01:12 ----A---- C:\WINDOWS\win.ini
2008-10-28 17:01:12 ----A---- C:\WINDOWS\system.ini
2008-10-28 16:44:43 ----D---- C:\WINDOWS\system32\CatRoot2
2008-10-28 15:05:21 ----SHD---- C:\WINDOWS\Installer
2008-10-28 15:05:14 ----D---- C:\Config.Msi
2008-10-28 15:04:15 ----D---- C:\Program Files
2008-10-28 15:02:48 ----D---- C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-10-27 15:07:13 ----AC---- C:\WINDOWS\ntbtlog.txt
2008-10-26 13:53:37 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-10-26 13:46:18 ----D---- C:\WINDOWS
2008-10-26 13:46:17 ----AC---- C:\WINDOWS\WININIT.INI
2008-10-26 12:18:09 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-10-26 05:24:21 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-10-25 18:52:15 ----D---- C:\Program Files\eMule
2008-10-24 02:02:14 ----HD---- C:\WINDOWS\inf
2008-10-24 02:02:04 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-10-24 02:01:25 ----HD---- C:\WINDOWS\$hf_mig$
2008-10-17 02:07:12 ----A---- C:\WINDOWS\imsins.BAK
2008-10-17 02:02:07 ----D---- C:\Program Files\Internet Explorer
2008-10-16 14:39:23 ----D---- C:\WINDOWS\system32\CatRoot
2008-10-15 17:59:28 ----A---- C:\WINDOWS\system32\netapi32.dll
2008-10-07 20:19:40 ----A---- C:\WINDOWS\system32\MRT.exe
2008-10-02 20:22:46 ----D---- C:\WINDOWS\system32\wbem
2008-10-02 20:22:45 ----D---- C:\WINDOWS\Registration
2008-10-02 20:21:57 ----D---- C:\Program Files\Hitman Pro

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2008-07-19 26944]
R1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2004-08-05 41600]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2008-07-19 78416]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2008-07-19 42912]
R1 AVG Anti-Spyware Driver;AVG Anti-Spyware Driver; \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys []
R1 AvgAsCln;AVG Anti-Spyware Clean Driver; C:\WINDOWS\System32\DRIVERS\AvgAsCln.sys [2007-05-30 10872]
R1 fwdrv;Firewall Driver; C:\WINDOWS\system32\drivers\fwdrv.sys [2007-03-16 302000]
R1 khips;Kerio HIPS Driver; C:\WINDOWS\system32\drivers\khips.sys [2007-03-16 72496]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2003-09-06 51744]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-07-19 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2008-07-19 94416]
R2 irda;Protocole IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2004-08-03 87424]
R2 SLEE_503_DRIVER;Steganos Live Encryption Engine (Version 503) [Driver]; \??\C:\WINDOWS\system32\drivers\SLEE503.sys []
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2008-07-19 23152]
R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2003-10-17 754560]
R3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys [2007-04-29 223128]
R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2006-09-19 15664]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-10-22 3994624]
R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-05 5888]
R3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
R3 SISNIC;Pilote de carte Fast Ethernet PCI SiS; C:\WINDOWS\system32\DRIVERS\sisnic.sys [2004-08-03 32768]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-05 26624]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-05 57600]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-05 17024]
S1 avgio;avgio; \??\C:\Program Files\AntiVir PersonalEdition Classic\avgio.sys []
S1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys []
S1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
S1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys []
S1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys []
S3 a146jbc3;a146jbc3; C:\WINDOWS\system32\drivers\a146jbc3.sys []
S3 avgntflt;avgntflt; \??\C:\Program Files\AntiVir PersonalEdition Classic\avgntflt.sys []
S3 bDMusicb;bDMusicb; \??\C:\DOCUME~1\VINCENT\LOCALS~1\Temp\bDMusicb.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 DSDrv4;DSDrv4; \??\C:\PROGRA~1\K!TV\Plugins\S_Bt8x8\DSDrv4.sys []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2007-04-28 26056]
S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
S3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
S3 LVcKap;Logitech AEC Driver; C:\WINDOWS\system32\DRIVERS\LVcKap.sys [2007-02-06 1691808]
S3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys [2007-02-06 1964064]
S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys []
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
S3 ms_mpu401;Pilote UART MIDI MPU-401 Microsoft; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 PID_0928;Logitech QuickCam Express(PID_0928); C:\WINDOWS\system32\DRIVERS\LV561AV.SYS []
S3 se45bus;Sony Ericsson Device 069 driver (WDM); C:\WINDOWS\system32\DRIVERS\se45bus.sys [2006-11-30 61536]
S3 se45mdfl;Sony Ericsson Device 069 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\se45mdfl.sys [2006-11-30 9360]
S3 se45mdm;Sony Ericsson Device 069 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\se45mdm.sys [2006-11-30 97088]
S3 se45mgmt;Sony Ericsson Device 069 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\se45mgmt.sys [2006-11-30 88624]
S3 se45nd5;Sony Ericsson Device 069 USB Ethernet Emulation SEMC45 (NDIS); C:\WINDOWS\system32\DRIVERS\se45nd5.sys [2006-11-30 18704]
S3 se45obex;Sony Ericsson Device 069 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\se45obex.sys [2006-11-30 86432]
S3 se45unic;Sony Ericsson Device 069 USB Ethernet Emulation SEMC45 (WDM); C:\WINDOWS\system32\DRIVERS\se45unic.sys [2006-11-30 90800]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 usb_rndis;Broadcom USB Remote NDIS Device Driver; C:\WINDOWS\system32\DRIVERS\usb8023.sys [2004-08-05 12672]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2007-10-31 30464]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-03 59264]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2007-10-31 110592]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-07-19 16056]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-07-19 147640]
R2 AVG Anti-Spyware Guard;AVG Anti-Spyware Guard; C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe [2007-05-30 312880]
R2 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-10-31 168432]
R2 Irmon;Moniteur infrarouge; C:\WINDOWS\system32\svchost.exe [2004-08-05 14336]
R2 KPF4;Sunbelt Kerio Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe [2007-03-16 1222192]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-10-22 159810]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2008-04-07 66872]
R2 ProtexisLicensing;ProtexisLicensing; C:\WINDOWS\system32\PSIService.exe [2006-11-02 174656]
R2 SLEE_503_SERVICE;Steganos Live Encryption Engine (Version 503) [Service]; C:\WINDOWS\system32\SLEE503.exe [2002-11-28 40960]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-07-19 250040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-07-23 348344]
R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S2 BackWeb Plug-in - 6588780;Antivirus Firewall; C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE []
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe [2007-02-06 105248]
S2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2007-05-14 924672]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 Boonty Games;Boonty Games; C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe [2006-10-12 69120]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2007-12-11 504104]
S3 SandraDataSrv;SiSoftware Database Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe [2007-07-04 172216]
S3 SandraTheSrv;SiSoftware Sandra Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe [2007-07-04 1224896]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-05 14336]

-----------------EOF-----------------


Un seul rapport s'est ouvert ! merci !

j'ai retrouvé l'autre !

info.txt logfile of random's system information tool 1.04 2008-10-31 15:17:46

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
µTorrent 1.6 (Build 474)-->C:\Program Files\utorrent\Uninstal.exe
Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8.1.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81200000003}
Adobe Shockwave Player 11-->C:\WINDOWS\system32\adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
AIDA32 v3.93-->"C:\Program Files\AIDA32 - Personal System Information\unins000.exe"
Anfy-->C:\PROGRA~1\AnfyTeam\UNWISE.EXE C:\PROGRA~1\AnfyTeam\INSTALL.LOG
Apple Mobile Device Support-->MsiExec.exe /I{B5C209B1-8DDB-4642-A573-375B951514CB}
Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
Audacity 1.2.6-->"C:\Program Files\Audacity\unins000.exe"
Audacity 1.3.3 (Unicode)-->"C:\Program Files\Audacity 1.3 Beta (Unicode)\unins000.exe"
AusLogics Disk Defrag-->"C:\Program Files\Auslogics\AusLogics Disk Defrag\unins000.exe"
AV MP3 Player-Morpher-->C:\Program Files\AV MP3 Player-Morpher\uninstall.exe
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
AVG Anti-Spyware 7.5-->C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe
Barre d'outils Outlook de Windows Live (Windows Live Toolbar)-->MsiExec.exe /X{6E15BEDF-7EB5-4010-998E-B430DB4EFE45}
Bigben PC controller-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CFE1AA90-5B5E-4907-95E6-F55923555B16}\setup.exe" -l0x9 -removeonly
Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{A425C250-A0E1-4D78-B1C1-A5CBC7385E7C}
BootSkin-->C:\PROGRA~1\Stardock\WINCUS~1\BootSkin\UNWISE.EXE C:\PROGRA~1\Stardock\WINCUS~1\BootSkin\INSTALL.LOG
burnatonce-->"C:\Program Files\burnatonce\unins000.exe"
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
C-Media 3D Audio-->C:\WINDOWS\CMIUnInstall.exe
Companion wizard-->C:\Program Files\Common Files\Companion Wizard\compwiz.exe -u
Copernic Desktop Search 2-->C:\Program Files\Copernic Desktop Search 2\uninst.exe
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB914440)-->"C:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB935448)-->"C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif Windows XP - KB873339-->C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
Correctif Windows XP - KB885835-->C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
Correctif Windows XP - KB885836-->C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
Correctif Windows XP - KB886185-->C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
Correctif Windows XP - KB887472-->C:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe
Correctif Windows XP - KB888302-->C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
Correctif Windows XP - KB890859-->"C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
Correctif Windows XP - KB891781-->C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
DeepBurner Pro v1.8.0.225-->"C:\Program Files\Astonsoft\DeepBurner Pro\Uninstall.exe" "C:\Program Files\Astonsoft\DeepBurner Pro\install.log"
Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{EFFCB0F1-CFEC-48D4-B793-EBFCAE852976}
DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Easy CD-DA Extractor 10-->"C:\WINDOWS\Easy CD-DA Extractor\uninstall.exe" "/U:C:\Program Files\Easy CD-DA Extractor 10\irunin.xml"
EasyCleaner-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F5346614-B7C4-4E94-826A-E2363155233D}\setup.exe" -l0x9 -removeonly
eMule-->"C:\Program Files\eMule\Uninstall.exe"
eMulev0.47c.-MorphXTv9.5-->"C:\Program Files\eMule\unins001.exe"
Environnement d'exécution Java 2, Standard Edition v1.3.1_18-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{68249B78-B714-11D7-88E8-0050DA21757E}\Setup.exe" -uninst
EVEREST Home Edition v2.20-->"C:\Program Files\Lavalys\EVEREST Home Edition\unins000.exe"
Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{0CA6047C-D28B-4295-834A-07C52BA20C2D}
Favorit-->"c:\documents and settings\vincent.zoroo-a6ec98604.000\local settings\application data\igyac.exe" -uninstall
Favorit-->"c:\documents and settings\vincent.zoroo-a6ec98604.000\local settings\application data\swykm.exe" -uninstall
Filetopia Client v3.04d-->C:\PROGRA~1\FILETO~1\UNWISE.EXE C:\PROGRA~1\FILETO~1\INSTALL.LOG
Find'Em Trial-->C:\WINDOWS\uninst.exe -f"C:\Program Files\Find'Em Trial\DeIsL1.isu" -c"C:\Program Files\Find'Em Trial\_ISREG32.DLL"
free-downloads.net Toolbar-->C:\PROGRA~1\FREE-D~1.NET\UNWISE.EXE C:\PROGRA~1\FREE-D~1.NET\INSTALL.LOG
Galerie de photos Windows Live-->MsiExec.exe /X{A70FA218-6598-4AC9-813D-63597C5DD068}
Google Desktop Search-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSearchSetup.exe -uninstall
Google Toolbar for Firefox-->MsiExec.exe /X{2CCBABCB-6427-4A55-B091-49864623C43F}
Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar2.dll"
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB915865)-->"C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB926239)-->"C:\WINDOWS\$NtUninstallKB926239$\spuninst\spuninst.exe"
iSpeed for Windows-->"C:\Program Files\iSpeed\unins000.exe"
iTunes-->MsiExec.exe /I{18388EF8-E0A3-442B-8BFE-E2F1B3D05C91}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
K-Lite Codec Pack 3.7.5 Full-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Launchy 1.25-->"C:\Program Files\Launchy\unins000.exe"
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Logiciel QuickCam de Logitech-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}\setup.exe" -l0x40c
Logitech Audio Echo Cancellation Component-->MsiExec.exe /X{BEF726DD-4037-4214-8C6A-E625C02D2870}
Logitech Video Enumerator-->MsiExec.exe /X{EA516024-D84D-41F1-814F-83175A6188F2}
Macromedia Flash Player 8-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\swflash.inf,DefaultUninstall,5
MAIET entertainment - Gunz-->C:\Program Files\MAIET\Gunz\Uninstall.exe
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
MegaUpload Toolbar-->C:\Program Files\MegauploadToolbar\uninstall.exe
Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}
Messenger Plus! Live & Sponsor (CiD)-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Bootvis-->MsiExec.exe /I{0F9196C6-58B4-445B-B56E-B1200FECC151}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office PowerPoint Viewer 2003-->MsiExec.exe /X{90AF040C-6000-11D3-8CFE-0150048383C9}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Lecteur Windows Media (KB911564)-->"C:\WINDOWS\$NtUninstallKB911564$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)-->"C:\WINDOWS\$NtUninstallKB925398_WMP64$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB890046)-->"C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB893756)-->"C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB896358)-->"C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB896423)-->"C:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB896424)-->"C:\WINDOWS\$NtUninstallKB896424$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB896428)-->"C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB899587)-->"C:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB899591)-->"C:\WINDOWS\$NtUninstallKB899591$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB900725)-->"C:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB901017)-->"C:\WINDOWS\$NtUninstallKB901017$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB901214)-->"C:\WINDOWS\$NtUninstallKB901214$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB902400)-->"C:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB904706)-->"C:\WINDOWS\$NtUninstallKB904706$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB905414)-->"C:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB905749)-->"C:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB908519)-->"C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB911562)-->"C:\WINDOWS\$NtUninstallKB911562$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB911567)-->"C:\WINDOWS\$NtUninstallKB911567$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB911927)-->"C:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB912919)-->"C:\WINDOWS\$NtUninstallKB912919$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB913580)-->"C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB914388)-->"C:\WINDOWS\$NtUninstallKB914388$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB914389)-->"C:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB917159)-->"C:\WINDOWS\$NtUninstallKB917159$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB917344)-->"C:\WINDOWS\$NtUninstallKB917344$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB917422)-->"C:\WINDOWS\$NtUninstallKB917422$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB917953)-->"C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB918118)-->"C:\WINDOWS\$NtUninstallKB918118$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB918439)-->"C:\WINDOWS\$NtUninstallKB918439$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB918899)-->"C:\WINDOWS\$NtUninstallKB918899$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB919007)-->"C:\WINDOWS\$NtUninstallKB919007$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB920213)-->"C:\WINDOWS\$NtUninstallKB920213$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB920214)-->"C:\WINDOWS\$NtUninstallKB920214$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB920670)-->"C:\WINDOWS\$NtUninstallKB920670$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB920683)-->"C:\WINDOWS\$NtUninstallKB920683$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB920685)-->"C:\WINDOWS\$NtUninstallKB920685$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB921398)-->"C:\WINDOWS\$NtUninstallKB921398$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB921503)-->"C:\WINDOWS\$NtUninstallKB921503$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB921883)-->"C:\WINDOWS\$NtUninstallKB921883$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB922616)-->"C:\WINDOWS\$NtUninstallKB922616$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB922760)-->"C:\WINDOWS\$NtUninstallKB922760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB922819)-->"C:\WINDOWS\$NtUninstallKB922819$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923191)-->"C:\WINDOWS\$NtUninstallKB923191$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923414)-->"C:\WINDOWS\$NtUninstallKB923414$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923694)-->"C:\WINDOWS\$NtUninstallKB923694$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923980)-->"C:\WINDOWS\$NtUninstallKB923980$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB924191)-->"C:\WINDOWS\$NtUninstallKB924191$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB924270)-->"C:\WINDOWS\$NtUninstallKB924270$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB924496)-->"C:\WINDOWS\$NtUninstallKB924496$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB924667)-->"C:\WINDOWS\$NtUninstallKB924667$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB925486)-->"C:\WINDOWS\$NtUninstallKB925486$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB925902)-->"C:\WINDOWS\$NtUninstallKB925902$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB926255)-->"C:\WINDOWS\$NtUninstallKB926255$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB926436)-->"C:\WINDOWS\$NtUninstallKB926436$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB927779)-->"C:\WINDOWS\$NtUninstallKB927779$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB927802)-->"C:\WINDOWS\$NtUninstallKB927802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB928255)-->"C:\WINDOWS\$NtUninstallKB928255$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB928843)-->"C:\WINDOWS\$NtUninstallKB928843$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB929123)-->"C:\WINDOWS\$NtUninstallKB929123$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB929969)-->"C:\WINDOWS\$NtUninstallKB929969$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB930178)-->"C:\WINDOWS\$NtUninstallKB930178$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB931261)-->"C:\WINDOWS\$NtUninstallKB931261$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB931784)-->"C:\WINDOWS\$NtUninstallKB931784$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB932168)-->"C:\WINDOWS\$NtUninstallKB932168$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB933729)-->"C:\WINDOWS\$NtUninstallKB933729$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB935839)-->"C:\WINDOWS\$NtUninstallKB935839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB935840)-->"C:\WINDOWS\$NtUninstallKB935840$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB936021)-->"C:\WINDOWS\$NtUninstallKB936021$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938127)-->"C:\WINDOWS\$NtUninstallKB938127$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938829)-->"C:\WINDOWS\$NtUninstallKB938829$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941202)-->"C:\WINDOWS\$NtUninstallKB941202$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941568)-->"C:\WINDOWS\$NtUninstallKB941568$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941644)-->"C:\WINDOWS\$NtUninstallKB941644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941693)-->"C:\WINDOWS\$NtUninstallKB941693$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB942615)-->"C:\WINDOWS\$NtUninstallKB942615$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB943055)-->"C:\WINDOWS\$NtUninstallKB943055$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB943460)-->"C:\WINDOWS\$NtUninstallKB943460$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB943485)-->"C:\WINDOWS\$NtUninstallKB943485$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB944338)-->"C:\WINDOWS\$NtUninstallKB944338$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB944653)-->"C:\WINDOWS\$NtUninstallKB944653$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB945553)-->"C:\WINDOWS\$NtUninstallKB945553$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946026)-->"C:\WINDOWS\$NtUninstallKB946026$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB947864)-->"C:\WINDOWS\$NtUninstallKB947864$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB948590)-->"C:\WINDOWS\$NtUninstallKB948590$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB948881)-->"C:\WINDOWS\$NtUninstallKB948881$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950749)-->"C:\WINDOWS\$NtUninstallKB950749$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950759)-->"C:\WINDOWS\$NtUninstallKB950759$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953838)-->"C:\WINDOWS\$NtUninstallKB953838$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956390)-->"C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB894391)-->"C:\WINDOWS\$NtUninstallKB894391$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB900485)-->"C:\WINDOWS\$NtUninstallKB900485$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB904942)-->"C:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB908531)-->"C:\WINDOWS\$NtUninstallKB908531$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB910437)-->"C:\WINDOWS\$NtUninstallKB910437$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB911280)-->"C:\WINDOWS\$NtUninstallKB911280$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB916595)-->"C:\WINDOWS\$NtUninstallKB916595$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB920872)-->"C:\WINDOWS\$NtUninstallKB920872$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB922582)-->"C:\WINDOWS\$NtUninstallKB922582$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB927891)-->"C:\WINDOWS\$NtUninstallKB927891$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB929338)-->"C:\WINDOWS\$NtUninstallKB929338$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB930916)-->"C:\WINDOWS\$NtUninstallKB930916$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB931836)-->"C:\WINDOWS\$NtUninstallKB931836$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB933360)-->"C:\WINDOWS\$NtUninstallKB933360$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB938828)-->"C:\WINDOWS\$NtUninstallKB938828$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB942763)-->"C:\WINDOWS\$NtUninstallKB942763$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB942840)-->"C:\WINDOWS\$NtUninstallKB942840$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB946627)-->"C:\WINDOWS\$NtUninstallKB946627$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
More! 2 CD-ROM-->MsiExec.exe /I{7B4CE235-A1D4-48BA-86E4-3E3CE120166D}
Morpheus Toolbar-->rundll32 C:\PROGRA~1\MORPHE~2\bar\1.bin\MorphBar.dll,O
Mozilla (1.7.12) (fr)-->C:\WINDOWS\MozillaUninstall.exe /ua "1.7.12 (fr)"
Mozilla Firefox (2.0.0.17)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MP3 Player Utilities 3.68-->MsiExec.exe /I{D98BFAD2-0C90-47F4-9D69-2EFF21631884}
MSN Font Color Editor 4.2-->"C:\Program Files\MSN Font Color Editor\unins000.exe"
MSNTweaker 1.0-->"C:\Program Files\MSNTweaker\unins000.exe"
MSXML 4.0 SP2 (KB925672)-->MsiExec.exe /I{A9CF9052-F4A0-475D-A00F-A8388C62DD63}
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 Parser and SDK-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
MVision-->MsiExec.exe /I{35725FBC-A136-4A46-9F29-091759D9BB93}
My Pictures And Sounds 8.01-->C:\Program Files\SAGEM\My Pictures And Sounds\Uninstall.exe
nCleaner second v2.3.1-->C:\Program Files\NKProds\nCleaner\uninstall.exe
Netscape (7.1)-->C:\WINDOWS\NSUninst.exe /ua "7.1b1 (fr)"
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
NvMixer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D7A6C517-11F2-419F-B5BB-27772B939698}\Setup.exe" -uninstall
OneCare Advisor (Windows Live Toolbar)-->MsiExec.exe /X{6D7F8D4B-D1A4-402A-973E-31E90940E585}
Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
Paintball2 Alpha build 021-->C:\Games\Paintball2\uninst.exe
Panavue ImageAssembler 3.4.0 (Démo)-->MsiExec.exe /I{1049A829-CBED-41B6-AA1C-F7B71531C1A7}
PasToucheXP-->"C:\Program Files\PasToucheXP\uninstall.exe"
PCLink-->C:\WINDOWS\uninst.exe -f"C:\Program Files\PCLink\DeIsL1.isu" -c"C:\Program Files\PCLink\_ISREG32.DLL"
Pixia 3.3b-->"C:\Program Files\Seagrand\Pixia\unins000.exe"
Project64 1.6-->MsiExec.exe /X{9559F7CA-5E34-4237-A2D9-D856464AD727}
PSG Live-->C:\Program Files\MSN Messenger\Uninstal.exe
Quick Zip 4.60.017b-->"C:\Program Files\QuickZip4\unins000.exe"
QuickTime-->MsiExec.exe /I{E0D51394-1D45-460A-B62D-383BC4F8B335}
Ri4m v5.0.1d-->C:\Program Files\Ripp-it_AM\Ri4m_Uninstal.exe
SAGEM Full USB v3.5.3.0 (WHQL)-->"C:\Program Files\SAGEM\FullUSB\Drivers\uninstall.exe" /ID=FullUSB_x86
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Shareaza version 2.2.5.0-->"C:\Program Files\Shareaza\Uninstall\unins000.exe"
SiSoftware Sandra Lite XI.SP4a-->"C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\unins000.exe"
Sony Ericsson PC Suite-->MsiExec.exe /I{FC906D5C-91F9-4DA4-A765-6DCBB669F317}
SopCast 2.0.4-->C:\Program Files\SopCast\uninst.exe
SpeedUpMyPC Trial-->MsiExec.exe /X{A9DFC08E-0256-4F90-A547-FA69A4CB1D3E}
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
SpywareBlaster v3.5.1-->"C:\Program Files\SpywareBlaster\unins000.exe"
Steganos Secure FileSharing 6.0.4-->MsiExec.exe /X{7FC79540-F8A0-4581-A82F-99C9F79BD64C}
Sunbelt Kerio Personal Firewall-->MsiExec.exe /X{E659E0EE-10E6-49B7-8696-60F38D0EB174}
SUPERAntiSpyware Free Edition-->MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
Swot 1.08-->C:\PROGRA~1\IMAGEA~1\Swot\UNWISE.EXE C:\PROGRA~1\IMAGEA~1\Swot\INSTALL.LOG
TubeMaster-->"C:\Program Files\TubeMaster\uninstall.exe"
TubeSucker-->MsiExec.exe /X{41B1A12A-80B3-46BB-80D1-C96001144610}
TVAnts 1.0-->C:\PROGRA~1\TVAnts\UNWISE.EXE C:\PROGRA~1\TVAnts\INSTALL.LOG
TVUPlayer 2.3.7.1-->C:\Program Files\TVUPlayer\uninst.exe
Urban Terror 4.1-->"C:\Program Files\UrbanTerror\unins000.exe"
VeohTV BETA-->C:\Program Files\InstallShield Installation Information\{0405E51E-9582-4207-8F38-AC44201D3808}\setup.exe -runfromtemp -l0x0409
Viewpoint Media Player (Remove Only)-->C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /u
Visionneuse Journal Windows Microsoft-->MsiExec.exe /X{43DCF766-6838-4F9A-8C91-D92DA586DFA8}
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
Windows Live Favorites pour Windows Live Toolbar-->MsiExec.exe /X{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}
Windows Live installer-->MsiExec.exe /I{A90D10BA-1E82-44E1-87DE-56A22BA151DA}
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Live OneCare safety scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT
Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Writer-->MsiExec.exe /X{3DFF4274-EBB0-4356-9692-972965018954}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
WolfET_Fr_Alpha2-->C:\DOCUMENTS AND SETTINGS\VINCENT.ZOROO-A6EC98604.000\BUREAU\NOUVEAU DOSSIER (2)\Uninstal.exe
Yahoo! Install Manager-->C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
Yahoo! Toolbar avec bloqueur de fenêtres pop-up-->C:\PROGRA~1\Yahoo!\Common\unyt.exe

