Mon ordi rame [Résolu]

bonjour,
depuis quelques jours mon ordi rame
j'ai beaucoup de difficultés à surfer sur internet
j'ai fait un scan hijackthis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:02:25, on 24/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\WINDOWS\system32\cisvc.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\pc1\Local Settings\Temporary Internet Files\Content.IE5\I1QWEZY4\HiJackThis[1].exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.ke.voila.fr/S/voila?kw=
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://r.orange.fr/r/Ohome_accueil [...] efaultPage
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {AEEC3B59-CA98-4EBA-A140-57B94E283583} - (no file)
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll (file missing)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: barre d'outils Orange - {D3028143-6145-4318-99D3-3EDCE54A95A9} - C:\Program Files\Orange\ToolbarFR\ToolbarContainer101000313.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SoftwareHelper] C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
O4 - HKLM\..\Run: [OFFICEKB] C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - S-1-5-18 Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe (User 'Default user')
O4 - .DEFAULT Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe (User 'Default user')
O4 - .DEFAULT Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe (User 'Default user')
O4 - .DEFAULT Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe (User 'Default user')
O4 - .DEFAULT Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
O4 - Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: ajouter cette page à vos favoris Orange - C:\DOCUME~1\pc1\LOCALS~1\Temp\cce165.html
O8 - Extra context menu item: traduire la page - C:\DOCUME~1\pc1\LOCALS~1\Temp\cce163.html
O8 - Extra context menu item: traduire le texte sélectionné - C:\DOCUME~1\pc1\LOCALS~1\Temp\cce164.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O15 - Trusted Zone: http://logicielsgratuits.orange.fr
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/control [...] oader5.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5A779DC0-837B-4590-AC42-C7C0847478C5} (OrangeInstaller_ModuleIE Control) - http://logicielsgratuits.orange.fr [...] taller.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com [...] _5_1_0.cab
O16 - DPF: {B7D07999-2ADB-4AEB-997E-F61CB7B2E2CD} (TSEasyInstallX Control) - http://www.trendsecure.com/easy_in [...] stallX.CAB
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/bina [...] b56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697516} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp6_mp3.cab
O20 - AppInit_DLLs: nazqva.dll
O20 - Winlogon Notify: jkkHYqnN - jkkHYqnN.dll (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\logishrd\Bluetooth\LBTServ.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Unknown owner - C:\Program Files\Inventel\Gateway\wlancfg.exe (file missing)

--
End of file - 12602 bytes

merci de m'aider

Message édité par Prunelle le 09-10-2009 à 19:16:37

Répondre

Inscrivez-vous ou connectez-vous pour masquer ceci.

Bonjour,

Je vois des infections.

Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
Double-clique sur RSIT.exe afin de lancer le programme.

(Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)

Clique sur Continue à l'écran Disclaimer.
Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

Note : les rapports sont sauvegardés dans le dossier C:\rsit.

Répondre à Destrio5

Logfile of random's system information tool 1.06 (written by random/random)
Run by pc1 at 2009-09-24 21:38:44
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 32 GB (28%) free of 114 GB
Total RAM: 1023 MB (48% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:38:50, on 24/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\WINDOWS\system32\cisvc.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\pc1\Favoris\Bureau\RSIT.exe
C:\Program Files\trend micro\pc1.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.ke.voila.fr/S/voila?kw=
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://r.orange.fr/r/Ohome_accueil [...] efaultPage
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {AEEC3B59-CA98-4EBA-A140-57B94E283583} - (no file)
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll (file missing)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: barre d'outils Orange - {D3028143-6145-4318-99D3-3EDCE54A95A9} - C:\Program Files\Orange\ToolbarFR\ToolbarContainer101000313.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SoftwareHelper] C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
O4 - HKLM\..\Run: [OFFICEKB] C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - S-1-5-18 Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe (User 'Default user')
O4 - .DEFAULT Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe (User 'Default user')
O4 - .DEFAULT Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe (User 'Default user')
O4 - .DEFAULT Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe (User 'Default user')
O4 - .DEFAULT Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
O4 - Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: ajouter cette page à vos favoris Orange - C:\DOCUME~1\pc1\LOCALS~1\Temp\cce3D.html
O8 - Extra context menu item: traduire la page - C:\DOCUME~1\pc1\LOCALS~1\Temp\cce3B.html
O8 - Extra context menu item: traduire le texte sélectionné - C:\DOCUME~1\pc1\LOCALS~1\Temp\cce3C.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O15 - Trusted Zone: http://logicielsgratuits.orange.fr
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/control [...] oader5.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5A779DC0-837B-4590-AC42-C7C0847478C5} (OrangeInstaller_ModuleIE Control) - http://logicielsgratuits.orange.fr [...] taller.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com [...] _5_1_0.cab
O16 - DPF: {B7D07999-2ADB-4AEB-997E-F61CB7B2E2CD} (TSEasyInstallX Control) - http://www.trendsecure.com/easy_in [...] stallX.CAB
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/bina [...] b56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697516} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp6_mp3.cab
O20 - AppInit_DLLs: nazqva.dll
O20 - Winlogon Notify: jkkHYqnN - jkkHYqnN.dll (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\logishrd\Bluetooth\LBTServ.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Unknown owner - C:\Program Files\Inventel\Gateway\wlancfg.exe (file missing)

--
End of file - 12548 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{CE3AA5F3-A6FE-4AB7-95C3-1CE51750976A}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88F05591-0079-4c37-B138-5DA8BC1782EF}]
iGraal - C:\Program Files\iGraal\iGraal.dll [2008-09-19 612160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2009-02-15 2436160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-25 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-07-25 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{88F05591-0079-4c37-B138-5DA8BC1782EF} - iGraal - C:\Program Files\iGraal\iGraal.dll [2008-09-19 612160]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2009-02-15 2436160]
{D3028143-6145-4318-99D3-3EDCE54A95A9} - barre d'outils Orange - C:\Program Files\Orange\ToolbarFR\ToolbarContainer101000313.dll [2009-04-22 2300822]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-08-17 81000]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"EoEngine"= []
"SoftwareHelper"=C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe [2008-12-09 368224]
"OFFICEKB"=C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe [2009-06-23 387584]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-05-26 413696]
"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2008-12-18 76304]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-25 149280]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"TomTomHOME.exe"=C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2009-04-08 251240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Démarrer^Programmes^Démarrage^Ralink Wireless Utility.lnk]
C:\PROGRA~1\RALINK\Common\RaUI.exe [2007-09-04 675840]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^pc1^Menu Démarrer^Programmes^Démarrage^NETGEAR WG111v2 Smart Wizard.lnk]
C:\Program Files\NETGEAR\WG111v2\WG111v2.exe []

C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe

C:\Documents and Settings\pc1\Menu Démarrer\Programmes\Démarrage
RocketDock.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
TransBar.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
UberIcon.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
Y'z Shadow.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
Yahoo! Widgets.lnk - C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="nazqva.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-05-03 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\jkkHYqnN]
jkkHYqnN.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll [2009-02-19 72208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 240128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{88485281-8b4b-4f8d-9ede-82e29a064277}"= []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=95000000

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"
"C:\Program Files\utorrent\utorrent.exe"="C:\Program Files\utorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule Plus"
"C:\Documents and Settings\pc1\Favoris\Bureau\microtorrent_torrent_1.7.7_anglais_18245(2).exe"="C:\Documents and Settings\pc1\Favoris\Bureau\microtorrent_torrent_1.7.7_anglais_18245(2).exe:*:Enabled:µTorrent"
"C:\WINDOWS\Temp\occ.exe"="C:\WINDOWS\Temp\occ.exe:*isabledneCC Module"
"C:\WINDOWS\system32\mmc.exe"="C:\WINDOWS\system32\mmc.exe:*:Enabled:Microsoft Management Console"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*isabled:Internet Explorer"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{48b32622-f9ec-11dd-91da-001e2aef17fb}]
shell\AutoRun\command - F:\InstallTomTomHOME.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6384265c-f39f-11dd-91c8-001e2aef17fb}]
shell\AutoRun\command - F:\InstallTomTomHOME.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a18bb6c8-6e65-11dc-a1f4-00032f441728}]
shell\AutoRun\command - E:\Autorun.exe

======File associations======

.reg - open - regedit.exe "%1" %*
.scr - open - "%1" %*

======List of files/folders created in the last 1 months======

2009-09-24 21:38:45 ----D---- C:\Program Files\trend micro
2009-09-24 21:38:44 ----DC---- C:\rsit
2009-09-24 21:30:50 ----D---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
2009-09-24 19:53:01 ----D---- C:\Program Files\Ad-Remover
2009-09-17 19:10:46 ----D---- C:\Program Files\AlerteGPS
2009-09-11 15:22:45 ----HDC---- C:\WINDOWS\ie8
2009-09-11 15:06:12 ----D---- C:\Program Files\Orange

======List of files/folders modified in the last 1 months======

2009-09-24 21:38:50 ----D---- C:\WINDOWS\Prefetch
2009-09-24 21:38:45 ----RD---- C:\Program Files
2009-09-24 21:33:13 ----D---- C:\WINDOWS\Temp
2009-09-24 21:32:31 ----A---- C:\WINDOWS\ModemLog_Bluetooth Fax Modem.txt
2009-09-24 21:32:31 ----A---- C:\WINDOWS\ModemLog_Bluetooth DUN Modem.txt
2009-09-24 21:31:14 ----D---- C:\WINDOWS\system32\config
2009-09-24 21:31:02 ----D---- C:\WINDOWS\system32\wbem
2009-09-24 21:31:02 ----D---- C:\WINDOWS\Registration
2009-09-24 21:30:50 ----D---- C:\WINDOWS
2009-09-24 21:30:41 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-09-24 19:47:23 ----DC---- C:\Temp
2009-09-24 18:04:02 ----D---- C:\Program Files\Pochette Express 2
2009-09-23 07:01:39 ----D---- C:\WINDOWS\system32
2009-09-21 13:22:55 ----D---- C:\WINDOWS\system32\CatRoot2
2009-09-17 19:10:51 ----HD---- C:\WINDOWS\inf
2009-09-16 17:35:08 ----D---- C:\WINDOWS\network diagnostic
2009-09-14 18:47:51 ----AC---- C:\WINDOWS\ModemLog_Bluetooth LAP Modem #2.txt
2009-09-11 15:25:02 ----D---- C:\WINDOWS\system32\fr-fr
2009-09-11 15:25:02 ----D---- C:\WINDOWS\Media
2009-09-11 15:25:02 ----D---- C:\Program Files\Internet Explorer
2009-09-11 15:25:01 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-09-11 15:25:01 ----D---- C:\WINDOWS\Help
2009-09-11 15:23:43 ----HD---- C:\WINDOWS\msdownld.tmp
2009-09-11 15:06:13 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-09-11 13:36:57 ----A---- C:\WINDOWS\NeroDigital.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-08-17 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-08-17 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-08-17 51376]
R1 InCDPass;InCDPass; C:\WINDOWS\System32\DRIVERS\InCDPass.sys [2005-07-25 29696]
R1 incdrm;InCD Reader; C:\WINDOWS\system32\drivers\incdrm.sys [2005-07-26 28672]
R1 kbfilter;Keyboard Filter Driver; C:\WINDOWS\system32\drivers\kbfilter.sys [1999-08-27 14624]
R1 Tcpip6;Pilote du protocole IPv6 Microsoft; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225856]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.5.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2009-07-18 21419]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-08-17 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-08-17 94160]
R2 EAPPkt;Realtek EAPPkt Protocol; C:\WINDOWS\system32\DRIVERS\EAPPkt.sys [2007-10-09 38144]
R2 irda;Protocole IrDA; C:\WINDOWS\System32\DRIVERS\irda.sys [2008-04-13 88192]
R2 LBeepKE;LBeepKE; C:\WINDOWS\System32\Drivers\LBeepKE.sys [2008-12-18 10384]
R2 ppsio;PrmxPPDev; C:\WINDOWS\system32\drivers\ppsio.sys [2001-11-25 22688]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-08-17 23152]
R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2006-05-03 1540608]
R3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [2004-10-19 20096]
R3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [2004-09-21 10804]
R3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [2004-12-01 22488]
R3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\DRIVERS\vbtenum.sys [2004-09-21 11604]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWS\System32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2008-12-18 20240]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2008-12-18 35472]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2008-12-18 37392]
R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2008-12-18 28816]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\DRIVERS\LVUSBSta.sys [2004-01-21 12080]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 ms_mpu401;Pilote UART MIDI MPU-401 Microsoft; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [2004-05-17 33280]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [2004-05-17 12928]
R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\System32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2003-04-24 5888]
R3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver; C:\WINDOWS\system32\DRIVERS\rt2870.sys [2007-07-28 517632]
R3 tunmp;Pilote de carte miniport Tun Microsoft; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288]
R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur hôte amélioré USB 2.0 Microsoft; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 VComm;Virtual Serial port driver; C:\WINDOWS\System32\DRIVERS\VComm.sys [2004-10-19 61312]
R3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2004-11-05 82148]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\InCDfs.sys [2005-07-25 101504]
S3 arusb(TP-LINK);Atheros Wireless Network Adapter Service(TP-LINK); C:\WINDOWS\system32\DRIVERS\arusb.sys [2008-05-26 434688]
S3 BTNetFilter;Bluetooth Network Filter; \??\C:\WINDOWS\system32\drivers\BTNetFilter.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\pc1\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 cm102u32;C-Media CM6501 Like Sound Interface; C:\WINDOWS\system32\drivers\c6501.sys [2006-07-11 1419776]
S3 DNINDIS5;DNINDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\DNINDIS5.SYS []
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 dtscsi;dtscsi; C:\WINDOWS\system32\drivers\dtscsi.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NPF;Netgroup Packet Filter; C:\WINDOWS\system32\drivers\npf.sys [2008-12-29 42512]
S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 pepifilter;Volume Adapter; C:\WINDOWS\System32\DRIVERS\lv302af.sys [2004-01-21 5915]
S3 PID_08A0;Labtec WebCam Pro(PID_08A0); C:\WINDOWS\System32\DRIVERS\LV302AV.SYS [2004-01-21 271360]
S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2007-10-12 1279000]
S3 RTLWUSB;NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\wg111v2.sys []
S3 SIS163u;SiS163 usb Wireless LAN Adapter Driver; C:\WINDOWS\System32\DRIVERS\sis163u.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys []
S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys []
S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys []
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Service d'application d'assistance IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-02-18 110592]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-08-17 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-05-03 413696]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-08-17 138680]
R2 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2004-12-13 106496]
R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe [2008-06-20 65536]
R2 InCDsrv;InCD Helper; C:\Program Files\Ahead\InCD\InCDsrv.exe [2005-07-26 876032]
R2 Iprip;Écouteur RIP; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Irmon;Moniteur infrarouge; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-07-25 153376]
R2 SimpTcp;Services TCP/IP simplifiés; C:\WINDOWS\System32\tcpsvcs.exe [2003-04-24 19456]
R2 SNMP;Service SNMP; C:\WINDOWS\System32\snmp.exe [2008-04-14 33280]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2009-04-08 92008]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-08-17 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-08-17 352920]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-05-03 520192]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
S2 InCDsrvR;InCD Helper (read only); C:\Program Files\Ahead\InCD\InCDsrv.exe [2005-07-26 876032]
S2 Wlancfg;Service de lancement de WlanCfg; C:\Program Files\Inventel\Gateway\wlancfg.exe SVC []
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-12-30 138168]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Fichiers communs\logishrd\Bluetooth\LBTServ.exe [2009-02-19 121360]
S3 LPDSVC;Serveur d'impression TCP/IP; C:\WINDOWS\System32\tcpsvcs.exe [2003-04-24 19456]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-05-29 234864]
S3 p2pgasvc;Authentification de groupe réseau homologue; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 p2pimsvc;Gestionnaire d'identité réseau homologue; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 p2psvc;Réseau homologue; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 PNRPSvc;Protocole de résolution de noms d'homologues; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 SNMPTRAP;Service d'interruption SNMP; C:\WINDOWS\System32\snmptrap.exe [2008-04-14 8704]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-24 918016]

