PC Rame

Bonjour,

Télécharge Lop S&D.exe ([#ff0000]Eric_71[/#f]) sur ton Bureau.

Lance l'installation du programme en exécutant le fichier téléchargé.

Double-clique maintenant sur le raccourci de LopS&D.

Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.

Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.

Poste le rapport généré (C:\lopR.txt*)
* le nom de la partition peut changer

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 3.00GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A01
USER : Rémi ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition Classic 6.38.1.54
(Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:74 Go (Free:7 Go)
D:\ (CD or DVD)
F:\ (Local Disk) - NTFS - Total:232 Go (Free:142 Go)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 30/12/2008|13:39 )

--------------------\\ Listing des dossiers dans APPLIC~1

[20/09/2004|08:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[12/01/2007|09:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[20/09/2004|09:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun

[26/11/2008|11:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[07/06/2008|13:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[30/12/2008|09:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AntiVir PersonalEdition Classic
[07/07/2007|12:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[08/03/2007|11:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[12/01/2007|09:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avg7
[12/09/2007|15:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[27/01/2006|14:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Emjysoft
[29/12/2008|08:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\great coal love default
[09/07/2006|15:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[14/11/2004|19:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[30/12/2008|12:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[28/11/2006|15:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[03/02/2005|18:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[06/11/2004|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[20/09/2004|08:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[01/04/2008|10:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[22/11/2004|16:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Corporation
[23/12/2008|08:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[18/05/2008|14:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[16/12/2005|16:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[04/07/2007|19:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[02/12/2007|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[18/04/2006|08:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[13/10/2004|17:37] C:\DOCUME~1\Autre\APPLIC~1\Adobe
[11/02/2005|17:45] C:\DOCUME~1\Autre\APPLIC~1\AdobeUM
[07/03/2005|18:50] C:\DOCUME~1\Autre\APPLIC~1\Copernic
[20/09/2004|08:42] C:\DOCUME~1\Autre\APPLIC~1\Identities
[12/10/2004|17:42] C:\DOCUME~1\Autre\APPLIC~1\Macromedia
[09/03/2007|14:53] C:\DOCUME~1\Autre\APPLIC~1\Microsoft

[20/09/2004|08:42] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[01/12/2007|23:18] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[20/09/2004|09:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun

[20/09/2004|08:42] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[12/01/2007|09:20] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[20/09/2004|09:01] C:\DOCUME~1\INVIT~1\APPLIC~1\Sun

[27/11/2006|10:54] C:\DOCUME~1\L2MFIX~1.REM\APPLIC~1\Identities
[12/01/2007|09:20] C:\DOCUME~1\L2MFIX~1.REM\APPLIC~1\Microsoft
[27/11/2006|10:54] C:\DOCUME~1\L2MFIX~1.REM\APPLIC~1\Sun

[27/11/2006|10:54] C:\DOCUME~1\L2MFIX~1.000\APPLIC~1\Identities
[12/01/2007|09:20] C:\DOCUME~1\L2MFIX~1.000\APPLIC~1\Microsoft
[27/11/2006|10:54] C:\DOCUME~1\L2MFIX~1.000\APPLIC~1\Sun

[12/01/2007|09:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[01/12/2007|23:17] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[27/07/2005|07:41] C:\DOCUME~1\NOUVEAU\APPLIC~1\AVG7
[20/09/2004|08:42] C:\DOCUME~1\NOUVEAU\APPLIC~1\Identities
[12/08/2005|15:43] C:\DOCUME~1\NOUVEAU\APPLIC~1\Microsoft
[20/09/2004|09:01] C:\DOCUME~1\NOUVEAU\APPLIC~1\Sun

[18/02/2008|09:07] C:\DOCUME~1\RMI~1\APPLIC~1\Adobe
[07/06/2008|13:10] C:\DOCUME~1\RMI~1\APPLIC~1\AdobeUM
[17/07/2006|16:50] C:\DOCUME~1\RMI~1\APPLIC~1\Ahead
[16/05/2008|14:25] C:\DOCUME~1\RMI~1\APPLIC~1\Apple Computer
[16/06/2006|19:10] C:\DOCUME~1\RMI~1\APPLIC~1\ArcSoft
[24/12/2008|11:15] C:\DOCUME~1\RMI~1\APPLIC~1\BitTorrent
[13/03/2008|09:18] C:\DOCUME~1\RMI~1\APPLIC~1\BitTorrent DNA
[29/12/2008|08:22] C:\DOCUME~1\RMI~1\APPLIC~1\burnlovenurb
[05/11/2004|15:28] C:\DOCUME~1\RMI~1\APPLIC~1\Copernic
[24/12/2008|10:20] C:\DOCUME~1\RMI~1\APPLIC~1\DivX
[30/12/2008|13:34] C:\DOCUME~1\RMI~1\APPLIC~1\DNA
[27/01/2006|14:31] C:\DOCUME~1\RMI~1\APPLIC~1\Emjysoft
[13/07/2005|11:03] C:\DOCUME~1\RMI~1\APPLIC~1\Google
[23/05/2006|10:34] C:\DOCUME~1\RMI~1\APPLIC~1\GOTO Software
[07/06/2006|15:18] C:\DOCUME~1\RMI~1\APPLIC~1\Help
[20/09/2004|08:42] C:\DOCUME~1\RMI~1\APPLIC~1\Identities
[12/09/2007|15:49] C:\DOCUME~1\RMI~1\APPLIC~1\InstallShield
[04/10/2004|21:04] C:\DOCUME~1\RMI~1\APPLIC~1\Kazaa Lite
[28/11/2006|21:30] C:\DOCUME~1\RMI~1\APPLIC~1\Lavasoft
[04/10/2004|21:01] C:\DOCUME~1\RMI~1\APPLIC~1\Macromedia
[30/12/2008|12:13] C:\DOCUME~1\RMI~1\APPLIC~1\Malwarebytes
[13/11/2007|11:27] C:\DOCUME~1\RMI~1\APPLIC~1\Microsoft
[30/09/2004|17:31] C:\DOCUME~1\RMI~1\APPLIC~1\Microsoft Web Folders
[07/09/2008|10:59] C:\DOCUME~1\RMI~1\APPLIC~1\Mozilla
[05/12/2007|10:13] C:\DOCUME~1\RMI~1\APPLIC~1\MSN6
[18/05/2008|14:18] C:\DOCUME~1\RMI~1\APPLIC~1\Search Settings
[01/04/2008|10:17] C:\DOCUME~1\RMI~1\APPLIC~1\skypePM
[22/11/2004|16:20] C:\DOCUME~1\RMI~1\APPLIC~1\Sony Corporation
[27/06/2007|10:08] C:\DOCUME~1\RMI~1\APPLIC~1\SPAMfighter
[20/09/2004|09:01] C:\DOCUME~1\RMI~1\APPLIC~1\Sun
[16/05/2005|10:54] C:\DOCUME~1\RMI~1\APPLIC~1\Talkback
[03/12/2007|16:32] C:\DOCUME~1\RMI~1\APPLIC~1\vghd
[20/06/2006|08:28] C:\DOCUME~1\RMI~1\APPLIC~1\vlc
[02/02/2005|10:38] C:\DOCUME~1\RMI~1\APPLIC~1\XnView

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[30/12/2008 13:00][--ah-----] C:\WINDOWS\tasks\A2EAC2649185418C.job
[17/12/2008 19:56][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[30/12/2008 12:24][--ah-----] C:\WINDOWS\tasks\SA.DAT
[20/03/2004 19:51][-r-h-----] C:\WINDOWS\tasks\DESKTOP.INI