=====HijackThis Backups=====

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - SOFTWARE - (no file)
O16 - DPF: {A13516A3-BE86-4517-813C-B5FF0C8ACDF3} (Toontown Installer ActiveX Control French) - http://downloadtoontown.goa.com/sv1.5.14.8/ttinst-frenc...
O2 - BHO: (no name) - {C66AF7F0-2CF6-48cb-9F94-04EC2504B4FC} - (no file)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll/206 (file missing)
R3 - URLSearchHook: (no name) - {D73F49B6-B51B-4d32-A3B7-BD04B8342F53} - C:\Program Files\MorpheusBar\SrchAstt\1.bin\MBSRCAS.DLL
O2 - BHO: (no name) - {0A87E45F-537A-40B4-B812-E2544C21A09F} - (no file)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.imesh.com/sidebar.html?src=ssb
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O4 - HKUS\S-1-5-21-1644491937-448539723-725345543-501\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Invité')
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O23 - Service: StarOpen - Unknown owner - (no file)
O20 - AppInit_DLLs: perftssys.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O2 - BHO: MorpheusToolbar BHO - {3F3714A1-89A4-46be-8AF3-D0C9D1FB03F9} - C:\Program Files\MorpheusBar\bar\1.bin\MORPHBAR.DLL
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - Unknown owner - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe (file missing)
O3 - Toolbar: Morpheus Toolbar - {3F3714A9-89A4-46be-8AF3-D0C9D1FB03F9} - C:\Program Files\MorpheusBar\bar\1.bin\MORPHBAR.DLL
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - Unknown owner - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe (file missing)
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O3 - Toolbar: (no name) - {ecdee021-0d17-467f-a1ff-c7a115230949} - (no file)
O2 - BHO: (no name) - {D73F49B1-B51B-4d32-A3B7-BD04B8342F53} - C:\Program Files\MorpheusBar\SrchAstt\1.bin\MBSRCAS.DLL (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O23 - Service: StarOpen - Unknown owner - (no file)

======Hosts File======

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com

======Security center information======

AV: avast! antivirus 4.8.1229 [VPS 081030-0]
FW: Sunbelt Kerio Personal Firewall

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\;C:\Program Files\Fichiers communs\Teleca Shared
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 8 Stepping 1, AuthenticAMD
"PROCESSOR_REVISION"=0801
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"SAN_DIR"=C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip

-----------------EOF-----------------

Re,

Restaure tout ce que tu as décoché avec MsConfig stp, et poste moi un nouveau rapport HijackThis  

voila ! ( jme demande comment vous fait pour savoir que j'ai utiliser msconfig lol)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:30:52, on 2008-10-31
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\system32\SLEE503.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Copernic Desktop Search 2 - {968631B6-4729-440D-9BF4-251F5593EC9A} - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by141fd.bay141.hotmail.msn.com/resources/MsnPUpl...
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Unknown owner - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE (file missing)
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe
O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe
O23 - Service: Steganos Live Encryption Engine (Version 503) [Service] (SLEE_503_SERVICE) - Unknown owner - C:\WINDOWS\system32\SLEE503.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: StarOpen - Unknown owner - (no file)
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 10011 bytes

y voit tu des intrus ?

Re,

Il devrais y avoir plus de lignes 04, et il y en a moins .. Enfin bon, pas grave.

1) Télécharge Navilog (de Il-Mafioso)

Enregistre-le sur ton Bureau.

Installe-le en double cliquant sur navilog.exe.

Une fois l'installation terminée, l'utilitaire s'exécutera automatiquement.
(Si ce n'est pas le cas, double clique sur le raccourci présent sur le Bureau) [Clic droit -> "Exécuter en tant qu'administrateur". ( Pour Vista)]

Laisse-toi guider par l'utilitaire. Choisis l'option 1 puis valide.
! N'utilise pas l'option 2, 3 et 4 sans notre accord !

Patiente jusqu'à l'apparition de ce message :
*** Analyse Termine le ..... ***

Appuie sur une touche comme demandé. Le Bloc-notes va s'ouvrir. Poste le rapport ici.

Poste le rapport généré.

Le rapport se trouve ici : C:\fixnavi.txt

2) Télécharge Lop S&D.exe (d’ Eric 71) sur ton Bureau.

Double-clique dessus pour lancer l'installation

Puis double-clique sur le raccourci Lop S&D présent sur ton bureau (Si tu es sous Vista, clique droit -> exécuter en tant qu'admin)

Séléctionne la langue souhaitée , puis choisis l'Option 1 (Recherche)

Patiente jusqu'à la fin du scan

Poste le rapport généré (C:\lopR.txt)

Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
Tapes explorer et valide. Cela te fera apparaitre ton bureau

tu peux me dire c'est quoi les lignes de 4 stp ?

PREMIER :
Search Navipromo version 3.6.7 commencé le 2008-10-31 à 20:44:18,01

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "vincent"

Mise à jour le 22.10.2008 à 20h00 par IL-MAFIOSO


Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 6.0.2900.2180
Système de fichiers : NTFS

Recherche executé en mode normal

*** Recherche Programmes installés ***

Favorit
Favorit

*** Recherche dossiers dans "C:\WINDOWS" ***


*** Recherche dossiers dans "C:\Program Files" ***


*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***


*** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\INVIT~1\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\MAMAN\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\VINCENT\applic~1" ***

...\MessengerSkinner trouvé !

*** Recherche dossiers dans "C:\DOCUME~1\VINCEN~1.ZOR\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\VINCEN~3\applic~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\locals~1\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\MAMAN\locals~1\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\VINCENT\locals~1\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\VINCEN~1.ZOR\locals~1\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\VINCEN~3\locals~1\applic~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\menudm~1\progra~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\INVIT~1\menudm~1\progra~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\MAMAN\menudm~1\progra~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\VINCENT\menudm~1\progra~1" ***

...\InternetGameBox trouvé !
...\MessengerSkinner trouvé !
...\WebMediaPlayer trouvé !

*** Recherche dossiers dans "C:\DOCUME~1\VINCEN~1.ZOR\menudm~1\progra~1" ***

...\WebMediaPlayer trouvé !

*** Recherche dossiers dans "C:\DOCUME~1\VINCEN~3\menudm~1\progra~1" ***

...\InternetGameBox trouvé !

*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net



*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans "C:\WINDOWS\system32" *

* Recherche dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\locals~1\applic~1" *

* Recherche dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" *

* Recherche dans "C:\DOCUME~1\MAMAN\locals~1\applic~1" *

* Recherche dans "C:\DOCUME~1\VINCENT\locals~1\applic~1" *

* Recherche dans "C:\DOCUME~1\VINCEN~1.ZOR\locals~1\applic~1" *

* Recherche dans "C:\DOCUME~1\VINCEN~3\locals~1\applic~1" *



*** Recherche fichiers ***


C:\WINDOWS\pack.epk trouvé !

*** Recherche clés spécifiques dans le Registre ***

HKEY_CURRENT_USER\Software\Lanconfig trouvé !

*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :


2)Recherche Heuristique :

* Dans "C:\WINDOWS\system32" :


* Dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\locals~1\applic~1" :


* Dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" :


* Dans "C:\DOCUME~1\MAMAN\locals~1\applic~1" :


* Dans "C:\DOCUME~1\VINCENT\locals~1\applic~1" :


* Dans "C:\DOCUME~1\VINCEN~1.ZOR\locals~1\applic~1" :


* Dans "C:\DOCUME~1\VINCEN~3\locals~1\applic~1" :


3)Recherche Certificats :

Certificat Egroup trouvé !
Certificat Electronic-Group trouvé !
Certificat Montorgueil absent !
Certificat OOO-Favorit trouvé !
Certificat Sunny-Day-Design-Ltd absent !

4)Recherche fichiers connus :



*** Analyse terminée le 2008-10-31 à 21:24:22,81 ***

DEUXIEME:

les\DAP
[2008-07-07|15:03] C:\Program Files\directx
[2008-01-10|16:29] C:\Program Files\DivX
[2007-09-26|20:00] C:\Program Files\Easy CD-DA Extractor 10
[2007-09-29|19:10] C:\Program Files\eChanblard
[2008-10-25|18:52] C:\Program Files\eMule
[2007-08-19|00:46] C:\Program Files\eoRezo
[2007-04-03|04:10] C:\Program Files\ePSXe
[2007-01-30|04:34] C:\Program Files\Eurobarre
[2008-05-15|07:47] C:\Program Files\Fichiers communs
[2007-06-08|19:34] C:\Program Files\File Lock
[2008-01-13|00:54] C:\Program Files\Filetopia3
[2007-09-16|16:34] C:\Program Files\Find'Em Trial
[2007-12-28|16:54] C:\Program Files\Free
[2008-01-14|15:08] C:\Program Files\free-downloads.net
[2007-09-02|19:17] C:\Program Files\GLD
[2008-07-20|18:02] C:\Program Files\Google
[2007-04-22|11:12] C:\Program Files\Goto
[2008-01-11|21:55] C:\Program Files\Grisoft
[2008-10-02|20:21] C:\Program Files\Hitman Pro
[2007-01-30|04:33] C:\Program Files\Hotkey
[2006-11-23|20:04] C:\Program Files\Image Applications
[2007-07-15|21:12] C:\Program Files\iMesh Applications
[2008-07-10|01:02] C:\Program Files\InstallShield Installation Information
[2007-04-26|19:38] C:\Program Files\Internet Download Manager
[2008-10-17|02:02] C:\Program Files\Internet Explorer
[2006-10-07|04:23] C:\Program Files\Inventel
[2008-01-17|19:43] C:\Program Files\iPod
[2008-01-13|00:54] C:\Program Files\iSpeed
[2008-01-17|19:43] C:\Program Files\iTunes
[2008-01-10|17:55] C:\Program Files\Java
[2007-04-22|20:13] C:\Program Files\JavaSoft
[2007-03-19|10:06] C:\Program Files\Kazaa Lite
[2008-01-13|00:54] C:\Program Files\KAZAA LITE TOOLS K++
[2008-10-02|20:20] C:\Program Files\K-Lite Codec Pack
[2007-09-30|10:06] C:\Program Files\Launchy
[2006-10-04|23:55] C:\Program Files\Lavalys
[2007-09-19|12:50] C:\Program Files\Lavasoft
[2007-11-25|11:52] C:\Program Files\LimeWire
[2006-12-05|19:35] C:\Program Files\LIUtilities
[2007-03-19|18:34] C:\Program Files\Logitech
[2007-01-30|04:33] C:\Program Files\Loonies
[2008-05-23|20:44] C:\Program Files\MAIET
[2008-10-27|13:07] C:\Program Files\Malwarebytes' Anti-Malware
[2007-08-10|17:06] C:\Program Files\Mario Forever
[2007-05-28|17:08] C:\Program Files\MegauploadToolbar
[2008-08-14|02:05] C:\Program Files\Messenger
[2008-01-03|15:30] C:\Program Files\Messenger Plus! Live
[2007-01-31|20:36] C:\Program Files\MessengerPlus! 3
[2006-12-04|23:57] C:\Program Files\Microsoft Bootvis
[2007-05-09|02:07] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2006-10-04|23:44] C:\Program Files\microsoft frontpage
[2006-10-11|13:19] C:\Program Files\Microsoft Games
[2006-10-06|19:11] C:\Program Files\Microsoft Office
[2008-02-20|15:44] C:\Program Files\Microsoft SQL Server Compact Edition
[2008-07-07|22:58] C:\Program Files\Mindscape
[2008-02-17|21:31] C:\Program Files\Morgan
[2008-05-27|06:40] C:\Program Files\Morpheus
[2007-07-17|19:50] C:\Program Files\Morpheus Ultra
[2007-01-30|04:33] C:\Program Files\MorpheusBar
[2008-01-13|00:55] C:\Program Files\Movie Maker
[2008-10-31|17:08] C:\Program Files\Mozilla Firefox
[2007-11-25|18:06] C:\Program Files\mozilla.org
[2007-08-15|16:59] C:\Program Files\MSN
[2007-10-06|17:55] C:\Program Files\MSN Font Color Editor
[2006-10-04|23:39] C:\Program Files\MSN Gaming Zone
[2008-02-20|15:50] C:\Program Files\MSN Messenger
[2007-10-06|17:53] C:\Program Files\MSNTweaker
[2006-10-11|13:27] C:\Program Files\MSXML 4.0
[2007-04-15|21:59] C:\Program Files\MyMPxPlayer.org
[2008-10-31|20:44] C:\Program Files\Navilog1
[2007-05-21|21:11] C:\Program Files\NetAnts
[2006-10-04|23:41] C:\Program Files\NetMeeting
[2007-09-26|21:55] C:\Program Files\Netscape
[2007-05-21|21:15] C:\Program Files\NKProds
[2007-09-16|16:35] C:\Program Files\Nombre MYSTERE
[2007-05-31|20:18] C:\Program Files\Nuclear Coffee
[2007-09-29|19:10] C:\Program Files\nutri
[2006-10-05|00:03] C:\Program Files\NVIDIA Corporation
[2006-12-09|01:02] C:\Program Files\Object Desktop
[2006-10-04|23:40] C:\Program Files\Online Services
[2006-10-12|16:13] C:\Program Files\OpenOffice.org 2.0
[2008-01-12|21:16] C:\Program Files\Outlook Express
[2007-03-30|20:42] C:\Program Files\PanaVue
[2008-07-13|16:56] C:\Program Files\PasToucheXP
[2008-02-24|16:03] C:\Program Files\PCLink
[2007-01-30|04:32] C:\Program Files\Player Metaboli
[2007-04-07|19:36] C:\Program Files\POPUPKILLER
[2006-12-16|23:34] C:\Program Files\PQDVD
[2008-03-04|16:31] C:\Program Files\Project64 1.6
[2007-01-30|04:35] C:\Program Files\PSPWare
[2008-07-21|19:43] C:\Program Files\psx emulation cheater
[2008-01-17|19:41] C:\Program Files\QuickTime
[2008-01-13|00:56] C:\Program Files\QuickZip4
[2008-04-05|21:05] C:\Program Files\RegCleaner
[2007-01-30|04:35] C:\Program Files\Ripp-it_AM
[2008-07-27|21:21] C:\Program Files\Rockstar Games
[2007-09-26|20:09] C:\Program Files\SAGEM
[2007-10-31|13:41] C:\Program Files\Seagrand
[2008-05-23|13:29] C:\Program Files\Services en ligne
[2008-01-13|00:56] C:\Program Files\Shareaza
[2007-07-10|10:54] C:\Program Files\SimonTools
[2007-09-20|21:01] C:\Program Files\SiSoftware
[2007-03-19|10:08] C:\Program Files\SlySoft
[2008-05-15|07:47] C:\Program Files\Sony Ericsson
[2008-08-16|20:02] C:\Program Files\SopCast
[2007-04-30|20:50] C:\Program Files\Spn
[2008-10-26|12:18] C:\Program Files\Spybot - Search & Destroy
[2007-05-31|11:24] C:\Program Files\Spyware Terminator
[2008-01-25|01:34] C:\Program Files\SpywareBlaster
[2006-10-23|10:31] C:\Program Files\Star Downloader
[2007-03-30|23:42] C:\Program Files\Stardock
[2007-04-28|16:41] C:\Program Files\Steganos Secure FileSharing 6
[2008-05-03|23:25] C:\Program Files\Sunbelt Software
[2008-10-28|15:04] C:\Program Files\SUPERAntiSpyware
[2007-06-04|16:52] C:\Program Files\themexp
[2008-02-20|19:23] C:\Program Files\Titus
[2007-09-29|18:55] C:\Program Files\ToniArts
[2008-07-07|22:48] C:\Program Files\Tremulous
[2007-11-05|00:19] C:\Program Files\Trend Micro
[2007-08-19|04:00] C:\Program Files\Trojan Remover
[2007-09-16|21:03] C:\Program Files\TubeMaster
[2007-05-31|20:36] C:\Program Files\TubeSucker
[2008-02-17|21:16] C:\Program Files\TVAnts
[2008-08-16|20:11] C:\Program Files\TVUPlayer
[2006-10-10|19:54] C:\Program Files\Ubisoft
[2006-10-04|23:50] C:\Program Files\Uninstall Information
[2008-02-20|18:55] C:\Program Files\Universal Interactive
[2008-08-03|11:40] C:\Program Files\UrbanTerror
[2008-01-12|18:47] C:\Program Files\uTorrent
[2008-04-05|14:36] C:\Program Files\Veoh Networks
[2007-03-20|23:30] C:\Program Files\Vga1User
[2008-07-07|13:40] C:\Program Files\VID_0E8F&PID_3020
[2008-08-09|15:58] C:\Program Files\VideoLAN
[2007-09-26|21:57] C:\Program Files\Viewpoint
[2008-01-13|12:20] C:\Program Files\VirtualDJ
[2007-07-01|19:21] C:\Program Files\Wanadoo
[2007-06-08|19:32] C:\Program Files\WinAVI MP4 Converter
[2007-03-21|17:01] C:\Program Files\Windows Journal Viewer
[2008-02-28|10:07] C:\Program Files\Windows Live
[2007-11-29|20:27] C:\Program Files\Windows Live Favorites
[2007-11-19|23:01] C:\Program Files\Windows Live Safety Center
[2007-11-30|10:05] C:\Program Files\Windows Live Toolbar
[2007-01-30|04:33] C:\Program Files\Windows Media Connect 2
[2008-02-24|17:06] C:\Program Files\Windows Media Player
[2006-10-04|23:39] C:\Program Files\Windows NT
[2006-10-04|23:42] C:\Program Files\WindowsUpdate
[2007-08-25|23:01] C:\Program Files\WinMX
[2007-04-01|23:38] C:\Program Files\WinRAR
[2007-04-28|22:47] C:\Program Files\WinZip
[2008-04-08|18:19] C:\Program Files\Wolfenstein - Enemy Territory
[2008-01-13|12:20] C:\Program Files\WorkoutLogger
[2008-01-10|18:04] C:\Program Files\Wyzo
[2006-10-04|23:44] C:\Program Files\xerox
[2007-09-29|18:57] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[2008-02-24|11:49] C:\Program Files\Fichiers communs\Adobe
[2008-01-17|19:36] C:\Program Files\Fichiers communs\Apple
[2007-09-14|19:26] C:\Program Files\Fichiers communs\AVSMedia
[2006-10-12|15:59] C:\Program Files\Fichiers communs\BOONTY Shared
[2006-11-11|13:54] C:\Program Files\Fichiers communs\DirectX
[2007-03-20|15:18] C:\Program Files\Fichiers communs\InstallShield
[2008-01-10|17:50] C:\Program Files\Fichiers communs\Java
[2007-03-19|18:30] C:\Program Files\Fichiers communs\LogiShrd
[2008-04-09|15:56] C:\Program Files\Fichiers communs\Logitech
[2008-04-08|08:00] C:\Program Files\Fichiers communs\Microsoft Shared
[2007-09-26|21:55] C:\Program Files\Fichiers communs\mozilla.org
[2006-10-04|23:41] C:\Program Files\Fichiers communs\MSSoap
[2006-10-05|00:03] C:\Program Files\Fichiers communs\NVIDIA Shared
[2006-10-05|01:31] C:\Program Files\Fichiers communs\ODBC
[2006-10-04|23:41] C:\Program Files\Fichiers communs\Services
[2008-05-15|07:48] C:\Program Files\Fichiers communs\Sony Ericsson Shared
[2006-10-05|01:31] C:\Program Files\Fichiers communs\SpeechEngines
[2007-03-30|23:42] C:\Program Files\Fichiers communs\Stardock
[2007-07-06|12:30] C:\Program Files\Fichiers communs\System
[2008-05-15|07:48] C:\Program Files\Fichiers communs\Teleca Shared
[2008-02-20|15:17] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[2008-10-28|15:02] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 42 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\INVIT~1\APPLIC~1\vga1user
C:\Program Files\vga1user
C:\DOCUME~1\VINCEN~1.000\LOCALS~1\Temp\nsf17.tmp
C:\DOCUME~1\INVIT~1\APPLIC~1\Adverts
C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@adin.bigpoint[2].txt
C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@cotedazurpalace[2].txt
C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@seafight[1].txt
C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@www.seafight[1].txt
C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@2xmoinscher[2].txt
C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@www.2xmoinscher[1].txt
C:\WINDOWS\Tasks\B7FD719190DEE5CD.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-31 21:27:10
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1

--------------------\\ Recherche d'autres infections

C:\WINDOWS\Pack.epk

C:\WINDOWS\System32\fdpofhppoa.dat.ren
C:\WINDOWS\System32\fdpofhppoa_nav.dat.ren
C:\WINDOWS\System32\fdpofhppoa_navps.dat.ren
==> EGDACCESS <==



[F:1270][D:99]-> C:\DOCUME~1\VINCEN~1.000\LOCALS~1\Temp
[F:1534][D:0]-> C:\DOCUME~1\VINCEN~1.000\Cookies
[F:11700][D:31]-> C:\DOCUME~1\VINCEN~1.000\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 2008-10-31|21:36 - Option : [1]

--------------------\\ Fin du rapport a 21:36:03


voila , jespere que je ne met pas en ligne des donnés personelles ...

Re,

Double clique sur le raccourci de Navilog.

Choisis l'option 2 puis valide. (Entrée)

Laisse toi guider.

Ton ordinateur va redémarrer, sinon fais le manuellement.

Ton bureau va disparaître.

Après un certain temps, le Bloc-notes va s'ouvrir.

Sauvegarde le rapport.

Referme le Bloc-notes. Ton bureau va maintenant réapparaître.

Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
Tapes explorer et valide. Cela te fera apparaitre ton bureau

Démarrer -> panneau de configuration -> options internet
Clique sur l'onglet "Contenu" puis onglet "Certificats" et si tu trouves ceci, en particulier dans "éditeurs approuvés" :

VIP

Si tu les trouves, fais ceci :
* Sélectionne chacun de ces certificats et clique sur exporter. Enregistre le/les sur ton bureau.
* Supprime ensuite ceux présents dans l'onglet "certificats" des options de ton naviguateur.

Ensuite pour chacun des certificats présents sur ton bureau :
* Va sur le site Web :
http://www.bleepingcomputer.com/submit-malware.php?chan...
* Copie/colle ceci dans la case 'Link to Topic' :
le nom du certificat (Montorgueil ,......)
* Copie/colle ceci dans la case 'Browse to the File' :
Le certificat correspondant que tu avais exportés vers ton bureau

Si c'est fait, supprime enfin le certificat présent sur ton bureau.

Les programmes suivants installent cette infection :

* Go-astro
* GoRecord
* HotTVPlayer
* Live Player
* MailSkinner
* Messenger Skinner
* Instant Access
* InternetGameBox
* sudoplanet
* Webmediaplayer : sauf celui provenant du site suivant > http://www.azertysite.new.fr/
* Sur le site www.games-desktop.com (Ne pas aller dessus!)

Poste le rapport sauvegardé auparavant (C:\cleannavi.txt) ainsi qu'un nouveau rapport Hijackthis.

-------

Puis poste un nouveau rapport Lop S&D, option 1 (en entier)

Clean Navipromo version 3.6.7 commencé le 2008-11-01 à 0:29:45,82

Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "vincent"

Mise à jour le 22.10.2008 à 20h00 par IL-MAFIOSO


Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 6.0.2900.2180
Système de fichiers : NTFS

Mode suppression automatique
avec prise en charge résultats Catchme et GNS


Nettoyage exécuté au redémarrage de l'ordinateur


*** fsbl1.txt non trouvé ***
(Assurez-vous que Catchme n'avait rien trouvé lors de la recherche)


*** Suppression avec sauvegardes résultats GenericNaviSearch ***

* Suppression dans "C:\WINDOWS\System32" *


* Suppression dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\locals~1\applic~1" *


* Suppression dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" *

* Suppression dans "C:\DOCUME~1\MAMAN\locals~1\applic~1" *

* Suppression dans "C:\DOCUME~1\VINCENT\locals~1\applic~1" *

* Suppression dans "C:\DOCUME~1\VINCEN~1.ZOR\locals~1\applic~1" *

* Suppression dans "C:\DOCUME~1\VINCEN~3\locals~1\applic~1" *


*** Suppression dossiers dans "C:\WINDOWS" ***


*** Suppression dossiers dans "C:\Program Files" ***


*** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***


*** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\INVIT~1\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\MAMAN\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\VINCENT\applic~1" ***

...\MessengerSkinner ...suppression...
...\MessengerSkinner supprimé !


*** Suppression dossiers dans "C:\DOCUME~1\VINCEN~1.ZOR\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\VINCEN~3\applic~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\locals~1\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\MAMAN\locals~1\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\VINCENT\locals~1\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\VINCEN~1.ZOR\locals~1\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\VINCEN~3\locals~1\applic~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\menudm~1\progra~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\INVIT~1\menudm~1\progra~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\MAMAN\menudm~1\progra~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\VINCENT\menudm~1\progra~1" ***

...\InternetGamebox ...suppression...
...\InternetGamebox supprimé !

...\MessengerSkinner ...suppression...
...\MessengerSkinner supprimé !

...\WebMediaPlayer ...suppression...
...\WebMediaPlayer supprimé !


*** Suppression dossiers dans "C:\DOCUME~1\VINCEN~1.ZOR\menudm~1\progra~1" ***

...\WebMediaPlayer ...suppression...
...\WebMediaPlayer supprimé !


*** Suppression dossiers dans "C:\DOCUME~1\VINCEN~3\menudm~1\progra~1" ***

...\InternetGamebox ...suppression...
...\InternetGamebox supprimé !



*** Suppression fichiers ***

C:\WINDOWS\pack.epk supprimé !

*** Suppression fichiers temporaires ***

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\locals~1\Temp effectué !

*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Suppression avec sauvegardes nouveaux fichiers Instant Access :

2)Recherche, création sauvegardes et suppression Heuristique :


* Dans "C:\WINDOWS\system32" *


* Dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\locals~1\applic~1" *


* Dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" *


* Dans "C:\DOCUME~1\MAMAN\locals~1\applic~1" *


* Dans "C:\DOCUME~1\VINCENT\locals~1\applic~1" *


* Dans "C:\DOCUME~1\VINCEN~1.ZOR\locals~1\applic~1" *


* Dans "C:\DOCUME~1\VINCEN~3\locals~1\applic~1" *


*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok


*** Certificats ***

Certificat Egroup supprimé !
Certificat Electronic-Group supprimé !
Certificat Montorgueil absent !
Certificat OOO-Favorit supprimé !
Certificat Sunny-Day-Design-Ltdt absent !

*** Nettoyage terminé le 2008-11-01 à 0:41:15,84 ***


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:50:06, on 2008-11-01
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\system32\SLEE503.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Copernic Desktop Search 2 - {968631B6-4729-440D-9BF4-251F5593EC9A} - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by141fd.bay141.hotmail.msn.com/resources/MsnPUpl...
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Unknown owner - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE (file missing)
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe
O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe
O23 - Service: Steganos Live Encryption Engine (Version 503) [Service] (SLEE_503_SERVICE) - Unknown owner - C:\WINDOWS\system32\SLEE503.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: StarOpen - Unknown owner - (no file)
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 9850 bytes

--------------------\\ Lop S&D 4.2.4-9 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 1800+ )
BIOS : Version 1.00
USER : vincent ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081031-1] 4.8.1229 (Activated)
Firewall : Sunbelt Kerio Personal Firewall 4.3.744 T (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:39 Go (Free:1 Go)
D:\ (Local Disk) - NTFS - Total:37 Go (Free:34 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
F:\ (CD or DVD)
G:\ (CD or DVD)
H:\ (CD or DVD)
I:\ (CD or DVD)
J:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 30-10-2008|21:58 )
Option : [1] ( 2008-11-01| 0:52 )

--------------------\\ Listing des dossiers dans APPLIC~1


[2006-10-06|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Acronis
[2008-02-24|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[2007-09-16|10:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[2008-01-17|19:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[2007-09-27|16:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Arovax
[2007-07-12|13:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[2007-09-14|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[2006-10-12|15:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[2007-10-31|15:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[2006-10-23|10:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Exetender
[2006-10-09|17:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[2007-03-08|00:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[2008-10-31|12:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[2008-01-11|21:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[2008-01-11|23:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Locktime
[2007-03-19|18:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[2008-10-27|13:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[2007-01-14|16:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[2007-05-14|16:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[2008-08-24|16:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[2008-05-15|07:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[2008-10-26|13:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[2008-10-28|15:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
[2008-05-15|07:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[2008-01-14|14:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[2007-09-19|17:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tenebril
[2006-12-04|22:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[2008-08-16|20:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TVU Networks
[2006-11-14|22:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ubisoft
[2007-09-17|19:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\up 16 program 64
[2006-10-22|16:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[2007-03-08|04:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[2007-07-23|15:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[2008-02-20|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[2007-09-29|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[2007-07-23|15:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[2008-08-20|20:41] C:\DOCUME~1\INVIT~1\APPLIC~1\Adobe
[2007-08-10|17:06] C:\DOCUME~1\INVIT~1\APPLIC~1\Adverts
[2007-12-30|17:43] C:\DOCUME~1\INVIT~1\APPLIC~1\BitTorrent
[2008-07-01|14:53] C:\DOCUME~1\INVIT~1\APPLIC~1\DivX
[2007-09-29|19:09] C:\DOCUME~1\INVIT~1\APPLIC~1\EoRezo
[2007-01-13|21:22] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
[2008-01-12|20:24] C:\DOCUME~1\INVIT~1\APPLIC~1\Grisoft
[2006-12-29|11:57] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[2006-12-29|11:58] C:\DOCUME~1\INVIT~1\APPLIC~1\ispnews
[2008-07-28|19:25] C:\DOCUME~1\INVIT~1\APPLIC~1\Launchy
[2007-09-05|02:09] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
[2007-05-25|10:45] C:\DOCUME~1\INVIT~1\APPLIC~1\MEGAUPLOADTOOLBAR
[2007-01-30|04:32] C:\DOCUME~1\INVIT~1\APPLIC~1\MessengerPlus! 3
[2008-01-20|14:54] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[2007-01-02|13:32] C:\DOCUME~1\INVIT~1\APPLIC~1\Morpheus
[2008-01-17|18:53] C:\DOCUME~1\INVIT~1\APPLIC~1\Mozilla
[2008-05-20|16:17] C:\DOCUME~1\INVIT~1\APPLIC~1\Sony Ericsson
[2007-05-25|06:28] C:\DOCUME~1\INVIT~1\APPLIC~1\Spyware Terminator
[2008-01-11|12:40] C:\DOCUME~1\INVIT~1\APPLIC~1\Sun
[2007-07-20|12:24] C:\DOCUME~1\INVIT~1\APPLIC~1\Talkback
[2008-05-21|12:16] C:\DOCUME~1\INVIT~1\APPLIC~1\Teleca
[2006-12-30|20:24] C:\DOCUME~1\INVIT~1\APPLIC~1\TuneUp Software
[2007-08-10|15:31] C:\DOCUME~1\INVIT~1\APPLIC~1\Vga1User

[2007-07-11|22:40] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[2007-07-12|13:29] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[2007-05-15|18:07] C:\DOCUME~1\LOCALS~1\APPLIC~1\Spyware Terminator

