Infection ?

Bonjour,

Télécharge Lop S&D (par Eric_71) sur ton Bureau.

Puis double-clique sur Lop S&D présent sur ton Bureau.
(Sous Vista, il faut cliquer droit sur Lop S&D et choisir Exécuter en tant qu'administrateur)

Sélectionne la langue souhaitée, puis choisis l'option 1 (Recherche).

Patiente jusqu'à la fin du scan.

Poste le rapport généré (C:\lopR.txt).

Voici comme prévu le rapport :



-------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) D CPU 2.80GHz )
BIOS : Default System BIOS
USER : Administrateur ( Administrator )
BOOT : Normal boot
Antivirus : AntiVir Desktop 9.0.1.32 (Activated)
C:\ (Local Disk) - NTFS - Total:228 Go (Free:131 Go)
D:\ (USB)
E:\ (USB)
F:\ (USB)
G:\ (USB)
H:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 27/10/2009|12:59 )

--------------------\\ Listing des dossiers dans APPLIC~1
[12/10/2006|04:25] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[12/10/2006|04:25] C:\DOCUME~1\ADMINI~1\APPLIC~1\Apple Computer
[06/11/2006|16:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\CyberLink
[12/10/2006|04:25] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[12/10/2006|04:25] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[12/10/2006|04:25] C:\DOCUME~1\ADMINI~1\APPLIC~1\SampleView
[11/10/2009|22:01] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Adobe
[04/06/2009|10:08] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\AdobeUM
[28/09/2009|21:38] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Apple Computer
[24/08/2009|22:07] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Azureus
[30/07/2009|20:01] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\dvdcss
[16/07/2009|18:18] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\EoRezo
[13/07/2009|01:04] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Four Knob Cash
[27/10/2009|12:59] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Free Download Manager
[22/02/2009|14:58] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Identities
[01/10/2009|18:21] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\InstallShield
[26/10/2009|00:33] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\KC Softwares
[18/10/2009|10:34] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\KyuubiBarre
[19/10/2009|23:29] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\KyuubiGame
[19/10/2009|23:29] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Kyuubi-Game
[01/07/2009|20:16] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\live-player
[14/06/2009|16:08] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Macromedia
[16/08/2009|01:06] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Malwarebytes
[07/04/2009|18:30] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Media Player Classic
[26/10/2009|00:31] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Microsoft
[23/02/2009|08:55] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Mozilla
[08/06/2009|12:38] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\My Games
[10/04/2009|11:20] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Real
[06/04/2009|22:39] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Sierra
[16/04/2009|08:01] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Sun
[23/07/2009|19:01] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\teamspeak2
[18/07/2009|22:33] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\vlc
[26/10/2009|00:34] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\VTExtra
[14/04/2009|22:20] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Xfire
[24/08/2009|22:02] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Yahoo!
[28/07/2008|20:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[11/10/2007|17:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[11/10/2007|17:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[13/10/2007|22:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[15/02/2007|03:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Brother
[09/04/2007|20:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[24/07/2008|18:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CA
[12/10/2006|04:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[29/09/2007|22:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet
[19/11/2008|17:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[15/02/2009|22:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[06/03/2007|18:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[27/09/2007|19:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[19/02/2007|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[21/01/2008|20:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[13/01/2008|00:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[20/07/2007|18:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Tools
[13/10/2007|22:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[04/09/2008|18:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[18/09/2008|19:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TechSmith
[26/03/2008|19:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[27/02/2007|22:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/09/2007|22:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\YAHOO
[12/09/2009|22:15] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[17/06/2009|19:56] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[04/06/2009|10:07] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
[17/06/2009|20:16] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[17/06/2009|19:56] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[27/10/2009|01:19] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avira
[21/06/2009|12:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Codemasters
[20/08/2009|20:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ESET
[03/06/2009|17:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Firefly Studios
[29/07/2009|14:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ma-config.com
[16/08/2009|01:06] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Malwarebytes
[24/10/2009|20:13] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Messenger Plus!
[09/04/2009|11:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MGS
[09/04/2009|11:56] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microgaming
[24/10/2009|18:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[26/10/2009|00:39] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft Help
[22/02/2009|14:46] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Real
[08/04/2009|19:35] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
[12/10/2006|04:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe
[12/10/2006|04:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[06/11/2006|16:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\CyberLink
[12/10/2006|04:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[28/08/2007|16:49] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[12/10/2006|04:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[12/10/2006|04:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[22/02/2009|14:39] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