( A2EAC2649185418C.job )=( c:\docume~1\rmi~1\applic~1\burnlo~1\wipeloudsurf.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[23/09/2004|20:51] C:\Program Files\802.11 Wireless LAN
[09/07/2006|15:18] C:\Program Files\Adobe
[09/01/2005|17:20] C:\Program Files\Ahead
[30/12/2008|09:56] C:\Program Files\AntiVir PersonalEdition Classic
[15/08/2008|15:21] C:\Program Files\Apple Software Update
[04/04/2005|21:11] C:\Program Files\ArcSoft
[18/05/2008|14:10] C:\Program Files\Avanquest update
[28/07/2006|14:41] C:\Program Files\AviSynth 2.5
[01/02/2008|18:42] C:\Program Files\BitTorrent
[13/03/2008|09:18] C:\Program Files\BitTorrent_DNA
[20/09/2004|09:04] C:\Program Files\Broadcom
[29/12/2008|08:21] C:\Program Files\burnlovenurb
[20/09/2004|09:04] C:\Program Files\Common Files
[20/09/2004|08:42] C:\Program Files\ComPlus Applications
[20/09/2004|09:03] C:\Program Files\Dell
[04/04/2005|21:03] C:\Program Files\directx
[30/12/2008|12:24] C:\Program Files\DNA
[30/12/2008|12:15] C:\Program Files\eMule
[24/08/2008|11:30] C:\Program Files\Fichiers communs
[18/05/2008|14:21] C:\Program Files\Free Audio Pack
[28/04/2008|10:50] C:\Program Files\Google
[28/05/2005|15:28] C:\Program Files\HotzicBurner
[27/05/2008|15:16] C:\Program Files\Illustrate
[12/09/2007|15:48] C:\Program Files\InstallShield Installation Information
[20/09/2004|09:04] C:\Program Files\Intel
[11/12/2008|03:04] C:\Program Files\Internet Explorer
[09/06/2007|14:45] C:\Program Files\Inventel
[26/11/2008|11:25] C:\Program Files\iPod
[26/11/2008|11:26] C:\Program Files\iTunes
[08/12/2008|10:07] C:\Program Files\Java
[09/07/2006|15:21] C:\Program Files\Kodak
[30/12/2008|12:13] C:\Program Files\Malwarebytes' Anti-Malware
[06/12/2004|19:51] C:\Program Files\MediaMonkey
[22/08/2008|09:15] C:\Program Files\Messenger
[30/09/2004|17:31] C:\Program Files\microsoft frontpage
[30/09/2004|17:31] C:\Program Files\Microsoft Office
[13/11/2007|09:28] C:\Program Files\Microsoft SQL Server Compact Edition
[30/09/2004|17:32] C:\Program Files\Microsoft Visual Studio
[12/09/2007|15:58] C:\Program Files\Motorola Phone Tools
[22/08/2008|09:08] C:\Program Files\Movie Maker
[30/12/2008|11:29] C:\Program Files\Mozilla Firefox
[05/10/2007|13:59] C:\Program Files\mp3DirectCut
[20/09/2004|08:42] C:\Program Files\MSN
[20/09/2004|08:42] C:\Program Files\MSN Gaming Zone
[10/02/2005|22:41] C:\Program Files\MSN Toolbar
[18/08/2007|19:46] C:\Program Files\MSXML 4.0
[20/12/2005|09:01] C:\Program Files\MyWay
[09/07/2006|14:20] C:\Program Files\Nero
[22/08/2008|09:04] C:\Program Files\NetMeeting
[22/08/2008|09:04] C:\Program Files\Outlook Express
[24/12/2008|08:35] C:\Program Files\QuickTime
[26/11/2008|11:10] C:\Program Files\Safari
[18/05/2008|14:17] C:\Program Files\Search Settings
[07/07/2005|22:44] C:\Program Files\Sony
[22/11/2004|16:17] C:\Program Files\Sony Corporation
[23/12/2008|08:56] C:\Program Files\Spybot - Search & Destroy
[21/08/2008|13:29] C:\Program Files\Sun
[30/12/2008|11:26] C:\Program Files\Trend Micro
[04/04/2005|21:03] C:\Program Files\Trust 320 SpaceCam
[20/09/2004|08:42] C:\Program Files\Uninstall Information
[23/06/2007|13:50] C:\Program Files\Video Player1.0
[20/06/2006|08:27] C:\Program Files\VideoLAN
[28/07/2006|14:41] C:\Program Files\VideoraiPodConverter
[09/06/2007|15:01] C:\Program Files\Wanadoo
[30/06/2006|10:58] C:\Program Files\Winamp
[27/02/2008|20:59] C:\Program Files\Windows Live
[15/02/2007|15:54] C:\Program Files\Windows Media Connect 2
[22/08/2008|09:04] C:\Program Files\Windows Media Player
[22/08/2008|09:04] C:\Program Files\Windows NT
[30/09/2004|17:21] C:\Program Files\WindowsUpdate
[28/10/2005|14:46] C:\Program Files\WinRAR
[20/09/2004|08:42] C:\Program Files\XEROX
[02/02/2005|10:39] C:\Program Files\XnView

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[07/06/2008|13:14] C:\Program Files\Fichiers communs\Adobe
[27/07/2006|18:58] C:\Program Files\Fichiers communs\Ahead
[26/11/2008|11:25] C:\Program Files\Fichiers communs\Apple
[05/11/2004|15:28] C:\Program Files\Fichiers communs\Copernic
[30/09/2004|17:32] C:\Program Files\Fichiers communs\Designer
[15/12/2004|17:10] C:\Program Files\Fichiers communs\InstallShield
[20/09/2004|09:01] C:\Program Files\Fichiers communs\Java
[14/11/2004|19:20] C:\Program Files\Fichiers communs\Macrovision Shared
[13/11/2007|09:26] C:\Program Files\Fichiers communs\Microsoft Shared
[20/09/2004|08:42] C:\Program Files\Fichiers communs\MSSoap
[20/09/2004|08:42] C:\Program Files\Fichiers communs\ODBC
[20/09/2004|08:42] C:\Program Files\Fichiers communs\Services
[22/11/2004|16:16] C:\Program Files\Fichiers communs\Sony Shared
[20/09/2004|08:42] C:\Program Files\Fichiers communs\SpeechEngines
[22/08/2008|09:04] C:\Program Files\Fichiers communs\System
[25/03/2006|19:45] C:\Program Files\Fichiers communs\Vbox
[13/11/2007|09:26] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 42 Processes )

IEXPLORE.EXE ~ [PID:476]
iexplore.exe ~ [PID:2292]

--------------------\\ Recherche avec S_Lop

C:\DOCUME~1\RMI~1\LOCALS~1\Temp\bis10.exe
C:\DOCUME~1\RMI~1\APPLIC~1\BURNLO~1
C:\DOCUME~1\RMI~1\APPLIC~1\BURNLO~1\hkmicxde.exe
C:\DOCUME~1\RMI~1\APPLIC~1\BURNLO~1\knobtool.exe
C:\DOCUME~1\RMI~1\APPLIC~1\BURNLO~1\vcagzsfp.exe
C:\DOCUME~1\RMI~1\APPLIC~1\BURNLO~1\wipe loud surf.exe