[2006-10-08|17:51] C:\DOCUME~1\MAMAN\APPLIC~1\Adobe
[2006-10-10|17:59] C:\DOCUME~1\MAMAN\APPLIC~1\F-Secure
[2006-11-03|22:04] C:\DOCUME~1\MAMAN\APPLIC~1\Help
[2006-10-08|12:29] C:\DOCUME~1\MAMAN\APPLIC~1\Identities
[2006-10-10|17:17] C:\DOCUME~1\MAMAN\APPLIC~1\ispnews
[2006-10-10|17:17] C:\DOCUME~1\MAMAN\APPLIC~1\Macromedia
[2007-07-12|13:29] C:\DOCUME~1\MAMAN\APPLIC~1\Microsoft
[2006-10-26|19:09] C:\DOCUME~1\MAMAN\APPLIC~1\Morpheus

[2007-07-12|13:29] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[2006-10-08|17:33] C:\DOCUME~1\VINCENT\APPLIC~1\Adobe
[2006-10-08|17:33] C:\DOCUME~1\VINCENT\APPLIC~1\AdobeUM
[2006-10-23|22:23] C:\DOCUME~1\VINCENT\APPLIC~1\Atari
[2007-05-21|21:21] C:\DOCUME~1\VINCENT\APPLIC~1\BitTorrent
[2007-02-01|00:28] C:\DOCUME~1\VINCENT\APPLIC~1\EoRezo
[2006-10-09|18:17] C:\DOCUME~1\VINCENT\APPLIC~1\F-Secure
[2006-10-07|23:56] C:\DOCUME~1\VINCENT\APPLIC~1\Identities
[2006-10-09|17:50] C:\DOCUME~1\VINCENT\APPLIC~1\ispnews
[2006-10-14|16:27] C:\DOCUME~1\VINCENT\APPLIC~1\Macromedia
[2007-07-12|13:29] C:\DOCUME~1\VINCENT\APPLIC~1\Microsoft
[2006-10-14|09:51] C:\DOCUME~1\VINCENT\APPLIC~1\Morpheus
[2006-10-09|17:53] C:\DOCUME~1\VINCENT\APPLIC~1\PEX
[2006-10-12|16:08] C:\DOCUME~1\VINCENT\APPLIC~1\SecuROM
[2007-05-25|17:55] C:\DOCUME~1\VINCENT\APPLIC~1\Smart PC Solutions
[2006-11-11|13:53] C:\DOCUME~1\VINCENT\APPLIC~1\THQ
[2006-12-04|22:47] C:\DOCUME~1\VINCENT\APPLIC~1\TuneUp Software
[2006-12-04|22:53] C:\DOCUME~1\VINCENT\APPLIC~1\uTorrent

[2007-07-11|22:42] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\AVG7
[2007-07-08|11:35] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\DivX
[2007-07-11|10:14] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\dvdcss
[2007-06-12|16:41] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Identities
[2007-06-12|16:42] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\ispnews
[2007-07-06|12:11] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Macromedia
[2007-07-12|13:29] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Microsoft
[2007-07-10|20:17] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Mozilla
[2007-07-02|20:50] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Shareaza
[2007-07-08|16:54] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Sun
[2007-07-10|20:17] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Talkback
[2007-06-14|20:53] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\vlc

[2008-07-20|23:27] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Adobe
[2008-01-25|14:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Apple Computer
[2008-04-07|21:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Auslogics
[2008-02-03|17:20] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\dvdcss
[2008-04-28|20:22] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\fltk.org
[2008-04-06|14:51] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Google
[2008-01-25|00:40] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Grisoft
[2008-01-25|00:39] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Identities
[2008-07-07|13:43] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\InstallShield Installation Information
[2008-08-05|01:27] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Launchy
[2008-03-16|22:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Macromedia
[2008-10-27|13:07] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Malwarebytes
[2008-05-18|19:41] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Media Player Classic
[2008-05-23|13:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Microsoft
[2008-05-02|20:26] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Mozilla
[2008-04-11|21:20] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\OpenArena
[2008-05-15|07:51] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Sony Ericsson
[2008-01-28|14:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Sun
[2008-10-28|15:04] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\SUPERAntiSpyware.com
[2008-05-15|10:08] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Teleca
[2008-08-16|20:12] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\TVU Networks
[2008-08-31|13:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\uTorrent
[2008-06-18|23:59] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Viewpoint

[2007-01-30|04:36] C:\DOCUME~1\VINCEN~1\APPLIC~1\ispnews
[2007-01-28|18:38] C:\DOCUME~1\VINCEN~1\APPLIC~1\Macromedia
[2007-01-30|04:36] C:\DOCUME~1\VINCEN~1\APPLIC~1\Microsoft

[2007-09-20|21:52] C:\DOCUME~1\VINCEN~3\APPLIC~1\Adobe
[2008-01-17|19:44] C:\DOCUME~1\VINCEN~3\APPLIC~1\Apple Computer
[2007-09-14|19:25] C:\DOCUME~1\VINCEN~3\APPLIC~1\Audacity
[2008-01-07|00:46] C:\DOCUME~1\VINCEN~3\APPLIC~1\BitTorrent
[2007-11-28|20:09] C:\DOCUME~1\VINCEN~3\APPLIC~1\Corel
[2007-07-18|19:09] C:\DOCUME~1\VINCEN~3\APPLIC~1\DivX
[2007-12-12|21:07] C:\DOCUME~1\VINCEN~3\APPLIC~1\dvdcss
[2007-08-19|00:46] C:\DOCUME~1\VINCEN~3\APPLIC~1\EoRezo
[2007-09-04|21:12] C:\DOCUME~1\VINCEN~3\APPLIC~1\fltk.org
[2007-12-31|00:48] C:\DOCUME~1\VINCEN~3\APPLIC~1\Google
[2008-01-11|21:56] C:\DOCUME~1\VINCEN~3\APPLIC~1\Grisoft
[2007-07-12|13:40] C:\DOCUME~1\VINCEN~3\APPLIC~1\Identities
[2007-07-15|21:13] C:\DOCUME~1\VINCEN~3\APPLIC~1\iMesh
[2007-07-12|13:40] C:\DOCUME~1\VINCEN~3\APPLIC~1\ispnews
[2008-01-25|00:36] C:\DOCUME~1\VINCEN~3\APPLIC~1\Launchy
[2008-01-12|00:39] C:\DOCUME~1\VINCEN~3\APPLIC~1\Locktime
[2007-08-04|19:23] C:\DOCUME~1\VINCEN~3\APPLIC~1\Macromedia
[2007-09-20|18:19] C:\DOCUME~1\VINCEN~3\APPLIC~1\Microsoft
[2007-09-26|21:57] C:\DOCUME~1\VINCEN~3\APPLIC~1\Mozilla
[2007-08-15|16:59] C:\DOCUME~1\VINCEN~3\APPLIC~1\MSNInstaller
[2007-07-25|14:26] C:\DOCUME~1\VINCEN~3\APPLIC~1\Screenshot Sender
[2007-07-14|22:15] C:\DOCUME~1\VINCEN~3\APPLIC~1\Shareaza
[2007-08-19|03:54] C:\DOCUME~1\VINCEN~3\APPLIC~1\Simply Super Software
[2008-01-10|20:35] C:\DOCUME~1\VINCEN~3\APPLIC~1\Sun
[2007-07-14|02:15] C:\DOCUME~1\VINCEN~3\APPLIC~1\Talkback
[2007-09-19|16:58] C:\DOCUME~1\VINCEN~3\APPLIC~1\Tenebril
[2008-01-24|11:13] C:\DOCUME~1\VINCEN~3\APPLIC~1\uTorrent
[2007-07-12|19:12] C:\DOCUME~1\VINCEN~3\APPLIC~1\vlc

[2007-07-10|12:22] C:\DOCUME~1\VINCEN~2\APPLIC~1\ispnews
[2007-07-10|12:22] C:\DOCUME~1\VINCEN~2\APPLIC~1\Microsoft


--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[2008-10-28 22:37][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2008-11-01 00:46][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[2008-11-01 00:00][--ah-----] C:\WINDOWS\tasks\B7FD719190DEE5CD.job
[2008-10-31 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[2008-11-01 00:35][--ah-----] C:\WINDOWS\tasks\SA.DAT
[2004-08-05 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

( B7FD719190DEE5CD.job )=( c:\docume~1\suprim~1\applic~1\vga1user\Stupiddoesinside.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[2007-04-01|18:59] C:\Program Files\1964
[2006-10-06|19:05] C:\Program Files\Acronis
[2008-02-24|11:49] C:\Program Files\Adobe
[2007-04-30|20:11] C:\Program Files\Ahead
[2007-09-20|21:09] C:\Program Files\AIDA32 - Personal System Information
[2008-01-14|15:07] C:\Program Files\Alcohol Soft
[2006-11-30|17:30] C:\Program Files\Alwil Software
[2007-07-10|12:23] C:\Program Files\AnfyTeam
[2007-05-31|12:11] C:\Program Files\Antipub
[2007-01-30|04:33] C:\Program Files\Any Video Converter
[2008-01-17|19:37] C:\Program Files\Apple Software Update
[2007-04-02|11:14] C:\Program Files\AresFlashDownloader
[2007-08-10|14:56] C:\Program Files\Ashampoo
[2007-04-22|10:52] C:\Program Files\Astonsoft
[2007-08-22|23:12] C:\Program Files\Atari
[2008-01-13|00:54] C:\Program Files\Audacity
[2008-01-13|00:54] C:\Program Files\Audacity 1.3 Beta (Unicode)
[2008-04-07|21:37] C:\Program Files\Auslogics
[2008-04-01|16:40] C:\Program Files\AV MP3 Player-Morpher
[2007-04-22|20:13] C:\Program Files\AvantClick
[2007-01-29|04:48] C:\Program Files\AviSynth 2.5
[2007-03-19|10:07] C:\Program Files\Azureus
[2007-04-28|18:38] C:\Program Files\BearShare
[2007-11-25|11:59] C:\Program Files\BearShare Applications
[2006-12-04|20:29] C:\Program Files\BillardGL 1.75
[2008-01-10|15:53] C:\Program Files\BitComet
[2007-04-27|17:22] C:\Program Files\BitLord
[2008-01-10|17:46] C:\Program Files\BitTorrent
[2008-01-02|16:54] C:\Program Files\BitTyrant
[2007-09-19|11:37] C:\Program Files\Boonty
[2006-10-12|16:07] C:\Program Files\BoontyGames
[2008-01-09|19:48] C:\Program Files\burnatonce
[2006-10-22|14:25] C:\Program Files\Call of Duty Dawnville Demo
[2006-10-11|16:18] C:\Program Files\Call of Duty Single Player Demo
[2007-09-27|16:10] C:\Program Files\CCleaner
[2008-07-20|17:59] C:\Program Files\Celestia
[2008-07-07|15:29] C:\Program Files\CENEGA
[2007-03-07|18:19] C:\Program Files\C-Media 3D Audio
[2007-09-02|19:17] C:\Program Files\Common Files
[2008-01-21|22:22] C:\Program Files\Compil Games
[2006-10-04|23:40] C:\Program Files\ComPlus Applications
[2008-01-13|01:01] C:\Program Files\Copernic Desktop Search 2
[2008-01-09|13:50] C:\Program Files\Corel
[2007-06-01|14:10] C:\Program Files\Crawler
[2008-04-08|18:20] C:\Program Files\Cube
[2008-10-26|14:53] C:\Program Files\CUP
[2007-01-30|04:32] C:\Program Files\CursorXP
[2007-04-29|20:13] C:\Program Files\DAEMON Tools
[2007-04-29|19:56] C:\Program Files\DaemonTools_WhenUSave_Installer
[2008-01-02|12:24] C:\Program Files\DAP
[2008-07-07|15:03] C:\Program Files\directx
[2008-01-10|16:29] C:\Program Files\DivX
[2007-09-26|20:00] C:\Program Files\Easy CD-DA Extractor 10
[2007-09-29|19:10] C:\Program Files\eChanblard
[2008-10-25|18:52] C:\Program Files\eMule
[2007-08-19|00:46] C:\Program Files\eoRezo
[2007-04-03|04:10] C:\Program Files\ePSXe
[2007-01-30|04:34] C:\Program Files\Eurobarre
[2008-05-15|07:47] C:\Program Files\Fichiers communs
[2007-06-08|19:34] C:\Program Files\File Lock
[2008-01-13|00:54] C:\Program Files\Filetopia3
[2007-09-16|16:34] C:\Program Files\Find'Em Trial
[2007-12-28|16:54] C:\Program Files\Free
[2008-01-14|15:08] C:\Program Files\free-downloads.net
[2007-09-02|19:17] C:\Program Files\GLD
[2008-07-20|18:02] C:\Program Files\Google
[2007-04-22|11:12] C:\Program Files\Goto
[2008-01-11|21:55] C:\Program Files\Grisoft
[2008-10-02|20:21] C:\Program Files\Hitman Pro
[2007-01-30|04:33] C:\Program Files\Hotkey
[2006-11-23|20:04] C:\Program Files\Image Applications
[2007-07-15|21:12] C:\Program Files\iMesh Applications
[2008-07-10|01:02] C:\Program Files\InstallShield Installation Information
[2007-04-26|19:38] C:\Program Files\Internet Download Manager
[2008-10-17|02:02] C:\Program Files\Internet Explorer
[2006-10-07|04:23] C:\Program Files\Inventel
[2008-01-17|19:43] C:\Program Files\iPod
[2008-01-13|00:54] C:\Program Files\iSpeed
[2008-01-17|19:43] C:\Program Files\iTunes
[2008-01-10|17:55] C:\Program Files\Java
[2007-04-22|20:13] C:\Program Files\JavaSoft
[2007-03-19|10:06] C:\Program Files\Kazaa Lite
[2008-01-13|00:54] C:\Program Files\KAZAA LITE TOOLS K++
[2008-10-02|20:20] C:\Program Files\K-Lite Codec Pack
[2007-09-30|10:06] C:\Program Files\Launchy
[2006-10-04|23:55] C:\Program Files\Lavalys
[2007-09-19|12:50] C:\Program Files\Lavasoft
[2007-11-25|11:52] C:\Program Files\LimeWire
[2006-12-05|19:35] C:\Program Files\LIUtilities
[2007-03-19|18:34] C:\Program Files\Logitech
[2007-01-30|04:33] C:\Program Files\Loonies
[2008-05-23|20:44] C:\Program Files\MAIET
[2008-10-27|13:07] C:\Program Files\Malwarebytes' Anti-Malware
[2007-08-10|17:06] C:\Program Files\Mario Forever
[2007-05-28|17:08] C:\Program Files\MegauploadToolbar
[2008-08-14|02:05] C:\Program Files\Messenger
[2008-01-03|15:30] C:\Program Files\Messenger Plus! Live
[2007-01-31|20:36] C:\Program Files\MessengerPlus! 3
[2006-12-04|23:57] C:\Program Files\Microsoft Bootvis
[2007-05-09|02:07] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2006-10-04|23:44] C:\Program Files\microsoft frontpage
[2006-10-11|13:19] C:\Program Files\Microsoft Games
[2006-10-06|19:11] C:\Program Files\Microsoft Office
[2008-02-20|15:44] C:\Program Files\Microsoft SQL Server Compact Edition
[2008-07-07|22:58] C:\Program Files\Mindscape
[2008-02-17|21:31] C:\Program Files\Morgan
[2008-05-27|06:40] C:\Program Files\Morpheus
[2007-07-17|19:50] C:\Program Files\Morpheus Ultra
[2007-01-30|04:33] C:\Program Files\MorpheusBar
[2008-01-13|00:55] C:\Program Files\Movie Maker
[2008-11-01|00:43] C:\Program Files\Mozilla Firefox
[2007-11-25|18:06] C:\Program Files\mozilla.org
[2007-08-15|16:59] C:\Program Files\MSN
[2007-10-06|17:55] C:\Program Files\MSN Font Color Editor
[2006-10-04|23:39] C:\Program Files\MSN Gaming Zone
[2008-02-20|15:50] C:\Program Files\MSN Messenger
[2007-10-06|17:53] C:\Program Files\MSNTweaker
[2006-10-11|13:27] C:\Program Files\MSXML 4.0
[2007-04-15|21:59] C:\Program Files\MyMPxPlayer.org
[2008-11-01|00:41] C:\Program Files\Navilog1
[2007-05-21|21:11] C:\Program Files\NetAnts
[2006-10-04|23:41] C:\Program Files\NetMeeting
[2007-09-26|21:55] C:\Program Files\Netscape
[2007-05-21|21:15] C:\Program Files\NKProds
[2007-09-16|16:35] C:\Program Files\Nombre MYSTERE
[2007-05-31|20:18] C:\Program Files\Nuclear Coffee
[2007-09-29|19:10] C:\Program Files\nutri
[2006-10-05|00:03] C:\Program Files\NVIDIA Corporation
[2006-12-09|01:02] C:\Program Files\Object Desktop
[2006-10-04|23:40] C:\Program Files\Online Services
[2006-10-12|16:13] C:\Program Files\OpenOffice.org 2.0
[2008-01-12|21:16] C:\Program Files\Outlook Express
[2007-03-30|20:42] C:\Program Files\PanaVue
[2008-07-13|16:56] C:\Program Files\PasToucheXP
[2008-02-24|16:03] C:\Program Files\PCLink
[2007-01-30|04:32] C:\Program Files\Player Metaboli
[2007-04-07|19:36] C:\Program Files\POPUPKILLER
[2006-12-16|23:34] C:\Program Files\PQDVD
[2008-03-04|16:31] C:\Program Files\Project64 1.6
[2007-01-30|04:35] C:\Program Files\PSPWare
[2008-07-21|19:43] C:\Program Files\psx emulation cheater
[2008-01-17|19:41] C:\Program Files\QuickTime
[2008-01-13|00:56] C:\Program Files\QuickZip4
[2008-04-05|21:05] C:\Program Files\RegCleaner
[2007-01-30|04:35] C:\Program Files\Ripp-it_AM
[2008-07-27|21:21] C:\Program Files\Rockstar Games
[2007-09-26|20:09] C:\Program Files\SAGEM
[2007-10-31|13:41] C:\Program Files\Seagrand
[2008-05-23|13:29] C:\Program Files\Services en ligne
[2008-01-13|00:56] C:\Program Files\Shareaza
[2007-07-10|10:54] C:\Program Files\SimonTools
[2007-09-20|21:01] C:\Program Files\SiSoftware
[2007-03-19|10:08] C:\Program Files\SlySoft
[2008-05-15|07:47] C:\Program Files\Sony Ericsson
[2008-08-16|20:02] C:\Program Files\SopCast
[2007-04-30|20:50] C:\Program Files\Spn
[2008-10-26|12:18] C:\Program Files\Spybot - Search & Destroy
[2007-05-31|11:24] C:\Program Files\Spyware Terminator
[2008-01-25|01:34] C:\Program Files\SpywareBlaster
[2006-10-23|10:31] C:\Program Files\Star Downloader
[2007-03-30|23:42] C:\Program Files\Stardock
[2007-04-28|16:41] C:\Program Files\Steganos Secure FileSharing 6
[2008-05-03|23:25] C:\Program Files\Sunbelt Software
[2008-10-28|15:04] C:\Program Files\SUPERAntiSpyware
[2007-06-04|16:52] C:\Program Files\themexp
[2008-02-20|19:23] C:\Program Files\Titus
[2007-09-29|18:55] C:\Program Files\ToniArts
[2008-07-07|22:48] C:\Program Files\Tremulous
[2007-11-05|00:19] C:\Program Files\Trend Micro
[2007-08-19|04:00] C:\Program Files\Trojan Remover
[2007-09-16|21:03] C:\Program Files\TubeMaster
[2007-05-31|20:36] C:\Program Files\TubeSucker
[2008-02-17|21:16] C:\Program Files\TVAnts
[2008-08-16|20:11] C:\Program Files\TVUPlayer
[2006-10-10|19:54] C:\Program Files\Ubisoft
[2006-10-04|23:50] C:\Program Files\Uninstall Information
[2008-02-20|18:55] C:\Program Files\Universal Interactive
[2008-08-03|11:40] C:\Program Files\UrbanTerror
[2008-01-12|18:47] C:\Program Files\uTorrent
[2008-04-05|14:36] C:\Program Files\Veoh Networks
[2007-03-20|23:30] C:\Program Files\Vga1User
[2008-07-07|13:40] C:\Program Files\VID_0E8F&PID_3020
[2008-08-09|15:58] C:\Program Files\VideoLAN
[2007-09-26|21:57] C:\Program Files\Viewpoint
[2008-01-13|12:20] C:\Program Files\VirtualDJ
[2007-07-01|19:21] C:\Program Files\Wanadoo
[2007-06-08|19:32] C:\Program Files\WinAVI MP4 Converter
[2007-03-21|17:01] C:\Program Files\Windows Journal Viewer
[2008-02-28|10:07] C:\Program Files\Windows Live
[2007-11-29|20:27] C:\Program Files\Windows Live Favorites
[2007-11-19|23:01] C:\Program Files\Windows Live Safety Center
[2007-11-30|10:05] C:\Program Files\Windows Live Toolbar
[2007-01-30|04:33] C:\Program Files\Windows Media Connect 2
[2008-02-24|17:06] C:\Program Files\Windows Media Player
[2006-10-04|23:39] C:\Program Files\Windows NT
[2006-10-04|23:42] C:\Program Files\WindowsUpdate
[2007-08-25|23:01] C:\Program Files\WinMX
[2007-04-01|23:38] C:\Program Files\WinRAR
[2007-04-28|22:47] C:\Program Files\WinZip
[2008-04-08|18:19] C:\Program Files\Wolfenstein - Enemy Territory
[2008-01-13|12:20] C:\Program Files\WorkoutLogger
[2008-01-10|18:04] C:\Program Files\Wyzo
[2006-10-04|23:44] C:\Program Files\xerox
[2007-09-29|18:57] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[2008-02-24|11:49] C:\Program Files\Fichiers communs\Adobe
[2008-01-17|19:36] C:\Program Files\Fichiers communs\Apple
[2007-09-14|19:26] C:\Program Files\Fichiers communs\AVSMedia
[2006-10-12|15:59] C:\Program Files\Fichiers communs\BOONTY Shared
[2006-11-11|13:54] C:\Program Files\Fichiers communs\DirectX
[2007-03-20|15:18] C:\Program Files\Fichiers communs\InstallShield
[2008-01-10|17:50] C:\Program Files\Fichiers communs\Java
[2007-03-19|18:30] C:\Program Files\Fichiers communs\LogiShrd
[2008-04-09|15:56] C:\Program Files\Fichiers communs\Logitech
[2008-04-08|08:00] C:\Program Files\Fichiers communs\Microsoft Shared
[2007-09-26|21:55] C:\Program Files\Fichiers communs\mozilla.org
[2006-10-04|23:41] C:\Program Files\Fichiers communs\MSSoap
[2006-10-05|00:03] C:\Program Files\Fichiers communs\NVIDIA Shared
[2006-10-05|01:31] C:\Program Files\Fichiers communs\ODBC
[2006-10-04|23:41] C:\Program Files\Fichiers communs\Services
[2008-05-15|07:48] C:\Program Files\Fichiers communs\Sony Ericsson Shared
[2006-10-05|01:31] C:\Program Files\Fichiers communs\SpeechEngines
[2007-03-30|23:42] C:\Program Files\Fichiers communs\Stardock
[2007-07-06|12:30] C:\Program Files\Fichiers communs\System
[2008-05-15|07:48] C:\Program Files\Fichiers communs\Teleca Shared
[2008-02-20|15:17] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[2008-10-28|15:02] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 37 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\INVIT~1\APPLIC~1\vga1user
C:\Program Files\vga1user
C:\DOCUME~1\INVIT~1\APPLIC~1\Adverts
C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@adin.bigpoint[2].txt
C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@cotedazurpalace[2].txt
C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@seafight[1].txt
C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@www.seafight[1].txt
C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@2xmoinscher[2].txt
C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@www.2xmoinscher[1].txt
C:\WINDOWS\Tasks\B7FD719190DEE5CD.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-01 00:59:34
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1