-----------------EOF-----------------
info.txt logfile of random's system information tool 1.06 2009-09-24 21:38:53

======Uninstall list======

-->C:\Program Files\Ahead\nero\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->C:\WINDOWS\IsUninst.exe -fC:\Program Files\MediaKey\uninst.isu
-->C:\WINDOWS\NuNInst.exe /UNINSTALL
-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
-->C:\WINDOWS\unmrw.exe /UNINSTALL
-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->C:\WINDOWS\UNNMP.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->MsiExec.exe /X{ECA1A3B6-898F-4DCE-9F04-714CF3BA126B}
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Reader 9.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Apple Mobile Device Support-->MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Control Panel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_classISPLAY -clean
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
barre d'outils Orange-->C:\Program Files\Orange\ToolbarFR\uninst.exe
Barre d'outils Outlook de Windows Live (Windows Live Toolbar)-->MsiExec.exe /X{4002F73D-EBB3-4EA1-A2FF-DBCB4529759E}
Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{51F366F4-C2E4-429A-866A-59C885ED42FD}
BlueSoleil-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B9F499B8-D1F0-42FC-84BE-CC552123CCCB}\Setup.exe" -l0x40c
Canon iP1600-->C:\WINDOWS\system32\CNMCP75.exe "-PRINTERNAMECanon iP1600" "-HELPERDLLC:\Documents and Settings\All Users.WINDOWS\Application Data\CanonBJ\IJPrinter\CNMWINDOWS\Canon iP1600 Installer\Inst2\cnmis.dll" "-RCDLLcnmi040c.dll"
CDDRV_Installer-->MsiExec.exe /I{0C826C5B-B131-423A-A229-C71B3CACCD6A}
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"
Grisbi 0.5.9-->C:\Program Files\Grisbi\uninstall.exe
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
iGraal Toolbar for Internet Explorer-->"C:\Program Files\iGraal\uninstall.exe"
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF}
KhalInstallWrapper-->MsiExec.exe /I{3101CB58-3482-4D21-AF1A-7057FC935355}
Labtec Media Keyboard V5.1-->C:\Program Files\Labtec\Keyboard\V5.1\uninst00.exe
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Les Sims-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Maxis\Les Sims\Uninst.isu"
Logitech SetPoint-->"C:\Program Files\InstallShield Installation Information\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}\setup.exe" -runfromtemp -l0x040c -removeonly
Ma-Config.com-->MsiExec.exe /X{6C4D4FC0-467B-4BD7-8D11-50E49B2770D2}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft .NET Framework (French) v1.0.3705-->C:\WINDOWS\Microsoft.NET\Framework\Install.exe /u /p Microsoft .NET Framework Full v1.0.3705 (1036)
Microsoft .NET Framework (French)-->MsiExec.exe /X{6B908BF7-A583-4962-B068-69657D87CD56}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
Microsoft Money-->C:\Program Files\Microsoft Money 2005\MNYCoreFiles\Setup\uninst.exe /s:120
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office XP Professional avec FrontPage-->MsiExec.exe /I{9028040C-6000-11D3-8CFE-0050048383C9}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nero Suite-->C:\Program Files\Fichiers communs\Nero\Uninstall\Setup.exe /uninstall ExtraUninstallID=""
NVIDIA Drivers-->C:\WINDOWS\system32\NVUNINST.EXE UninstallGUI
OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
OrangeInstaller version 1.0.0.0-->RunDll32 C:\WINDOWS\system32\advpack.dll,LaunchINFSection C:\WINDOWS\INF\OrangeInstaller_1.0.0.0.inf,DefaultUninstall
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Pack Vista Inspirat 2 1.0-->C:\WINDOWS\BricoPacks\Vista Inspirat 2\Remove.exe
Picasa 3-->"C:\Program Files\Google\Picasa3\Uninstall.exe"
Pochette Express 2-->C:\Program Files\Pochette Express 2\uninstall.exe
Programme de gestion Camera de Logitech®-->"C:\Program Files\Fichiers communs\Labtec\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT
QuickTime-->MsiExec.exe /I{C78EAC6F-7A73-452E-8134-DBB2165C5A68}
Ralink Wireless LAN-->C:\Program Files\InstallShield Installation Information\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}\setup.exe -runfromtemp -l0x0009 -removeonly
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Shockwave-->C:\WINDOWS\system32\Macromed\SHOCKW~2\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~2\Install.log
SoftwareUpdate 1.0-->"C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\unins000.exe"
TomTom HOME 2.6.2.1586-->C:\Program Files\TomTom HOME 2\Uninstall TomTom HOME.exe
TomTom HOME Visual Studio Merge Modules-->MsiExec.exe /I{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Support Tools-->MsiExec.exe /I{8398B542-3CC4-44D9-83DF-696CCE70124B}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
Yahoo! Install Manager-->C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
Yahoo! Widgets-->C:\PROGRA~1\Yahoo!\Widgets\uninstall.exe

======Hosts File======

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD

======Security center information======

AV: avast! antivirus 4.8.1351 [VPS 090924-0]

======System event log======

Computer Name: CHAUSSE
Event Code: 2
Message: Device identified.

Record Number: 5
Source Name: nvatabus
Time Written: 20090913184445.000000+120
Event Type: Informations
User:

Computer Name: CHAUSSE
Event Code: 2
Message: Device identified.

Record Number: 4
Source Name: nvatabus
Time Written: 20090913184445.000000+120
Event Type: Informations
User:

Computer Name: CHAUSSE
Event Code: 2
Message: Device identified.

Record Number: 3
Source Name: nvatabus
Time Written: 20090913184445.000000+120
Event Type: Informations
User:

Computer Name: CHAUSSE
Event Code: 6005
Message: Le service d'Enregistrement d'événement a démarré.

Record Number: 2
Source Name: EventLog
Time Written: 20090913184439.000000+120
Event Type: Informations
User:

Computer Name: CHAUSSE
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 3 Multiprocessor Free.

Record Number: 1
Source Name: EventLog
Time Written: 20090913184439.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: CHAUSSE
Event Code: 4137
Message: CI a démarré pour le catalogue c:\system volume information\catalog.wci.

Record Number: 4917
Source Name: Ci
Time Written: 20090427113324.000000+120
Event Type: Informations
User:

Computer Name: CHAUSSE
Event Code: 2002
Message: Impossible d'ouvrir le Service redirecteur. Les données de performance du
redirecteur ne seront pas renvoyées. Le code d'erreur renvoyé est la donnée DWORD 0.

Record Number: 4916
Source Name: PerfNet
Time Written: 20090427112613.000000+120
Event Type: erreur
User:

Computer Name: CHAUSSE
Event Code: 1015
Message: Le paramètre TraceLevel ne se trouve pas dans le Registre.
La niveau de suivi utilisé par défaut est 32.

Record Number: 4915
Source Name: EvntAgnt
Time Written: 20090427112612.000000+120
Event Type: Avertissement
User:

Computer Name: CHAUSSE
Event Code: 1003
Message: Le paramètre TraceFileName ne se trouve pas dans le Registre.
Le fichier de suivi utilisé par défaut est .

Record Number: 4914
Source Name: EvntAgnt
Time Written: 20090427112612.000000+120
Event Type: Avertissement
User:

Computer Name: CHAUSSE
Event Code: 105
Message: The service was started.

Record Number: 4913
Source Name: ATI Smart
Time Written: 20090427112607.000000+120
Event Type: Informations
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\ATI Technologies\ATI Control Panel;C:\Program Files\Fichiers communs\Ulead Systems\MPEG;C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727;C:\Program Files\Smart Projects\IsoBuster;C:\Program Files\QuickTime\QTSystem;C:\Program Files\QuickTime\QTSystem;C:\Program Files\Support Tools\;C:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 75 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=4b02
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"FP_NO_HOST_CHECK"=NO
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

-----------------EOF-----------------

Répondre à nenette1242

Télécharge Ad-Remover (de Cyrildu17 / C_XX) sur ton Bureau.

/!\ Déconnecte-toi et ferme toutes applications en cours /!\

Double-clique sur AD-R situé sur ton Bureau pour le lancer.

(Sous Vista, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)

Choisis la langue F pour français.
Au menu principal, choisis l'option S.

/!\ Laisse travailler l'outil /!\

Poste le rapport qui apparaît à la fin (C:\Ad-Report-SCAN.log).

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

Note : "Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool. Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus. Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.

Répondre à Destrio5

voici le rapport
======= RAPPORT D'AD-REMOVER 1.1.4.5_V | UNIQUEMENT XP/VISTA/7 =======
.
Mit à jour par C_XX le 24/09/2009 à 5:40 PM
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 21:53:22, 24/09/2009 | Mode Normal | Option: SCAN
Exécuté de: C:\Program Files\Ad-Remover\
Système d'exploitation: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
Nom du PC: CHAUSSE | Utilisateur actuel: pc1
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.
.
HKCU\Software\EoRezo
HKCU\Software\ItsLabel
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A0AADCD-3A72-4B5F-900F-E3BB5A838E2A}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
HKCU\Software\SWEETIE
HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKLM\Software\Classes\TypeLib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKLM\Software\EoRezo
HKLM\Software\ItsLabel
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdate_is1
HKU\S-1-5-21-73586283-842925246-725345543-1004\Software\Eorezo
HKU\S-1-5-21-73586283-842925246-725345543-1004\Software\ItsLabel
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\EoEngine
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SoftwareHelper
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
.
C:\Documents and Settings\pc1\Application Data\EoRezo
C:\Documents and Settings\pc1\Application Data\ItsLabel
C:\Documents and Settings\pc1\Cookies\pc1@ads.eorezo[2].txt
C:\Documents and Settings\pc1\Cookies\pc1@dl.eorezo[2].txt
C:\Documents and Settings\pc1\Cookies\pc1@eorezo[1].txt
C:\Documents and Settings\pc1\Cookies\pc1@eorezo[2].txt
C:\Documents and Settings\pc1\Cookies\pc1@eorezo[4].txt
C:\Documents and Settings\pc1\Cookies\pc1@eurobarre[2].txt
C:\Documents and Settings\pc1\Cookies\pc1@mir1.eorezo[1].txt
C:\WINDOWS\Prefetch\ITSTV.EXE-0AA9B5BA.pf
C:\WINDOWS\Prefetch\ITSTV.EXE-35A15D36.pf
C:\WINDOWS\Prefetch\SOFTWAREUPDATEHP.EXE-221615F3.pf
.
============== Scan additionnel ==============
.
.
* Mozilla FireFox Version [Impossible d'obtenir la version] *
.
Nom du profil: (pc1)
.
.
.
* Internet Explorer Version 8.0.6001.18702 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Search Page: hxxp://www.google.com
Start Page: hxxp://r.orange.fr/r/Ohome_accueil?ref=O_toolbar32_hook_defaultPage
Secondary Start Pages: \0
Start Page Redirect Cache: hxxp://fr.msn.com/?ocid=iehp
Start Page Redirect Cache_TIMESTAMP: 205ac8ccdaf4c901
Start Page Redirect Cache AcceptLangs: fr
Default_Search_URL: hxxp://www.google.com/ie
Search Bar: hxxp://search.ke.voila.fr/S/voila?kw=
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Start Page: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
===================================
.
3432 Octet(s) - C:\Ad-Report-SCAN.log
.
284 Fichier(s) - C:\DOCUME~1\pc1\LOCALS~1\Temp
236 Fichier(s) - C:\WINDOWS\Temp
.
1 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
0 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
.
Fin à: 21:58:41 | 24/09/2009
.
============== E.O.F ==============
.