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\great coal love default
C:\DOCUME~1\ALLUSE~1\APPLIC~1\great coal love default\pop ace.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\great coal love default\pop ace.exe
C:\DOCUME~1\RMI~1\APPLIC~1\burnlo~1
C:\DOCUME~1\RMI~1\APPLIC~1\burnlo~1\hkmicxde.exe
C:\DOCUME~1\RMI~1\APPLIC~1\burnlo~1\knobtool.exe
C:\DOCUME~1\RMI~1\APPLIC~1\burnlo~1\vcagzsfp.exe
C:\DOCUME~1\RMI~1\APPLIC~1\burnlo~1\wipe loud surf.exe
C:\Program Files\burnlo~1
C:\DOCUME~1\RMI~1\LOCALS~1\Temp\DivoCodec.zip
C:\DOCUME~1\RMI~1\LOCALS~1\Temp\codec_dv.bmp
C:\DOCUME~1\RMI~1\LOCALS~1\Temp\DivoCodec.zip
C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsb34.tmp
C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsl400.tmp
C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsm31F.tmp
C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsn20C.tmp
C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsq2AE.tmp
C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsq2B2.tmp
C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsy2C6.tmp
C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsz1AA.tmp
C:\DOCUME~1\RMI~1\LOCALS~1\Temp\sta1.exe
C:\DOCUME~1\RMI~1\Cookies\rémi@advertstream[2].txt
C:\DOCUME~1\RMI~1\Cookies\rémi@adultfriendfinder[1].txt
C:\DOCUME~1\RMI~1\Cookies\rémi@adin.bigpoint[2].txt
C:\DOCUME~1\RMI~1\Cookies\rémi@bigpoint[1].txt
C:\DOCUME~1\RMI~1\Cookies\rémi@fr1.seafight.bigpoint[1].txt
C:\DOCUME~1\RMI~1\Cookies\rémi@adopt.euroclick[1].txt
C:\DOCUME~1\RMI~1\Cookies\rémi@partypoker[1].txt
C:\DOCUME~1\RMI~1\Cookies\rémi@fr1.seafight.bigpoint[1].txt
C:\DOCUME~1\RMI~1\Cookies\rémi@2xmoinscher[2].txt
C:\DOCUME~1\RMI~1\Cookies\rémi@www.2xmoinscher[2].txt
C:\WINDOWS\Tasks\A2EAC2649185418C.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Browse Vga Bold]
"DisplayName"="CiD Help"
"UninstallString"="C:\\DOCUME~1\\RMI~1\\APPLIC~1\\BURNLO~1\\knobtool.exe -uninstall"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"erroruser"="C:\\DOCUME~1\\RMI~1\\APPLIC~1\\BURNLO~1\\knobtool.exe"
"erroruser"="C:\\DOCUME~1\\RMI~1\\APPLIC~1\\BURNLO~1\\knobtool.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Love default global mess"="C:\\Documents and Settings\\All Users\\Application Data\\great coal love default\\pop ace.exe"

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-30 13:40:44
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 655

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:7409][D:133]-> C:\DOCUME~1\RMI~1\LOCALS~1\Temp
[F:1038][D:0]-> C:\DOCUME~1\RMI~1\Cookies
[F:10166][D:55]-> C:\DOCUME~1\RMI~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 30/12/2008|13:43 - Option : [1]

--------------------\\ Fin du rapport a 13:43:21

Re,

Relance Lop S&D en double-cliquant sur le raccourci. Tape sur "2" puis valide en appuyant sur "Entrée".
[#ff0000]! Ne ferme pas la fenêtre lors de la suppression ! [/#f]
Un rapport sera généré, poste son contenu ici.

Salut voici le rapport :



--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 3.00GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A01
USER : Rémi ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition Classic 6.38.1.54
(Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:74 Go (Free:8 Go)
D:\ (CD or DVD)
F:\ (Local Disk) - NTFS - Total:232 Go (Free:142 Go)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 30/12/2008|19:08 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\great coal love default\pop ace.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\great coal love default\pop ace.exe
Supprime! - C:\DOCUME~1\RMI~1\APPLIC~1\burnlo~1\hkmicxde.exe
Supprime! - C:\DOCUME~1\RMI~1\APPLIC~1\burnlo~1\knobtool.exe
Supprime! - C:\DOCUME~1\RMI~1\APPLIC~1\burnlo~1\vcagzsfp.exe
Supprime! - C:\DOCUME~1\RMI~1\APPLIC~1\burnlo~1\wipe loud surf.exe
Supprime! - C:\DOCUME~1\RMI~1\LOCALS~1\Temp\DivoCodec.zip
Supprime! - C:\DOCUME~1\RMI~1\LOCALS~1\Temp\codec_dv.bmp
Supprime! - C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsb34.tmp
Supprime! - C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsl400.tmp
Supprime! - C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsm31F.tmp
Supprime! - C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsn20C.tmp
Supprime! - C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsq2AE.tmp
Supprime! - C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsq2B2.tmp
Supprime! - C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsy2C6.tmp
Supprime! - C:\DOCUME~1\RMI~1\LOCALS~1\Temp\nsz1AA.tmp
Supprime! - C:\DOCUME~1\RMI~1\LOCALS~1\Temp\sta1.exe
Supprime! - C:\DOCUME~1\RMI~1\Cookies\rémi@advertstream[2].txt
Supprime! - C:\DOCUME~1\RMI~1\Cookies\rémi@adultfriendfinder[1].txt
Supprime! - C:\DOCUME~1\RMI~1\Cookies\rémi@adin.bigpoint[2].txt
Supprime! - C:\DOCUME~1\RMI~1\Cookies\rémi@bigpoint[1].txt
Supprime! - C:\DOCUME~1\RMI~1\Cookies\rémi@fr1.seafight.bigpoint[1].txt
Supprime! - C:\DOCUME~1\RMI~1\Cookies\rémi@adopt.euroclick[1].txt
Supprime! - C:\DOCUME~1\RMI~1\Cookies\rémi@partypoker[1].txt
Supprime! - C:\DOCUME~1\RMI~1\Cookies\rémi@2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\RMI~1\Cookies\rémi@www.2xmoinscher[2].txt
Supprime! - C:\WINDOWS\Tasks\A2EAC2649185418C.job
Supprime! - C:\DOCUME~1\RMI~1\LOCALS~1\Temp\bis10.exe
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\great coal love default
Supprime! - C:\DOCUME~1\RMI~1\APPLIC~1\burnlo~1
Supprime! - C:\Program Files\burnlo~1
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[20/09/2004|08:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[12/01/2007|09:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[20/09/2004|09:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun

[26/11/2008|11:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[07/06/2008|13:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[30/12/2008|17:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AntiVir PersonalEdition Classic
[07/07/2007|12:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[08/03/2007|11:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[12/01/2007|09:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avg7
[12/09/2007|15:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[27/01/2006|14:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Emjysoft
[09/07/2006|15:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[14/11/2004|19:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[30/12/2008|12:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[28/11/2006|15:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[03/02/2005|18:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[06/11/2004|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[20/09/2004|08:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[01/04/2008|10:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[22/11/2004|16:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Corporation
[23/12/2008|08:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[18/05/2008|14:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[16/12/2005|16:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[04/07/2007|19:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[02/12/2007|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[18/04/2006|08:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[13/10/2004|17:37] C:\DOCUME~1\Autre\APPLIC~1\Adobe
[11/02/2005|17:45] C:\DOCUME~1\Autre\APPLIC~1\AdobeUM
[07/03/2005|18:50] C:\DOCUME~1\Autre\APPLIC~1\Copernic
[20/09/2004|08:42] C:\DOCUME~1\Autre\APPLIC~1\Identities
[12/10/2004|17:42] C:\DOCUME~1\Autre\APPLIC~1\Macromedia
[09/03/2007|14:53] C:\DOCUME~1\Autre\APPLIC~1\Microsoft

[20/09/2004|08:42] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[01/12/2007|23:18] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[20/09/2004|09:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun

[20/09/2004|08:42] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[12/01/2007|09:20] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[20/09/2004|09:01] C:\DOCUME~1\INVIT~1\APPLIC~1\Sun

[27/11/2006|10:54] C:\DOCUME~1\L2MFIX~1.REM\APPLIC~1\Identities
[12/01/2007|09:20] C:\DOCUME~1\L2MFIX~1.REM\APPLIC~1\Microsoft
[27/11/2006|10:54] C:\DOCUME~1\L2MFIX~1.REM\APPLIC~1\Sun

[27/11/2006|10:54] C:\DOCUME~1\L2MFIX~1.000\APPLIC~1\Identities
[12/01/2007|09:20] C:\DOCUME~1\L2MFIX~1.000\APPLIC~1\Microsoft
[27/11/2006|10:54] C:\DOCUME~1\L2MFIX~1.000\APPLIC~1\Sun

[12/01/2007|09:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[01/12/2007|23:17] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[27/07/2005|07:41] C:\DOCUME~1\NOUVEAU\APPLIC~1\AVG7
[20/09/2004|08:42] C:\DOCUME~1\NOUVEAU\APPLIC~1\Identities
[12/08/2005|15:43] C:\DOCUME~1\NOUVEAU\APPLIC~1\Microsoft
[20/09/2004|09:01] C:\DOCUME~1\NOUVEAU\APPLIC~1\Sun