--------------------\\ Recherche d'autres infections


C:\WINDOWS\System32\fdpofhppoa.dat.ren
C:\WINDOWS\System32\fdpofhppoa_nav.dat.ren
C:\WINDOWS\System32\fdpofhppoa_navps.dat.ren
==> EGDACCESS <==



[F:1534][D:0]-> C:\DOCUME~1\VINCEN~1.000\Cookies
[F:11744][D:31]-> C:\DOCUME~1\VINCEN~1.000\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 2008-10-31|21:36 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 2008-11-01| 1:07 - Option : [1]

--------------------\\ Fin du rapport a 1:07:09

Il reste pas mal de choses.

Avant de les traiter, fais ceci :

Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.

Lance l'installation du programme en exécutant le fichier téléchargé.

Double-clique maintenant sur le raccourci de Toolbar-S&D.

Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.

Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.

Poste le rapport généré. (C:\TB.txt)

-----------\\ ToolBar S&D 1.2.4 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 1800+ )
BIOS : Version 1.00
USER : vincent ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081031-1] 4.8.1229 (Activated)
Firewall : Sunbelt Kerio Personal Firewall 4.3.744 T (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:39 Go (Free:1 Go)
D:\ (Local Disk) - NTFS - Total:37 Go (Free:34 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
F:\ (CD or DVD)
G:\ (CD or DVD)
H:\ (CD or DVD)
I:\ (CD or DVD)
J:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 27-10-2008|09:25 )
Option : [1] ( 2008-11-01|14:04 )

-----------\\ Recherche de Fichiers / Dossiers ...

C:\Program Files\BitLord
C:\Program Files\BitLord\BitLord.xml
C:\Program Files\BitLord\Downloads
C:\Program Files\BitLord\Downloads.xml
C:\Program Files\BitLord\lang
C:\Program Files\BitLord\rules
C:\Program Files\BitLord\Torrents
C:\Program Files\Crawler
C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@live-online-tv[1].txt
C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@mysearch[2].txt
C:\WINDOWS\Fonts\acrsec.fon

-----------\\ Extensions

(Invit‚) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar

(vincent.ZOROO-A6EC98604.000) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(vincent.ZOROO-A6EC98604.000) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper

(Vincenthsc) - {19503e42-ca3c-4c27-b1e2-9cdb2170ee34} => flashgot
(Vincenthsc) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.fr/"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iese..."
"Local Page"="C:\\windows\\system32\\blank.htm"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Default_Search_URL"="http://www.google.com/ie"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.ustart.org"
"Search Bar"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
"CustomizeSearch"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iese..."
"SearchAssistant"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iese..."


--------------------\\ Recherche d'autres infections


C:\WINDOWS\System32\fdpofhppoa.dat.ren
C:\WINDOWS\System32\fdpofhppoa_nav.dat.ren
C:\WINDOWS\System32\fdpofhppoa_navps.dat.ren
==> EGDACCESS <==




1 - "C:\ToolBar SD\TB_1.txt" - 2008-11-01|14:22 - Option : [1]

-----------\\ Fin du rapport a 14:22:01,56

voila

Re,

1 ) Relance Toolbar-S&D en double-cliquant sur le raccourci.

Choisis cette fois l'option 2 puis valide en appuyant sur Entrée.
! Ne ferme pas la fenêtre lors de la suppression ! [/#f]

Un rapport sera généré, poste son contenu ici, puis un nouveau rapport HijackThis.

[#008040]Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
Tapes explorer et valide. Cela te fera apparaitre ton bureau

2 ) Désinstalle via Ajout/Suppression de Programmes (si présents) :

BOONTY

BoontyGames

EoRezo

Viewpoint

Clique sur le menu Demarrer /Panneau de configuration/Options des dossiers/ puis dans l'onglet Affichage
- coche Afficher les fichiers et dossiers cachés
- decoche Masquer les extensions des fichiers dont le type est connu
- decoche Masquer les fichiers protégés du système d'exploitation (recommandé)
clique sur Appliquer, puis OK.

N'oublie pas de recacher à nouveau les fichiers cachés et protégés du système d'exploitation en fin de désinfection, c'est important

Puis supprime les dossiers correspondants (si existants) :

Dans Programfiles

Dans Programfiles\Fichiers communs

Dans %userprofile%\application data
( XP -> C:\Documents and Settings\%username%\Application Data,
Vista -> C:\Users\ton nom\appdata\roaming) **** Fais ceci pour toutes les sessions ***

Etc ... (Tu peux rechercher les dossiers à supprimer par une recherche Windows [Démarrer\rechercher])

Télécharge Ccleaner sur ton Bureau.

Clique sur "download the latest version"

Installe-le en laissant seulement les options suivantes cochées :
- Ajouter un raccourci sur le Bureau
- Contrôler automatiquement les mises à jour de CCleaner

Lance le Nettoyage

Clique sur Chercher des erreurs et sauvegarde si tu le souhaites.

Aide : Comment utiliser CCleaner.

3) Sélectionne entièrement l'encadré ci-dessous , puis clique droit Copier

C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
C:\DOCUME~1\INVIT~1\APPLIC~1\Adverts
C:\DOCUME~1\INVIT~1\APPLIC~1\EoRezo
C:\DOCUME~1\VINCENT\APPLIC~1\EoRezo
C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Viewpoint
C:\DOCUME~1\VINCEN~3\APPLIC~1\EoRezo
C:\WINDOWS\tasks\B7FD719190DEE5CD.job
C:\DOCUME~1\INVIT~1\APPLIC~1\Vga1User
C:\DOCUME~1\ALLUSE~1\APPLIC~1\up 16 program 64
C:\Program Files\Boonty
C:\Program Files\BoontyGames
C:\Program Files\DaemonTools_WhenUSave_Installer
C:\Program Files\eoRezo
C:\Program Files\Viewpoint
C:\Program Files\Fichiers communs\BOONTY Shared

Relance Lop S&D.

Choisis cette fois ci l'Option 4 (LopScript)

Une page blanche va s'ouvrir , clique droit dessus et choisis Coller

Ferme la page , il te sera demandé de l'enregistrer , clique sur [Enregistrer]

Ne ferme pas la fenêtre lors de la suppression !

Poste le rapport généré (C:\lopR.txt)

--------------------\\ Lop S&D 4.2.4-9 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 1800+ )
BIOS : Version 1.00
USER : vincent ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081031-1] 4.8.1229 (Activated)
Firewall : Sunbelt Kerio Personal Firewall 4.3.744 T (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:39 Go (Free:1 Go)
D:\ (Local Disk) - NTFS - Total:37 Go (Free:34 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
F:\ (CD or DVD)
G:\ (CD or DVD)
H:\ (CD or DVD)
I:\ (CD or DVD)
J:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 30-10-2008|21:58 )
Option : [2] ( 2008-11-01|18:59 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@adin.bigpoint[2].txt
Supprime! - C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@seafight[1].txt
Supprime! - C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@www.seafight[1].txt
Supprime! - C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@www.2xmoinscher[1].txt
Supprime! - C:\WINDOWS\Tasks\B7FD719190DEE5CD.job
Supprime! - C:\DOCUME~1\INVIT~1\APPLIC~1\vga1user
Supprime! - C:\Program Files\vga1user
Supprime! - C:\DOCUME~1\INVIT~1\APPLIC~1\Adverts
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

Supprime! - C:\Program Files\Viewpoint
Supprime! - C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Viewpoint

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1


[2006-10-06|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Acronis
[2008-02-24|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[2007-09-16|10:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[2008-01-17|19:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[2007-09-27|16:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Arovax
[2007-07-12|13:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[2007-09-14|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[2006-10-12|15:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[2007-10-31|15:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[2006-10-23|10:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Exetender
[2006-10-09|17:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[2007-03-08|00:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[2008-11-01|14:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[2008-01-11|21:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[2008-01-11|23:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Locktime
[2007-03-19|18:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[2008-10-27|13:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[2007-01-14|16:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[2007-05-14|16:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[2008-08-24|16:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[2008-05-15|07:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[2008-10-26|13:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[2008-10-28|15:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
[2008-05-15|07:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[2008-01-14|14:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[2007-09-19|17:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tenebril
[2006-12-04|22:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[2008-08-16|20:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TVU Networks
[2006-11-14|22:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ubisoft
[2007-09-17|19:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\up 16 program 64
[2006-10-22|16:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[2007-03-08|04:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[2007-07-23|15:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[2008-02-20|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[2007-09-29|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[2007-07-23|15:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[2008-08-20|20:41] C:\DOCUME~1\INVIT~1\APPLIC~1\Adobe
[2007-12-30|17:43] C:\DOCUME~1\INVIT~1\APPLIC~1\BitTorrent
[2008-07-01|14:53] C:\DOCUME~1\INVIT~1\APPLIC~1\DivX
[2007-09-29|19:09] C:\DOCUME~1\INVIT~1\APPLIC~1\EoRezo
[2007-01-13|21:22] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
[2008-01-12|20:24] C:\DOCUME~1\INVIT~1\APPLIC~1\Grisoft
[2006-12-29|11:57] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[2006-12-29|11:58] C:\DOCUME~1\INVIT~1\APPLIC~1\ispnews
[2008-07-28|19:25] C:\DOCUME~1\INVIT~1\APPLIC~1\Launchy
[2007-09-05|02:09] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
[2007-05-25|10:45] C:\DOCUME~1\INVIT~1\APPLIC~1\MEGAUPLOADTOOLBAR
[2007-01-30|04:32] C:\DOCUME~1\INVIT~1\APPLIC~1\MessengerPlus! 3
[2008-01-20|14:54] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[2007-01-02|13:32] C:\DOCUME~1\INVIT~1\APPLIC~1\Morpheus
[2008-01-17|18:53] C:\DOCUME~1\INVIT~1\APPLIC~1\Mozilla
[2008-05-20|16:17] C:\DOCUME~1\INVIT~1\APPLIC~1\Sony Ericsson
[2007-05-25|06:28] C:\DOCUME~1\INVIT~1\APPLIC~1\Spyware Terminator
[2008-01-11|12:40] C:\DOCUME~1\INVIT~1\APPLIC~1\Sun
[2007-07-20|12:24] C:\DOCUME~1\INVIT~1\APPLIC~1\Talkback
[2008-05-21|12:16] C:\DOCUME~1\INVIT~1\APPLIC~1\Teleca
[2006-12-30|20:24] C:\DOCUME~1\INVIT~1\APPLIC~1\TuneUp Software

[2007-07-11|22:40] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[2007-07-12|13:29] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[2007-05-15|18:07] C:\DOCUME~1\LOCALS~1\APPLIC~1\Spyware Terminator

[2006-10-08|17:51] C:\DOCUME~1\MAMAN\APPLIC~1\Adobe
[2006-10-10|17:59] C:\DOCUME~1\MAMAN\APPLIC~1\F-Secure
[2006-11-03|22:04] C:\DOCUME~1\MAMAN\APPLIC~1\Help
[2006-10-08|12:29] C:\DOCUME~1\MAMAN\APPLIC~1\Identities
[2006-10-10|17:17] C:\DOCUME~1\MAMAN\APPLIC~1\ispnews
[2006-10-10|17:17] C:\DOCUME~1\MAMAN\APPLIC~1\Macromedia
[2007-07-12|13:29] C:\DOCUME~1\MAMAN\APPLIC~1\Microsoft
[2006-10-26|19:09] C:\DOCUME~1\MAMAN\APPLIC~1\Morpheus

[2007-07-12|13:29] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[2006-10-08|17:33] C:\DOCUME~1\VINCENT\APPLIC~1\Adobe
[2006-10-08|17:33] C:\DOCUME~1\VINCENT\APPLIC~1\AdobeUM
[2006-10-23|22:23] C:\DOCUME~1\VINCENT\APPLIC~1\Atari
[2007-05-21|21:21] C:\DOCUME~1\VINCENT\APPLIC~1\BitTorrent
[2007-02-01|00:28] C:\DOCUME~1\VINCENT\APPLIC~1\EoRezo
[2006-10-09|18:17] C:\DOCUME~1\VINCENT\APPLIC~1\F-Secure
[2006-10-07|23:56] C:\DOCUME~1\VINCENT\APPLIC~1\Identities
[2006-10-09|17:50] C:\DOCUME~1\VINCENT\APPLIC~1\ispnews
[2006-10-14|16:27] C:\DOCUME~1\VINCENT\APPLIC~1\Macromedia
[2007-07-12|13:29] C:\DOCUME~1\VINCENT\APPLIC~1\Microsoft
[2006-10-14|09:51] C:\DOCUME~1\VINCENT\APPLIC~1\Morpheus
[2006-10-09|17:53] C:\DOCUME~1\VINCENT\APPLIC~1\PEX
[2006-10-12|16:08] C:\DOCUME~1\VINCENT\APPLIC~1\SecuROM
[2007-05-25|17:55] C:\DOCUME~1\VINCENT\APPLIC~1\Smart PC Solutions
[2006-11-11|13:53] C:\DOCUME~1\VINCENT\APPLIC~1\THQ
[2006-12-04|22:47] C:\DOCUME~1\VINCENT\APPLIC~1\TuneUp Software
[2006-12-04|22:53] C:\DOCUME~1\VINCENT\APPLIC~1\uTorrent

[2007-07-11|22:42] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\AVG7
[2007-07-08|11:35] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\DivX
[2007-07-11|10:14] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\dvdcss
[2007-06-12|16:41] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Identities
[2007-06-12|16:42] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\ispnews
[2007-07-06|12:11] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Macromedia
[2007-07-12|13:29] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Microsoft
[2007-07-10|20:17] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Mozilla
[2007-07-02|20:50] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Shareaza
[2007-07-08|16:54] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Sun
[2007-07-10|20:17] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Talkback
[2007-06-14|20:53] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\vlc

[2008-07-20|23:27] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Adobe
[2008-01-25|14:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Apple Computer
[2008-04-07|21:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Auslogics
[2008-02-03|17:20] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\dvdcss
[2008-04-28|20:22] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\fltk.org
[2008-04-06|14:51] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Google
[2008-01-25|00:40] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Grisoft
[2008-01-25|00:39] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Identities
[2008-07-07|13:43] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\InstallShield Installation Information
[2008-08-05|01:27] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Launchy
[2008-03-16|22:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Macromedia
[2008-10-27|13:07] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Malwarebytes
[2008-05-18|19:41] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Media Player Classic
[2008-05-23|13:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Microsoft
[2008-05-02|20:26] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Mozilla
[2008-04-11|21:20] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\OpenArena
[2008-05-15|07:51] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Sony Ericsson
[2008-01-28|14:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Sun
[2008-10-28|15:04] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\SUPERAntiSpyware.com
[2008-05-15|10:08] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Teleca
[2008-08-16|20:12] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\TVU Networks
[2008-08-31|13:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\uTorrent