Répondre à nenette1242

Ok, tu peux faire l'option L d'Ad-Remover.

Répondre à Destrio5

voici le rapport
====== RAPPORT D'AD-REMOVER 1.1.4.5_V | UNIQUEMENT XP/VISTA/7 =======
.
Mit à jour par C_XX le 24/09/2009 à 5:40 PM
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 22:05:40, 24/09/2009 | Mode Normal | Option: CLEAN
Exécuté de: C:\Program Files\Ad-Remover\
Système d'exploitation: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
Nom du PC: CHAUSSE | Utilisateur actuel: pc1
.
============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
.
.
HKCU\Software\EoRezo
HKCU\Software\ItsLabel
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A0AADCD-3A72-4B5F-900F-E3BB5A838E2A}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
HKCU\Software\SWEETIE
HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKLM\Software\Classes\TypeLib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKLM\Software\EoRezo
HKLM\Software\ItsLabel
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdate_is1
HKU\S-1-5-21-73586283-842925246-725345543-1004\Software\Eorezo
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\EoEngine
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SoftwareHelper
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
.
/!\ NON SUPPRIME: C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate
C:\Documents and Settings\pc1\Application Data\EoRezo
C:\Documents and Settings\pc1\Application Data\EoRezo\cache
C:\Documents and Settings\pc1\Application Data\EoRezo\cmhost.cyp
C:\Documents and Settings\pc1\Application Data\EoRezo\ConfMedia.cyp
C:\Documents and Settings\pc1\Application Data\EoRezo\db
C:\Documents and Settings\pc1\Application Data\EoRezo\db\cat.cyp
C:\Documents and Settings\pc1\Application Data\EoRezo\eoDesktop
C:\Documents and Settings\pc1\Application Data\EoRezo\eoDesktop\config.xml
C:\Documents and Settings\pc1\Application Data\EoRezo\eoDesktop\eoDesktop.html
C:\Documents and Settings\pc1\Application Data\EoRezo\eoDesktop\userConfig.xml
C:\Documents and Settings\pc1\Application Data\EoRezo\eoStats
C:\Documents and Settings\pc1\Application Data\EoRezo\host.cyp
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Download
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\help_config.cyp
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\eobrowserpub
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\eobrowserpub\1.0.0.1
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.2
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.3
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.3\itstv.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.4
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.4\itstv.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.5
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.5\itstv.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.6
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.6\itstv.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.7
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.7\itstv.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.8
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.8\itstv.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.9
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.9\itstv.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.0
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.0\itstv.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.1
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.1\itstv.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.3
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.3\itstv.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.4
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.4\itstv.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.5
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.5\itstv.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.6
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.6\itstv.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.7
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.7\itstv.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.8
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.8\itstv.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\SoftwareUpdate.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\unins000.dat
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\unins000.exe
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\user_config.cyp
C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\user_profil.cyp
C:\Documents and Settings\pc1\Application Data\EoRezo\user.cyp
C:\Documents and Settings\pc1\Application Data\ItsLabel
C:\Documents and Settings\pc1\Application Data\ItsLabel\ItsTV
C:\Documents and Settings\pc1\Application Data\ItsLabel\ItsTV\itsTV.xml
C:\Documents and Settings\pc1\Cookies\pc1@ads.eorezo[2].txt
C:\Documents and Settings\pc1\Cookies\pc1@dl.eorezo[2].txt
C:\Documents and Settings\pc1\Cookies\pc1@eorezo[1].txt
C:\Documents and Settings\pc1\Cookies\pc1@eorezo[2].txt
C:\Documents and Settings\pc1\Cookies\pc1@eorezo[4].txt
C:\Documents and Settings\pc1\Cookies\pc1@eurobarre[2].txt
C:\Documents and Settings\pc1\Cookies\pc1@mir1.eorezo[1].txt
C:\WINDOWS\Prefetch\ITSTV.EXE-0AA9B5BA.pf
C:\WINDOWS\Prefetch\ITSTV.EXE-35A15D36.pf
C:\WINDOWS\Prefetch\SOFTWAREUPDATEHP.EXE-221615F3.pf

(!) -- Fichiers temporaires supprimés.

.
============== Scan additionnel ==============
.
.
* Mozilla FireFox Version [Impossible d'obtenir la version] *
.
Nom du profil: (pc1)
.
.
.
* Internet Explorer Version 8.0.6001.18702 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Search Page: hxxp://www.google.com
Start Page: hxxp://fr.msn.com/
Secondary Start Pages: \0
Start Page Redirect Cache: hxxp://fr.msn.com/?ocid=iehp
Start Page Redirect Cache_TIMESTAMP: 205ac8ccdaf4c901
Start Page Redirect Cache AcceptLangs: fr
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search Bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Default_page_url: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Start Page: hxxp://fr.msn.com/
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://search.msn.com/spbasic.htm
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
===================================
.
8731 Octet(s) - C:\Ad-Report-CLEAN.log
3745 Octet(s) - C:\Ad-Report-SCAN.log
.
0 Fichier(s) - C:\DOCUME~1\pc1\LOCALS~1\Temp
49 Fichier(s) - C:\WINDOWS\Temp
.
18 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
28 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
.
Fin à: 22:09:42 | 24/09/2009
.
============== E.O.F ==============
.

Répondre à nenette1242

Désinstalle Ad-Remover.

Télécharge Lop S&D sur ton Bureau.
Double-clique dessus pour lancer l'installation.
Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau.

(Sous Vista, il faut cliquer droit sur le raccourci Lop S&D et choisir Exécuter en tant qu'administrateur)

Sélectionne la langue souhaitée, puis choisis l'option 1 (Recherche) .
Patiente jusqu'à la fin du scan.
Poste le rapport généré (C:\lopR.txt).

Répondre à Destrio5

-\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ )
BIOS : Default System BIOS
USER : pc1 ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1351 [VPS 090924-0] 4.8.1351 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:111 Go (Free:31 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 24/09/2009|22:34 )

--------------------\\ Listing des dossiers dans APPLIC~1

[25/07/2008|20:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[25/07/2008|20:18] C:\DOCUME~1\ADMINI~1.CHA\APPLIC~1\Microsoft

[30/12/2008|15:26] C:\DOCUME~1\ADMINI~1.000\APPLIC~1\Malwarebytes
[29/12/2008|21:06] C:\DOCUME~1\ADMINI~1.000\APPLIC~1\Microsoft

[20/02/2005|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft

[05/07/2009|21:58] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\4D
[13/03/2009|17:56] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
[11/08/2007|14:32] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ahead
[24/02/2008|18:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[14/08/2007|18:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[13/02/2008|19:08] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avg7
[11/08/2007|18:01] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Bluetooth
[11/08/2007|10:55] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\CanonBJ
[19/12/2008|16:49] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Downloaded Installations
[15/02/2009|11:33] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
[13/02/2008|19:07] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Grisoft
[03/05/2009|10:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\iDeal Designer But_4
[15/12/2007|10:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Lavasoft
[18/07/2009|17:25] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\LogiShrd
[18/07/2009|17:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Logitech
[18/07/2009|12:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ma-config.com
[05/05/2008|21:30] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Malwarebytes
[06/07/2009|21:03] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[10/08/2007|19:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MSN6
[14/11/2007|19:46] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\NFS Underground
[14/04/2009|19:33] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\NOS
[17/11/2008|19:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Prism
[17/04/2008|10:09] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Skype
[07/05/2008|17:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Spybot - Search & Destroy
[19/08/2008|19:01] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TEMP
[05/02/2009|18:13] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TomTom
[17/07/2009|20:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TP-LINK
[11/08/2007|17:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ulead Systems
[17/08/2007|16:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
[10/08/2007|22:52] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Live Toolbar
[30/06/2008|20:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WLInstaller
[30/04/2008|18:04] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Yahoo! Companion

[20/02/2005|12:32] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[30/03/2008|10:55] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

[12/11/2005|06:02] C:\DOCUME~1\LAFAMI~1\APPLIC~1\Identities
[12/11/2005|17:55] C:\DOCUME~1\LAFAMI~1\APPLIC~1\Microsoft

[20/02/2005|12:39] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[17/05/2007|16:50] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Google
[22/07/2005|22:53] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Help
[17/05/2007|16:51] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Macromedia
[22/05/2007|21:09] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
[17/05/2007|19:30] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Spyware Terminator
[17/05/2007|16:52] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\uTorrent

[17/11/2007|16:36] C:\DOCUME~1\LOCALS~1.000\APPLIC~1\Google
[13/02/2008|19:07] C:\DOCUME~1\LOCALS~1.000\APPLIC~1\Microsoft

[20/02/2005|12:40] C:\DOCUME~1\mary\APPLIC~1\Identities
[20/02/2005|12:41] C:\DOCUME~1\mary\APPLIC~1\Microsoft

[20/02/2005|12:39] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[20/02/2005|13:37] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft
[25/05/2007|19:48] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Spyware Terminator
[23/02/2005|19:21] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Symantec

[13/02/2008|19:07] C:\DOCUME~1\NETWOR~1.000\APPLIC~1\Microsoft

[03/05/2009|10:29] C:\DOCUME~1\pc1\APPLIC~1\2020 Fusion
[13/01/2008|22:21] C:\DOCUME~1\pc1\APPLIC~1\AccurateRip
[18/12/2008|22:36] C:\DOCUME~1\pc1\APPLIC~1\Adobe
[27/05/2009|19:32] C:\DOCUME~1\pc1\APPLIC~1\AdSigner
[16/10/2007|18:07] C:\DOCUME~1\pc1\APPLIC~1\Ahead
[03/07/2009|21:48] C:\DOCUME~1\pc1\APPLIC~1\AlauxSoft
[15/04/2008|17:06] C:\DOCUME~1\pc1\APPLIC~1\Apple Computer
[26/04/2008|16:07] C:\DOCUME~1\pc1\APPLIC~1\ATI
[28/09/2007|19:15] C:\DOCUME~1\pc1\APPLIC~1\DAEMON Tools Pro
[27/08/2007|19:08] C:\DOCUME~1\pc1\APPLIC~1\DivX
[30/09/2007|11:13] C:\DOCUME~1\pc1\APPLIC~1\Google
[06/07/2009|19:09] C:\DOCUME~1\pc1\APPLIC~1\Grisbi
[10/08/2007|21:21] C:\DOCUME~1\pc1\APPLIC~1\Help
[20/01/2009|18:55] C:\DOCUME~1\pc1\APPLIC~1\Icone
[09/08/2007|22:59] C:\DOCUME~1\pc1\APPLIC~1\Identities
[17/07/2009|21:09] C:\DOCUME~1\pc1\APPLIC~1\InstallShield
[16/04/2009|19:20] C:\DOCUME~1\pc1\APPLIC~1\LG Electronics
[05/07/2009|16:33] C:\DOCUME~1\pc1\APPLIC~1\LimeWire
[18/07/2009|17:25] C:\DOCUME~1\pc1\APPLIC~1\Logitech
[10/08/2007|21:29] C:\DOCUME~1\pc1\APPLIC~1\Macromedia
[05/05/2008|21:31] C:\DOCUME~1\pc1\APPLIC~1\Malwarebytes
[25/06/2009|20:59] C:\DOCUME~1\pc1\APPLIC~1\Media Player
[06/07/2009|17:21] C:\DOCUME~1\pc1\APPLIC~1\Microsoft
[05/02/2009|18:12] C:\DOCUME~1\pc1\APPLIC~1\Mozilla
[10/08/2007|22:48] C:\DOCUME~1\pc1\APPLIC~1\MSN6
[05/07/2009|21:40] C:\DOCUME~1\pc1\APPLIC~1\OMP
[28/11/2008|17:20] C:\DOCUME~1\pc1\APPLIC~1\OpenOffice.org
[04/07/2008|17:02] C:\DOCUME~1\pc1\APPLIC~1\OpenOffice.org2
[29/04/2008|19:26] C:\DOCUME~1\pc1\APPLIC~1\PicturesToExe
[28/03/2008|18:15] C:\DOCUME~1\pc1\APPLIC~1\Player Orange
[14/12/2007|19:53] C:\DOCUME~1\pc1\APPLIC~1\RegClean
[22/12/2007|13:33] C:\DOCUME~1\pc1\APPLIC~1\Sun
[26/05/2008|18:38] C:\DOCUME~1\pc1\APPLIC~1\TaoUSign
[05/02/2009|18:12] C:\DOCUME~1\pc1\APPLIC~1\TomTom
[13/12/2007|16:16] C:\DOCUME~1\pc1\APPLIC~1\Uniblue
[06/07/2009|18:13] C:\DOCUME~1\pc1\APPLIC~1\uTorrent
[06/07/2009|18:13] C:\DOCUME~1\pc1\APPLIC~1\Visual Money
[20/04/2008|21:07] C:\DOCUME~1\pc1\APPLIC~1\vlc
[17/08/2007|18:10] C:\DOCUME~1\pc1\APPLIC~1\Vso
[25/08/2007|14:26] C:\DOCUME~1\pc1\APPLIC~1\WinRAR
[19/02/2009|19:37] C:\DOCUME~1\pc1\APPLIC~1\XnView