[18/02/2008|09:07] C:\DOCUME~1\RMI~1\APPLIC~1\Adobe
[07/06/2008|13:10] C:\DOCUME~1\RMI~1\APPLIC~1\AdobeUM
[17/07/2006|16:50] C:\DOCUME~1\RMI~1\APPLIC~1\Ahead
[16/05/2008|14:25] C:\DOCUME~1\RMI~1\APPLIC~1\Apple Computer
[16/06/2006|19:10] C:\DOCUME~1\RMI~1\APPLIC~1\ArcSoft
[24/12/2008|11:15] C:\DOCUME~1\RMI~1\APPLIC~1\BitTorrent
[13/03/2008|09:18] C:\DOCUME~1\RMI~1\APPLIC~1\BitTorrent DNA
[05/11/2004|15:28] C:\DOCUME~1\RMI~1\APPLIC~1\Copernic
[24/12/2008|10:20] C:\DOCUME~1\RMI~1\APPLIC~1\DivX
[30/12/2008|19:05] C:\DOCUME~1\RMI~1\APPLIC~1\DNA
[27/01/2006|14:31] C:\DOCUME~1\RMI~1\APPLIC~1\Emjysoft
[13/07/2005|11:03] C:\DOCUME~1\RMI~1\APPLIC~1\Google
[23/05/2006|10:34] C:\DOCUME~1\RMI~1\APPLIC~1\GOTO Software
[07/06/2006|15:18] C:\DOCUME~1\RMI~1\APPLIC~1\Help
[20/09/2004|08:42] C:\DOCUME~1\RMI~1\APPLIC~1\Identities
[12/09/2007|15:49] C:\DOCUME~1\RMI~1\APPLIC~1\InstallShield
[04/10/2004|21:04] C:\DOCUME~1\RMI~1\APPLIC~1\Kazaa Lite
[28/11/2006|21:30] C:\DOCUME~1\RMI~1\APPLIC~1\Lavasoft
[04/10/2004|21:01] C:\DOCUME~1\RMI~1\APPLIC~1\Macromedia
[30/12/2008|12:13] C:\DOCUME~1\RMI~1\APPLIC~1\Malwarebytes
[13/11/2007|11:27] C:\DOCUME~1\RMI~1\APPLIC~1\Microsoft
[30/09/2004|17:31] C:\DOCUME~1\RMI~1\APPLIC~1\Microsoft Web Folders
[07/09/2008|10:59] C:\DOCUME~1\RMI~1\APPLIC~1\Mozilla
[05/12/2007|10:13] C:\DOCUME~1\RMI~1\APPLIC~1\MSN6
[18/05/2008|14:18] C:\DOCUME~1\RMI~1\APPLIC~1\Search Settings
[01/04/2008|10:17] C:\DOCUME~1\RMI~1\APPLIC~1\skypePM
[22/11/2004|16:20] C:\DOCUME~1\RMI~1\APPLIC~1\Sony Corporation
[27/06/2007|10:08] C:\DOCUME~1\RMI~1\APPLIC~1\SPAMfighter
[20/09/2004|09:01] C:\DOCUME~1\RMI~1\APPLIC~1\Sun
[16/05/2005|10:54] C:\DOCUME~1\RMI~1\APPLIC~1\Talkback
[03/12/2007|16:32] C:\DOCUME~1\RMI~1\APPLIC~1\vghd
[20/06/2006|08:28] C:\DOCUME~1\RMI~1\APPLIC~1\vlc
[02/02/2005|10:38] C:\DOCUME~1\RMI~1\APPLIC~1\XnView

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[17/12/2008 19:56][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[30/12/2008 12:24][--ah-----] C:\WINDOWS\tasks\SA.DAT
[20/03/2004 19:51][-r-h-----] C:\WINDOWS\tasks\DESKTOP.INI

--------------------\\ Listing des dossiers dans C:\Program Files

[23/09/2004|20:51] C:\Program Files\802.11 Wireless LAN
[09/07/2006|15:18] C:\Program Files\Adobe
[09/01/2005|17:20] C:\Program Files\Ahead
[30/12/2008|17:03] C:\Program Files\AntiVir PersonalEdition Classic
[15/08/2008|15:21] C:\Program Files\Apple Software Update
[04/04/2005|21:11] C:\Program Files\ArcSoft
[18/05/2008|14:10] C:\Program Files\Avanquest update
[28/07/2006|14:41] C:\Program Files\AviSynth 2.5
[01/02/2008|18:42] C:\Program Files\BitTorrent
[13/03/2008|09:18] C:\Program Files\BitTorrent_DNA
[20/09/2004|09:04] C:\Program Files\Broadcom
[20/09/2004|09:04] C:\Program Files\Common Files
[20/09/2004|08:42] C:\Program Files\ComPlus Applications
[20/09/2004|09:03] C:\Program Files\Dell
[04/04/2005|21:03] C:\Program Files\directx
[30/12/2008|12:24] C:\Program Files\DNA
[30/12/2008|12:15] C:\Program Files\eMule
[24/08/2008|11:30] C:\Program Files\Fichiers communs
[18/05/2008|14:21] C:\Program Files\Free Audio Pack
[28/04/2008|10:50] C:\Program Files\Google
[28/05/2005|15:28] C:\Program Files\HotzicBurner
[27/05/2008|15:16] C:\Program Files\Illustrate
[12/09/2007|15:48] C:\Program Files\InstallShield Installation Information
[20/09/2004|09:04] C:\Program Files\Intel
[11/12/2008|03:04] C:\Program Files\Internet Explorer
[09/06/2007|14:45] C:\Program Files\Inventel
[26/11/2008|11:25] C:\Program Files\iPod
[26/11/2008|11:26] C:\Program Files\iTunes
[08/12/2008|10:07] C:\Program Files\Java
[09/07/2006|15:21] C:\Program Files\Kodak
[30/12/2008|12:13] C:\Program Files\Malwarebytes' Anti-Malware
[06/12/2004|19:51] C:\Program Files\MediaMonkey
[22/08/2008|09:15] C:\Program Files\Messenger
[30/09/2004|17:31] C:\Program Files\microsoft frontpage
[30/09/2004|17:31] C:\Program Files\Microsoft Office
[13/11/2007|09:28] C:\Program Files\Microsoft SQL Server Compact Edition
[30/09/2004|17:32] C:\Program Files\Microsoft Visual Studio
[12/09/2007|15:58] C:\Program Files\Motorola Phone Tools
[22/08/2008|09:08] C:\Program Files\Movie Maker
[30/12/2008|16:53] C:\Program Files\Mozilla Firefox
[05/10/2007|13:59] C:\Program Files\mp3DirectCut
[20/09/2004|08:42] C:\Program Files\MSN
[20/09/2004|08:42] C:\Program Files\MSN Gaming Zone
[10/02/2005|22:41] C:\Program Files\MSN Toolbar
[18/08/2007|19:46] C:\Program Files\MSXML 4.0
[20/12/2005|09:01] C:\Program Files\MyWay
[09/07/2006|14:20] C:\Program Files\Nero
[22/08/2008|09:04] C:\Program Files\NetMeeting
[22/08/2008|09:04] C:\Program Files\Outlook Express
[24/12/2008|08:35] C:\Program Files\QuickTime
[26/11/2008|11:10] C:\Program Files\Safari
[18/05/2008|14:17] C:\Program Files\Search Settings
[07/07/2005|22:44] C:\Program Files\Sony
[22/11/2004|16:17] C:\Program Files\Sony Corporation
[23/12/2008|08:56] C:\Program Files\Spybot - Search & Destroy
[21/08/2008|13:29] C:\Program Files\Sun
[30/12/2008|11:26] C:\Program Files\Trend Micro
[04/04/2005|21:03] C:\Program Files\Trust 320 SpaceCam
[20/09/2004|08:42] C:\Program Files\Uninstall Information
[23/06/2007|13:50] C:\Program Files\Video Player1.0
[20/06/2006|08:27] C:\Program Files\VideoLAN
[28/07/2006|14:41] C:\Program Files\VideoraiPodConverter
[09/06/2007|15:01] C:\Program Files\Wanadoo
[30/06/2006|10:58] C:\Program Files\Winamp
[27/02/2008|20:59] C:\Program Files\Windows Live
[15/02/2007|15:54] C:\Program Files\Windows Media Connect 2
[22/08/2008|09:04] C:\Program Files\Windows Media Player
[22/08/2008|09:04] C:\Program Files\Windows NT
[30/09/2004|17:21] C:\Program Files\WindowsUpdate
[28/10/2005|14:46] C:\Program Files\WinRAR
[20/09/2004|08:42] C:\Program Files\XEROX
[02/02/2005|10:39] C:\Program Files\XnView