[12/10/2006|04:25] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[15/08/2009|21:12] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Adobe
[16/09/2009|17:47] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
[30/01/2009|23:47] C:\DOCUME~1\Maman\APPLIC~1\Adobe
[12/10/2006|04:25] C:\DOCUME~1\Maman\APPLIC~1\Apple Computer
[30/01/2009|23:53] C:\DOCUME~1\Maman\APPLIC~1\Brother
[06/11/2006|16:24] C:\DOCUME~1\Maman\APPLIC~1\CyberLink
[12/10/2006|04:25] C:\DOCUME~1\Maman\APPLIC~1\Identities
[28/08/2007|16:49] C:\DOCUME~1\Maman\APPLIC~1\Macromedia
[12/10/2006|04:25] C:\DOCUME~1\Maman\APPLIC~1\Microsoft
[31/01/2009|14:28] C:\DOCUME~1\Maman\APPLIC~1\Mozilla
[30/01/2009|23:39] C:\DOCUME~1\Maman\APPLIC~1\Nero
[30/01/2009|23:39] C:\DOCUME~1\Maman\APPLIC~1\Real
[12/10/2006|04:25] C:\DOCUME~1\Maman\APPLIC~1\SampleView
[12/10/2006|04:25] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[22/02/2009|14:39] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[27/10/2009 12:18][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{1451F9C3-478D-48B5-AF68-BAF38A16D379}.job
[24/10/2009 19:29][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[27/10/2009 12:15][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 16:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[22/02/2009|14:48] C:\Program Files\Adobe
[22/02/2009|14:49] C:\Program Files\Ahead
[21/06/2009|15:08] C:\Program Files\American Conquest
[29/11/2008|21:43] C:\Program Files\Apple Software Update
[02/01/2008|23:41] C:\Program Files\AskTBar
[10/09/2007|19:32] C:\Program Files\Astonsoft
[12/10/2008|11:14] C:\Program Files\Atari
[02/01/2008|23:12] C:\Program Files\Audacity
[07/03/2008|21:17] C:\Program Files\Audio Phonics, Inc
[01/06/2008|00:17] C:\Program Files\Auto-‚cole 3D
[09/04/2007|20:06] C:\Program Files\Avanquest update
[27/10/2009|01:19] C:\Program Files\Avira
[22/02/2009|14:47] C:\Program Files\Azureus
[04/07/2009|22:11] C:\Program Files\Babylon
[01/10/2009|18:21] C:\Program Files\Belkin
[14/08/2008|17:51] C:\Program Files\BodyBoarding
[17/06/2009|19:56] C:\Program Files\Bonjour
[13/10/2007|22:53] C:\Program Files\Boonty
[28/10/2007|14:31] C:\Program Files\BoontyGames
[15/02/2007|03:20] C:\Program Files\Brother
[24/07/2008|18:38] C:\Program Files\CA
[04/03/2008|17:01] C:\Program Files\Call of Duty
[22/11/2008|16:47] C:\Program Files\Call of Duty United Offensive Single Player Demo
[30/01/2009|23:45] C:\Program Files\CamStudio
[24/08/2009|22:01] C:\Program Files\CCleaner
[27/09/2008|10:47] C:\Program Files\CHRYOPROD
[16/08/2009|01:01] C:\Program Files\Cicle Developement
[21/11/2008|13:07] C:\Program Files\Common Files
[12/10/2006|04:26] C:\Program Files\ComPlus Applications
[04/07/2009|22:11] C:\Program Files\Conduit
[28/07/2008|20:46] C:\Program Files\Cossacks 2 - Battle for Europe
[12/10/2006|04:26] C:\Program Files\CyberLink
[31/10/2008|18:40] C:\Program Files\CyberMUT
[28/08/2007|16:05] C:\Program Files\DialMessenger
[22/11/2007|19:39] C:\Program Files\Dict‚e et M‚moire Musicale [DEMO]
[31/07/2007|20:53] C:\Program Files\DivX
[28/05/2007|14:23] C:\Program Files\eMule(2)
[27/04/2007|21:12] C:\Program Files\Enlight
[16/08/2009|10:12] C:\Program Files\EoRezo
[01/10/2009|21:49] C:\Program Files\ESET
[12/10/2008|18:34] C:\Program Files\Eurobarre
[24/10/2009|18:11] C:\Program Files\Fichiers communs
[02/06/2009|15:45] C:\Program Files\Firaxis Games
[06/04/2009|22:27] C:\Program Files\Firefly Studios
[15/09/2009|18:14] C:\Program Files\Fou-de-fric
[13/07/2009|01:03] C:\Program Files\Four Knob Cash
[26/07/2009|00:02] C:\Program Files\Free Download Manager
[26/11/2007|19:33] C:\Program Files\GIMP-2.0
[28/08/2007|16:49] C:\Program Files\Google
[12/12/2008|18:33] C:\Program Files\gPotato.eu
[11/05/2009|18:05] C:\Program Files\GSC Game World
[07/09/2008|13:26] C:\Program Files\Handmark
[19/05/2007|21:09] C:\Program Files\Hasbro Interactive
[22/02/2009|15:30] C:\Program Files\Hercules
[07/09/2008|13:24] C:\Program Files\Ihsv
[04/03/2008|17:02] C:\Program Files\Image-Line
[01/10/2009|18:21] C:\Program Files\InstallShield Installation Information
[12/10/2006|04:27] C:\Program Files\Intel
[16/10/2009|16:50] C:\Program Files\Internet Explorer
[03/10/2009|21:16] C:\Program Files\iPod
[22/02/2009|14:00] C:\Program Files\iQon AntiVirus
[03/10/2009|21:18] C:\Program Files\iTunes
[17/02/2007|19:25] C:\Program Files\Jasc Software Inc
[17/08/2009|20:01] C:\Program Files\Java
[07/03/2008|21:04] C:\Program Files\Jld SoftWare
[18/10/2009|15:58] C:\Program Files\KC Softwares
[22/02/2009|14:46] C:\Program Files\K-Lite Codec Pack
[27/09/2007|19:04] C:\Program Files\Kodak
[23/02/2009|18:32] C:\Program Files\Labtec Laser Mouse Software
[21/11/2007|15:24] C:\Program Files\Lavalys
[01/06/2007|19:28] C:\Program Files\LG Electronics
[11/06/2007|20:30] C:\Program Files\LGGSM
[27/09/2008|09:42] C:\Program Files\LimeWire
[16/09/2009|17:39] C:\Program Files\Live-Player
[27/06/2009|16:10] C:\Program Files\Logitech
[29/07/2009|14:23] C:\Program Files\ma-config.com
[16/08/2009|01:06] C:\Program Files\Malwarebytes' Anti-Malware
[28/10/2007|14:30] C:\Program Files\Mes Jeux T‚l‚charg‚s
[07/04/2009|10:52] C:\Program Files\Messenger
[13/07/2009|01:02] C:\Program Files\Messenger Plus! Live
[28/02/2007|00:11] C:\Program Files\MessengerPlus! 3
[06/07/2007|11:12] C:\Program Files\Metin2_France
[17/08/2009|16:31] C:\Program Files\Micro Application
[24/10/2009|18:21] C:\Program Files\Microsoft
[26/10/2009|00:39] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[12/10/2006|04:29] C:\Program Files\microsoft frontpage
[22/02/2009|22:45] C:\Program Files\Microsoft Games
[14/06/2009|00:08] C:\Program Files\Microsoft Office
[24/10/2009|18:25] C:\Program Files\Microsoft Office Outlook Connector
[15/09/2009|06:20] C:\Program Files\Microsoft Silverlight
[24/10/2009|18:23] C:\Program Files\Microsoft SQL Server Compact Edition
[24/10/2009|18:24] C:\Program Files\Microsoft Sync Framework
[14/06/2009|00:08] C:\Program Files\Microsoft Visual Studio
[14/06/2009|00:09] C:\Program Files\Microsoft Works
[22/05/2009|00:29] C:\Program Files\Mindscape
[11/04/2008|21:34] C:\Program Files\mIRC
[09/04/2007|20:07] C:\Program Files\mobile PhoneTools
[31/10/2008|19:12] C:\Program Files\Monopoly
[07/04/2009|10:31] C:\Program Files\Movie Maker
[27/10/2009|01:15] C:\Program Files\Mozilla Firefox
[09/08/2009|18:55] C:\Program Files\MSBuild