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[24/09/2009 21:16][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{CE3AA5F3-A6FE-4AB7-95C3-1CE51750976A}.job
[07/09/2009 18:06][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[24/09/2009 21:32][--ah-----] C:\WINDOWS\tasks\SA.DAT
[29/02/2008 16:36][-rah-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[23/10/2007|19:05] C:\Program Files\2D and 3D Animator
[14/03/2009|19:52] C:\Program Files\Adobe
[24/09/2009|22:09] C:\Program Files\Ad-Remover
[30/08/2008|15:50] C:\Program Files\Ahead
[17/09/2009|19:18] C:\Program Files\AlerteGPS
[27/06/2008|17:58] C:\Program Files\Alwil Software
[28/06/2009|17:27] C:\Program Files\Apple Software Update
[23/07/2006|16:17] C:\Program Files\Ariane
[28/04/2008|17:31] C:\Program Files\ATI Technologies
[12/11/2006|20:05] C:\Program Files\AviSynth 2.5
[14/10/2005|18:55] C:\Program Files\BoontyGames
[30/04/2008|15:43] C:\Program Files\Common Files
[27/05/2006|18:36] C:\Program Files\Dictionnaire
[26/05/2006|11:48] C:\Program Files\DIFX
[13/04/2009|18:19] C:\Program Files\directx
[19/12/2008|16:33] C:\Program Files\DivX
[02/08/2009|12:09] C:\Program Files\Fichiers communs
[17/08/2007|17:50] C:\Program Files\FileView6
[28/05/2009|19:19] C:\Program Files\Google
[03/07/2009|17:53] C:\Program Files\Icon Constructor 3
[04/07/2008|17:12] C:\Program Files\Icone
[10/01/2009|11:36] C:\Program Files\iGraal
[13/01/2008|22:21] C:\Program Files\Illustrate
[17/08/2007|17:04] C:\Program Files\Image Assistant
[19/07/2009|12:32] C:\Program Files\InstallShield Installation Information
[11/09/2009|15:25] C:\Program Files\Internet Explorer
[23/04/2007|19:32] C:\Program Files\IVT Corporation
[12/08/2009|10:52] C:\Program Files\Java
[28/11/2008|17:16] C:\Program Files\JRE
[23/06/2009|17:34] C:\Program Files\Labtec
[27/05/2009|18:55] C:\Program Files\LETMIN2
[07/06/2009|15:18] C:\Program Files\LimeWire
[15/01/2006|20:19] C:\Program Files\ListeCd2
[21/05/2006|12:31] C:\Program Files\Livecom
[18/07/2009|17:22] C:\Program Files\Logitech
[18/07/2009|12:41] C:\Program Files\ma-config.com
[13/04/2009|10:26] C:\Program Files\MagicDisc
[30/12/2008|15:21] C:\Program Files\Malwarebytes' Anti-Malware
[13/08/2007|11:26] C:\Program Files\MessengerPlus! 3
[06/07/2009|18:13] C:\Program Files\Microsoft
[20/02/2005|12:34] C:\Program Files\microsoft frontpage
[07/07/2009|17:50] C:\Program Files\Microsoft Money 2005
[06/07/2009|17:22] C:\Program Files\Microsoft Office
[06/10/2006|18:46] C:\Program Files\Microsoft SQL Server
[13/10/2007|12:45] C:\Program Files\Microsoft SQL Server Compact Edition
[06/10/2006|19:38] C:\Program Files\Microsoft.NET
[06/07/2009|19:45] C:\Program Files\Movie Maker
[16/03/2007|19:20] C:\Program Files\MP3 Player Utilities 4.00
[29/08/2008|14:48] C:\Program Files\MSBuild
[17/08/2007|16:44] C:\Program Files\MSECache
[20/02/2005|12:28] C:\Program Files\MSN Gaming Zone
[18/07/2008|16:13] C:\Program Files\NetMeeting
[20/02/2005|13:24] C:\Program Files\Online Services
[28/11/2008|17:16] C:\Program Files\OpenOffice.org 3
[11/09/2009|15:23] C:\Program Files\Orange
[19/08/2009|13:27] C:\Program Files\OrangeHSS
[06/07/2009|19:45] C:\Program Files\Outlook Express
[24/09/2009|18:04] C:\Program Files\Pochette Express 2
[28/06/2009|17:28] C:\Program Files\QuickTime
[19/07/2009|12:32] C:\Program Files\RALINK
[29/08/2008|14:48] C:\Program Files\Reference Assemblies
[17/07/2009|21:20] C:\Program Files\Securitoo
[20/02/2005|12:31] C:\Program Files\Services en ligne
[30/12/2008|00:52] C:\Program Files\Support Tools
[05/02/2009|18:10] C:\Program Files\TomTom DesktopSuite
[24/06/2009|17:28] C:\Program Files\TomTom HOME 2
[24/06/2009|17:28] C:\Program Files\TomTom International B.V
[17/07/2009|20:42] C:\Program Files\TP-LINK
[24/09/2009|21:38] C:\Program Files\trend micro
[20/02/2005|12:40] C:\Program Files\Uninstall Information
[11/07/2006|08:52] C:\Program Files\Unlocker
[27/06/2008|17:08] C:\Program Files\Wanadoo Messager
[22/04/2008|18:44] C:\Program Files\Web Media Player
[24/03/2009|18:25] C:\Program Files\Windows Live
[24/03/2009|18:25] C:\Program Files\Windows Live SkyDrive
[23/10/2007|19:04] C:\Program Files\Windows Live Toolbar
[17/08/2007|16:50] C:\Program Files\Windows Media Connect 2
[19/12/2008|16:47] C:\Program Files\Windows Media Player
[18/07/2008|16:13] C:\Program Files\Windows NT
[10/08/2007|20:28] C:\Program Files\WindowsUpdate
[26/08/2007|12:50] C:\Program Files\WinRAR
[20/02/2005|12:34] C:\Program Files\xerox
[02/07/2009|21:10] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[13/03/2009|17:56] C:\Program Files\Fichiers communs\Adobe
[20/02/2005|15:18] C:\Program Files\Fichiers communs\Ahead
[24/02/2008|18:23] C:\Program Files\Fichiers communs\Apple
[29/06/2005|09:10] C:\Program Files\Fichiers communs\BOONTY Shared
[06/07/2009|17:11] C:\Program Files\Fichiers communs\Borland Shared
[20/02/2005|14:14] C:\Program Files\Fichiers communs\DESIGNER
[10/03/2005|20:15] C:\Program Files\Fichiers communs\DirectX
[17/07/2009|12:36] C:\Program Files\Fichiers communs\France Telecom
[24/02/2005|14:42] C:\Program Files\Fichiers communs\InstallShield
[07/04/2005|21:36] C:\Program Files\Fichiers communs\Java
[26/04/2006|19:23] C:\Program Files\Fichiers communs\Labtec
[18/07/2009|17:23] C:\Program Files\Fichiers communs\logishrd
[18/07/2009|17:24] C:\Program Files\Fichiers communs\Microsoft Shared
[20/02/2005|12:29] C:\Program Files\Fichiers communs\MSSoap
[30/08/2008|15:50] C:\Program Files\Fichiers communs\Nero
[14/05/2008|11:09] C:\Program Files\Fichiers communs\NSV
[20/02/2005|12:20] C:\Program Files\Fichiers communs\ODBC
[11/08/2007|11:29] C:\Program Files\Fichiers communs\ScanSoft Shared
[10/12/2006|11:58] C:\Program Files\Fichiers communs\Services
[15/04/2007|13:12] C:\Program Files\Fichiers communs\Simple Star Shared
[20/02/2005|12:20] C:\Program Files\Fichiers communs\SpeechEngines
[31/01/2006|23:49] C:\Program Files\Fichiers communs\Symantec Shared
[18/07/2008|16:13] C:\Program Files\Fichiers communs\System
[11/08/2007|15:17] C:\Program Files\Fichiers communs\Ulead Systems
[23/10/2006|17:50] C:\Program Files\Fichiers communs\Vbox
[24/03/2009|18:24] C:\Program Files\Fichiers communs\Windows Live
[20/02/2008|17:23] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 52 Processes )

iexplore.exe ~ [PID:2984]
iexplore.exe ~ [PID:272]
iexplore.exe ~ [PID:2008]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\pc1\Cookies\pc1@advertstream[1].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertstream[2].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertstream[3].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertstream[4].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertstream[5].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertstream[6].txt
C:\DOCUME~1\pc1\Cookies\pc1@adultfriendfinder[1].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertising[10].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertising[11].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertising[1].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertising[2].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertising[3].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertising[4].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertising[5].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertising[6].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertising[7].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertising[8].txt
C:\DOCUME~1\pc1\Cookies\pc1@advertising[9].txt
C:\DOCUME~1\pc1\Cookies\pc1@bigpoint[1].txt
C:\DOCUME~1\pc1\Cookies\pc1@fr.darkorbit.bigpoint[2].txt
C:\DOCUME~1\pc1\Cookies\pc1@adopt.euroclick[1].txt
C:\DOCUME~1\pc1\Cookies\pc1@euroclick[1].txt
C:\DOCUME~1\pc1\Cookies\pc1@serve.32vegas[1].txt
C:\DOCUME~1\pc1\Cookies\pc1@2xmoinscher[1].txt
C:\DOCUME~1\pc1\Cookies\pc1@2xmoinscher[2].txt
C:\DOCUME~1\pc1\Cookies\pc1@nouveau.2xmoinscher[2].txt
C:\DOCUME~1\pc1\Cookies\pc1@www.2xmoinscher[1].txt
C:\DOCUME~1\pc1\Cookies\pc1@www.2xmoinscher[3].txt

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD

-> 71 [ 70 ## added by CiD ]

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-09-24 22:36:00
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\DOCUME~1\pc1\LOCALS~1\APPLIC~1\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 1087 bytes hidden from API
scan completed successfully
hidden processes: 0
hidden files: 1669