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[07/06/2008|13:14] C:\Program Files\Fichiers communs\Adobe
[27/07/2006|18:58] C:\Program Files\Fichiers communs\Ahead
[26/11/2008|11:25] C:\Program Files\Fichiers communs\Apple
[05/11/2004|15:28] C:\Program Files\Fichiers communs\Copernic
[30/09/2004|17:32] C:\Program Files\Fichiers communs\Designer
[15/12/2004|17:10] C:\Program Files\Fichiers communs\InstallShield
[20/09/2004|09:01] C:\Program Files\Fichiers communs\Java
[14/11/2004|19:20] C:\Program Files\Fichiers communs\Macrovision Shared
[13/11/2007|09:26] C:\Program Files\Fichiers communs\Microsoft Shared
[20/09/2004|08:42] C:\Program Files\Fichiers communs\MSSoap
[20/09/2004|08:42] C:\Program Files\Fichiers communs\ODBC
[20/09/2004|08:42] C:\Program Files\Fichiers communs\Services
[22/11/2004|16:16] C:\Program Files\Fichiers communs\Sony Shared
[20/09/2004|08:42] C:\Program Files\Fichiers communs\SpeechEngines
[22/08/2008|09:04] C:\Program Files\Fichiers communs\System
[25/03/2006|19:45] C:\Program Files\Fichiers communs\Vbox
[13/11/2007|09:26] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 39 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-30 19:10:14
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 655

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:6358][D:131]-> C:\DOCUME~1\RMI~1\LOCALS~1\Temp
[F:1029][D:0]-> C:\DOCUME~1\RMI~1\Cookies
[F:10390][D:55]-> C:\DOCUME~1\RMI~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 30/12/2008|13:43 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 30/12/2008|19:12 - Option : [2]

--------------------\\ Fin du rapport a 19:12:15

Reposte un rapport Hijackthis.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:51:50, on 31/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Search Settings\SearchSettings.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\basfipm.exe
C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wlancfg.exe
C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [PopUpKiller] C:\Program Files\PopUpKiller\PopUpKiller.EXE
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Love default global mess] C:\Documents and Settings\All Users\Application Data\great coal love default\pop ace.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [erroruser] C:\DOCUME~1\RMI~1\APPLIC~1\BURNLO~1\knobtool.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {48B35AC2-CFCE-4DF7-8B39-C3EB6F5DD111} (TRIiS ZOOMA Viewer Control) - http://viewer.zooma.jp/viewer3/mamoViewer.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUpload...
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://remisorriano.spaces.live.com/PhotoUpload/MsnPUpl...
O16 - DPF: {B9907873-6560-4A36-B76B-9DADE84A7F55} (FnacmusicDnl.DnlManager) - http://www.fnacmusic.com/telechargementFnacmusic/Fnacmu...
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Broadcom ASF IP monitoring service v6.0.4 (BAsfIpM) - Broadcom Corp. - C:\WINDOWS\System32\basfipm.exe
O23 - Service: IAA Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\WINDOWS\wlancfg.exe

--
End of file - 7962 bytes

Bizarre ce rapport.

Télécharge MalwareByte's Anti-Malware sur ton Bureau.
Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.

Une fois l'installation et la mise à jour effectuées, redémarre en mode sans échec.
AIDE : Redémarrer en mode sans échec

Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".

Afin de lancer la recherche, clic sur"Rechercher".

Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :
-- si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
-- si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau afin de le poster dans ta prochaine réponse.
[#ff0000]REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.[/#f]

AIDE : Tuto en images sur MBAM

Malwarebytes' Anti-Malware 1.31
Version de la base de données: 1589
Windows 5.1.2600 Service Pack 3

01/01/2009 20:58:11
mbam-log-2009-01-01 (20-58-11).txt

Type de recherche: Examen complet (C:\|F:\|)
Eléments examinés: 173438
Temps écoulé: 1 hour(s), 25 minute(s), 31 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Program Files\MyWay (Adware.MyWay) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

Merci , ça va bcp mieux, vraiment bravo pour votre site qui est génial, et une merveilleuse année à toi Angeldark, tu es mon sauveur !!!

Ce n'est pas du tout terminé  
Reposte un rapport Hijackthis.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:47:15, on 02/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Search Settings\SearchSettings.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\basfipm.exe
C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wlancfg.exe
C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Java\jre6\bin\javaw.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [PopUpKiller] C:\Program Files\PopUpKiller\PopUpKiller.EXE
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Love default global mess] C:\Documents and Settings\All Users\Application Data\great coal love default\pop ace.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [erroruser] C:\DOCUME~1\RMI~1\APPLIC~1\BURNLO~1\knobtool.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {48B35AC2-CFCE-4DF7-8B39-C3EB6F5DD111} (TRIiS ZOOMA Viewer Control) - http://viewer.zooma.jp/viewer3/mamoViewer.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUpload...
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://remisorriano.spaces.live.com/PhotoUpload/MsnPUpl...
O16 - DPF: {B9907873-6560-4A36-B76B-9DADE84A7F55} (FnacmusicDnl.DnlManager) - http://www.fnacmusic.com/telechargementFnacmusic/Fnacmu...
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Broadcom ASF IP monitoring service v6.0.4 (BAsfIpM) - Broadcom Corp. - C:\WINDOWS\System32\basfipm.exe
O23 - Service: IAA Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\WINDOWS\wlancfg.exe

--
End of file - 8004 bytes

Re,

Télécharge Random's System Information Tool (RSIT) par (random/random[/#f]) et sauvegarde-le sur le Bureau.

Double-clique sur RSIT.exe afin de lancer le programme.

Clique Continue à l'écran Disclaimer.

Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt [#ff0000](affiché)

ainsi que de info.txt (réduit dans la Barre des Tâches).

Veille bien à poster l'intégralité des rapports. Vérifie qu'ils soient complets une fois que tu les as postés.

NB : Les rapports sont sauvegardés dans le dossier C:\rsit

Logfile of random's system information tool 1.05 (written by random/random)
Run by Rémi at 2009-01-03 20:00:06
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 9 GB (11%) free of 76 GB
Total RAM: 510 MB (11% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:00:59, on 03/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Search Settings\SearchSettings.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\basfipm.exe
C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wlancfg.exe
C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Java\jre6\bin\javaw.exe
C:\Documents and Settings\Rémi\Local Settings\Temporary Internet Files\Content.IE5\N62XCAAV\RSIT[1].exe
C:\Program Files\Trend Micro\HijackThis\Rémi.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [PopUpKiller] C:\Program Files\PopUpKiller\PopUpKiller.EXE
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Love default global mess] C:\Documents and Settings\All Users\Application Data\great coal love default\pop ace.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [erroruser] C:\DOCUME~1\RMI~1\APPLIC~1\BURNLO~1\knobtool.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {48B35AC2-CFCE-4DF7-8B39-C3EB6F5DD111} (TRIiS ZOOMA Viewer Control) - http://viewer.zooma.jp/viewer3/mamoViewer.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUpload...
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://remisorriano.spaces.live.com/PhotoUpload/MsnPUpl...
O16 - DPF: {B9907873-6560-4A36-B76B-9DADE84A7F55} (FnacmusicDnl.DnlManager) - http://www.fnacmusic.com/telechargementFnacmusic/Fnacmu...
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Broadcom ASF IP monitoring service v6.0.4 (BAsfIpM) - Broadcom Corp. - C:\WINDOWS\System32\basfipm.exe
O23 - Service: IAA Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\WINDOWS\wlancfg.exe