[31/07/2009|15:02] C:\Program Files\MSN
[12/10/2006|04:27] C:\Program Files\MSN Gaming Zone
[13/07/2009|01:02] C:\Program Files\MSN Messenger
[28/09/2007|22:00] C:\Program Files\MSXML 4.0
[14/09/2007|22:14] C:\Program Files\Musicmatch
[25/07/2009|23:02] C:\Program Files\myBabylon_English
[04/10/2008|22:45] C:\Program Files\MySpace
[23/10/2009|22:19] C:\Program Files\MySpeedyAlert
[13/01/2008|00:40] C:\Program Files\Nero
[07/04/2009|10:29] C:\Program Files\NetMeeting
[15/02/2008|22:39] C:\Program Files\Norton Security Scan
[12/10/2006|04:27] C:\Program Files\Online Services
[07/03/2008|20:53] C:\Program Files\OOBOX
[21/06/2009|10:36] C:\Program Files\OpenAL
[03/03/2007|12:34] C:\Program Files\OpenOffice.org 2.1
[26/07/2009|19:13] C:\Program Files\Orange
[07/03/2008|20:48] C:\Program Files\Outils de Guitare-Online
[12/08/2009|22:49] C:\Program Files\Outlook Express
[17/02/2007|19:15] C:\Program Files\PhotoFiltre
[04/11/2007|01:23] C:\Program Files\Pizzicato 3
[28/05/2007|14:23] C:\Program Files\Pochette Express 2
[23/10/2009|11:00] C:\Program Files\PokerStars
[30/01/2009|23:11] C:\Program Files\Prophet Soft
[11/10/2007|17:22] C:\Program Files\QuickTime
[17/07/2007|10:25] C:\Program Files\Real
[22/02/2009|17:07] C:\Program Files\Realtek
[10/01/2008|17:33] C:\Program Files\RealVNC
[09/08/2009|18:55] C:\Program Files\Reference Assemblies
[15/08/2009|19:57] C:\Program Files\Safari
[21/01/2008|18:26] C:\Program Files\Samsung
[22/02/2009|15:38] C:\Program Files\Securitoo
[17/05/2009|18:48] C:\Program Files\SEGA
[12/10/2006|04:28] C:\Program Files\Services en ligne
[27/09/2008|09:54] C:\Program Files\Shareaza
[06/04/2009|22:33] C:\Program Files\Sierra
[02/06/2009|19:06] C:\Program Files\Sierra On-Line
[04/09/2008|18:26] C:\Program Files\Skype
[28/05/2007|11:45] C:\Program Files\Smart Projects
[27/10/2009|12:20] C:\Program Files\Steam
[27/04/2007|21:21] C:\Program Files\Strategy First
[20/11/2008|00:43] C:\Program Files\SystemRequirementsLab
[23/07/2009|19:01] C:\Program Files\Teamspeak2_RC2
[18/09/2008|19:13] C:\Program Files\TechSmith
[21/09/2007|18:45] C:\Program Files\TGTSoft
[12/10/2008|20:15] C:\Program Files\TightVNC
[09/08/2007|19:57] C:\Program Files\Toshiba
[21/04/2009|16:37] C:\Program Files\Ubisoft
[25/01/2009|00:30] C:\Program Files\UltraVNC
[12/10/2006|04:28] C:\Program Files\Uninstall Information
[12/09/2009|22:18] C:\Program Files\Utilitaire de configuration iPhone
[01/08/2008|22:57] C:\Program Files\uTorrent
[16/08/2009|01:49] C:\Program Files\Valve
[08/10/2007|19:28] C:\Program Files\vanBasco's Karaoke Player
[08/03/2008|00:02] C:\Program Files\Ventrilo
[17/03/2007|10:57] C:\Program Files\VideoLAN
[12/08/2008|19:44] C:\Program Files\VirtualDJ
[10/09/2007|19:36] C:\Program Files\VSO
[04/03/2008|17:02] C:\Program Files\VstPlugins
[21/11/2008|13:01] C:\Program Files\Web Media Player
[24/10/2009|18:24] C:\Program Files\Windows Live
[24/10/2009|18:20] C:\Program Files\Windows Live SkyDrive
[20/06/2009|21:28] C:\Program Files\Windows Media Connect 2
[20/06/2009|21:28] C:\Program Files\Windows Media Player
[07/04/2009|10:28] C:\Program Files\Windows NT
[12/10/2006|04:28] C:\Program Files\Windows Plus
[12/10/2006|04:28] C:\Program Files\WindowsUpdate
[22/02/2009|14:49] C:\Program Files\WinRAR
[28/02/2007|00:13] C:\Program Files\WinTV
[10/09/2008|18:29] C:\Program Files\Woonoz
[12/10/2006|04:29] C:\Program Files\xerox
[14/04/2009|22:20] C:\Program Files\Xfire
[27/10/2009|08:16] C:\Program Files\Yahoo!
[12/08/2009|22:43] C:\Program Files\YesMessenger
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[28/07/2008|20:47] C:\Program Files\Fichiers communs\Adobe
[22/02/2009|14:49] C:\Program Files\Fichiers communs\Ahead
[03/10/2009|21:16] C:\Program Files\Fichiers communs\Apple
[13/10/2007|22:55] C:\Program Files\Fichiers communs\BOONTY Shared
[14/06/2009|00:08] C:\Program Files\Fichiers communs\DESIGNER
[22/02/2009|15:35] C:\Program Files\Fichiers communs\France Telecom
[15/02/2007|03:20] C:\Program Files\Fichiers communs\InstallShield
[17/02/2007|18:47] C:\Program Files\Fichiers communs\Java
[27/09/2007|19:02] C:\Program Files\Fichiers communs\Kodak
[15/02/2007|03:10] C:\Program Files\Fichiers communs\Logitech
[29/09/2007|21:11] C:\Program Files\Fichiers communs\Macrovision Shared
[24/10/2009|18:21] C:\Program Files\Fichiers communs\Microsoft Shared
[12/10/2006|04:27] C:\Program Files\Fichiers communs\MSSoap
[13/01/2008|00:43] C:\Program Files\Fichiers communs\Nero
[12/10/2006|04:27] C:\Program Files\Fichiers communs\ODBC
[13/09/2007|21:19] C:\Program Files\Fichiers communs\Real
[12/10/2006|04:27] C:\Program Files\Fichiers communs\Services
[04/09/2008|18:25] C:\Program Files\Fichiers communs\Skype
[12/10/2006|04:27] C:\Program Files\Fichiers communs\SpeechEngines
[14/09/2007|21:58] C:\Program Files\Fichiers communs\SureThing Shared
[14/06/2009|00:04] C:\Program Files\Fichiers communs\System
[24/10/2009|18:11] C:\Program Files\Fichiers communs\Windows Live
[18/09/2008|19:13] C:\Program Files\Fichiers communs\Wise Installation Wizard
[13/09/2007|21:20] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 49 Processes )
IEXPLORE.EXE ~ [PID:3324]
IEXPLORE.EXE ~ [PID:2772]
iexplore.exe ~ [PID:1896]
iexplore.exe ~ [PID:2424]
iexplore.exe ~ [PID:2732]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ADMINI~1.8CE\LOCALS~1\Temp\msgpl_6952.tmp
C:\DOCUME~1\ADMINI~1.8CE\LOCALS~1\Temp\msgpl_e289.tmp
C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@advertstream[1].txt
C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@advertstream[3].txt
C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@adultfriendfinder[1].txt
C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@advertising[1].txt
C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@advertising[3].txt
C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@advertising[4].txt
C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@ero-advertising[1].txt
C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@ero-advertising[2].txt
C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@www.advertising365[1].txt
C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@serve.32vegas[1].txt
C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@2xmoinscher[2].txt
C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@cc.2xmoinscher[2].txt
C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@www.2xmoinscher[2].txt