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\pc1\Application Data\uTorrent\Call Of Duty 4 No CD Keyand No CD Crack.rar.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\Nero 8.3.6.0 Ultra Edition + Keygen.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 Bon Voyage PC Incl Crack.1.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 Bon Voyage PC Incl Crack.2.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 Bon Voyage PC Incl Crack.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 FreeTime + Crack.1.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 FreeTime + Crack.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\Visual Money v2.4 Inlud. Keygen.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\Visual.Money.v2.2.Incl.Keygen-iNDUCT.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\[PC] - The_Sims_2_Bon_Voyage.Multi-Es .+Crack.[www.gamepcrip.com].nrg.1.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\[PC] - The_Sims_2_Bon_Voyage.Multi-Es .+Crack.[www.gamepcrip.com].nrg.torrent
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\01DBD57D-0C7D-4DF3-953B-099B0200903C.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\03BF7AA8-AD7D-4D64-8069-B788B62DA50F.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\0FE8AE78-F364-47E8-BB4A-CBE33BCA2169.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\12C829A3-8007-47F9-913F-3117C2266A40.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\1380FD8A-655A-48EF-93AB-76464F027BFB.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\35B51C54-AFA5-4435-94F1-57C957970ADC.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\3EF7E7A5-85C2-45D1-88C0-A7AA0EA85144.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\4A2330E7-BD8E-42BE-81A7-71079744B4EA.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\4AD7D007-0B86-4B9B-9E4F-CBF0F0E0AE50.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\648F037C-B737-45B2-9837-053D7007F968.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\6A60AA2E-5C44-441A-8A95-3A17638CF91A.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\722A7BD8-100C-4839-AF3E-D2411D055D97.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\731A0B60-011E-44A3-93CB-3F87E419EF3E.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\7449BD48-9BC7-485C-8B83-180FDEDC5AFB.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\8BBE2C3C-C6B3-47CA-B46B-DE54C7734E74.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\9333CBA9-BF5E-46E4-8895-54D03318D97F.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\C8B8B5C0-16F9-4CD7-BDB4-EFB1C9D07B40.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\CBF4332C-3DF7-4B7E-83AC-C50EFD11ECE5.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\contactcoll.cache
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\F5EEF266-D630-4459-9879-0854B9FA9BDF.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\F997B688-9380-48A2-98B7-EF759241D2A0.WindowsLiveContact
C:\DOCUME~1\pc1\Favoris\Incomplete\6NLAG3XH3VO3GVJVHLEFFOFMBFB2IN4N\The Sims 2 - Freetime\Crack.rar
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens\allsims.exe
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens\freetime.exe
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens\Kitchen and Bath keygen.exe
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2EP5.exe
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2SP2.exe
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2SP4.exe
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2SP6.exe
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\Sharing Folders
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\objectstore.v2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\H0C+m00zJnUEpqvrpUwmEeNk+m4=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\H0C+m00zJnUEpqvrpUwmEeNk+m4=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\IA9vmN0qT34TQ+xiZbPmcxeXUDg=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\IA9vmN0qT34TQ+xiZbPmcxeXUDg=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\lCyhu24yMQt+CJlbGST3Jy9+KEI=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\lCyhu24yMQt+CJlbGST3Jy9+KEI=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VfEKKH2K+gUzhtlVXHIvzB2twQ0=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VfEKKH2K+gUzhtlVXHIvzB2twQ0=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VoP12bdqQyV2pOm1b3Quh6qvYdc=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VoP12bdqQyV2pOm1b3Quh6qvYdc=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\axF7a0ekuiAc7WjQjNmjxYpRX6Q=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\axF7a0ekuiAc7WjQjNmjxYpRX6Q=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\B3VEl5u5DvNzgIua1+Zd4Uxt2FLs=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\B3VEl5u5DvNzgIua1+Zd4Uxt2FLs=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\hyiJu8sDcRCbJhl+Ccy2CjQR8lA=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\hyiJu8sDcRCbJhl+Ccy2CjQR8lA=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\jdI6F7DFhC2OSW2FJWOBKjulvAds=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\jdI6F7DFhC2OSW2FJWOBKjulvAds=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\2VdOiRn8R6vgyAo1OuWk82FGrO9g=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\2VdOiRn8R6vgyAo1OuWk82FGrO9g=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\cmJCJjUVJ+x1g5BUj5TlTOAoFIo=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\cmJCJjUVJ+x1g5BUj5TlTOAoFIo=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\dW0VZfrFH4igpqB+aknu+YLVPQc=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\dW0VZfrFH4igpqB+aknu+YLVPQc=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\eXGWmogZak9R61lyiAgAEW2Fr2U4=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\eXGWmogZak9R61lyiAgAEW2Fr2U4=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iMu6QwjGaz19Uc3Iub132FGgtfY4=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iMu6QwjGaz19Uc3Iub132FGgtfY4=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iyD2FcB82FO02FOIroc+DEhvb4wfnE=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iyD2FcB82FO02FOIroc+DEhvb4wfnE=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\mW7MfHUhXfGj2FMzw2GAHWck7kvM=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\mW7MfHUhXfGj2FMzw2GAHWck7kvM=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\OELOe8WY+L2rRFjc5PgniHNJB6M=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\OELOe8WY+L2rRFjc5PgniHNJB6M=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\S+c8gyL8O5ZxTtEamXVEcWNlWPg=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\S+c8gyL8O5ZxTtEamXVEcWNlWPg=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\VOiCOo9yjYbP2JvqMKdXagPp+6o=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\VOiCOo9yjYbP2JvqMKdXagPp+6o=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\WliJzSCj1p0+9+BOKoKSC2FcHKMk=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\WliJzSCj1p0+9+BOKoKSC2FcHKMk=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\ZTbE6J8kl20dzoFo9bmIlpOOF90=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\ZTbE6J8kl20dzoFo9bmIlpOOF90=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\+8UdQGeB2FwWIYG+mC+vuvUy9zEw=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\+8UdQGeB2FwWIYG+mC+vuvUy9zEw=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\72FjqK0b2FzFkbJWZ+BlMs1OxQprI=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\72FjqK0b2FzFkbJWZ+BlMs1OxQprI=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\alxGH2FFbmTzeLEdtRHmv6GBUzdw=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\alxGH2FFbmTzeLEdtRHmv6GBUzdw=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\AzBXDxf+Tcdvcans2TCRnoXh2Fjg=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\AzBXDxf+Tcdvcans2TCRnoXh2Fjg=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\enMqwlYLN4AvpmaOrIfYLWsVAdA=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\enMqwlYLN4AvpmaOrIfYLWsVAdA=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\ioAfCdA6Kn0hKsu+Ga1jHJ1UCG8=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\ioAfCdA6Kn0hKsu+Ga1jHJ1UCG8=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\J9+5k2FTpQP6WuWOj5y0n41qN5dc=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\J9+5k2FTpQP6WuWOj5y0n41qN5dc=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\lnHW2s0zHIsgKVjOiirk1ZBZ54g=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\lnHW2s0zHIsgKVjOiirk1ZBZ54g=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Nt2FqWL50Iag4EvPJjVS0IoDBFQ4=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Nt2FqWL50Iag4EvPJjVS0IoDBFQ4=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rTeUDzJzwMepiafQ4bVfqDvados=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rTeUDzJzwMepiafQ4bVfqDvados=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rXcZb6ekO9S3jB29KleJkBOXYmY=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rXcZb6ekO9S3jB29KleJkBOXYmY=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Sgj64GS+QyVyVxkslxY2FFsRARkg=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Sgj64GS+QyVyVxkslxY2FFsRARkg=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\SrJJm7YJAcA15VowAhBWXri5yLc=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\SrJJm7YJAcA15VowAhBWXri5yLc=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\tn+dOhziBZ+E4zoUS7frcglxoz0=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\tn+dOhziBZ+E4zoUS7frcglxoz0=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Zh9cZsOdVXAK4fAulijLqPGggcA=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Zh9cZsOdVXAK4fAulijLqPGggcA=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\pending.dat
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\volume.xml
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\volume.xml~
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00001.log.gz
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00002.log.gz
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00003.log.gz
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00004.log.gz
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00005.log
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\$db_normal$
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\$db_clean$
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\dfsr.db
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\fsr.chk
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\fsr.log
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\fsr00009.log
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\res1.log
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\res2.log
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\24eef702-96b4-4c80-9311-3abdff597f9c.AddressBook
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\8bab87c6-06c8-45f0-b74b-be0a00730c50.MeContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\contactcoll.cache
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\members.stg
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\01DBD57D-0C7D-4DF3-953B-099B0200903C.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\03BF7AA8-AD7D-4D64-8069-B788B62DA50F.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\0FE8AE78-F364-47E8-BB4A-CBE33BCA2169.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\1380FD8A-655A-48EF-93AB-76464F027BFB.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\3283C7F6-149B-4E3E-9AD2-4E727578C33E.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\35B51C54-AFA5-4435-94F1-57C957970ADC.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\4A2330E7-BD8E-42BE-81A7-71079744B4EA.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\4AD7D007-0B86-4B9B-9E4F-CBF0F0E0AE50.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\648F037C-B737-45B2-9837-053D7007F968.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\6A60AA2E-5C44-441A-8A95-3A17638CF91A.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\731A0B60-011E-44A3-93CB-3F87E419EF3E.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\7364F97C-1078-47C2-B16D-0D417172497E.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\7449BD48-9BC7-485C-8B83-180FDEDC5AFB.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\8BBE2C3C-C6B3-47CA-B46B-DE54C7734E74.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\9333CBA9-BF5E-46E4-8895-54D03318D97F.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\98162C17-3D35-4639-A739-3F0BBA700423.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\a8adbacc-45d1-432b-ba76-7d12e5cd3664.MeContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\C8B8B5C0-16F9-4CD7-BDB4-EFB1C9D07B40.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\CBF4332C-3DF7-4B7E-83AC-C50EFD11ECE5.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\contactcoll.cache
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\F5EEF266-D630-4459-9879-0854B9FA9BDF.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\F997B688-9380-48A2-98B7-EF759241D2A0.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\members.stg

[F:24][D:4]-> C:\DOCUME~1\pc1\LOCALS~1\Temp
[F:3273][D:0]-> C:\DOCUME~1\pc1\Cookies
[F:5590][D:73]-> C:\DOCUME~1\pc1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 24/09/2009|22:37 - Option : [1]

--------------------\\ Fin du rapport a 22:37:36

Répondre à nenette1242

Relance Lop S&D.

(Sous Vista, il faut cliquer droit sur le raccourci Lop S&D et choisir Exécuter en tant qu'administrateur)

Choisis cette fois-ci l'option 2 (Suppression).
Ne ferme pas la fenêtre lors de la suppression !
Poste le rapport généré (C:\lopR.txt).

(Si le Bureau ne réapparaît pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)

Répondre à Destrio5

-\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ )
BIOS : Default System BIOS
USER : pc1 ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1351 [VPS 090924-0] 4.8.1351 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:111 Go (Free:31 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 24/09/2009|22:52 )

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertstream[1].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertstream[2].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertstream[3].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertstream[4].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertstream[5].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertstream[6].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@adultfriendfinder[1].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[10].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[11].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[1].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[2].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[3].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[4].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[5].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[6].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[7].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[8].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[9].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@bigpoint[1].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@fr.darkorbit.bigpoint[2].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@adopt.euroclick[1].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@euroclick[1].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@serve.32vegas[1].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@nouveau.2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@www.2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@www.2xmoinscher[3].txt
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans APPLIC~1

[25/07/2008|20:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[25/07/2008|20:18] C:\DOCUME~1\ADMINI~1.CHA\APPLIC~1\Microsoft

[30/12/2008|15:26] C:\DOCUME~1\ADMINI~1.000\APPLIC~1\Malwarebytes
[29/12/2008|21:06] C:\DOCUME~1\ADMINI~1.000\APPLIC~1\Microsoft

[20/02/2005|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft

[05/07/2009|21:58] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\4D
[13/03/2009|17:56] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
[11/08/2007|14:32] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ahead
[24/02/2008|18:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[14/08/2007|18:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[13/02/2008|19:08] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avg7
[11/08/2007|18:01] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Bluetooth
[11/08/2007|10:55] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\CanonBJ
[19/12/2008|16:49] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Downloaded Installations
[15/02/2009|11:33] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
[13/02/2008|19:07] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Grisoft
[03/05/2009|10:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\iDeal Designer But_4
[15/12/2007|10:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Lavasoft
[18/07/2009|17:25] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\LogiShrd
[18/07/2009|17:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Logitech
[18/07/2009|12:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ma-config.com
[05/05/2008|21:30] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Malwarebytes
[24/09/2009|22:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[10/08/2007|19:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MSN6
[14/11/2007|19:46] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\NFS Underground
[14/04/2009|19:33] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\NOS
[17/11/2008|19:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Prism
[17/04/2008|10:09] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Skype
[07/05/2008|17:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Spybot - Search & Destroy
[19/08/2008|19:01] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TEMP
[05/02/2009|18:13] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TomTom
[17/07/2009|20:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TP-LINK
[11/08/2007|17:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ulead Systems
[17/08/2007|16:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
[10/08/2007|22:52] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Live Toolbar
[30/06/2008|20:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WLInstaller
[30/04/2008|18:04] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Yahoo! Companion

[20/02/2005|12:32] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[30/03/2008|10:55] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

[12/11/2005|06:02] C:\DOCUME~1\LAFAMI~1\APPLIC~1\Identities
[12/11/2005|17:55] C:\DOCUME~1\LAFAMI~1\APPLIC~1\Microsoft

[20/02/2005|12:39] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[17/05/2007|16:50] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Google
[22/07/2005|22:53] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Help
[17/05/2007|16:51] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Macromedia
[22/05/2007|21:09] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
[17/05/2007|19:30] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Spyware Terminator
[17/05/2007|16:52] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\uTorrent

[17/11/2007|16:36] C:\DOCUME~1\LOCALS~1.000\APPLIC~1\Google
[13/02/2008|19:07] C:\DOCUME~1\LOCALS~1.000\APPLIC~1\Microsoft

[20/02/2005|12:40] C:\DOCUME~1\mary\APPLIC~1\Identities
[20/02/2005|12:41] C:\DOCUME~1\mary\APPLIC~1\Microsoft

[20/02/2005|12:39] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[20/02/2005|13:37] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft
[25/05/2007|19:48] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Spyware Terminator
[23/02/2005|19:21] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Symantec

[13/02/2008|19:07] C:\DOCUME~1\NETWOR~1.000\APPLIC~1\Microsoft

[03/05/2009|10:29] C:\DOCUME~1\pc1\APPLIC~1\2020 Fusion
[13/01/2008|22:21] C:\DOCUME~1\pc1\APPLIC~1\AccurateRip
[18/12/2008|22:36] C:\DOCUME~1\pc1\APPLIC~1\Adobe
[27/05/2009|19:32] C:\DOCUME~1\pc1\APPLIC~1\AdSigner
[16/10/2007|18:07] C:\DOCUME~1\pc1\APPLIC~1\Ahead
[03/07/2009|21:48] C:\DOCUME~1\pc1\APPLIC~1\AlauxSoft
[15/04/2008|17:06] C:\DOCUME~1\pc1\APPLIC~1\Apple Computer
[26/04/2008|16:07] C:\DOCUME~1\pc1\APPLIC~1\ATI
[28/09/2007|19:15] C:\DOCUME~1\pc1\APPLIC~1\DAEMON Tools Pro
[27/08/2007|19:08] C:\DOCUME~1\pc1\APPLIC~1\DivX
[30/09/2007|11:13] C:\DOCUME~1\pc1\APPLIC~1\Google
[06/07/2009|19:09] C:\DOCUME~1\pc1\APPLIC~1\Grisbi
[10/08/2007|21:21] C:\DOCUME~1\pc1\APPLIC~1\Help
[20/01/2009|18:55] C:\DOCUME~1\pc1\APPLIC~1\Icone
[09/08/2007|22:59] C:\DOCUME~1\pc1\APPLIC~1\Identities
[17/07/2009|21:09] C:\DOCUME~1\pc1\APPLIC~1\InstallShield
[16/04/2009|19:20] C:\DOCUME~1\pc1\APPLIC~1\LG Electronics
[05/07/2009|16:33] C:\DOCUME~1\pc1\APPLIC~1\LimeWire
[18/07/2009|17:25] C:\DOCUME~1\pc1\APPLIC~1\Logitech
[10/08/2007|21:29] C:\DOCUME~1\pc1\APPLIC~1\Macromedia
[05/05/2008|21:31] C:\DOCUME~1\pc1\APPLIC~1\Malwarebytes
[25/06/2009|20:59] C:\DOCUME~1\pc1\APPLIC~1\Media Player
[06/07/2009|17:21] C:\DOCUME~1\pc1\APPLIC~1\Microsoft
[05/02/2009|18:12] C:\DOCUME~1\pc1\APPLIC~1\Mozilla
[10/08/2007|22:48] C:\DOCUME~1\pc1\APPLIC~1\MSN6
[05/07/2009|21:40] C:\DOCUME~1\pc1\APPLIC~1\OMP
[28/11/2008|17:20] C:\DOCUME~1\pc1\APPLIC~1\OpenOffice.org
[04/07/2008|17:02] C:\DOCUME~1\pc1\APPLIC~1\OpenOffice.org2
[29/04/2008|19:26] C:\DOCUME~1\pc1\APPLIC~1\PicturesToExe
[28/03/2008|18:15] C:\DOCUME~1\pc1\APPLIC~1\Player Orange
[14/12/2007|19:53] C:\DOCUME~1\pc1\APPLIC~1\RegClean
[22/12/2007|13:33] C:\DOCUME~1\pc1\APPLIC~1\Sun
[26/05/2008|18:38] C:\DOCUME~1\pc1\APPLIC~1\TaoUSign
[05/02/2009|18:12] C:\DOCUME~1\pc1\APPLIC~1\TomTom
[13/12/2007|16:16] C:\DOCUME~1\pc1\APPLIC~1\Uniblue
[06/07/2009|18:13] C:\DOCUME~1\pc1\APPLIC~1\uTorrent
[06/07/2009|18:13] C:\DOCUME~1\pc1\APPLIC~1\Visual Money
[20/04/2008|21:07] C:\DOCUME~1\pc1\APPLIC~1\vlc
[17/08/2007|18:10] C:\DOCUME~1\pc1\APPLIC~1\Vso
[25/08/2007|14:26] C:\DOCUME~1\pc1\APPLIC~1\WinRAR
[19/02/2009|19:37] C:\DOCUME~1\pc1\APPLIC~1\XnView