--
End of file - 8015 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-11-10 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-11-10 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
SearchSettings Class - C:\Program Files\Search Settings\kb127\SearchSettings.dll [2008-04-16 1107296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-11-10 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2004-05-29 3784704]
"PopUpKiller"=C:\Program Files\PopUpKiller\PopUpKiller.EXE []
"avgnt"=C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe [2008-07-30 266497]
"SsAAD.exe"=C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe [2005-01-24 81920]
"SearchSettings"=C:\Program Files\Search Settings\SearchSettings.exe [2008-04-16 985440]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-11-04 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-11-20 290088]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2008-11-10 136600]
"Love default global mess"=C:\Documents and Settings\All Users\Application Data\great coal love default\pop ace.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2007-10-18 5724184]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2008-12-16 342848]
"erroruser"=C:\DOCUME~1\RMI~1\APPLIC~1\BURNLO~1\knobtool.exe []
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2008-09-16 1833296]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-09-05 267304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=95000000

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Kazaa Lite Resurrection\kazaalite.kpp"="C:\Program Files\Kazaa Lite Resurrection\kazaalite.kpp:* isabled:kazaalite"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\StreamCast\Morpheus\MorphEXE.exe"="C:\Program Files\StreamCast\Morpheus\MorphEXE.exe:*:Enabled:Morpheus"
"C:\Program Files\StreamCast\Morpheus\mldonkey\mlnet.exe"="C:\Program Files\StreamCast\Morpheus\mldonkey\mlnet.exe:*:Enabled:MLdonkey - multiuser P2P daemon"
"C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe"="C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe:*:Enabled:Kodak Software Updater"
"C:\Program Files\QuickTime\QuickTimePlayer.exe"="C:\Program Files\QuickTime\QuickTimePlayer.exe:*:Enabled:QuickTime Player"
"C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe"="C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe:*:Enabled:Nero Home"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\Program Files\BitTorrent_DNA\dna.exe"="C:\Program Files\BitTorrent_DNA\dna.exe:*:Enabled:BitTorrent DNA"
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled NA"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

======List of files/folders created in the last 1 months======

2009-01-03 20:00:06 ----D---- C:\rsit
2009-01-01 19:27:32 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-12-30 13:39:05 ----A---- C:\lopR.txt
2008-12-30 13:38:27 ----D---- C:\Lop SD
2008-12-30 12:13:37 ----D---- C:\Documents and Settings\Rémi\Application Data\Malwarebytes
2008-12-30 12:13:28 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-12-30 11:26:30 ----D---- C:\Program Files\Trend Micro
2008-12-24 08:40:43 ----D---- C:\Documents and Settings\Rémi\Application Data\DivX
2008-12-24 08:38:33 ----N---- C:\WINDOWS\system32\pxsfs.dll
2008-12-24 08:38:33 ----N---- C:\WINDOWS\system32\pxinsi64.exe
2008-12-24 08:38:33 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
2008-12-11 03:04:51 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2008-12-11 03:02:27 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2008-12-11 03:02:19 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2008-12-11 03:01:52 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2008-12-08 10:07:28 ----A---- C:\WINDOWS\system32\javaws.exe
2008-12-08 10:07:28 ----A---- C:\WINDOWS\system32\javaw.exe
2008-12-08 10:07:28 ----A---- C:\WINDOWS\system32\java.exe

======List of files/folders modified in the last 1 months======

2009-01-03 20:00:11 ----D---- C:\WINDOWS\Prefetch
2009-01-03 19:55:08 ----D---- C:\Documents and Settings\Rémi\Application Data\DNA
2009-01-03 13:40:21 ----D---- C:\WINDOWS\Temp
2009-01-03 11:42:03 ----D---- C:\Program Files\Mozilla Firefox
2009-01-03 10:54:28 ----D---- C:\Program Files\AntiVir PersonalEdition Classic
2009-01-03 10:54:26 ----D---- C:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic
2009-01-03 09:54:13 ----D---- C:\WINDOWS
2009-01-03 09:54:08 ----D---- C:\Program Files\DNA
2009-01-02 21:02:26 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-01-01 20:58:50 ----A---- C:\WINDOWS\ntbtlog.txt
2009-01-01 19:27:38 ----D---- C:\WINDOWS\system32\DRIVERS
2009-01-01 19:27:32 ----RD---- C:\Program Files
2008-12-31 10:07:57 ----SHD---- C:\WINDOWS\Installer
2008-12-31 10:07:35 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-12-31 10:06:18 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-12-30 19:09:11 ----SD---- C:\WINDOWS\Tasks
2008-12-30 12:15:52 ----D---- C:\Program Files\eMule
2008-12-30 09:50:56 ----SHD---- C:\Config.Msi
2008-12-29 10:33:37 ----D---- C:\WINDOWS\SYSTEM32
2008-12-24 11:15:57 ----D---- C:\Documents and Settings\Rémi\Application Data\BitTorrent
2008-12-24 08:35:31 ----D---- C:\Program Files\QuickTime
2008-12-18 17:02:27 ----D---- C:\WINDOWS\INF
2008-12-18 17:02:13 ----RSHD---- C:\WINDOWS\system32\DLLCACHE
2008-12-18 17:01:46 ----HD---- C:\WINDOWS\$hf_mig$
2008-12-18 17:01:42 ----D---- C:\WINDOWS\system32\CatRoot2
2008-12-13 07:37:56 ----A---- C:\WINDOWS\system32\mshtml.dll
2008-12-11 03:04:54 ----A---- C:\WINDOWS\imsins.BAK
2008-12-11 03:04:00 ----D---- C:\Program Files\Internet Explorer
2008-12-11 03:03:29 ----D---- C:\WINDOWS\ie7updates
2008-12-10 00:24:37 ----A---- C:\WINDOWS\system32\MRT.exe
2008-12-09 14:08:24 ----A---- C:\WINDOWS\WIN.INI
2008-12-08 10:07:24 ----D---- C:\Program Files\Java