--------------------\\ Verification du Registre

..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-27 13:00:57
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections
C:\Program Files\Live-Player
C:\Program Files\Live-Player\data
C:\Program Files\Live-Player\img
C:\Program Files\Live-Player\live-player.log
C:\Program Files\Live-Player\SkinCrafterDll.dll
C:\Program Files\Live-Player\skins
C:\Program Files\Live-Player\sqlite3.dll
C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\live-player
C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\live-player\liveplayer.s3db
C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\live-player\flv.swf
C:\DOCUME~1\ALLUSE~1.WIN\MENUDM~1\PROGRA~1\Live-Player
C:\DOCUME~1\ALLUSE~1.WIN\MENUDM~1\PROGRA~1\Live-Player\Conditions g‚n‚rales.url
C:\DOCUME~1\ALLUSE~1.WIN\MENUDM~1\PROGRA~1\Live-Player\Confidentialit‚.url
C:\DOCUME~1\ALLUSE~1.WIN\MENUDM~1\PROGRA~1\Live-Player\Live-Player.lnk
C:\DOCUME~1\ALLUSE~1.WIN\MENUDM~1\PROGRA~1\Live-Player\Privacy Policy.url
C:\DOCUME~1\ALLUSE~1.WIN\MENUDM~1\PROGRA~1\Live-Player\Terms and Conditions.url
C:\DOCUME~1\ALLUSE~1.WIN\MENUDM~1\PROGRA~1\Live-Player\Website.url
==> EGDACCESS <==
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\ADMINI~1.8CE\Local Settings\Temporary Internet Files\Content.IE5\4RD869E5\69056-eset-nod32-smart-security-keygen-4-0-424-0-a[1].html
C:\DOCUME~1\ADMINI~1.8CE\Local Settings\Temporary Internet Files\Content.IE5\HZ1MH5PF\127945-eset-nod-32-antivirus-v4-0-424-32and64-bit-crack[1].html

[F:2840][D:98]-> C:\DOCUME~1\ADMINI~1.8CE\LOCALS~1\Temp
[F:943][D:0]-> C:\DOCUME~1\ADMINI~1.8CE\Cookies
[F:21630][D:28]-> C:\DOCUME~1\ADMINI~1.8CE\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 27/10/2009|12:58 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 27/10/2009|13:02 - Option : [1]
--------------------\\ Fin du rapport a 13:02:40

Ton PC a plusieurs infections.

Télécharge Navilog1 (de IL-MAFIOSO) sur ton Bureau.

Double-clique sur Navilog1.exe pour le lancer.
(Sous Vista, clique droit sur Navilog1 et choisis Exécuter en tant qu'administrateur)

Appuie sur 1 puis valide avec Entrée pour choisir Français.

Appuie sur une touche de ton clavier à chaque fois que cela est demandé, tu arriveras au menu des options.

Choisis l'option 1 et appuie sur la touche Entrée pour valider ton choix.

Patiente le temps du scan. Il te sera peut-être demandé de redémarrer ton PC.

Patiente jusqu'au message : *** Scan terminé le ..... ***

Le scan fini, le Bloc-notes contenant le rapport sera affiché, poste le rapport dans ta prochaine réponse.

Si le résultat du scan ne s'affiche pas, tu le trouveras dans C:\cleannavi.txt

ix Navipromo version 4.0.3 commencé le 27/10/2009 23:53:48,54
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
Outil exécuté depuis C:\Program Files\navilog1
Mise à jour le 21.10.2009 à 22h00 par IL-MAFIOSO
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) D CPU 2.80GHz )
BIOS : Default System BIOS
USER : Administrateur ( Administrator )
BOOT : Normal boot
Antivirus : AntiVir Desktop 9.0.1.32 (Activated)

C:\ (Local Disk) - NTFS - Total:228 Go (Free:131 Go)
D:\ (USB)
E:\ (USB)
F:\ (USB)
G:\ (USB)
H:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)

Recherche executée en mode normal
Nettoyage exécuté au redémarrage de l'ordinateur

C:\Program Files\Live-Player supprimé !
C:\Documents and Settings\All Users.WINDOWS\menudm~1\progra~1\Live-Player supprimé !
C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\applic~1\Live-Player supprimé !
C:\DOCUME~1\Jeremy64\menudm~1\progra~1\InternetGamebox supprimé !
c:\docume~1\alluse~1.win\bureau\Live-Player.lnk supprimé !

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\locals~1\Temp effectué !

*** Sauvegarde du Registre vers dossier Safebackup ***
sauvegarde du Registre réalisée avec succès !
*** Nettoyage Registre ***
Nettoyage Registre Ok


*** Scan terminé 27/10/2009 23:57:07,07 ***

Bien.

Copie (Ctrl+C) le texte se situant dans le cadre ci-dessous :

C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\EoRezo
C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Four Knob Cash
C:\Program Files\AskTBar
C:\Program Files\Cicle Developement
C:\Program Files\EoRezo
C:\Program Files\Four Knob Cash

Relance Lop S&D.

Choisis cette fois-ci l'option 4 (LopScript). Une page blanche va s'ouvrir, colle (Ctrl+V) le texte précedemment copié.

Ferme cette page, il te sera demandé de l'enregistrer, accepte.
! Ne ferme pas la fenêtre lors de la suppression !

Poste le rapport généré (C:\lopR.txt)

(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) D CPU 2.80GHz )
BIOS : Default System BIOS
USER : Administrateur ( Administrator )
BOOT : Normal boot
Antivirus : AntiVir Desktop 9.0.1.32 (Activated)
C:\ (Local Disk) - NTFS - Total:228 Go (Free:131 Go)
D:\ (USB)
E:\ (USB)
F:\ (USB)
G:\ (USB)
H:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [4] ( 28/10/2009| 0:40 )

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Lop Script

C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\EoRezo
C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Four Knob Cash
C:\Program Files\AskTBar
C:\Program Files\Cicle Developement
C:\Program Files\EoRezo
C:\Program Files\Four Knob Cash


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\EoRezo
Supprime! - C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Four Knob Cash
Supprime! - C:\Program Files\AskTBar
Supprime! - C:\Program Files\Cicle Developement
Supprime! - C:\Program Files\EoRezo
Supprime! - C:\Program Files\Four Knob Cash
Supprime! - C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@advertstream[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@advertstream[3].txt
Supprime! - C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@adultfriendfinder[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@advertising[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@advertising[3].txt
Supprime! - C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@advertising[4].txt
Supprime! - C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@ero-advertising[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@ero-advertising[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@www.advertising365[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@serve.32vegas[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@cc.2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@www.2xmoinscher[2].txt
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[12/10/2006|04:25] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[12/10/2006|04:25] C:\DOCUME~1\ADMINI~1\APPLIC~1\Apple Computer
[06/11/2006|16:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\CyberLink
[12/10/2006|04:25] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[12/10/2006|04:25] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[12/10/2006|04:25] C:\DOCUME~1\ADMINI~1\APPLIC~1\SampleView