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[24/09/2009 21:16][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{CE3AA5F3-A6FE-4AB7-95C3-1CE51750976A}.job
[07/09/2009 18:06][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[24/09/2009 21:32][--ah-----] C:\WINDOWS\tasks\SA.DAT
[29/02/2008 16:36][-rah-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[23/10/2007|19:05] C:\Program Files\2D and 3D Animator
[14/03/2009|19:52] C:\Program Files\Adobe
[24/09/2009|22:09] C:\Program Files\Ad-Remover
[30/08/2008|15:50] C:\Program Files\Ahead
[17/09/2009|19:18] C:\Program Files\AlerteGPS
[27/06/2008|17:58] C:\Program Files\Alwil Software
[28/06/2009|17:27] C:\Program Files\Apple Software Update
[23/07/2006|16:17] C:\Program Files\Ariane
[28/04/2008|17:31] C:\Program Files\ATI Technologies
[12/11/2006|20:05] C:\Program Files\AviSynth 2.5
[14/10/2005|18:55] C:\Program Files\BoontyGames
[30/04/2008|15:43] C:\Program Files\Common Files
[27/05/2006|18:36] C:\Program Files\Dictionnaire
[26/05/2006|11:48] C:\Program Files\DIFX
[13/04/2009|18:19] C:\Program Files\directx
[19/12/2008|16:33] C:\Program Files\DivX
[02/08/2009|12:09] C:\Program Files\Fichiers communs
[17/08/2007|17:50] C:\Program Files\FileView6
[28/05/2009|19:19] C:\Program Files\Google
[03/07/2009|17:53] C:\Program Files\Icon Constructor 3
[04/07/2008|17:12] C:\Program Files\Icone
[10/01/2009|11:36] C:\Program Files\iGraal
[13/01/2008|22:21] C:\Program Files\Illustrate
[17/08/2007|17:04] C:\Program Files\Image Assistant
[19/07/2009|12:32] C:\Program Files\InstallShield Installation Information
[24/09/2009|22:42] C:\Program Files\Internet Explorer
[23/04/2007|19:32] C:\Program Files\IVT Corporation
[12/08/2009|10:52] C:\Program Files\Java
[28/11/2008|17:16] C:\Program Files\JRE
[23/06/2009|17:34] C:\Program Files\Labtec
[27/05/2009|18:55] C:\Program Files\LETMIN2
[07/06/2009|15:18] C:\Program Files\LimeWire
[15/01/2006|20:19] C:\Program Files\ListeCd2
[21/05/2006|12:31] C:\Program Files\Livecom
[18/07/2009|17:22] C:\Program Files\Logitech
[18/07/2009|12:41] C:\Program Files\ma-config.com
[13/04/2009|10:26] C:\Program Files\MagicDisc
[30/12/2008|15:21] C:\Program Files\Malwarebytes' Anti-Malware
[13/08/2007|11:26] C:\Program Files\MessengerPlus! 3
[24/09/2009|22:41] C:\Program Files\Microsoft
[20/02/2005|12:34] C:\Program Files\microsoft frontpage
[07/07/2009|17:50] C:\Program Files\Microsoft Money 2005
[06/07/2009|17:22] C:\Program Files\Microsoft Office
[06/10/2006|18:46] C:\Program Files\Microsoft SQL Server
[13/10/2007|12:45] C:\Program Files\Microsoft SQL Server Compact Edition
[06/10/2006|19:38] C:\Program Files\Microsoft.NET
[06/07/2009|19:45] C:\Program Files\Movie Maker
[16/03/2007|19:20] C:\Program Files\MP3 Player Utilities 4.00
[29/08/2008|14:48] C:\Program Files\MSBuild
[17/08/2007|16:44] C:\Program Files\MSECache
[20/02/2005|12:28] C:\Program Files\MSN Gaming Zone
[18/07/2008|16:13] C:\Program Files\NetMeeting
[20/02/2005|13:24] C:\Program Files\Online Services
[28/11/2008|17:16] C:\Program Files\OpenOffice.org 3
[11/09/2009|15:23] C:\Program Files\Orange
[19/08/2009|13:27] C:\Program Files\OrangeHSS
[06/07/2009|19:45] C:\Program Files\Outlook Express
[24/09/2009|18:04] C:\Program Files\Pochette Express 2
[28/06/2009|17:28] C:\Program Files\QuickTime
[19/07/2009|12:32] C:\Program Files\RALINK
[29/08/2008|14:48] C:\Program Files\Reference Assemblies
[17/07/2009|21:20] C:\Program Files\Securitoo
[20/02/2005|12:31] C:\Program Files\Services en ligne
[30/12/2008|00:52] C:\Program Files\Support Tools
[05/02/2009|18:10] C:\Program Files\TomTom DesktopSuite
[24/06/2009|17:28] C:\Program Files\TomTom HOME 2
[24/06/2009|17:28] C:\Program Files\TomTom International B.V
[17/07/2009|20:42] C:\Program Files\TP-LINK
[24/09/2009|21:38] C:\Program Files\trend micro
[20/02/2005|12:40] C:\Program Files\Uninstall Information
[11/07/2006|08:52] C:\Program Files\Unlocker
[27/06/2008|17:08] C:\Program Files\Wanadoo Messager
[22/04/2008|18:44] C:\Program Files\Web Media Player
[24/09/2009|22:41] C:\Program Files\Windows Live
[24/03/2009|18:25] C:\Program Files\Windows Live SkyDrive
[23/10/2007|19:04] C:\Program Files\Windows Live Toolbar
[17/08/2007|16:50] C:\Program Files\Windows Media Connect 2
[19/12/2008|16:47] C:\Program Files\Windows Media Player
[18/07/2008|16:13] C:\Program Files\Windows NT
[10/08/2007|20:28] C:\Program Files\WindowsUpdate
[26/08/2007|12:50] C:\Program Files\WinRAR
[20/02/2005|12:34] C:\Program Files\xerox
[02/07/2009|21:10] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[13/03/2009|17:56] C:\Program Files\Fichiers communs\Adobe
[20/02/2005|15:18] C:\Program Files\Fichiers communs\Ahead
[24/02/2008|18:23] C:\Program Files\Fichiers communs\Apple
[29/06/2005|09:10] C:\Program Files\Fichiers communs\BOONTY Shared
[06/07/2009|17:11] C:\Program Files\Fichiers communs\Borland Shared
[20/02/2005|14:14] C:\Program Files\Fichiers communs\DESIGNER
[10/03/2005|20:15] C:\Program Files\Fichiers communs\DirectX
[17/07/2009|12:36] C:\Program Files\Fichiers communs\France Telecom
[24/02/2005|14:42] C:\Program Files\Fichiers communs\InstallShield
[07/04/2005|21:36] C:\Program Files\Fichiers communs\Java
[26/04/2006|19:23] C:\Program Files\Fichiers communs\Labtec
[18/07/2009|17:23] C:\Program Files\Fichiers communs\logishrd
[18/07/2009|17:24] C:\Program Files\Fichiers communs\Microsoft Shared
[20/02/2005|12:29] C:\Program Files\Fichiers communs\MSSoap
[30/08/2008|15:50] C:\Program Files\Fichiers communs\Nero
[14/05/2008|11:09] C:\Program Files\Fichiers communs\NSV
[20/02/2005|12:20] C:\Program Files\Fichiers communs\ODBC
[11/08/2007|11:29] C:\Program Files\Fichiers communs\ScanSoft Shared
[10/12/2006|11:58] C:\Program Files\Fichiers communs\Services
[15/04/2007|13:12] C:\Program Files\Fichiers communs\Simple Star Shared
[20/02/2005|12:20] C:\Program Files\Fichiers communs\SpeechEngines
[31/01/2006|23:49] C:\Program Files\Fichiers communs\Symantec Shared
[18/07/2008|16:13] C:\Program Files\Fichiers communs\System
[11/08/2007|15:17] C:\Program Files\Fichiers communs\Ulead Systems
[23/10/2006|17:50] C:\Program Files\Fichiers communs\Vbox
[24/03/2009|18:24] C:\Program Files\Fichiers communs\Windows Live
[20/02/2008|17:23] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 50 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-09-24 22:53:47
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\DOCUME~1\pc1\LOCALS~1\APPLIC~1\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 1087 bytes hidden from API
scan completed successfully
hidden processes: 0
hidden files: 1669