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\AntiVir PersonalEdition Classic\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-11-25 75072]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 omci;OMCI WDM Device Driver; C:\WINDOWS\System32\DRIVERS\omci.sys [2002-11-08 17217]
R2 BASFND;BASFND; \??\C:\WINDOWS\System32\Drivers\BASFND.sys []
R2 CdaC15BA;CdaC15BA; \??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS []
R2 rspndr;Répondeur de découverte de topologie de la couche de liaison; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2006-11-08 62336]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 avgntflt;avgntflt; \??\C:\Program Files\AntiVir PersonalEdition Classic\avgntflt.sys []
R3 b57w2k;Broadcom NetXtreme 57xx Gigabit Controller; C:\WINDOWS\System32\DRIVERS\b57xp32.sys [2004-05-29 186112]
R3 dot4;Pilote MS IEEE-1284.4; C:\WINDOWS\System32\DRIVERS\Dot4.sys [2008-04-13 206976]
R3 Dot4Print;Pilote de classe Imprimante pour IEEE-1284.4; C:\WINDOWS\System32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
R3 Dot4Scan;Pilote de classe Scanneur pour IEEE-1284.4; C:\WINDOWS\System32\DRIVERS\Dot4Scan.sys [2001-08-17 8704]
R3 dot4usb;Filtre Dot4USB Dot4USB Filter; C:\WINDOWS\System32\DRIVERS\dot4usb.sys [2001-08-23 24064]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-04-17 15464]
R3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2004-05-29 2206528]
R3 ovt519;Trust 320 SpaceCam; C:\WINDOWS\System32\Drivers\ov519vid.sys [2003-09-25 174530]
R3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\System32\PCANDIS5.SYS []
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2004-04-09 612352]
R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur hôte amélioré USB 2.0 Microsoft; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 ATMELFVNETusb(505A_2958)(R);ATMEL FVNETusb(505A_2958)(R) Service for ATMEL USB FastVNET (505A); C:\WINDOWS\System32\DRIVERS\vnet5a8x.sys [2003-12-05 119936]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\System32\DRIVERS\CmBatt.sys [2008-04-13 13952]
S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 Pcouffin;Low level access layer for CD devices; C:\WINDOWS\System32\Drivers\Pcouffin.sys []
S3 PRISM_A02;802.11g USB 2.0 adapter; C:\WINDOWS\system32\DRIVERS\PRISMA02.sys [2005-02-01 348640]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SONYPVU1;Pilote de filtrage Sony USB (SONYPVU1); C:\WINDOWS\System32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-04-25 28352]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 USB_RNDIS;Point d'acces Inventel; C:\WINDOWS\system32\DRIVERS\usb8023.sys [2008-04-13 12800]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2008-10-01 32000]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\System32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbsermpt;Motorola USB Modem Driver for MPT; C:\WINDOWS\system32\DRIVERS\usbsermpt.sys [2007-09-12 22768]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 agp440;Filtre de bus AGP Intel; C:\WINDOWS\System32\DRIVERS\agp440.sys [2008-04-13 42368]
S4 agpCPQ;Filtre de bus AGP Compaq; C:\WINDOWS\System32\DRIVERS\agpCPQ.sys [2008-04-13 44928]
S4 alim1541;Filtre de bus AGP ALI; C:\WINDOWS\System32\DRIVERS\alim1541.sys [2008-04-13 42752]
S4 amdagp;Pilote de filtre du bus AMD AGP; C:\WINDOWS\System32\DRIVERS\amdagp.sys [2008-04-13 43008]
S4 cbidf;cbidf; C:\WINDOWS\System32\DRIVERS\cbidf2k.sys [2001-08-17 13952]
S4 IntelIde;IntelIde; C:\WINDOWS\System32\DRIVERS\intelide.sys [2008-04-14 5504]
S4 sisagp;Filtre de bus AGP SIS; C:\WINDOWS\System32\DRIVERS\sisagp.sys [2008-04-13 40960]
S4 viaagp;Filtre de bus AGP VIA; C:\WINDOWS\System32\DRIVERS\viaagp.sys [2008-04-13 42240]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirScheduler;AntiVir PersonalEdition Classic Scheduler; C:\Program Files\AntiVir PersonalEdition Classic\sched.exe [2008-10-23 68865]
R2 AntiVirService;AntiVir PersonalEdition Classic Guard; C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe [2008-10-23 151297]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424]
R2 BAsfIpM;Broadcom ASF IP monitoring service v6.0.4; C:\WINDOWS\System32\basfipm.exe [2004-04-01 77824]
R2 IAANTMon;IAA Event Monitor; C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe [2004-06-29 73852]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2008-11-10 152984]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\System32\nvsvc32.exe [2004-05-29 114755]
R2 Wlancfg;Service de lancement de WlanCfg; C:\WINDOWS\wlancfg.exe [2004-09-30 1294336]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-11-20 536872]
R3 SSScsiSV;SonicStage SCSI Service; C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe [2005-01-24 69632]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 SPTISRV;Sony SPTI Service; C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe [2005-01-26 69718]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 C-DillaCdaC11BA;C-DillaCdaC11BA; C:\WINDOWS\system32\drivers\CDAC11BA.EXE [2004-11-14 54784]
S4 MSCSPTISRV;MSCSPTISRV; C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe [2005-01-26 53337]
S4 PACSPTISVR;PACSPTISVR; C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe [2005-01-26 53337]

-----------------EOF-----------------

info.txt logfile of random's system information tool 1.05 2009-01-03 20:01:09

======Uninstall list======

-->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu
-->Dummy
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{411A247C-5467-40C0-BFC0-DA08820A8513}\Setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88E5FCB8-5F25-11D5-B16F-0800460222F0}\setup.exe" -l0x40c UNINSTALL
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D76298C2-E532-4A11-BCFF-76F3F19DA84D}\setup.exe" UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Illustrator CS-->RunDll32 "C:\Program Files\Fichiers communs\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll",LaunchSetup "C:\Program Files\InstallShield Installation Information\{91A4AD99-69CE-4745-97B7-0E0DFBECFDE5}\setup.exe"
Adobe Reader 7.1.0 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A71000000002}
Adobe SVG Viewer 3.0-->C:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Winstall.exe -u -fC:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Install.log
Apple Mobile Device Support-->MsiExec.exe /I{EC4455AB-F155-4CC1-A4C5-88F3777F9886}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
ArcSoft PhotoImpression-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E142615E-5ED8-4511-9BF0-0284BFA25766}\setup.exe" -l0x40c -uninst
ArcSoft VideoImpression 1.6-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ED10343F-D30A-4200-9B00-665FC45F52B4}\setup.exe" -l0x40c -uninst
Assistant de connexion Windows Live-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
Avanquest update-->C:\Program Files\InstallShield Installation Information\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\Setup.exe -runfromtemp -l0x040c -removeonly
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
AviSynth 2.5-->"C:\Program Files\AviSynth 2.5\Uninstall.exe"
Barre d'outils MSN-->C:\Program Files\MSN Toolbar\01.01.2607.0\fr\mtbs.exe c
Broadcom Advanced Control Suite 2-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{2E086814-7392-4E0F-ADB8-54A81E47406C} /l1036
Broadcom ASF Management Applications-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{25D24E84-64A9-40D2-85CF-540B1C4A6D52} /l1036
BurningCD (plugin Winamp)-->"C:\Documents and Settings\Rémi\Bureau\BurningCD 1.2.1\uninst-BurningCD.exe"
CDex extraction audio-->"C:\Program Files\CDex_150\uninstall.exe"
Copernic Agent Basic-->"C:\WINDOWS\CopernicAgentUninstall.exe" /ARGSFILE="C:\Program Files\Copernic Agent\unwise.dat"
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
dBpoweramp Windows Media Audio 10 Codec-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp Windows Media Audio 10 Codec.dat
Dell Solution Center-->MsiExec.exe /X{11F1920A-56A2-4642-B6E0-3B31A12C9288}
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Galerie de photos Windows Live-->MsiExec.exe /X{A70FA218-6598-4AC9-813D-63597C5DD068}
Google Earth-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}\setup.exe" -l0x9 -removeonly
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
HOTZIC CD Burner V1.1-->C:\WINDOWS\st6unst.exe -n "C:\Program Files\HotzicBurner\ST6UNST.LOG"
Intel Application Accelerator-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}\setup.exe" -l040c -INTELUNINST
iPod for Windows 2006-03-23-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{2070F79D-46BC-4EEA-8F02-9B4DCABAE7CB} /l1036
iTunes-->MsiExec.exe /I{318AB667-3230-41B5-A617-CB3BF748D371}
J2SE Runtime Environment 5.0 Update 11-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150110}
J2SE Runtime Environment 5.0 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150020}
J2SE Runtime Environment 5.0 Update 4-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150040}
J2SE Runtime Environment 5.0 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
J2SE Runtime Environment 5.0 Update 9-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150090}
Java 2 Runtime Environment, SE v1.4.2_03-->MsiExec.exe /I{7148F0A8-6813-11D6-A77B-00B0D0142030}
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF}
Java(TM) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office 2000 Premium-->MsiExec.exe /I{0000040C-78E1-11D2-B60F-006097C998E7}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)-->"C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)-->"C:\WINDOWS\ie7updates\KB929969\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Motorola Phone Tools-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BAD8CA9C-77C0-4663-B00B-A8D3B13C341B}\setup.exe" -l0x40c -removeonly
Mozilla Firefox (3.0.5)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
NVIDIA Drivers-->C:\WINDOWS\System32\nvudisp.exe UninstallGUI
OpenMG Limited Patch 4.1-05-13-31-01-->C:\Program Files\Fichiers communs\Sony Shared\OpenMG\HotFixes\HotFix4.1-05-13-31-01\HotFixSetup\setup.exe /u
OpenMG Secure Module 4.1.00-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{2F151B50-B434-4838-B51D-70442EBA093E} UNINSTALL
OpenOffice.org Installer 1.0-->MsiExec.exe /X{3A2AF807-9F9F-43C9-A24A-17B617238B74}
QuickTime-->MsiExec.exe /I{F958CA02-BB40-4007-894B-258729456EE4}
Safari-->MsiExec.exe /I{582D2A53-F426-4C5E-A2E6-43C1AB36B907}
SafeCast Shared Components-->C:\Program Files\Fichiers communs\Macrovision Shared\SafeCast\Install\CDAC13BA.EXE /uninstall
Search Settings 1.2-->MsiExec.exe /X{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}
SonicStage 3.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A0EB195B-5876-48E6-879D-33D4B2102610}\setup.exe" -l0x40c UNINSTALL -removeonly
Trust 320 SpaceCam-->C:\WINDOWS\CleanDev.exe C:\WINDOWS\ov519.TXT
Video Player1.0-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Video Player1.0\Uninst.isu"
VideoLAN VLC media player 0.8.5-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Videora iPod Converter 0.91-->C:\Program Files\VideoraiPodConverter\uninst.exe
Winamp (remove only)-->"C:\Program Files\Winamp\UninstWA.exe"
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Live Writer-->MsiExec.exe /X{3DFF4274-EBB0-4356-9692-972965018954}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Related-->Rundll32.exe C:\WINDOWS\lbbho.dll,Uninst
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
XnView 1.74-->"C:\Program Files\XnView\unins000.exe"
Yahoo! Toolbar avec bloqueur de fenêtres pop-up-->C:\PROGRA~1\Yahoo!\Common\unyt.exe