[11/10/2009|22:01] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Adobe
[04/06/2009|10:08] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\AdobeUM
[28/09/2009|21:38] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Apple Computer
[24/08/2009|22:07] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Azureus
[30/07/2009|20:01] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\dvdcss
[28/10/2009|00:41] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Free Download Manager
[22/02/2009|14:58] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Identities
[01/10/2009|18:21] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\InstallShield
[26/10/2009|00:33] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\KC Softwares
[18/10/2009|10:34] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\KyuubiBarre
[19/10/2009|23:29] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\KyuubiGame
[19/10/2009|23:29] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Kyuubi-Game
[14/06/2009|16:08] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Macromedia
[16/08/2009|01:06] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Malwarebytes
[07/04/2009|18:30] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Media Player Classic
[26/10/2009|00:31] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Microsoft
[23/02/2009|08:55] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Mozilla
[08/06/2009|12:38] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\My Games
[10/04/2009|11:20] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Real
[06/04/2009|22:39] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Sierra
[16/04/2009|08:01] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Sun
[23/07/2009|19:01] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\teamspeak2
[18/07/2009|22:33] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\vlc
[26/10/2009|00:34] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\VTExtra
[14/04/2009|22:20] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Xfire
[24/08/2009|22:02] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\Yahoo!

[28/07/2008|20:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[11/10/2007|17:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[11/10/2007|17:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[13/10/2007|22:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[15/02/2007|03:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Brother
[09/04/2007|20:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[24/07/2008|18:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CA
[12/10/2006|04:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[29/09/2007|22:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet
[19/11/2008|17:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[15/02/2009|22:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[06/03/2007|18:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[27/09/2007|19:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[19/02/2007|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[21/01/2008|20:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[13/01/2008|00:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[20/07/2007|18:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Tools
[13/10/2007|22:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[04/09/2008|18:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[18/09/2008|19:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TechSmith
[26/03/2008|19:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[27/02/2007|22:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/09/2007|22:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\YAHOO

[12/09/2009|22:15] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[17/06/2009|19:56] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[04/06/2009|10:07] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
[17/06/2009|20:16] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[17/06/2009|19:56] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[27/10/2009|01:19] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avira
[21/06/2009|12:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Codemasters
[20/08/2009|20:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ESET
[03/06/2009|17:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Firefly Studios
[29/07/2009|14:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ma-config.com
[16/08/2009|01:06] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Malwarebytes
[24/10/2009|20:13] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Messenger Plus!
[09/04/2009|11:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MGS
[09/04/2009|11:56] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microgaming
[24/10/2009|18:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[26/10/2009|00:39] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft Help
[22/02/2009|14:46] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Real
[08/04/2009|19:35] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage

[12/10/2006|04:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe
[12/10/2006|04:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[06/11/2006|16:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\CyberLink
[12/10/2006|04:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[28/08/2007|16:49] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[12/10/2006|04:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[12/10/2006|04:25] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView

[22/02/2009|14:39] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft


[12/10/2006|04:25] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[15/08/2009|21:12] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Adobe
[16/09/2009|17:47] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft

[30/01/2009|23:47] C:\DOCUME~1\Maman\APPLIC~1\Adobe
[12/10/2006|04:25] C:\DOCUME~1\Maman\APPLIC~1\Apple Computer
[30/01/2009|23:53] C:\DOCUME~1\Maman\APPLIC~1\Brother
[06/11/2006|16:24] C:\DOCUME~1\Maman\APPLIC~1\CyberLink
[12/10/2006|04:25] C:\DOCUME~1\Maman\APPLIC~1\Identities
[28/08/2007|16:49] C:\DOCUME~1\Maman\APPLIC~1\Macromedia
[12/10/2006|04:25] C:\DOCUME~1\Maman\APPLIC~1\Microsoft
[31/01/2009|14:28] C:\DOCUME~1\Maman\APPLIC~1\Mozilla
[30/01/2009|23:39] C:\DOCUME~1\Maman\APPLIC~1\Nero
[30/01/2009|23:39] C:\DOCUME~1\Maman\APPLIC~1\Real
[12/10/2006|04:25] C:\DOCUME~1\Maman\APPLIC~1\SampleView