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\pc1\Application Data\uTorrent\Call Of Duty 4 No CD Keyand No CD Crack.rar.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\Nero 8.3.6.0 Ultra Edition + Keygen.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 Bon Voyage PC Incl Crack.1.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 Bon Voyage PC Incl Crack.2.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 Bon Voyage PC Incl Crack.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 FreeTime + Crack.1.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 FreeTime + Crack.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\Visual Money v2.4 Inlud. Keygen.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\Visual.Money.v2.2.Incl.Keygen-iNDUCT.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\[PC] - The_Sims_2_Bon_Voyage.Multi-Es .+Crack.[www.gamepcrip.com].nrg.1.torrent
C:\DOCUME~1\pc1\Application Data\uTorrent\[PC] - The_Sims_2_Bon_Voyage.Multi-Es .+Crack.[www.gamepcrip.com].nrg.torrent
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\01DBD57D-0C7D-4DF3-953B-099B0200903C.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\03BF7AA8-AD7D-4D64-8069-B788B62DA50F.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\0FE8AE78-F364-47E8-BB4A-CBE33BCA2169.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\12C829A3-8007-47F9-913F-3117C2266A40.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\1380FD8A-655A-48EF-93AB-76464F027BFB.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\35B51C54-AFA5-4435-94F1-57C957970ADC.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\3EF7E7A5-85C2-45D1-88C0-A7AA0EA85144.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\4A2330E7-BD8E-42BE-81A7-71079744B4EA.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\4AD7D007-0B86-4B9B-9E4F-CBF0F0E0AE50.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\648F037C-B737-45B2-9837-053D7007F968.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\6A60AA2E-5C44-441A-8A95-3A17638CF91A.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\722A7BD8-100C-4839-AF3E-D2411D055D97.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\731A0B60-011E-44A3-93CB-3F87E419EF3E.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\7449BD48-9BC7-485C-8B83-180FDEDC5AFB.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\8BBE2C3C-C6B3-47CA-B46B-DE54C7734E74.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\9333CBA9-BF5E-46E4-8895-54D03318D97F.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\C8B8B5C0-16F9-4CD7-BDB4-EFB1C9D07B40.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\CBF4332C-3DF7-4B7E-83AC-C50EFD11ECE5.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\contactcoll.cache
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\F5EEF266-D630-4459-9879-0854B9FA9BDF.WindowsLiveContact
C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\F997B688-9380-48A2-98B7-EF759241D2A0.WindowsLiveContact
C:\DOCUME~1\pc1\Favoris\Incomplete\6NLAG3XH3VO3GVJVHLEFFOFMBFB2IN4N\The Sims 2 - Freetime\Crack.rar
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens\allsims.exe
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens\freetime.exe
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens\Kitchen and Bath keygen.exe
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2EP5.exe
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2SP2.exe
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2SP4.exe
C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2SP6.exe
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\Sharing Folders
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\objectstore.v2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\H0C+m00zJnUEpqvrpUwmEeNk+m4=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\H0C+m00zJnUEpqvrpUwmEeNk+m4=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\IA9vmN0qT34TQ+xiZbPmcxeXUDg=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\IA9vmN0qT34TQ+xiZbPmcxeXUDg=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\lCyhu24yMQt+CJlbGST3Jy9+KEI=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\lCyhu24yMQt+CJlbGST3Jy9+KEI=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VfEKKH2K+gUzhtlVXHIvzB2twQ0=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VfEKKH2K+gUzhtlVXHIvzB2twQ0=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VoP12bdqQyV2pOm1b3Quh6qvYdc=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VoP12bdqQyV2pOm1b3Quh6qvYdc=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\axF7a0ekuiAc7WjQjNmjxYpRX6Q=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\axF7a0ekuiAc7WjQjNmjxYpRX6Q=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\B3VEl5u5DvNzgIua1+Zd4Uxt2FLs=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\B3VEl5u5DvNzgIua1+Zd4Uxt2FLs=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\hyiJu8sDcRCbJhl+Ccy2CjQR8lA=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\hyiJu8sDcRCbJhl+Ccy2CjQR8lA=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\jdI6F7DFhC2OSW2FJWOBKjulvAds=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\jdI6F7DFhC2OSW2FJWOBKjulvAds=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\2VdOiRn8R6vgyAo1OuWk82FGrO9g=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\2VdOiRn8R6vgyAo1OuWk82FGrO9g=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\cmJCJjUVJ+x1g5BUj5TlTOAoFIo=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\cmJCJjUVJ+x1g5BUj5TlTOAoFIo=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\dW0VZfrFH4igpqB+aknu+YLVPQc=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\dW0VZfrFH4igpqB+aknu+YLVPQc=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\eXGWmogZak9R61lyiAgAEW2Fr2U4=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\eXGWmogZak9R61lyiAgAEW2Fr2U4=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iMu6QwjGaz19Uc3Iub132FGgtfY4=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iMu6QwjGaz19Uc3Iub132FGgtfY4=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iyD2FcB82FO02FOIroc+DEhvb4wfnE=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iyD2FcB82FO02FOIroc+DEhvb4wfnE=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\mW7MfHUhXfGj2FMzw2GAHWck7kvM=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\mW7MfHUhXfGj2FMzw2GAHWck7kvM=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\OELOe8WY+L2rRFjc5PgniHNJB6M=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\OELOe8WY+L2rRFjc5PgniHNJB6M=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\S+c8gyL8O5ZxTtEamXVEcWNlWPg=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\S+c8gyL8O5ZxTtEamXVEcWNlWPg=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\VOiCOo9yjYbP2JvqMKdXagPp+6o=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\VOiCOo9yjYbP2JvqMKdXagPp+6o=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\WliJzSCj1p0+9+BOKoKSC2FcHKMk=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\WliJzSCj1p0+9+BOKoKSC2FcHKMk=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\ZTbE6J8kl20dzoFo9bmIlpOOF90=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\ZTbE6J8kl20dzoFo9bmIlpOOF90=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\+8UdQGeB2FwWIYG+mC+vuvUy9zEw=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\+8UdQGeB2FwWIYG+mC+vuvUy9zEw=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\72FjqK0b2FzFkbJWZ+BlMs1OxQprI=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\72FjqK0b2FzFkbJWZ+BlMs1OxQprI=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\alxGH2FFbmTzeLEdtRHmv6GBUzdw=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\alxGH2FFbmTzeLEdtRHmv6GBUzdw=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\AzBXDxf+Tcdvcans2TCRnoXh2Fjg=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\AzBXDxf+Tcdvcans2TCRnoXh2Fjg=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\enMqwlYLN4AvpmaOrIfYLWsVAdA=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\enMqwlYLN4AvpmaOrIfYLWsVAdA=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\ioAfCdA6Kn0hKsu+Ga1jHJ1UCG8=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\ioAfCdA6Kn0hKsu+Ga1jHJ1UCG8=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\J9+5k2FTpQP6WuWOj5y0n41qN5dc=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\J9+5k2FTpQP6WuWOj5y0n41qN5dc=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\lnHW2s0zHIsgKVjOiirk1ZBZ54g=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\lnHW2s0zHIsgKVjOiirk1ZBZ54g=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Nt2FqWL50Iag4EvPJjVS0IoDBFQ4=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Nt2FqWL50Iag4EvPJjVS0IoDBFQ4=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rTeUDzJzwMepiafQ4bVfqDvados=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rTeUDzJzwMepiafQ4bVfqDvados=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rXcZb6ekO9S3jB29KleJkBOXYmY=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rXcZb6ekO9S3jB29KleJkBOXYmY=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Sgj64GS+QyVyVxkslxY2FFsRARkg=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Sgj64GS+QyVyVxkslxY2FFsRARkg=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\SrJJm7YJAcA15VowAhBWXri5yLc=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\SrJJm7YJAcA15VowAhBWXri5yLc=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\tn+dOhziBZ+E4zoUS7frcglxoz0=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\tn+dOhziBZ+E4zoUS7frcglxoz0=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Zh9cZsOdVXAK4fAulijLqPGggcA=.dt2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Zh9cZsOdVXAK4fAulijLqPGggcA=.id2
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\pending.dat
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\volume.xml
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\volume.xml~
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00001.log.gz
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00002.log.gz
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00003.log.gz
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00004.log.gz
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00005.log
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\$db_normal$
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\$db_clean$
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\dfsr.db
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\fsr.chk
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\fsr.log
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\fsr00009.log
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\res1.log
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\res2.log
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\24eef702-96b4-4c80-9311-3abdff597f9c.AddressBook
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\8bab87c6-06c8-45f0-b74b-be0a00730c50.MeContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\contactcoll.cache
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\members.stg
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\01DBD57D-0C7D-4DF3-953B-099B0200903C.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\03BF7AA8-AD7D-4D64-8069-B788B62DA50F.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\0FE8AE78-F364-47E8-BB4A-CBE33BCA2169.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\1380FD8A-655A-48EF-93AB-76464F027BFB.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\3283C7F6-149B-4E3E-9AD2-4E727578C33E.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\35B51C54-AFA5-4435-94F1-57C957970ADC.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\4A2330E7-BD8E-42BE-81A7-71079744B4EA.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\4AD7D007-0B86-4B9B-9E4F-CBF0F0E0AE50.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\648F037C-B737-45B2-9837-053D7007F968.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\6A60AA2E-5C44-441A-8A95-3A17638CF91A.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\731A0B60-011E-44A3-93CB-3F87E419EF3E.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\7364F97C-1078-47C2-B16D-0D417172497E.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\7449BD48-9BC7-485C-8B83-180FDEDC5AFB.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\8BBE2C3C-C6B3-47CA-B46B-DE54C7734E74.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\9333CBA9-BF5E-46E4-8895-54D03318D97F.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\98162C17-3D35-4639-A739-3F0BBA700423.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\a8adbacc-45d1-432b-ba76-7d12e5cd3664.MeContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\C8B8B5C0-16F9-4CD7-BDB4-EFB1C9D07B40.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\CBF4332C-3DF7-4B7E-83AC-C50EFD11ECE5.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\contactcoll.cache
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\F5EEF266-D630-4459-9879-0854B9FA9BDF.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\F997B688-9380-48A2-98B7-EF759241D2A0.WindowsLiveContact
C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\members.stg

[F:42][D:12]-> C:\DOCUME~1\pc1\LOCALS~1\Temp
[F:3245][D:0]-> C:\DOCUME~1\pc1\Cookies
[F:5749][D:73]-> C:\DOCUME~1\pc1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 24/09/2009|22:37 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 24/09/2009|22:55 - Option : [2]

--------------------\\ Fin du rapport a 22:55:25

Répondre à nenette1242

Désinstalle Java(TM) 6 Update 15.

Mets à jour Java.

Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
Sélectionne Exécuter un examen rapide.
Clique sur Rechercher. L'analyse démarre.
A la fin de l'analyse, un message s'affiche :

Citation :

L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
Ferme tes navigateurs.
Si des malwares ont été détectés, clique sur Afficher les résultats.
Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.

Répondre à Destrio5

voici le rapport
Malwarebytes' Anti-Malware 1.41
Version de la base de données: 2775
Windows 5.1.2600 Service Pack 3

25/09/2009 10:15:25
mbam-log-2009-09-25 (10-15-25).txt

Type de recherche: Examen rapide
Eléments examinés: 144006
Temps écoulé: 7 minute(s), 37 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\cs41275 (Malware.Trace) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\WINDOWS\system32\MSINET.oca (Malware.Trace) -> Quarantined and deleted successfully.

Répondre à nenette1242

Citation :

Version de la base de données: 2775

--> Malwarebytes' Anti-Malware n'est pas à jour.

Répondre à Destrio5

je viens de refaire une mise à jour et relancer le programme
et voici le rapport
Malwarebytes' Anti-Malware 1.41
Version de la base de données: 2857
Windows 5.1.2600 Service Pack 3

25/09/2009 14:10:18
mbam-log-2009-09-25 (14-10-18).txt

Type de recherche: Examen rapide
Eléments examinés: 147808
Temps écoulé: 7 minute(s), 25 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

Répondre à nenette1242

Ton PC va mieux ?

Relance MBAM, va dans Quarantaine et supprime tout.

Refais un scan RSIT et poste le rapport log.

Répondre à Destrio5

Logfile of random's system information tool 1.06 (written by random/random)
Run by pc1 at 2009-09-25 17:16:15
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 32 GB (28%) free of 114 GB
Total RAM: 1023 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:16:20, on 25/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\WINDOWS\system32\cisvc.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\pc1\Favoris\Bureau\RSIT.exe
C:\Program Files\trend micro\pc1.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://orange.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll (file missing)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SoftwareHelper] C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O15 - Trusted Zone: http://logicielsgratuits.orange.fr
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/control [...] oader5.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5A779DC0-837B-4590-AC42-C7C0847478C5} (OrangeInstaller_ModuleIE Control) - http://logicielsgratuits.orange.fr [...] taller.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com [...] _5_1_0.cab
O16 - DPF: {B7D07999-2ADB-4AEB-997E-F61CB7B2E2CD} (TSEasyInstallX Control) - http://www.trendsecure.com/easy_in [...] stallX.CAB
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/bina [...] b56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697516} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp6_mp3.cab
O20 - AppInit_DLLs: nazqva.dll
O20 - Winlogon Notify: jkkHYqnN - jkkHYqnN.dll (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\logishrd\Bluetooth\LBTServ.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Unknown owner - C:\Program Files\Inventel\Gateway\wlancfg.exe (file missing)

--
End of file - 8986 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{CE3AA5F3-A6FE-4AB7-95C3-1CE51750976A}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88F05591-0079-4c37-B138-5DA8BC1782EF}]
iGraal - C:\Program Files\iGraal\iGraal.dll [2008-09-19 612160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2009-02-15 2436160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-25 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-07-25 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{88F05591-0079-4c37-B138-5DA8BC1782EF} - iGraal - C:\Program Files\iGraal\iGraal.dll [2008-09-19 612160]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2009-02-15 2436160]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-08-17 81000]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2008-12-18 76304]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-25 149280]
"SoftwareHelper"=C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe []
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-05-26 413696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OFFICEKB]
C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe [2009-06-23 387584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2009-05-26 413696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2009-04-08 251240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Démarrer^Programmes^Démarrage^Logitech SetPoint.lnk]
C:\PROGRA~1\Logitech\SetPoint\SetPoint.exe [2009-02-19 809488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Démarrer^Programmes^Démarrage^Ralink Wireless Utility.lnk]
C:\PROGRA~1\RALINK\Common\RaUI.exe [2007-09-04 675840]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^pc1^Menu Démarrer^Programmes^Démarrage^NETGEAR WG111v2 Smart Wizard.lnk]
C:\Program Files\NETGEAR\WG111v2\WG111v2.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^pc1^Menu Démarrer^Programmes^Démarrage^Yahoo! Widgets.lnk]
C:\PROGRA~1\Yahoo!\Widgets\YAHOOW~1.EXE []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="nazqva.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-05-03 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\jkkHYqnN]
jkkHYqnN.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll [2009-02-19 72208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 240128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{88485281-8b4b-4f8d-9ede-82e29a064277}"= []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=95000000

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule Plus"
"C:\Documents and Settings\pc1\Favoris\Bureau\microtorrent_torrent_1.7.7_anglais_18245(2).exe"="C:\Documents and Settings\pc1\Favoris\Bureau\microtorrent_torrent_1.7.7_anglais_18245(2).exe:*:Enabled:µTorrent"
"C:\WINDOWS\Temp\occ.exe"="C:\WINDOWS\Temp\occ.exe:*isabledneCC Module"
"C:\WINDOWS\system32\mmc.exe"="C:\WINDOWS\system32\mmc.exe:*:Enabled:Microsoft Management Console"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*isabled:Internet Explorer"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{48b32622-f9ec-11dd-91da-001e2aef17fb}]
shell\AutoRun\command - F:\InstallTomTomHOME.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6384265c-f39f-11dd-91c8-001e2aef17fb}]
shell\AutoRun\command - F:\InstallTomTomHOME.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a18bb6c8-6e65-11dc-a1f4-00032f441728}]
shell\AutoRun\command - E:\Autorun.exe

======File associations======

.reg - open - regedit.exe "%1" %*
.scr - open - "%1" %*

======List of files/folders created in the last 1 months======

2009-09-24 22:34:32 ----AC---- C:\lopR.txt
2009-09-24 22:34:15 ----DC---- C:\Lop SD
2009-09-24 21:38:45 ----D---- C:\Program Files\trend micro
2009-09-24 21:38:44 ----DC---- C:\rsit
2009-09-24 21:30:50 ----D---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
2009-09-24 19:53:01 ----D---- C:\Program Files\Ad-Remover
2009-09-17 19:10:46 ----D---- C:\Program Files\AlerteGPS
2009-09-11 15:22:45 ----HDC---- C:\WINDOWS\ie8
2009-09-11 15:06:12 ----D---- C:\Program Files\Orange