[2007-01-30|04:36] C:\DOCUME~1\VINCEN~1\APPLIC~1\ispnews
[2007-01-28|18:38] C:\DOCUME~1\VINCEN~1\APPLIC~1\Macromedia
[2007-01-30|04:36] C:\DOCUME~1\VINCEN~1\APPLIC~1\Microsoft

[2007-09-20|21:52] C:\DOCUME~1\VINCEN~3\APPLIC~1\Adobe
[2008-01-17|19:44] C:\DOCUME~1\VINCEN~3\APPLIC~1\Apple Computer
[2007-09-14|19:25] C:\DOCUME~1\VINCEN~3\APPLIC~1\Audacity
[2008-01-07|00:46] C:\DOCUME~1\VINCEN~3\APPLIC~1\BitTorrent
[2007-11-28|20:09] C:\DOCUME~1\VINCEN~3\APPLIC~1\Corel
[2007-07-18|19:09] C:\DOCUME~1\VINCEN~3\APPLIC~1\DivX
[2007-12-12|21:07] C:\DOCUME~1\VINCEN~3\APPLIC~1\dvdcss
[2007-08-19|00:46] C:\DOCUME~1\VINCEN~3\APPLIC~1\EoRezo
[2007-09-04|21:12] C:\DOCUME~1\VINCEN~3\APPLIC~1\fltk.org
[2007-12-31|00:48] C:\DOCUME~1\VINCEN~3\APPLIC~1\Google
[2008-01-11|21:56] C:\DOCUME~1\VINCEN~3\APPLIC~1\Grisoft
[2007-07-12|13:40] C:\DOCUME~1\VINCEN~3\APPLIC~1\Identities
[2007-07-15|21:13] C:\DOCUME~1\VINCEN~3\APPLIC~1\iMesh
[2007-07-12|13:40] C:\DOCUME~1\VINCEN~3\APPLIC~1\ispnews
[2008-01-25|00:36] C:\DOCUME~1\VINCEN~3\APPLIC~1\Launchy
[2008-01-12|00:39] C:\DOCUME~1\VINCEN~3\APPLIC~1\Locktime
[2007-08-04|19:23] C:\DOCUME~1\VINCEN~3\APPLIC~1\Macromedia
[2007-09-20|18:19] C:\DOCUME~1\VINCEN~3\APPLIC~1\Microsoft
[2007-09-26|21:57] C:\DOCUME~1\VINCEN~3\APPLIC~1\Mozilla
[2007-08-15|16:59] C:\DOCUME~1\VINCEN~3\APPLIC~1\MSNInstaller
[2007-07-25|14:26] C:\DOCUME~1\VINCEN~3\APPLIC~1\Screenshot Sender
[2007-07-14|22:15] C:\DOCUME~1\VINCEN~3\APPLIC~1\Shareaza
[2007-08-19|03:54] C:\DOCUME~1\VINCEN~3\APPLIC~1\Simply Super Software
[2008-01-10|20:35] C:\DOCUME~1\VINCEN~3\APPLIC~1\Sun
[2007-07-14|02:15] C:\DOCUME~1\VINCEN~3\APPLIC~1\Talkback
[2007-09-19|16:58] C:\DOCUME~1\VINCEN~3\APPLIC~1\Tenebril
[2008-01-24|11:13] C:\DOCUME~1\VINCEN~3\APPLIC~1\uTorrent
[2007-07-12|19:12] C:\DOCUME~1\VINCEN~3\APPLIC~1\vlc

[2007-07-10|12:22] C:\DOCUME~1\VINCEN~2\APPLIC~1\ispnews
[2007-07-10|12:22] C:\DOCUME~1\VINCEN~2\APPLIC~1\Microsoft


--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[2008-10-28 22:37][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2008-11-01 18:46][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[2008-10-31 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[2008-11-01 13:54][--ah-----] C:\WINDOWS\tasks\SA.DAT
[2004-08-05 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[2007-04-01|18:59] C:\Program Files\1964
[2006-10-06|19:05] C:\Program Files\Acronis
[2008-02-24|11:49] C:\Program Files\Adobe
[2007-04-30|20:11] C:\Program Files\Ahead
[2007-09-20|21:09] C:\Program Files\AIDA32 - Personal System Information
[2008-01-14|15:07] C:\Program Files\Alcohol Soft
[2006-11-30|17:30] C:\Program Files\Alwil Software
[2007-07-10|12:23] C:\Program Files\AnfyTeam
[2007-05-31|12:11] C:\Program Files\Antipub
[2007-01-30|04:33] C:\Program Files\Any Video Converter
[2008-01-17|19:37] C:\Program Files\Apple Software Update
[2007-04-02|11:14] C:\Program Files\AresFlashDownloader
[2007-08-10|14:56] C:\Program Files\Ashampoo
[2007-04-22|10:52] C:\Program Files\Astonsoft
[2007-08-22|23:12] C:\Program Files\Atari
[2008-01-13|00:54] C:\Program Files\Audacity
[2008-01-13|00:54] C:\Program Files\Audacity 1.3 Beta (Unicode)
[2008-04-07|21:37] C:\Program Files\Auslogics
[2008-04-01|16:40] C:\Program Files\AV MP3 Player-Morpher
[2007-04-22|20:13] C:\Program Files\AvantClick
[2007-01-29|04:48] C:\Program Files\AviSynth 2.5
[2007-03-19|10:07] C:\Program Files\Azureus
[2007-04-28|18:38] C:\Program Files\BearShare
[2007-11-25|11:59] C:\Program Files\BearShare Applications
[2006-12-04|20:29] C:\Program Files\BillardGL 1.75
[2008-01-10|15:53] C:\Program Files\BitComet
[2007-04-27|17:22] C:\Program Files\BitLord
[2008-01-10|17:46] C:\Program Files\BitTorrent
[2008-01-02|16:54] C:\Program Files\BitTyrant
[2007-09-19|11:37] C:\Program Files\Boonty
[2006-10-12|16:07] C:\Program Files\BoontyGames
[2008-01-09|19:48] C:\Program Files\burnatonce
[2006-10-22|14:25] C:\Program Files\Call of Duty Dawnville Demo
[2006-10-11|16:18] C:\Program Files\Call of Duty Single Player Demo
[2007-09-27|16:10] C:\Program Files\CCleaner
[2008-07-20|17:59] C:\Program Files\Celestia
[2008-07-07|15:29] C:\Program Files\CENEGA
[2007-03-07|18:19] C:\Program Files\C-Media 3D Audio
[2007-09-02|19:17] C:\Program Files\Common Files
[2008-01-21|22:22] C:\Program Files\Compil Games
[2006-10-04|23:40] C:\Program Files\ComPlus Applications
[2008-01-13|01:01] C:\Program Files\Copernic Desktop Search 2
[2008-01-09|13:50] C:\Program Files\Corel
[2007-06-01|14:10] C:\Program Files\Crawler
[2008-04-08|18:20] C:\Program Files\Cube
[2008-10-26|14:53] C:\Program Files\CUP
[2007-01-30|04:32] C:\Program Files\CursorXP
[2007-04-29|20:13] C:\Program Files\DAEMON Tools
[2007-04-29|19:56] C:\Program Files\DaemonTools_WhenUSave_Installer
[2008-01-02|12:24] C:\Program Files\DAP
[2008-07-07|15:03] C:\Program Files\directx
[2008-01-10|16:29] C:\Program Files\DivX
[2007-09-26|20:00] C:\Program Files\Easy CD-DA Extractor 10
[2007-09-29|19:10] C:\Program Files\eChanblard
[2008-10-25|18:52] C:\Program Files\eMule
[2007-08-19|00:46] C:\Program Files\eoRezo
[2007-04-03|04:10] C:\Program Files\ePSXe
[2007-01-30|04:34] C:\Program Files\Eurobarre
[2008-05-15|07:47] C:\Program Files\Fichiers communs
[2007-06-08|19:34] C:\Program Files\File Lock
[2008-01-13|00:54] C:\Program Files\Filetopia3
[2007-09-16|16:34] C:\Program Files\Find'Em Trial
[2007-12-28|16:54] C:\Program Files\Free
[2008-01-14|15:08] C:\Program Files\free-downloads.net
[2007-09-02|19:17] C:\Program Files\GLD
[2008-07-20|18:02] C:\Program Files\Google
[2007-04-22|11:12] C:\Program Files\Goto
[2008-01-11|21:55] C:\Program Files\Grisoft
[2008-10-02|20:21] C:\Program Files\Hitman Pro
[2007-01-30|04:33] C:\Program Files\Hotkey
[2006-11-23|20:04] C:\Program Files\Image Applications
[2007-07-15|21:12] C:\Program Files\iMesh Applications
[2008-07-10|01:02] C:\Program Files\InstallShield Installation Information
[2007-04-26|19:38] C:\Program Files\Internet Download Manager
[2008-10-17|02:02] C:\Program Files\Internet Explorer
[2006-10-07|04:23] C:\Program Files\Inventel
[2008-01-17|19:43] C:\Program Files\iPod
[2008-01-13|00:54] C:\Program Files\iSpeed
[2008-01-17|19:43] C:\Program Files\iTunes
[2008-01-10|17:55] C:\Program Files\Java
[2007-04-22|20:13] C:\Program Files\JavaSoft
[2007-03-19|10:06] C:\Program Files\Kazaa Lite
[2008-01-13|00:54] C:\Program Files\KAZAA LITE TOOLS K++
[2008-10-02|20:20] C:\Program Files\K-Lite Codec Pack
[2007-09-30|10:06] C:\Program Files\Launchy
[2006-10-04|23:55] C:\Program Files\Lavalys
[2007-09-19|12:50] C:\Program Files\Lavasoft
[2007-11-25|11:52] C:\Program Files\LimeWire
[2006-12-05|19:35] C:\Program Files\LIUtilities
[2007-03-19|18:34] C:\Program Files\Logitech
[2007-01-30|04:33] C:\Program Files\Loonies
[2008-05-23|20:44] C:\Program Files\MAIET
[2008-10-27|13:07] C:\Program Files\Malwarebytes' Anti-Malware
[2007-08-10|17:06] C:\Program Files\Mario Forever
[2007-05-28|17:08] C:\Program Files\MegauploadToolbar
[2008-08-14|02:05] C:\Program Files\Messenger
[2008-01-03|15:30] C:\Program Files\Messenger Plus! Live
[2007-01-31|20:36] C:\Program Files\MessengerPlus! 3
[2006-12-04|23:57] C:\Program Files\Microsoft Bootvis
[2007-05-09|02:07] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2006-10-04|23:44] C:\Program Files\microsoft frontpage
[2006-10-11|13:19] C:\Program Files\Microsoft Games
[2006-10-06|19:11] C:\Program Files\Microsoft Office
[2008-02-20|15:44] C:\Program Files\Microsoft SQL Server Compact Edition
[2008-07-07|22:58] C:\Program Files\Mindscape
[2008-02-17|21:31] C:\Program Files\Morgan
[2008-05-27|06:40] C:\Program Files\Morpheus
[2007-07-17|19:50] C:\Program Files\Morpheus Ultra
[2007-01-30|04:33] C:\Program Files\MorpheusBar
[2008-01-13|00:55] C:\Program Files\Movie Maker
[2008-11-01|16:19] C:\Program Files\Mozilla Firefox
[2007-11-25|18:06] C:\Program Files\mozilla.org
[2007-08-15|16:59] C:\Program Files\MSN
[2007-10-06|17:55] C:\Program Files\MSN Font Color Editor
[2006-10-04|23:39] C:\Program Files\MSN Gaming Zone
[2008-02-20|15:50] C:\Program Files\MSN Messenger
[2007-10-06|17:53] C:\Program Files\MSNTweaker
[2006-10-11|13:27] C:\Program Files\MSXML 4.0
[2007-04-15|21:59] C:\Program Files\MyMPxPlayer.org
[2008-11-01|00:41] C:\Program Files\Navilog1
[2007-05-21|21:11] C:\Program Files\NetAnts
[2006-10-04|23:41] C:\Program Files\NetMeeting
[2007-09-26|21:55] C:\Program Files\Netscape
[2007-05-21|21:15] C:\Program Files\NKProds
[2007-09-16|16:35] C:\Program Files\Nombre MYSTERE
[2007-05-31|20:18] C:\Program Files\Nuclear Coffee
[2007-09-29|19:10] C:\Program Files\nutri
[2006-10-05|00:03] C:\Program Files\NVIDIA Corporation
[2006-12-09|01:02] C:\Program Files\Object Desktop
[2006-10-04|23:40] C:\Program Files\Online Services
[2006-10-12|16:13] C:\Program Files\OpenOffice.org 2.0
[2008-01-12|21:16] C:\Program Files\Outlook Express
[2007-03-30|20:42] C:\Program Files\PanaVue
[2008-07-13|16:56] C:\Program Files\PasToucheXP
[2008-02-24|16:03] C:\Program Files\PCLink
[2007-01-30|04:32] C:\Program Files\Player Metaboli
[2007-04-07|19:36] C:\Program Files\POPUPKILLER
[2006-12-16|23:34] C:\Program Files\PQDVD
[2008-03-04|16:31] C:\Program Files\Project64 1.6
[2007-01-30|04:35] C:\Program Files\PSPWare
[2008-07-21|19:43] C:\Program Files\psx emulation cheater
[2008-01-17|19:41] C:\Program Files\QuickTime
[2008-01-13|00:56] C:\Program Files\QuickZip4
[2008-04-05|21:05] C:\Program Files\RegCleaner
[2007-01-30|04:35] C:\Program Files\Ripp-it_AM
[2008-07-27|21:21] C:\Program Files\Rockstar Games
[2007-09-26|20:09] C:\Program Files\SAGEM
[2007-10-31|13:41] C:\Program Files\Seagrand
[2008-05-23|13:29] C:\Program Files\Services en ligne
[2008-01-13|00:56] C:\Program Files\Shareaza
[2007-07-10|10:54] C:\Program Files\SimonTools
[2007-09-20|21:01] C:\Program Files\SiSoftware
[2007-03-19|10:08] C:\Program Files\SlySoft
[2008-05-15|07:47] C:\Program Files\Sony Ericsson
[2008-08-16|20:02] C:\Program Files\SopCast
[2007-04-30|20:50] C:\Program Files\Spn
[2008-10-26|12:18] C:\Program Files\Spybot - Search & Destroy
[2007-05-31|11:24] C:\Program Files\Spyware Terminator
[2008-01-25|01:34] C:\Program Files\SpywareBlaster
[2006-10-23|10:31] C:\Program Files\Star Downloader
[2007-03-30|23:42] C:\Program Files\Stardock
[2007-04-28|16:41] C:\Program Files\Steganos Secure FileSharing 6
[2008-05-03|23:25] C:\Program Files\Sunbelt Software
[2008-10-28|15:04] C:\Program Files\SUPERAntiSpyware
[2007-06-04|16:52] C:\Program Files\themexp
[2008-02-20|19:23] C:\Program Files\Titus
[2007-09-29|18:55] C:\Program Files\ToniArts
[2008-07-07|22:48] C:\Program Files\Tremulous
[2007-11-05|00:19] C:\Program Files\Trend Micro
[2007-08-19|04:00] C:\Program Files\Trojan Remover
[2007-09-16|21:03] C:\Program Files\TubeMaster
[2007-05-31|20:36] C:\Program Files\TubeSucker
[2008-02-17|21:16] C:\Program Files\TVAnts
[2008-08-16|20:11] C:\Program Files\TVUPlayer
[2006-10-10|19:54] C:\Program Files\Ubisoft
[2006-10-04|23:50] C:\Program Files\Uninstall Information
[2008-02-20|18:55] C:\Program Files\Universal Interactive
[2008-08-03|11:40] C:\Program Files\UrbanTerror
[2008-01-12|18:47] C:\Program Files\uTorrent
[2008-04-05|14:36] C:\Program Files\Veoh Networks
[2008-07-07|13:40] C:\Program Files\VID_0E8F&PID_3020
[2008-08-09|15:58] C:\Program Files\VideoLAN
[2008-01-13|12:20] C:\Program Files\VirtualDJ
[2007-07-01|19:21] C:\Program Files\Wanadoo
[2007-06-08|19:32] C:\Program Files\WinAVI MP4 Converter
[2007-03-21|17:01] C:\Program Files\Windows Journal Viewer
[2008-02-28|10:07] C:\Program Files\Windows Live
[2007-11-29|20:27] C:\Program Files\Windows Live Favorites
[2007-11-19|23:01] C:\Program Files\Windows Live Safety Center
[2007-11-30|10:05] C:\Program Files\Windows Live Toolbar
[2007-01-30|04:33] C:\Program Files\Windows Media Connect 2
[2008-02-24|17:06] C:\Program Files\Windows Media Player
[2006-10-04|23:39] C:\Program Files\Windows NT
[2006-10-04|23:42] C:\Program Files\WindowsUpdate
[2007-08-25|23:01] C:\Program Files\WinMX
[2007-04-01|23:38] C:\Program Files\WinRAR
[2007-04-28|22:47] C:\Program Files\WinZip
[2008-04-08|18:19] C:\Program Files\Wolfenstein - Enemy Territory
[2008-01-13|12:20] C:\Program Files\WorkoutLogger
[2008-01-10|18:04] C:\Program Files\Wyzo
[2006-10-04|23:44] C:\Program Files\xerox
[2007-09-29|18:57] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[2008-02-24|11:49] C:\Program Files\Fichiers communs\Adobe
[2008-01-17|19:36] C:\Program Files\Fichiers communs\Apple
[2007-09-14|19:26] C:\Program Files\Fichiers communs\AVSMedia
[2006-10-12|15:59] C:\Program Files\Fichiers communs\BOONTY Shared
[2006-11-11|13:54] C:\Program Files\Fichiers communs\DirectX
[2007-03-20|15:18] C:\Program Files\Fichiers communs\InstallShield
[2008-01-10|17:50] C:\Program Files\Fichiers communs\Java
[2007-03-19|18:30] C:\Program Files\Fichiers communs\LogiShrd
[2008-04-09|15:56] C:\Program Files\Fichiers communs\Logitech
[2008-04-08|08:00] C:\Program Files\Fichiers communs\Microsoft Shared
[2007-09-26|21:55] C:\Program Files\Fichiers communs\mozilla.org
[2006-10-04|23:41] C:\Program Files\Fichiers communs\MSSoap
[2006-10-05|00:03] C:\Program Files\Fichiers communs\NVIDIA Shared
[2006-10-05|01:31] C:\Program Files\Fichiers communs\ODBC
[2006-10-04|23:41] C:\Program Files\Fichiers communs\Services
[2008-05-15|07:48] C:\Program Files\Fichiers communs\Sony Ericsson Shared
[2006-10-05|01:31] C:\Program Files\Fichiers communs\SpeechEngines
[2007-03-30|23:42] C:\Program Files\Fichiers communs\Stardock
[2007-07-06|12:30] C:\Program Files\Fichiers communs\System
[2008-05-15|07:48] C:\Program Files\Fichiers communs\Teleca Shared
[2008-02-20|15:17] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[2008-10-28|15:02] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 39 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-01 19:08:50
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1