[12/10/2006|04:25] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[22/02/2009|14:39] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[27/10/2009 22:43][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{1451F9C3-478D-48B5-AF68-BAF38A16D379}.job
[24/10/2009 19:29][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[27/10/2009 23:56][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 16:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[22/02/2009|14:48] C:\Program Files\Adobe
[22/02/2009|14:49] C:\Program Files\Ahead
[21/06/2009|15:08] C:\Program Files\American Conquest
[29/11/2008|21:43] C:\Program Files\Apple Software Update
[10/09/2007|19:32] C:\Program Files\Astonsoft
[12/10/2008|11:14] C:\Program Files\Atari
[02/01/2008|23:12] C:\Program Files\Audacity
[07/03/2008|21:17] C:\Program Files\Audio Phonics, Inc
[01/06/2008|00:17] C:\Program Files\Auto-‚cole 3D
[09/04/2007|20:06] C:\Program Files\Avanquest update
[27/10/2009|01:19] C:\Program Files\Avira
[22/02/2009|14:47] C:\Program Files\Azureus
[04/07/2009|22:11] C:\Program Files\Babylon
[01/10/2009|18:21] C:\Program Files\Belkin
[14/08/2008|17:51] C:\Program Files\BodyBoarding
[17/06/2009|19:56] C:\Program Files\Bonjour
[13/10/2007|22:53] C:\Program Files\Boonty
[28/10/2007|14:31] C:\Program Files\BoontyGames
[15/02/2007|03:20] C:\Program Files\Brother
[24/07/2008|18:38] C:\Program Files\CA
[04/03/2008|17:01] C:\Program Files\Call of Duty
[22/11/2008|16:47] C:\Program Files\Call of Duty United Offensive Single Player Demo
[30/01/2009|23:45] C:\Program Files\CamStudio
[24/08/2009|22:01] C:\Program Files\CCleaner
[27/09/2008|10:47] C:\Program Files\CHRYOPROD
[21/11/2008|13:07] C:\Program Files\Common Files
[12/10/2006|04:26] C:\Program Files\ComPlus Applications
[04/07/2009|22:11] C:\Program Files\Conduit
[28/07/2008|20:46] C:\Program Files\Cossacks 2 - Battle for Europe
[12/10/2006|04:26] C:\Program Files\CyberLink
[31/10/2008|18:40] C:\Program Files\CyberMUT
[28/08/2007|16:05] C:\Program Files\DialMessenger
[22/11/2007|19:39] C:\Program Files\Dict‚e et M‚moire Musicale [DEMO]
[31/07/2007|20:53] C:\Program Files\DivX
[28/05/2007|14:23] C:\Program Files\eMule(2)
[27/04/2007|21:12] C:\Program Files\Enlight
[01/10/2009|21:49] C:\Program Files\ESET
[12/10/2008|18:34] C:\Program Files\Eurobarre
[24/10/2009|18:11] C:\Program Files\Fichiers communs
[02/06/2009|15:45] C:\Program Files\Firaxis Games
[06/04/2009|22:27] C:\Program Files\Firefly Studios
[15/09/2009|18:14] C:\Program Files\Fou-de-fric
[26/07/2009|00:02] C:\Program Files\Free Download Manager
[26/11/2007|19:33] C:\Program Files\GIMP-2.0
[28/08/2007|16:49] C:\Program Files\Google
[12/12/2008|18:33] C:\Program Files\gPotato.eu
[11/05/2009|18:05] C:\Program Files\GSC Game World
[07/09/2008|13:26] C:\Program Files\Handmark
[19/05/2007|21:09] C:\Program Files\Hasbro Interactive
[22/02/2009|15:30] C:\Program Files\Hercules
[07/09/2008|13:24] C:\Program Files\Ihsv
[04/03/2008|17:02] C:\Program Files\Image-Line
[01/10/2009|18:21] C:\Program Files\InstallShield Installation Information
[12/10/2006|04:27] C:\Program Files\Intel
[16/10/2009|16:50] C:\Program Files\Internet Explorer
[03/10/2009|21:16] C:\Program Files\iPod
[22/02/2009|14:00] C:\Program Files\iQon AntiVirus
[03/10/2009|21:18] C:\Program Files\iTunes
[17/02/2007|19:25] C:\Program Files\Jasc Software Inc
[17/08/2009|20:01] C:\Program Files\Java
[07/03/2008|21:04] C:\Program Files\Jld SoftWare
[18/10/2009|15:58] C:\Program Files\KC Softwares
[22/02/2009|14:46] C:\Program Files\K-Lite Codec Pack
[27/09/2007|19:04] C:\Program Files\Kodak
[23/02/2009|18:32] C:\Program Files\Labtec Laser Mouse Software
[21/11/2007|15:24] C:\Program Files\Lavalys
[01/06/2007|19:28] C:\Program Files\LG Electronics
[11/06/2007|20:30] C:\Program Files\LGGSM
[27/09/2008|09:42] C:\Program Files\LimeWire
[27/06/2009|16:10] C:\Program Files\Logitech
[29/07/2009|14:23] C:\Program Files\ma-config.com
[16/08/2009|01:06] C:\Program Files\Malwarebytes' Anti-Malware
[28/10/2007|14:30] C:\Program Files\Mes Jeux T‚l‚charg‚s
[07/04/2009|10:52] C:\Program Files\Messenger
[13/07/2009|01:02] C:\Program Files\Messenger Plus! Live
[28/02/2007|00:11] C:\Program Files\MessengerPlus! 3
[06/07/2007|11:12] C:\Program Files\Metin2_France
[17/08/2009|16:31] C:\Program Files\Micro Application
[24/10/2009|18:21] C:\Program Files\Microsoft
[26/10/2009|00:39] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[12/10/2006|04:29] C:\Program Files\microsoft frontpage
[22/02/2009|22:45] C:\Program Files\Microsoft Games
[14/06/2009|00:08] C:\Program Files\Microsoft Office
[24/10/2009|18:25] C:\Program Files\Microsoft Office Outlook Connector
[15/09/2009|06:20] C:\Program Files\Microsoft Silverlight
[24/10/2009|18:23] C:\Program Files\Microsoft SQL Server Compact Edition
[24/10/2009|18:24] C:\Program Files\Microsoft Sync Framework
[14/06/2009|00:08] C:\Program Files\Microsoft Visual Studio
[14/06/2009|00:09] C:\Program Files\Microsoft Works
[22/05/2009|00:29] C:\Program Files\Mindscape
[11/04/2008|21:34] C:\Program Files\mIRC
[09/04/2007|20:07] C:\Program Files\mobile PhoneTools
[31/10/2008|19:12] C:\Program Files\Monopoly
[07/04/2009|10:31] C:\Program Files\Movie Maker
[27/10/2009|01:15] C:\Program Files\Mozilla Firefox
[09/08/2009|18:55] C:\Program Files\MSBuild
[31/07/2009|15:02] C:\Program Files\MSN
[12/10/2006|04:27] C:\Program Files\MSN Gaming Zone
[13/07/2009|01:02] C:\Program Files\MSN Messenger
[28/09/2007|22:00] C:\Program Files\MSXML 4.0
[14/09/2007|22:14] C:\Program Files\Musicmatch
[25/07/2009|23:02] C:\Program Files\myBabylon_English
[04/10/2008|22:45] C:\Program Files\MySpace
[23/10/2009|22:19] C:\Program Files\MySpeedyAlert
[27/10/2009|23:57] C:\Program Files\Navilog1
[13/01/2008|00:40] C:\Program Files\Nero
[07/04/2009|10:29] C:\Program Files\NetMeeting
[15/02/2008|22:39] C:\Program Files\Norton Security Scan
[12/10/2006|04:27] C:\Program Files\Online Services
[07/03/2008|20:53] C:\Program Files\OOBOX
[21/06/2009|10:36] C:\Program Files\OpenAL
[03/03/2007|12:34] C:\Program Files\OpenOffice.org 2.1
[26/07/2009|19:13] C:\Program Files\Orange
[07/03/2008|20:48] C:\Program Files\Outils de Guitare-Online
[12/08/2009|22:49] C:\Program Files\Outlook Express
[17/02/2007|19:15] C:\Program Files\PhotoFiltre
[04/11/2007|01:23] C:\Program Files\Pizzicato 3
[28/05/2007|14:23] C:\Program Files\Pochette Express 2
[23/10/2009|11:00] C:\Program Files\PokerStars
[30/01/2009|23:11] C:\Program Files\Prophet Soft
[11/10/2007|17:22] C:\Program Files\QuickTime
[17/07/2007|10:25] C:\Program Files\Real
[22/02/2009|17:07] C:\Program Files\Realtek
[10/01/2008|17:33] C:\Program Files\RealVNC
[09/08/2009|18:55] C:\Program Files\Reference Assemblies
[15/08/2009|19:57] C:\Program Files\Safari
[21/01/2008|18:26] C:\Program Files\Samsung
[22/02/2009|15:38] C:\Program Files\Securitoo
[17/05/2009|18:48] C:\Program Files\SEGA
[12/10/2006|04:28] C:\Program Files\Services en ligne
[27/09/2008|09:54] C:\Program Files\Shareaza
[06/04/2009|22:33] C:\Program Files\Sierra
[02/06/2009|19:06] C:\Program Files\Sierra On-Line
[04/09/2008|18:26] C:\Program Files\Skype
[28/05/2007|11:45] C:\Program Files\Smart Projects
[27/10/2009|23:57] C:\Program Files\Steam
[27/04/2007|21:21] C:\Program Files\Strategy First
[20/11/2008|00:43] C:\Program Files\SystemRequirementsLab
[23/07/2009|19:01] C:\Program Files\Teamspeak2_RC2
[18/09/2008|19:13] C:\Program Files\TechSmith
[21/09/2007|18:45] C:\Program Files\TGTSoft
[12/10/2008|20:15] C:\Program Files\TightVNC
[09/08/2007|19:57] C:\Program Files\Toshiba
[21/04/2009|16:37] C:\Program Files\Ubisoft
[25/01/2009|00:30] C:\Program Files\UltraVNC
[12/10/2006|04:28] C:\Program Files\Uninstall Information
[12/09/2009|22:18] C:\Program Files\Utilitaire de configuration iPhone
[01/08/2008|22:57] C:\Program Files\uTorrent
[16/08/2009|01:49] C:\Program Files\Valve
[08/10/2007|19:28] C:\Program Files\vanBasco's Karaoke Player
[08/03/2008|00:02] C:\Program Files\Ventrilo
[17/03/2007|10:57] C:\Program Files\VideoLAN
[12/08/2008|19:44] C:\Program Files\VirtualDJ
[10/09/2007|19:36] C:\Program Files\VSO
[04/03/2008|17:02] C:\Program Files\VstPlugins
[21/11/2008|13:01] C:\Program Files\Web Media Player
[24/10/2009|18:24] C:\Program Files\Windows Live
[24/10/2009|18:20] C:\Program Files\Windows Live SkyDrive
[20/06/2009|21:28] C:\Program Files\Windows Media Connect 2
[20/06/2009|21:28] C:\Program Files\Windows Media Player
[07/04/2009|10:28] C:\Program Files\Windows NT
[12/10/2006|04:28] C:\Program Files\Windows Plus
[12/10/2006|04:28] C:\Program Files\WindowsUpdate
[22/02/2009|14:49] C:\Program Files\WinRAR
[28/02/2007|00:13] C:\Program Files\WinTV
[10/09/2008|18:29] C:\Program Files\Woonoz
[12/10/2006|04:29] C:\Program Files\xerox
[14/04/2009|22:20] C:\Program Files\Xfire
[27/10/2009|08:16] C:\Program Files\Yahoo!
[12/08/2009|22:43] C:\Program Files\YesMessenger