======Security center information======

AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic

System event log

Computer Name: REMI
Event Code: 6006
Message: Le service d'Enregistrement d'événement a été arrêté.

Record Number: 15121
Source Name: EventLog
Time Written: 20080201093622.000000+060
Event Type: Informations
User:

Computer Name: REMI
Event Code: 36
Message: Le service de temps n'a pas pu synchroniser l'heure système de 49152
secondes car aucun fournisseur de temps n'a pu fournir de datage
utilisable. L'horloge système n'est pas synchronisée.

Record Number: 15120
Source Name: W32Time
Time Written: 20080130223919.000000+060
Event Type: Avertissement
User:

Computer Name: REMI
Event Code: 263
Message: Le service "Apple Mobile Device" n'a peut-être pas annulé son inscription au service de notifications d'événement de périphériques avant d'être arrêté.

Record Number: 15119
Source Name: PlugPlayManager
Time Written: 20080130091947.000000+060
Event Type: Avertissement
User:

Computer Name: REMI
Event Code: 35
Message: Le service de temps synchronise maintenant l'heure système avec la
source de temps time.windows.com (ntp.m|0x1|192.168.1.10:123->207.46.197.32:123).

Record Number: 15118
Source Name: W32Time
Time Written: 20080130090007.000000+060
Event Type: Informations
User:

Computer Name: REMI
Event Code: 26
Message: Application popup : iexplore.exe - Erreur d'application : L'instruction à "0x746ac7d6" emploie l'adresse mémoire "0x00000032". La mémoire ne peut pas être "read".

Cliquez sur OK pour terminer le programme.

Record Number: 15117
Source Name: Application Popup
Time Written: 20080129163948.000000+060
Event Type: Informations
User:

Application event log

Computer Name: REMI
Event Code: 1
Message:
Record Number: 26937
Source Name: Bonjour Service
Time Written: 20081026184958.000000+060
Event Type: Informations
User:

Computer Name: REMI
Event Code: 11729
Message: Produit : Windows Live Messenger -- La configuration a échoué.

Record Number: 26936
Source Name: MsiInstaller
Time Written: 20081026092840.000000+060
Event Type: Informations
User: REMI\Rémi

Computer Name: REMI
Event Code: 10005
Message: Produit : Windows Live Messenger -- Windows Installer a rencontré une erreur inattendue lors de l'installation de ce package. Il s'agit peut-être d'un problème lié au package. Le code d'erreur est 2771. Les arguments sont : MsgrFeat, ,

Record Number: 26935
Source Name: MsiInstaller
Time Written: 20081026092840.000000+060
Event Type: erreur
User: REMI\Rémi

Computer Name: REMI
Event Code: 1000
Message: Les compteurs de performances pour le service WmiApRpl (WmiApRpl) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.

Record Number: 26934
Source Name: LoadPerf
Time Written: 20081026092708.000000+060
Event Type: Informations
User:

Computer Name: REMI
Event Code: 1001
Message: Les compteurs de performances pour le service WmiApRpl (WmiApRpl) ont été supprimés.
Les données d'enregistrement contiennent les nouvelles valeurs du dernier compteur système
et les dernières entrées du registre d'aide.

Record Number: 26933
Source Name: LoadPerf
Time Written: 20081026092705.000000+060
Event Type: Informations
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\PROGRA~1\ThriXXX\3D SexVilla;C:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 3 Stepping 4, GenuineIntel
"PROCESSOR_REVISION"=0304
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"FP_NO_HOST_CHECK"=NO
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip

-----------------EOF-----------------

Re,

Télécharge OTMoveIt3 (OldTimer). Sauvegarde-le sur ton Bureau.
Copie (Ctrl+C) le texte se situant dans le cadre ci-dessous :



Double clique sur OTMoveIt3.exe afin de le lancer.
Colle (ou Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
Clique maintenant sur le bouton [#ff0000]MoveIt![/#f] puis ferme OTMoveIt3.

[#ff0000]Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.[/#f]

Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log

========== FILES ==========
C:\Program Files\Search Settings\kb127\temp moved successfully.
C:\Program Files\Search Settings\kb127\res moved successfully.
C:\Program Files\Search Settings\kb127 moved successfully.
C:\Program Files\Search Settings moved successfully.
File/Folder C:\Documents and Settings\All Users\Application Data\great coal love default not found.
File/Folder C:\DOCUME~1\RMI~1\APPLIC~1\BURNLO~1 not found.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}\\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SearchSettings deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Love default global mess deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\erroruser deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\SpybotSD TeaTimer deleted successfully.

OTMoveIt3 by OldTimer - Version 1.0.8.0 log created on 01042009_180904

Reposte un rapport Hijackthis.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:46:44, on 04/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Search Settings\SearchSettings.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\basfipm.exe
C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wlancfg.exe
C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [PopUpKiller] C:\Program Files\PopUpKiller\PopUpKiller.EXE
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {48B35AC2-CFCE-4DF7-8B39-C3EB6F5DD111} (TRIiS ZOOMA Viewer Control) - http://viewer.zooma.jp/viewer3/mamoViewer.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUpload...
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://remisorriano.spaces.live.com/PhotoUpload/MsnPUpl...
O16 - DPF: {B9907873-6560-4A36-B76B-9DADE84A7F55} (FnacmusicDnl.DnlManager) - http://www.fnacmusic.com/telechargementFnacmusic/Fnacmu...
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Broadcom ASF IP monitoring service v6.0.4 (BAsfIpM) - Broadcom Corp. - C:\WINDOWS\System32\basfipm.exe
O23 - Service: IAA Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\WINDOWS\wlancfg.exe

--
End of file - 7284 bytes

Re,

Fix les lignes dans le cadre ci-dessous avec HijackThis : AIDE EN IMAGES

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:17:01, on 05/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\basfipm.exe
C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wlancfg.exe
C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [PopUpKiller] C:\Program Files\PopUpKiller\PopUpKiller.EXE
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {48B35AC2-CFCE-4DF7-8B39-C3EB6F5DD111} (TRIiS ZOOMA Viewer Control) - http://viewer.zooma.jp/viewer3/mamoViewer.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUpload...
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://remisorriano.spaces.live.com/PhotoUpload/MsnPUpl...
O16 - DPF: {B9907873-6560-4A36-B76B-9DADE84A7F55} (FnacmusicDnl.DnlManager) - http://www.fnacmusic.com/telechargementFnacmusic/Fnacmu...
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Broadcom ASF IP monitoring service v6.0.4 (BAsfIpM) - Broadcom Corp. - C:\WINDOWS\System32\basfipm.exe
O23 - Service: IAA Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\WINDOWS\wlancfg.exe

--
End of file - 6946 bytes

Encore des soucis ?

Non tout va bien , Merci pourt tout !!!

Bon surf.