--------------------\\ Recherche d'autres infections


C:\WINDOWS\System32\fdpofhppoa.dat.ren
C:\WINDOWS\System32\fdpofhppoa_nav.dat.ren
C:\WINDOWS\System32\fdpofhppoa_navps.dat.ren
==> EGDACCESS <==



[F:70][D:7]-> C:\DOCUME~1\VINCEN~1.000\LOCALS~1\Temp
[F:1533][D:0]-> C:\DOCUME~1\VINCEN~1.000\Cookies
[F:12268][D:31]-> C:\DOCUME~1\VINCEN~1.000\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 2008-10-31|21:36 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 2008-11-01| 1:07 - Option : [1]
3 - "C:\Lop SD\LopR_3.txt" - 2008-11-01|19:21 - Option : [2]

--------------------\\ Fin du rapport a 19:21:38





--------------------\\ Lop S&D 4.2.4-9 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 1800+ )
BIOS : Version 1.00
USER : vincent ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081031-1] 4.8.1229 (Activated)
Firewall : Sunbelt Kerio Personal Firewall 4.3.744 T (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:39 Go (Free:1 Go)
D:\ (Local Disk) - NTFS - Total:37 Go (Free:34 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
F:\ (CD or DVD)
G:\ (CD or DVD)
H:\ (CD or DVD)
I:\ (CD or DVD)
J:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 30-10-2008|21:58 )
Option : [4] ( 2008-11-01|19:41 )

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Lop Script

C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
C:\DOCUME~1\INVIT~1\APPLIC~1\Adverts
C:\DOCUME~1\INVIT~1\APPLIC~1\EoRezo
C:\DOCUME~1\VINCENT\APPLIC~1\EoRezo
C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Viewpoint
C:\DOCUME~1\VINCEN~3\APPLIC~1\EoRezo
C:\WINDOWS\tasks\B7FD719190DEE5CD.job
C:\DOCUME~1\INVIT~1\APPLIC~1\Vga1User
C:\DOCUME~1\ALLUSE~1\APPLIC~1\up 16 program 64
C:\Program Files\Boonty
C:\Program Files\BoontyGames
C:\Program Files\DaemonTools_WhenUSave_Installer
C:\Program Files\eoRezo
C:\Program Files\Viewpoint
C:\Program Files\Fichiers communs\BOONTY Shared


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

... C:\WINDOWS\tasks\B7FD719190DEE5CD.job -> n'existe pas !
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
... C:\DOCUME~1\INVIT~1\APPLIC~1\Adverts -> n'existe pas !
Supprime! - C:\DOCUME~1\INVIT~1\APPLIC~1\EoRezo
Supprime! - C:\DOCUME~1\VINCENT\APPLIC~1\EoRezo
... C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Viewpoint -> n'existe pas !
Supprime! - C:\DOCUME~1\VINCEN~3\APPLIC~1\EoRezo
... C:\DOCUME~1\INVIT~1\APPLIC~1\Vga1User -> n'existe pas !
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\up 16 program 64
Supprime! - C:\Program Files\Boonty
Supprime! - C:\Program Files\BoontyGames
Supprime! - C:\Program Files\DaemonTools_WhenUSave_Installer
Supprime! - C:\Program Files\eoRezo
... C:\Program Files\Viewpoint -> n'existe pas !
Supprime! - C:\Program Files\Fichiers communs\BOONTY Shared

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1


[2006-10-06|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Acronis
[2008-02-24|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[2007-09-16|10:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[2008-01-17|19:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[2007-09-27|16:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Arovax
[2007-07-12|13:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[2007-09-14|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[2007-10-31|15:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[2006-10-23|10:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Exetender
[2006-10-09|17:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[2007-03-08|00:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[2008-11-01|14:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[2008-01-11|21:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[2008-01-11|23:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Locktime
[2007-03-19|18:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[2008-10-27|13:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[2007-01-14|16:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[2007-05-14|16:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[2008-08-24|16:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[2008-05-15|07:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[2008-11-01|19:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[2008-10-28|15:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
[2008-05-15|07:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[2008-01-14|14:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[2007-09-19|17:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tenebril
[2006-12-04|22:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[2008-08-16|20:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TVU Networks
[2006-11-14|22:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ubisoft
[2006-10-22|16:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[2007-03-08|04:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[2007-07-23|15:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[2008-02-20|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[2007-09-29|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[2007-07-23|15:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[2008-08-20|20:41] C:\DOCUME~1\INVIT~1\APPLIC~1\Adobe
[2007-12-30|17:43] C:\DOCUME~1\INVIT~1\APPLIC~1\BitTorrent
[2008-07-01|14:53] C:\DOCUME~1\INVIT~1\APPLIC~1\DivX
[2007-01-13|21:22] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
[2008-01-12|20:24] C:\DOCUME~1\INVIT~1\APPLIC~1\Grisoft
[2006-12-29|11:57] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[2006-12-29|11:58] C:\DOCUME~1\INVIT~1\APPLIC~1\ispnews
[2008-07-28|19:25] C:\DOCUME~1\INVIT~1\APPLIC~1\Launchy
[2007-09-05|02:09] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
[2007-05-25|10:45] C:\DOCUME~1\INVIT~1\APPLIC~1\MEGAUPLOADTOOLBAR
[2007-01-30|04:32] C:\DOCUME~1\INVIT~1\APPLIC~1\MessengerPlus! 3
[2008-01-20|14:54] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[2007-01-02|13:32] C:\DOCUME~1\INVIT~1\APPLIC~1\Morpheus
[2008-01-17|18:53] C:\DOCUME~1\INVIT~1\APPLIC~1\Mozilla
[2008-05-20|16:17] C:\DOCUME~1\INVIT~1\APPLIC~1\Sony Ericsson
[2007-05-25|06:28] C:\DOCUME~1\INVIT~1\APPLIC~1\Spyware Terminator
[2008-01-11|12:40] C:\DOCUME~1\INVIT~1\APPLIC~1\Sun
[2007-07-20|12:24] C:\DOCUME~1\INVIT~1\APPLIC~1\Talkback
[2008-05-21|12:16] C:\DOCUME~1\INVIT~1\APPLIC~1\Teleca
[2006-12-30|20:24] C:\DOCUME~1\INVIT~1\APPLIC~1\TuneUp Software

[2007-07-11|22:40] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[2007-07-12|13:29] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[2007-05-15|18:07] C:\DOCUME~1\LOCALS~1\APPLIC~1\Spyware Terminator

[2006-10-08|17:51] C:\DOCUME~1\MAMAN\APPLIC~1\Adobe
[2006-10-10|17:59] C:\DOCUME~1\MAMAN\APPLIC~1\F-Secure
[2006-11-03|22:04] C:\DOCUME~1\MAMAN\APPLIC~1\Help
[2006-10-08|12:29] C:\DOCUME~1\MAMAN\APPLIC~1\Identities
[2006-10-10|17:17] C:\DOCUME~1\MAMAN\APPLIC~1\ispnews
[2006-10-10|17:17] C:\DOCUME~1\MAMAN\APPLIC~1\Macromedia
[2007-07-12|13:29] C:\DOCUME~1\MAMAN\APPLIC~1\Microsoft
[2006-10-26|19:09] C:\DOCUME~1\MAMAN\APPLIC~1\Morpheus

[2007-07-12|13:29] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[2006-10-08|17:33] C:\DOCUME~1\VINCENT\APPLIC~1\Adobe
[2006-10-08|17:33] C:\DOCUME~1\VINCENT\APPLIC~1\AdobeUM
[2006-10-23|22:23] C:\DOCUME~1\VINCENT\APPLIC~1\Atari
[2007-05-21|21:21] C:\DOCUME~1\VINCENT\APPLIC~1\BitTorrent
[2006-10-09|18:17] C:\DOCUME~1\VINCENT\APPLIC~1\F-Secure
[2006-10-07|23:56] C:\DOCUME~1\VINCENT\APPLIC~1\Identities
[2006-10-09|17:50] C:\DOCUME~1\VINCENT\APPLIC~1\ispnews
[2006-10-14|16:27] C:\DOCUME~1\VINCENT\APPLIC~1\Macromedia
[2007-07-12|13:29] C:\DOCUME~1\VINCENT\APPLIC~1\Microsoft
[2006-10-14|09:51] C:\DOCUME~1\VINCENT\APPLIC~1\Morpheus
[2006-10-09|17:53] C:\DOCUME~1\VINCENT\APPLIC~1\PEX
[2006-10-12|16:08] C:\DOCUME~1\VINCENT\APPLIC~1\SecuROM
[2007-05-25|17:55] C:\DOCUME~1\VINCENT\APPLIC~1\Smart PC Solutions
[2006-11-11|13:53] C:\DOCUME~1\VINCENT\APPLIC~1\THQ
[2006-12-04|22:47] C:\DOCUME~1\VINCENT\APPLIC~1\TuneUp Software
[2006-12-04|22:53] C:\DOCUME~1\VINCENT\APPLIC~1\uTorrent

[2007-07-11|22:42] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\AVG7
[2007-07-08|11:35] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\DivX
[2007-07-11|10:14] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\dvdcss
[2007-06-12|16:41] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Identities
[2007-06-12|16:42] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\ispnews
[2007-07-06|12:11] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Macromedia
[2007-07-12|13:29] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Microsoft
[2007-07-10|20:17] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Mozilla
[2007-07-02|20:50] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Shareaza
[2007-07-08|16:54] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Sun
[2007-07-10|20:17] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Talkback
[2007-06-14|20:53] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\vlc

[2008-07-20|23:27] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Adobe
[2008-01-25|14:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Apple Computer
[2008-04-07|21:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Auslogics
[2008-02-03|17:20] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\dvdcss
[2008-04-28|20:22] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\fltk.org
[2008-04-06|14:51] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Google
[2008-01-25|00:40] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Grisoft
[2008-01-25|00:39] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Identities
[2008-07-07|13:43] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\InstallShield Installation Information
[2008-08-05|01:27] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Launchy
[2008-03-16|22:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Macromedia
[2008-10-27|13:07] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Malwarebytes
[2008-05-18|19:41] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Media Player Classic
[2008-05-23|13:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Microsoft
[2008-05-02|20:26] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Mozilla
[2008-04-11|21:20] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\OpenArena
[2008-05-15|07:51] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Sony Ericsson
[2008-01-28|14:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Sun
[2008-10-28|15:04] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\SUPERAntiSpyware.com
[2008-05-15|10:08] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Teleca
[2008-08-16|20:12] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\TVU Networks
[2008-08-31|13:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\uTorrent

[2007-01-30|04:36] C:\DOCUME~1\VINCEN~1\APPLIC~1\ispnews
[2007-01-28|18:38] C:\DOCUME~1\VINCEN~1\APPLIC~1\Macromedia
[2007-01-30|04:36] C:\DOCUME~1\VINCEN~1\APPLIC~1\Microsoft

[2007-09-20|21:52] C:\DOCUME~1\VINCEN~3\APPLIC~1\Adobe
[2008-01-17|19:44] C:\DOCUME~1\VINCEN~3\APPLIC~1\Apple Computer
[2007-09-14|19:25] C:\DOCUME~1\VINCEN~3\APPLIC~1\Audacity
[2008-01-07|00:46] C:\DOCUME~1\VINCEN~3\APPLIC~1\BitTorrent
[2007-11-28|20:09] C:\DOCUME~1\VINCEN~3\APPLIC~1\Corel
[2007-07-18|19:09] C:\DOCUME~1\VINCEN~3\APPLIC~1\DivX
[2007-12-12|21:07] C:\DOCUME~1\VINCEN~3\APPLIC~1\dvdcss
[2007-09-04|21:12] C:\DOCUME~1\VINCEN~3\APPLIC~1\fltk.org
[2007-12-31|00:48] C:\DOCUME~1\VINCEN~3\APPLIC~1\Google
[2008-01-11|21:56] C:\DOCUME~1\VINCEN~3\APPLIC~1\Grisoft
[2007-07-12|13:40] C:\DOCUME~1\VINCEN~3\APPLIC~1\Identities
[2007-07-15|21:13] C:\DOCUME~1\VINCEN~3\APPLIC~1\iMesh
[2007-07-12|13:40] C:\DOCUME~1\VINCEN~3\APPLIC~1\ispnews
[2008-01-25|00:36] C:\DOCUME~1\VINCEN~3\APPLIC~1\Launchy
[2008-01-12|00:39] C:\DOCUME~1\VINCEN~3\APPLIC~1\Locktime
[2007-08-04|19:23] C:\DOCUME~1\VINCEN~3\APPLIC~1\Macromedia
[2007-09-20|18:19] C:\DOCUME~1\VINCEN~3\APPLIC~1\Microsoft
[2007-09-26|21:57] C:\DOCUME~1\VINCEN~3\APPLIC~1\Mozilla
[2007-08-15|16:59] C:\DOCUME~1\VINCEN~3\APPLIC~1\MSNInstaller
[2007-07-25|14:26] C:\DOCUME~1\VINCEN~3\APPLIC~1\Screenshot Sender
[2007-07-14|22:15] C:\DOCUME~1\VINCEN~3\APPLIC~1\Shareaza
[2007-08-19|03:54] C:\DOCUME~1\VINCEN~3\APPLIC~1\Simply Super Software
[2008-01-10|20:35] C:\DOCUME~1\VINCEN~3\APPLIC~1\Sun
[2007-07-14|02:15] C:\DOCUME~1\VINCEN~3\APPLIC~1\Talkback
[2007-09-19|16:58] C:\DOCUME~1\VINCEN~3\APPLIC~1\Tenebril
[2008-01-24|11:13] C:\DOCUME~1\VINCEN~3\APPLIC~1\uTorrent
[2007-07-12|19:12] C:\DOCUME~1\VINCEN~3\APPLIC~1\vlc

[2007-07-10|12:22] C:\DOCUME~1\VINCEN~2\APPLIC~1\ispnews
[2007-07-10|12:22] C:\DOCUME~1\VINCEN~2\APPLIC~1\Microsoft