======List of files/folders modified in the last 1 months======

2009-09-25 17:13:07 ----D---- C:\WINDOWS\Temp
2009-09-25 17:12:29 ----A---- C:\WINDOWS\ModemLog_Bluetooth Fax Modem.txt
2009-09-25 17:12:29 ----A---- C:\WINDOWS\ModemLog_Bluetooth DUN Modem.txt
2009-09-25 15:09:21 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-09-25 15:09:20 ----D---- C:\WINDOWS\system32\CatRoot2
2009-09-25 13:27:58 ----HD---- C:\WINDOWS\inf
2009-09-25 11:35:14 ----RASHC---- C:\boot.ini
2009-09-25 11:35:13 ----AC---- C:\WINDOWS\system.ini
2009-09-25 11:35:13 ----A---- C:\WINDOWS\win.ini
2009-09-25 11:29:34 ----AD---- C:\Program Files\Fichiers communs
2009-09-25 11:17:49 ----RD---- C:\Program Files
2009-09-25 11:03:49 ----D---- C:\WINDOWS\pss
2009-09-25 11:02:17 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-09-25 11:02:17 ----D---- C:\WINDOWS\system32\usmt
2009-09-25 11:02:17 ----D---- C:\WINDOWS\system32
2009-09-25 11:02:17 ----D---- C:\WINDOWS
2009-09-25 11:02:17 ----D---- C:\Program Files\Outlook Express
2009-09-25 11:02:17 ----D---- C:\Program Files\Movie Maker
2009-09-25 10:59:55 ----D---- C:\WINDOWS\Prefetch
2009-09-25 10:22:09 ----SHD---- C:\WINDOWS\Installer
2009-09-25 10:22:09 ----SD---- C:\Documents and Settings\pc1\Application Data\Microsoft
2009-09-25 10:22:09 ----D---- C:\Config.Msi
2009-09-25 10:21:58 ----D---- C:\Program Files\MSECache
2009-09-25 09:53:09 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-09-24 23:05:04 ----D---- C:\WINDOWS\system32\drivers
2009-09-24 22:42:35 ----D---- C:\Program Files\Internet Explorer
2009-09-24 22:41:33 ----D---- C:\Program Files\Microsoft
2009-09-24 22:41:17 ----SD---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft
2009-09-24 21:31:14 ----D---- C:\WINDOWS\system32\config
2009-09-24 21:31:02 ----D---- C:\WINDOWS\system32\wbem
2009-09-24 21:31:02 ----D---- C:\WINDOWS\Registration
2009-09-24 19:47:23 ----DC---- C:\Temp
2009-09-24 18:04:02 ----D---- C:\Program Files\Pochette Express 2
2009-09-16 17:35:08 ----D---- C:\WINDOWS\network diagnostic
2009-09-14 18:47:51 ----AC---- C:\WINDOWS\ModemLog_Bluetooth LAP Modem #2.txt
2009-09-11 15:25:02 ----D---- C:\WINDOWS\system32\fr-fr
2009-09-11 15:25:02 ----D---- C:\WINDOWS\Media
2009-09-11 15:25:01 ----D---- C:\WINDOWS\Help
2009-09-11 15:23:43 ----HD---- C:\WINDOWS\msdownld.tmp
2009-09-11 15:06:13 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-09-11 13:36:57 ----A---- C:\WINDOWS\NeroDigital.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-08-17 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-08-17 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-08-17 51376]
R1 InCDPass;InCDPass; C:\WINDOWS\System32\DRIVERS\InCDPass.sys [2005-07-25 29696]
R1 incdrm;InCD Reader; C:\WINDOWS\system32\drivers\incdrm.sys [2005-07-26 28672]
R1 kbfilter;Keyboard Filter Driver; C:\WINDOWS\system32\drivers\kbfilter.sys [1999-08-27 14624]
R1 Tcpip6;Pilote du protocole IPv6 Microsoft; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225856]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.5.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2009-07-18 21419]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-08-17 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-08-17 94160]
R2 EAPPkt;Realtek EAPPkt Protocol; C:\WINDOWS\system32\DRIVERS\EAPPkt.sys [2007-10-09 38144]
R2 irda;Protocole IrDA; C:\WINDOWS\System32\DRIVERS\irda.sys [2008-04-13 88192]
R2 LBeepKE;LBeepKE; C:\WINDOWS\System32\Drivers\LBeepKE.sys [2008-12-18 10384]
R2 ppsio;PrmxPPDev; C:\WINDOWS\system32\drivers\ppsio.sys [2001-11-25 22688]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-08-17 23152]
R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2006-05-03 1540608]
R3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [2004-10-19 20096]
R3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [2004-09-21 10804]
R3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [2004-12-01 22488]
R3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\DRIVERS\vbtenum.sys [2004-09-21 11604]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWS\System32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2008-12-18 20240]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2008-12-18 35472]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2008-12-18 37392]
R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2008-12-18 28816]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\DRIVERS\LVUSBSta.sys [2004-01-21 12080]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 ms_mpu401;Pilote UART MIDI MPU-401 Microsoft; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [2004-05-17 33280]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [2004-05-17 12928]
R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\System32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2003-04-24 5888]
R3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver; C:\WINDOWS\system32\DRIVERS\rt2870.sys [2007-07-28 517632]
R3 tunmp;Pilote de carte miniport Tun Microsoft; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288]
R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur hôte amélioré USB 2.0 Microsoft; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 VComm;Virtual Serial port driver; C:\WINDOWS\System32\DRIVERS\VComm.sys [2004-10-19 61312]
R3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2004-11-05 82148]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\InCDfs.sys [2005-07-25 101504]
S3 arusb(TP-LINK);Atheros Wireless Network Adapter Service(TP-LINK); C:\WINDOWS\system32\DRIVERS\arusb.sys [2008-05-26 434688]
S3 BTNetFilter;Bluetooth Network Filter; \??\C:\WINDOWS\system32\drivers\BTNetFilter.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\pc1\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 cm102u32;C-Media CM6501 Like Sound Interface; C:\WINDOWS\system32\drivers\c6501.sys [2006-07-11 1419776]
S3 DNINDIS5;DNINDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\DNINDIS5.SYS []
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 dtscsi;dtscsi; C:\WINDOWS\system32\drivers\dtscsi.sys []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NPF;Netgroup Packet Filter; C:\WINDOWS\system32\drivers\npf.sys [2008-12-29 42512]
S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 pepifilter;Volume Adapter; C:\WINDOWS\System32\DRIVERS\lv302af.sys [2004-01-21 5915]
S3 PID_08A0;Labtec WebCam Pro(PID_08A0); C:\WINDOWS\System32\DRIVERS\LV302AV.SYS [2004-01-21 271360]
S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2007-10-12 1279000]
S3 RTLWUSB;NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\wg111v2.sys []
S3 SIS163u;SiS163 usb Wireless LAN Adapter Driver; C:\WINDOWS\System32\DRIVERS\sis163u.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys []
S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys []
S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys []
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Service d'application d'assistance IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-02-18 110592]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-08-17 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-05-03 413696]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-08-17 138680]
R2 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2004-12-13 106496]
R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe [2008-06-20 65536]
R2 InCDsrv;InCD Helper; C:\Program Files\Ahead\InCD\InCDsrv.exe [2005-07-26 876032]
R2 Iprip;Écouteur RIP; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Irmon;Moniteur infrarouge; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-07-25 153376]
R2 SimpTcp;Services TCP/IP simplifiés; C:\WINDOWS\System32\tcpsvcs.exe [2003-04-24 19456]
R2 SNMP;Service SNMP; C:\WINDOWS\System32\snmp.exe [2008-04-14 33280]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2009-04-08 92008]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-08-17 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-08-17 352920]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-05-03 520192]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
S2 InCDsrvR;InCD Helper (read only); C:\Program Files\Ahead\InCD\InCDsrv.exe [2005-07-26 876032]
S2 Wlancfg;Service de lancement de WlanCfg; C:\Program Files\Inventel\Gateway\wlancfg.exe SVC []
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-12-30 138168]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Fichiers communs\logishrd\Bluetooth\LBTServ.exe [2009-02-19 121360]
S3 LPDSVC;Serveur d'impression TCP/IP; C:\WINDOWS\System32\tcpsvcs.exe [2003-04-24 19456]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-05-29 234864]
S3 p2pgasvc;Authentification de groupe réseau homologue; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 p2pimsvc;Gestionnaire d'identité réseau homologue; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 p2psvc;Réseau homologue; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 PNRPSvc;Protocole de résolution de noms d'homologues; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 SNMPTRAP;Service d'interruption SNMP; C:\WINDOWS\System32\snmptrap.exe [2008-04-14 8704]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-24 918016]

-----------------EOF-----------------

Répondre à nenette1242

Lance ce fichier : C:\Program Files\trend micro\pc1.exe
Choisis Do a system scan only.
Coche les cases qui sont devant les lignes suivantes :

O4 - HKLM\..\Run: [SoftwareHelper] C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe

O20 - AppInit_DLLs: nazqva.dll

O20 - Winlogon Notify: jkkHYqnN - jkkHYqnN.dll (file missing)

Clique en bas sur Fix checked. Mets oui si HijackThis te demande quelque chose.
Ferme HijackThis.

Répondre à Destrio5

ok c'est fait que dois je faire maintenant

Répondre à nenette1242

As-tu fait une défragmentation récemment ?

Répondre à Destrio5

oui ce matin

Répondre à nenette1242

Le PC va mieux ?

Répondre à Destrio5

je crois que oui à suivre
merci de ton aide

Répondre à nenette1242

1/

Désinstalle HijackThis.

Télécharge ToolsCleaner2 sur ton Bureau.
Double-clique sur ToolsCleaner2.exe pour le lancer.
Clique sur Recherche et laisse le scan agir.
Clique sur Suppression pour finaliser.
Tu peux, si tu le souhaites, te servir des Options Facultatives.
Clique sur Quitter pour obtenir le rapport.
Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).

2/

Télécharge et installe CCleaner Slim.
Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
Va dans Nettoyeur, choisis Analyser. Une fois terminé, lance le nettoyage.

3/

Il est nécessaire de désactiver puis réactiver la restauration système pour la purger.

==Prévention==

Conserve MBAM. Il te servira à scanner les fichiers douteux en complément de l'antivirus et scanne le disque dur régulièrement.

Comme navigateur, utilise plutôt Mozilla Firefox qu'Internet Explorer.

Vérifie que les mises à jour automatiques sont bien activées (Menu Démarrer, clique droit sur Poste de travail, Propriétés, onglet Mises à jour automatiques).

==Problème résolu ?==

--> Si tu estimes que ton problème est résolu, ajoute [Résolu] au titre. Pour cela :

Clique, dans ton premier message, sur le bouton Editer .
Ajoute la mention [Résolu] devant le titre.
Clique ensuite sur Valider votre message.

Sois plus vigilant(e) sur Internet

Répondre à Destrio5

après toolscleaner
[ Rapport ToolsCleaner version 2.3.10 (par A.Rothstein & dj QUIOU) ]

--> Recherche:

C:\lopR.txt: trouvé !
C:\catchme.log: trouvé !
C:\Lop SD: trouvé !
C:\Rsit: trouvé !
C:\Documents and Settings\pc1\Favoris\Bureau\LopSD.exe: trouvé !
C:\Documents and Settings\pc1\Favoris\Bureau\Ad-R.exe: trouvé !
C:\Documents and Settings\pc1\Favoris\Bureau\Rsit.exe: trouvé !
C:\Documents and Settings\pc1\Local Settings\Temporary Internet Files\Content.IE5\I1QWEZY4\hijackthis.log: trouvé !
C:\Lop SD\catchme.exe: trouvé !
C:\Program Files\Ad-remover: trouvé !
C:\Program Files\Ad-Remover\BACKUP\Ad-R.exe: trouvé !
C:\Program Files\trend micro\HijackThis.exe: trouvé !
C:\Program Files\trend micro\hijackthis.log: trouvé !

---------------------------------
--> Suppression:

C:\Documents and Settings\pc1\Favoris\Bureau\LopSD.exe: supprimé !
C:\Documents and Settings\pc1\Favoris\Bureau\Ad-R.exe: supprimé !
C:\Lop SD\catchme.exe: supprimé !
C:\Program Files\Ad-Remover\BACKUP\Ad-R.exe: supprimé !
C:\Program Files\trend micro\HijackThis.exe: supprimé !
C:\lopR.txt: supprimé !
C:\catchme.log: supprimé !
C:\Documents and Settings\pc1\Favoris\Bureau\Rsit.exe: supprimé !
C:\Documents and Settings\pc1\Local Settings\Temporary Internet Files\Content.IE5\I1QWEZY4\hijackthis.log: supprimé !
C:\Program Files\trend micro\hijackthis.log: supprimé !
C:\Lop SD: supprimé !
C:\Rsit: supprimé !
C:\Program Files\Ad-remover: supprimé !

Répondre à nenette1242

Tu peux supprimer ToolsCleaner.

Répondre à Destrio5

comment dois je faire pour déactiver la restauration du système et la réactiver merci

Répondre à nenette1242

http://www.infos-du-net.com/forum/ [...] on-systeme

Répondre à Destrio5

merci de ton aide

Répondre à nenette1242

Le titre de ce sujet a été édité par Prunelle

------------------------------ Vos témoignages : meilleurs moments sur IDN | Présentez-nous vos animaux de compagnie
Répondre à Prunelle

Bonjour je viens vous demander de l'aide mon a un problème avec son ordi une mise à jour ne s'est pas faite correctement l'ordi a été arrêté pendant la mise à jour (orage)
donc quand il allume son pc il y a ce message qui s'affiche " Configuration des mise à jours étapes 3 sur 3 : 0%; N'éteignez pas l'ordinateur " ( il est sous Vista ) donc j'attends qu'il termine cette étape.

Mais l'ordi se redémarre et revient sur " Configuration des mise à jours étapes 3 sur 3 : 0%; N'éteignez pas l'ordinateur " mais le pourcentage de progression de bouge pas il reste toujours à zéro.
Donc l'ordi redémarre sans cesse
on a essayé démarrage sans échec touche f8
aussi restauration touche f11
rien n'y fait
et nous n'avons pas de cd vista le pc a été livré avec l'installation
que puis je faire
merci de votre aide

Répondre à nenette1242

Le mode sans échec fonctionne ?

Répondre à Destrio5

non ca ne fonctionne pas

Répondre à nenette1242

Il m'est arrivé pratiquement la même chose une fois et j'ai utilisé un DVD de Vista pour pouvoir faire une restauration système.

Répondre à Destrio5

oui mais le problème c'est que le pc est livré sans cd vista

Répondre à nenette1242

Oui, c'était sûrement à toi de le graver.

Le PC est de quelle marque ?

Répondre à Destrio5

hp

Répondre à nenette1242

http://www.pc-infopratique.com/for [...] 23027.html

Répondre à Destrio5

Forum Sécurité - Virus : Mon ordi rame [Résolu]