--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[2008-10-28 22:37][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2008-11-01 19:46][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[2008-10-31 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[2008-11-01 13:54][--ah-----] C:\WINDOWS\tasks\SA.DAT
[2004-08-05 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[2007-04-01|18:59] C:\Program Files\1964
[2006-10-06|19:05] C:\Program Files\Acronis
[2008-02-24|11:49] C:\Program Files\Adobe
[2007-04-30|20:11] C:\Program Files\Ahead
[2007-09-20|21:09] C:\Program Files\AIDA32 - Personal System Information
[2008-01-14|15:07] C:\Program Files\Alcohol Soft
[2006-11-30|17:30] C:\Program Files\Alwil Software
[2007-07-10|12:23] C:\Program Files\AnfyTeam
[2007-05-31|12:11] C:\Program Files\Antipub
[2007-01-30|04:33] C:\Program Files\Any Video Converter
[2008-01-17|19:37] C:\Program Files\Apple Software Update
[2007-04-02|11:14] C:\Program Files\AresFlashDownloader
[2007-08-10|14:56] C:\Program Files\Ashampoo
[2007-04-22|10:52] C:\Program Files\Astonsoft
[2007-08-22|23:12] C:\Program Files\Atari
[2008-01-13|00:54] C:\Program Files\Audacity
[2008-01-13|00:54] C:\Program Files\Audacity 1.3 Beta (Unicode)
[2008-04-07|21:37] C:\Program Files\Auslogics
[2008-04-01|16:40] C:\Program Files\AV MP3 Player-Morpher
[2007-04-22|20:13] C:\Program Files\AvantClick
[2007-01-29|04:48] C:\Program Files\AviSynth 2.5
[2007-03-19|10:07] C:\Program Files\Azureus
[2007-04-28|18:38] C:\Program Files\BearShare
[2007-11-25|11:59] C:\Program Files\BearShare Applications
[2006-12-04|20:29] C:\Program Files\BillardGL 1.75
[2008-01-10|15:53] C:\Program Files\BitComet
[2007-04-27|17:22] C:\Program Files\BitLord
[2008-01-10|17:46] C:\Program Files\BitTorrent
[2008-01-02|16:54] C:\Program Files\BitTyrant
[2008-01-09|19:48] C:\Program Files\burnatonce
[2006-10-22|14:25] C:\Program Files\Call of Duty Dawnville Demo
[2006-10-11|16:18] C:\Program Files\Call of Duty Single Player Demo
[2007-09-27|16:10] C:\Program Files\CCleaner
[2008-07-20|17:59] C:\Program Files\Celestia
[2008-07-07|15:29] C:\Program Files\CENEGA
[2007-03-07|18:19] C:\Program Files\C-Media 3D Audio
[2007-09-02|19:17] C:\Program Files\Common Files
[2008-01-21|22:22] C:\Program Files\Compil Games
[2006-10-04|23:40] C:\Program Files\ComPlus Applications
[2008-01-13|01:01] C:\Program Files\Copernic Desktop Search 2
[2008-01-09|13:50] C:\Program Files\Corel
[2007-06-01|14:10] C:\Program Files\Crawler
[2008-04-08|18:20] C:\Program Files\Cube
[2008-10-26|14:53] C:\Program Files\CUP
[2007-01-30|04:32] C:\Program Files\CursorXP
[2007-04-29|20:13] C:\Program Files\DAEMON Tools
[2008-01-02|12:24] C:\Program Files\DAP
[2008-07-07|15:03] C:\Program Files\directx
[2008-01-10|16:29] C:\Program Files\DivX
[2007-09-26|20:00] C:\Program Files\Easy CD-DA Extractor 10
[2007-09-29|19:10] C:\Program Files\eChanblard
[2008-10-25|18:52] C:\Program Files\eMule
[2007-04-03|04:10] C:\Program Files\ePSXe
[2007-01-30|04:34] C:\Program Files\Eurobarre
[2008-11-01|19:52] C:\Program Files\Fichiers communs
[2007-06-08|19:34] C:\Program Files\File Lock
[2008-01-13|00:54] C:\Program Files\Filetopia3
[2007-09-16|16:34] C:\Program Files\Find'Em Trial
[2007-12-28|16:54] C:\Program Files\Free
[2008-01-14|15:08] C:\Program Files\free-downloads.net
[2007-09-02|19:17] C:\Program Files\GLD
[2008-07-20|18:02] C:\Program Files\Google
[2007-04-22|11:12] C:\Program Files\Goto
[2008-01-11|21:55] C:\Program Files\Grisoft
[2008-10-02|20:21] C:\Program Files\Hitman Pro
[2007-01-30|04:33] C:\Program Files\Hotkey
[2006-11-23|20:04] C:\Program Files\Image Applications
[2007-07-15|21:12] C:\Program Files\iMesh Applications
[2008-07-10|01:02] C:\Program Files\InstallShield Installation Information
[2007-04-26|19:38] C:\Program Files\Internet Download Manager
[2008-10-17|02:02] C:\Program Files\Internet Explorer
[2006-10-07|04:23] C:\Program Files\Inventel
[2008-01-17|19:43] C:\Program Files\iPod
[2008-01-13|00:54] C:\Program Files\iSpeed
[2008-01-17|19:43] C:\Program Files\iTunes
[2008-01-10|17:55] C:\Program Files\Java
[2007-04-22|20:13] C:\Program Files\JavaSoft
[2007-03-19|10:06] C:\Program Files\Kazaa Lite
[2008-01-13|00:54] C:\Program Files\KAZAA LITE TOOLS K++
[2008-10-02|20:20] C:\Program Files\K-Lite Codec Pack
[2007-09-30|10:06] C:\Program Files\Launchy
[2006-10-04|23:55] C:\Program Files\Lavalys
[2007-09-19|12:50] C:\Program Files\Lavasoft
[2007-11-25|11:52] C:\Program Files\LimeWire
[2006-12-05|19:35] C:\Program Files\LIUtilities
[2007-03-19|18:34] C:\Program Files\Logitech
[2007-01-30|04:33] C:\Program Files\Loonies
[2008-05-23|20:44] C:\Program Files\MAIET
[2008-10-27|13:07] C:\Program Files\Malwarebytes' Anti-Malware
[2007-08-10|17:06] C:\Program Files\Mario Forever
[2007-05-28|17:08] C:\Program Files\MegauploadToolbar
[2008-08-14|02:05] C:\Program Files\Messenger
[2008-01-03|15:30] C:\Program Files\Messenger Plus! Live
[2007-01-31|20:36] C:\Program Files\MessengerPlus! 3
[2006-12-04|23:57] C:\Program Files\Microsoft Bootvis
[2007-05-09|02:07] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2006-10-04|23:44] C:\Program Files\microsoft frontpage
[2006-10-11|13:19] C:\Program Files\Microsoft Games
[2006-10-06|19:11] C:\Program Files\Microsoft Office
[2008-02-20|15:44] C:\Program Files\Microsoft SQL Server Compact Edition
[2008-07-07|22:58] C:\Program Files\Mindscape
[2008-02-17|21:31] C:\Program Files\Morgan
[2008-05-27|06:40] C:\Program Files\Morpheus
[2007-07-17|19:50] C:\Program Files\Morpheus Ultra
[2007-01-30|04:33] C:\Program Files\MorpheusBar
[2008-01-13|00:55] C:\Program Files\Movie Maker
[2008-11-01|16:19] C:\Program Files\Mozilla Firefox
[2007-11-25|18:06] C:\Program Files\mozilla.org
[2007-08-15|16:59] C:\Program Files\MSN
[2007-10-06|17:55] C:\Program Files\MSN Font Color Editor
[2006-10-04|23:39] C:\Program Files\MSN Gaming Zone
[2008-02-20|15:50] C:\Program Files\MSN Messenger
[2007-10-06|17:53] C:\Program Files\MSNTweaker
[2006-10-11|13:27] C:\Program Files\MSXML 4.0
[2007-04-15|21:59] C:\Program Files\MyMPxPlayer.org
[2008-11-01|00:41] C:\Program Files\Navilog1
[2007-05-21|21:11] C:\Program Files\NetAnts
[2006-10-04|23:41] C:\Program Files\NetMeeting
[2007-09-26|21:55] C:\Program Files\Netscape
[2007-05-21|21:15] C:\Program Files\NKProds
[2007-09-16|16:35] C:\Program Files\Nombre MYSTERE
[2007-05-31|20:18] C:\Program Files\Nuclear Coffee
[2007-09-29|19:10] C:\Program Files\nutri
[2006-10-05|00:03] C:\Program Files\NVIDIA Corporation
[2006-12-09|01:02] C:\Program Files\Object Desktop
[2006-10-04|23:40] C:\Program Files\Online Services
[2006-10-12|16:13] C:\Program Files\OpenOffice.org 2.0
[2008-01-12|21:16] C:\Program Files\Outlook Express
[2007-03-30|20:42] C:\Program Files\PanaVue
[2008-07-13|16:56] C:\Program Files\PasToucheXP
[2008-02-24|16:03] C:\Program Files\PCLink
[2007-01-30|04:32] C:\Program Files\Player Metaboli
[2007-04-07|19:36] C:\Program Files\POPUPKILLER
[2006-12-16|23:34] C:\Program Files\PQDVD
[2008-03-04|16:31] C:\Program Files\Project64 1.6
[2007-01-30|04:35] C:\Program Files\PSPWare
[2008-07-21|19:43] C:\Program Files\psx emulation cheater
[2008-01-17|19:41] C:\Program Files\QuickTime
[2008-01-13|00:56] C:\Program Files\QuickZip4
[2008-04-05|21:05] C:\Program Files\RegCleaner
[2007-01-30|04:35] C:\Program Files\Ripp-it_AM
[2008-07-27|21:21] C:\Program Files\Rockstar Games
[2007-09-26|20:09] C:\Program Files\SAGEM
[2007-10-31|13:41] C:\Program Files\Seagrand
[2008-05-23|13:29] C:\Program Files\Services en ligne
[2008-01-13|00:56] C:\Program Files\Shareaza
[2007-07-10|10:54] C:\Program Files\SimonTools
[2007-09-20|21:01] C:\Program Files\SiSoftware
[2007-03-19|10:08] C:\Program Files\SlySoft
[2008-05-15|07:47] C:\Program Files\Sony Ericsson
[2008-08-16|20:02] C:\Program Files\SopCast
[2007-04-30|20:50] C:\Program Files\Spn
[2008-10-26|12:18] C:\Program Files\Spybot - Search & Destroy
[2007-05-31|11:24] C:\Program Files\Spyware Terminator
[2008-01-25|01:34] C:\Program Files\SpywareBlaster
[2006-10-23|10:31] C:\Program Files\Star Downloader
[2007-03-30|23:42] C:\Program Files\Stardock
[2007-04-28|16:41] C:\Program Files\Steganos Secure FileSharing 6
[2008-05-03|23:25] C:\Program Files\Sunbelt Software
[2008-10-28|15:04] C:\Program Files\SUPERAntiSpyware
[2007-06-04|16:52] C:\Program Files\themexp
[2008-02-20|19:23] C:\Program Files\Titus
[2007-09-29|18:55] C:\Program Files\ToniArts
[2008-07-07|22:48] C:\Program Files\Tremulous
[2007-11-05|00:19] C:\Program Files\Trend Micro
[2007-08-19|04:00] C:\Program Files\Trojan Remover
[2007-09-16|21:03] C:\Program Files\TubeMaster
[2007-05-31|20:36] C:\Program Files\TubeSucker
[2008-02-17|21:16] C:\Program Files\TVAnts
[2008-08-16|20:11] C:\Program Files\TVUPlayer
[2006-10-10|19:54] C:\Program Files\Ubisoft
[2006-10-04|23:50] C:\Program Files\Uninstall Information
[2008-02-20|18:55] C:\Program Files\Universal Interactive
[2008-08-03|11:40] C:\Program Files\UrbanTerror
[2008-01-12|18:47] C:\Program Files\uTorrent
[2008-04-05|14:36] C:\Program Files\Veoh Networks
[2008-07-07|13:40] C:\Program Files\VID_0E8F&PID_3020
[2008-08-09|15:58] C:\Program Files\VideoLAN
[2008-01-13|12:20] C:\Program Files\VirtualDJ
[2007-07-01|19:21] C:\Program Files\Wanadoo
[2007-06-08|19:32] C:\Program Files\WinAVI MP4 Converter
[2007-03-21|17:01] C:\Program Files\Windows Journal Viewer
[2008-02-28|10:07] C:\Program Files\Windows Live
[2007-11-29|20:27] C:\Program Files\Windows Live Favorites
[2007-11-19|23:01] C:\Program Files\Windows Live Safety Center
[2007-11-30|10:05] C:\Program Files\Windows Live Toolbar
[2007-01-30|04:33] C:\Program Files\Windows Media Connect 2
[2008-02-24|17:06] C:\Program Files\Windows Media Player
[2006-10-04|23:39] C:\Program Files\Windows NT
[2006-10-04|23:42] C:\Program Files\WindowsUpdate
[2007-08-25|23:01] C:\Program Files\WinMX
[2007-04-01|23:38] C:\Program Files\WinRAR
[2007-04-28|22:47] C:\Program Files\WinZip
[2008-04-08|18:19] C:\Program Files\Wolfenstein - Enemy Territory
[2008-01-13|12:20] C:\Program Files\WorkoutLogger
[2008-01-10|18:04] C:\Program Files\Wyzo
[2006-10-04|23:44] C:\Program Files\xerox
[2007-09-29|18:57] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[2008-02-24|11:49] C:\Program Files\Fichiers communs\Adobe
[2008-01-17|19:36] C:\Program Files\Fichiers communs\Apple
[2007-09-14|19:26] C:\Program Files\Fichiers communs\AVSMedia
[2006-11-11|13:54] C:\Program Files\Fichiers communs\DirectX
[2007-03-20|15:18] C:\Program Files\Fichiers communs\InstallShield
[2008-01-10|17:50] C:\Program Files\Fichiers communs\Java
[2007-03-19|18:30] C:\Program Files\Fichiers communs\LogiShrd
[2008-04-09|15:56] C:\Program Files\Fichiers communs\Logitech
[2008-04-08|08:00] C:\Program Files\Fichiers communs\Microsoft Shared
[2007-09-26|21:55] C:\Program Files\Fichiers communs\mozilla.org
[2006-10-04|23:41] C:\Program Files\Fichiers communs\MSSoap
[2006-10-05|00:03] C:\Program Files\Fichiers communs\NVIDIA Shared
[2006-10-05|01:31] C:\Program Files\Fichiers communs\ODBC
[2006-10-04|23:41] C:\Program Files\Fichiers communs\Services
[2008-05-15|07:48] C:\Program Files\Fichiers communs\Sony Ericsson Shared
[2008-11-01|19:33] C:\Program Files\Fichiers communs\SpeechEngines
[2007-03-30|23:42] C:\Program Files\Fichiers communs\Stardock
[2007-07-06|12:30] C:\Program Files\Fichiers communs\System
[2008-02-20|15:17] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[2008-10-28|15:02] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 38 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-01 19:59:15
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1

--------------------\\ Recherche d'autres infections


C:\WINDOWS\System32\fdpofhppoa.dat.ren
C:\WINDOWS\System32\fdpofhppoa_nav.dat.ren
C:\WINDOWS\System32\fdpofhppoa_navps.dat.ren
==> EGDACCESS <==



[F:72][D:3]-> C:\DOCUME~1\VINCEN~1.000\LOCALS~1\Temp
[F:2][D:0]-> C:\DOCUME~1\VINCEN~1.000\Cookies
[F:79][D:10]-> C:\DOCUME~1\VINCEN~1.000\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 2008-10-31|21:36 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 2008-11-01| 1:07 - Option : [1]
3 - "C:\Lop SD\LopR_3.txt" - 2008-11-01|19:21 - Option : [2]
4 - "C:\Lop SD\LopR_4.txt" - 2008-11-01|20:04 - Option : [4]

--------------------\\ Fin du rapport a 20:04:44

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:09:23, on 2008-11-01
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\system32\SLEE503.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Copernic Desktop Search 2 - {968631B6-4729-440D-9BF4-251F5593EC9A} - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by141fd.bay141.hotmail.msn.com/resources/MsnPUpl...
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Unknown owner - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE (file missing)
O23 - Service: Boonty Games - Unknown owner - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe
O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe
O23 - Service: Steganos Live Encryption Engine (Version 503) [Service] (SLEE_503_SERVICE) - Unknown owner - C:\WINDOWS\system32\SLEE503.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: StarOpen - Unknown owner - (no file)
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 10242 bytes

Tu t'es trompé en faisant Lop S&D option 2.
C'est Toolbar S&D.
Fais-le et poste moi le rapport  

J'AI NOTé UNE NETTE AMELIORATION


-----------\\ ToolBar S&D 1.2.4 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 1800+ )
BIOS : Version 1.00
USER : ***** ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081031-1] 4.8.1229 (Activated)
Firewall : Sunbelt Kerio Personal Firewall 4.3.744 T (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:39 Go (Free:1 Go)
D:\ (Local Disk) - NTFS - Total:37 Go (Free:34 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
F:\ (CD or DVD)
G:\ (CD or DVD)
H:\ (CD or DVD)
I:\ (CD or DVD)
J:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 27-10-2008|09:25 )
Option : [2] ( 2008-11-01|20:35 )

-----------\\ SUPPRESSION

Supprime! - C:\Program Files\BitLord\BitLord.xml
Supprime! - C:\Program Files\BitLord\Downloads
Supprime! - C:\Program Files\BitLord\Downloads.xml
Supprime! - C:\Program Files\BitLord\lang
Supprime! - C:\Program Files\BitLord\rules
Supprime! - C:\Program Files\BitLord\Torrents
Supprime! - C:\WINDOWS\Fonts\acrsec.fon
Supprime! - C:\Program Files\BitLord
Supprime! - C:\Program Files\Crawler

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ Extensions

(Invit‚) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar

(vincent.ZOROO-A6EC98604.000) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(vincent.ZOROO-A6EC98604.000) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper

(Vincenthsc) - {19503e42-ca3c-4c27-b1e2-9cdb2170ee34} => flashgot
(Vincenthsc) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.fr/"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iese..."
"Local Page"="C:\\windows\\system32\\blank.htm"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Default_Search_URL"="http://www.google.com/ie"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.msn.com/"
"Search Bar"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
"CustomizeSearch"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iese..."
"SearchAssistant"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iese..."


--------------------\\ Recherche d'autres infections


C:\WINDOWS\System32\fdpofhppoa.dat.ren
C:\WINDOWS\System32\fdpofhppoa_nav.dat.ren
C:\WINDOWS\System32\fdpofhppoa_navps.dat.ren
==> EGDACCESS <==




1 - "C:\ToolBar SD\TB_1.txt" - 2008-11-01|14:22 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 2008-11-01|20:46 - Option : [2]

-----------\\ Fin du rapport a 20:46:21,31

Re,

Clique sur le menu Demarrer /Panneau de configuration/Options des dossiers/ puis dans l'onglet Affichage
- Coche Afficher les fichiers et dossiers cachés
- Décoche Masquer les extensions des fichiers dont le type est connu
- Décoche Masquer les fichiers protégés du système d'exploitation (recommandé)
clique sur Appliquer, puis OK.

N'oublie pas de recacher à nouveau les fichiers cachés et protégés du système d'exploitation en fin de désinfection, c'est important

Sélectionne l’intégralité du cadre ci-dessous :

Copie/colle le dans le Bloc-notes (Démarrer\Tous les programmes\Accessoires\Bloc-notes.)
Enregistre le sur ton Bureau sous le nom de Correction.bat
Double-clique dessus. Poste le rapport généré (si présent).

voila

fdpofhppoa.dat.ren SUPPRIME !
fdpofhppoa_nav.dat.ren SUPPRIME !
fdpofhppoa_navps.dat.ren SUPPRIME !

Re,

Télécharge MalwareByte's Anti-Malware sur ton Bureau.

Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.
Une fois l'installation et la mise à jour effectuées :

Fais redémarrer ton ordinateur en mode sans échec
- Au démarrage, après le chargement du bios, appuie successivement sur la touche F8 (ou F5) de ton clavier jusqu'à l'apparition d'un menu sur fond noir. Une fois arrivé à ce stade, sélectionne à l'aide du clavier Mode sans Echec.
-- Dans ce mode, tu n'as pas accès à Internet, et tu te retrouves avec une configuration visuelle différente (pas de fond d'écran, icônes très grosses). Ne sois donc pas étonné.
--- C'est pour ces différentes raisons que je t'invite à imprimer, noter, ou enregistrer dans un document texte les informations suivantes afin de ne pas être perdu.
---- ! Ne fais pas démarrer ton ordinateur en mode sans échec via MSConfig ! Pourquoi ? Certaines infections cassent les clefs du mode sans échec, ce qui ferait crasher ton ordinateur.

Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".

Afin de lancer la recherche, clic sur"Rechercher".

Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :

~ Si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
~~ Si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau.
~~~~ Fais redémarrer ton ordinateur normalement et poste le rapport dans ta prochaine réponse.

REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.[/#f]

Note : Si tu ne parviens à télécharger MBAM à part de MajorGeeks, tu peux le télécharger ici!

[#FF0000]Aide :

Comment utiliser MBAM.

Comment faire démarrer son ordinateur en mode sans échec.

j'ai deja utiliser ce logiciel avant de venir poster ici

Ok,

Poste un nouveau rapport HijackThis alors.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:28:17, on 2008-11-02
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PSIService.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\SLEE503.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Copernic Desktop Search 2 - {968631B6-4729-440D-9BF4-251F5593EC9A} - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by141fd.bay141.hotmail.msn.com/resources/MsnPUpl...
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Unknown owner - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE (file missing)
O23 - Service: Boonty Games - Unknown owner - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe
O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe
O23 - Service: Steganos Live Encryption Engine (Version 503) [Service] (SLEE_503_SERVICE) - Unknown owner - C:\WINDOWS\system32\SLEE503.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: StarOpen - Unknown owner - (no file)
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 10045 bytes

voila !

Re,

1)Clique sur le menu Demarrer /Panneau de configuration/Options des dossiers/ puis dans l'onglet Affichage
- Coche Afficher les fichiers et dossiers cachés
- Décoche Masquer les extensions des fichiers dont le type est connu
- Décoche Masquer les fichiers protégés du système d'exploitation (recommandé)
clique sur Appliquer, puis OK.

N'oublie pas de recacher à nouveau les fichiers cachés et protégés du système d'exploitation en fin de désinfection, c'est important

Sélectionne l’intégralité du cadre ci-dessous :

Copie/colle le dans le Bloc-notes (Démarrer\Tous les programmes\Accessoires\Bloc-notes.)
Enregistre le sur ton Bureau sous le nom de Correction.bat
Double-clique dessus.
Le programme va s'ouvrir et se fermer, ne t'étonne pas !  

2) Désinstalle via Ajout/Suppression de Programmes (si présents) :

Avast!

Télécharge et exécute le Désinstalleur d'Avast!.
Ceci effacera la majorité des traces du produit Avast! d'Alwil Software.

Télécharge Ccleaner sur ton Bureau.

Clique sur "download the latest version"

Installe-le en laissant seulement les options suivantes cochées :
- Ajouter un raccourci sur le Bureau
- Contrôler automatiquement les mises à jour de CCleaner

Lance le Nettoyage

Clique sur Chercher des erreurs et sauvegarde si tu le souhaites.

Aide : Comment utiliser CCleaner.

***************

Télécharge AntiVir sur ton Bureau.

Double clique sur l'exécutable téléchargé pour lancer l'installation.

A la fin de l'installation, clique sur Finish.

Ouvre Antivir, assure-toi qu’il soit bien à jour !

Dans l'onglet Local Protection, choisis Scanner.

Active la recherche de rootkits via le + de rootkit search, puis dans manual selection, coche tout (tes partitions de disque dur).

Clique sur la loupe du milieu pour lancer le scan en tant qu'Administrateur.

Poste moi le rapport généré : Pour cela, clique sur l'onglet Overview, puis choisis Reports, tu trouveras son rapport..

Note : Pour une éradication des menaces plus efficace, lance le scan en mode sans échec.

Pourquoi changer ? Avast vs Antivir.

Aide : Comment installer et utiliser AntiVir.