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[28/07/2008|20:47] C:\Program Files\Fichiers communs\Adobe
[22/02/2009|14:49] C:\Program Files\Fichiers communs\Ahead
[03/10/2009|21:16] C:\Program Files\Fichiers communs\Apple
[13/10/2007|22:55] C:\Program Files\Fichiers communs\BOONTY Shared
[14/06/2009|00:08] C:\Program Files\Fichiers communs\DESIGNER
[22/02/2009|15:35] C:\Program Files\Fichiers communs\France Telecom
[15/02/2007|03:20] C:\Program Files\Fichiers communs\InstallShield
[17/02/2007|18:47] C:\Program Files\Fichiers communs\Java
[27/09/2007|19:02] C:\Program Files\Fichiers communs\Kodak
[15/02/2007|03:10] C:\Program Files\Fichiers communs\Logitech
[29/09/2007|21:11] C:\Program Files\Fichiers communs\Macrovision Shared
[24/10/2009|18:21] C:\Program Files\Fichiers communs\Microsoft Shared
[12/10/2006|04:27] C:\Program Files\Fichiers communs\MSSoap
[13/01/2008|00:43] C:\Program Files\Fichiers communs\Nero
[12/10/2006|04:27] C:\Program Files\Fichiers communs\ODBC
[13/09/2007|21:19] C:\Program Files\Fichiers communs\Real
[12/10/2006|04:27] C:\Program Files\Fichiers communs\Services
[04/09/2008|18:25] C:\Program Files\Fichiers communs\Skype
[12/10/2006|04:27] C:\Program Files\Fichiers communs\SpeechEngines
[14/09/2007|21:58] C:\Program Files\Fichiers communs\SureThing Shared
[14/06/2009|00:04] C:\Program Files\Fichiers communs\System
[24/10/2009|18:11] C:\Program Files\Fichiers communs\Windows Live
[18/09/2008|19:13] C:\Program Files\Fichiers communs\Wise Installation Wizard
[13/09/2007|21:20] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 51 Processes )

iexplore.exe ~ [PID:3804]
iexplore.exe ~ [PID:2752]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ADMINI~1.8CE\Cookies\administrateur@advertising[1].txt

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-28 00:45:03
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:64][D:5]-> C:\DOCUME~1\ADMINI~1.8CE\LOCALS~1\Temp
[F:938][D:0]-> C:\DOCUME~1\ADMINI~1.8CE\Cookies
[F:20381][D:28]-> C:\DOCUME~1\ADMINI~1.8CE\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 27/10/2009|12:58 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 27/10/2009|13:02 - Option : [1]
3 - "C:\Lop SD\LopR_3.txt" - 28/10/2009| 0:48 - Option : [4]

--------------------\\ Fin du rapport a 0:48:56

Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.

Double-clique sur le fichier téléchargé pour lancer le processus d'installation.

Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.

Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.

Sélectionne Exécuter un examen rapide.

Clique sur Rechercher. L'analyse démarre.

A la fin de l'analyse, un message s'affiche :

Citation :

L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.

Ferme tes navigateurs.

Si des malwares ont été détectés, clique sur Afficher les résultats.

Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.

MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.

Malwarebytes' Anti-Malware 1.41
Version de la base de données: 3050
Windows 5.1.2600 Service Pack 3
29/10/2009 11:54:42
mbam-log-2009-10-29 (11-54-42).txt
Type de recherche: Examen rapide
Eléments examinés: 202240
Temps écoulé: 5 hour(s), 11 minute(s), 20 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\WINDOWS\system32\UACborsbdaojg.db (Rootkit.TDSS) -> Quarantined and deleted successfully.

Le PC va mieux ?

Relance MBAM, va dans Quarantaine et supprime tout.

Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.

Double-clique sur RSIT.exe afin de lancer le programme.
(Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)

Clique sur Continue à l'écran Disclaimer.

Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

Note : les rapports sont sauvegardés dans le dossier C:\rsit.

nfo.txt logfile of random's system information tool 1.06 2009-10-29 22:34:38
======Uninstall list======
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
A Prendre ou A Laisser-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BCD2A0D8-D7B0-4E7B-943A-0960DE62BD11}\setup.exe" -l0x40c -removeonly
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 7.0 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70000000000}
American Conquest-->C:\Program Files\American Conquest\uninstall.exe
Apple Application Support-->MsiExec.exe /I{0C34B801-6AEC-4667-B053-03A67E2D0415}
Apple Mobile Device Support-->MsiExec.exe /I{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
Azureus-->C:\Program Files\Azureus\Uninstall.exe
Belkin Wireless G USB Adapter Software-->C:\Program Files\InstallShield Installation Information\{D593C72C-435B-4171-8106-9CA8AA34D716}\SETUP.EXE -v"ISSCRIPTCMDLINE=\"-d -zREMOVE\"" -l0x040c -removeonly
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Caesar 3-->C:\WINDOWS\IsUn040c.exe -fC:\SIERRA\Caesar3\Uninst.isu
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
Code de la Route-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{10890BBB-5CBB-468B-88E7-C83D56DE2440}\setup.exe" -l0x40c
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
Counter-Strike-->"C:\Program Files\Steam\steam.exe" steam://uninstall/10
Day of Defeat-->"C:\Program Files\Steam\steam.exe" steam://uninstall/30
Deathmatch Classic-->"C:\Program Files\Steam\steam.exe" steam://uninstall/40
Empire Earth II: Art of Supremacy-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F596C356-BF35-4ED7-981C-CC791461A8F0}\setup.exe" -l0x40c -removeonly
Empire Earth II-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DF315348-721C-40B8-BAE2-58C6C7D935A2}\setup.exe" -l0x40c -removeonly
eoEngine 9.1-->"C:\Program Files\EoRezo\unins000.exe"
Favorit-->"c:\documents and settings\administrateur.8ce05c6168cf4ee\local settings\application data\oqegqcu.exe" -uninstall
Fou-de-fric 2.0-->"C:\Program Files\Fou-de-fric\unins000.exe"
Free Download Manager 3.0-->C:\Program Files\Free Download Manager\uninst.exe
Galerie de photos Windows Live-->MsiExec.exe /X{B131E59D-202C-43C6-84C9-68F0C37541F1}
Heroes of Might and Magic V-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{20071984-5EB1-4881-8EDB-082532ACEC6D}\setup.exe" -l0x40c
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\DOCUME~1\ADMINI~1.8CE\LOCALS~1\Temp\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
Intel(R) Graphics Media Accelerator Driver-->C:\WINDOWS\system32\igxpun.exe -uninstall
iTunes-->MsiExec.exe /I{DA34FE93-5DC5-48E0-ACC8-A5389E05BB51}
J2SE Runtime Environment 5.0 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150070}
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
KC Softwares IDPhotoStudio-->"C:\Program Files\KC Softwares\IDPhotoStudio\unins000.exe"
K-Lite Mega Codec Pack 1.38-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Kyuubi-Game-->"C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\Kyuubi-Game\unins000.exe"
Labtec Laser Mouse Software-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Labtec Laser Mouse Software\uninst.isu" -c"C:\Program Files\Labtec Laser Mouse Software\UnInst.dll"
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Logiciel QuickCam de Logitech-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}\setup.exe" -l0x40c
Ma-Config.com-->MsiExec.exe /X{6C4D4FC0-467B-4BD7-8D11-50E49B2770D2}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Messenger Plus! Live & Sponsor (CiD)-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Age of Empires II-->"C:\Program Files\Microsoft Games\Age of Empires II\UNINSTAL.EXE" /runtemp /uninstall
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office Live Add-in 1.3-->MsiExec.exe /I{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
Microsoft Office Outlook Connector-->MsiExec.exe /I{95120000-0122-040C-0000-0000000FF1CE}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Professional Plus 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Search Enhancement Pack-->MsiExec.exe /X{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB969897)-->"C:\WINDOWS\ie8updates\KB969897-IE8\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->"C:\WINDOWS\ie8updates\KB972260-IE8\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB974455)-->"C:\WINDOWS\ie8updates\KB974455-IE8\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB963027)-->"C:\WINDOWS\$NtUninstallKB963027$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969897)-->"C:\WINDOWS\$NtUninstallKB969897$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Mise à jour pour Windows Internet Explorer 8 (KB971930)-->"C:\WINDOWS\ie8updates\KB971930-IE8\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB961503)-->"C:\WINDOWS\$NtUninstallKB961503$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
MobileMe Control Panel-->MsiExec.exe /I{3AC54383-31D1-4907-961B-B12CBB1D0AE8}
Mozilla Firefox (3.5.2)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
My Speedy Alert-->"C:\Program Files\MySpeedyAlert\uninstall.exe"
myBabylon_English Toolbar-->C:\PROGRA~1\MYBABY~1\UNWISE.EXE /U C:\PROGRA~1\MYBABY~1\INSTALL.LOG
Nero 6 Ultra Edition-->C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
OpenAL-->"C:\Program Files\OpenAL\OalinstGridRelease.exe" /U
Orange Plug-in messagerie vocale 888-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{16E79B1D-D1C2-4CA6-8B23-F4D890E0DCB9}\Setup.exe" -l0x40c --AddRemove
Orange WebTV Player 1.28971-->"C:\Program Files\Orange\Orange WebTV Player\unins000.exe"
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"
PokerStars-->"C:\Program Files\PokerStars\PokerStarsUninstall.exe" /u okerStars
Programme de gestion Camera de Logitech®-->"C:\Program Files\Fichiers communs\Logitech\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT
QuickTime-->MsiExec.exe /I{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
Safari-->MsiExec.exe /I{E56D39F8-2A9F-44B4-B068-A72E45A073E6}
Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
Security Update for 2007 Microsoft Office System (KB960003)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {F04F8702-18D0-458D-921E-146FB7CD38CF}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC}
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Sid Meier's Civilization 4-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CFBCE791-2D53-4FCE-B3FB-D6E01F4112E8}\setup.exe" -l0x40c -removeonly
SilverDollar Casino-->MsiExec.exe /I{25AED474-38C5-44F1-9EE2-F232569B29BB}
SoftwareUpdate 1.0-->"C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\eoRezo\SoftwareUpdate\unins000.exe"
Steam-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Stronghold 2 Deluxe-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{16D2C649-CBA8-44EE-B730-12584667D487}\setup.exe" -l0x40c -removeonly
Swiss Casino-->"C:\Casino\Swiss Casino\_SetupCasino_3bc2.exe" /uninstall
System Requirements Lab-->C:\Program Files\SystemRequirementsLab\Uninstall.exe
TeamSpeak 2 RC2-->"C:\Program Files\Teamspeak2_RC2\unins000.exe"
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756}
Update for Outlook 2007 Junk Email Filter (KB974810)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {C05FBAD5-A211-4E86-BB51-7E07B80C9233}
Utilitaire de configuration iPhone-->MsiExec.exe /I{FA54AFB1-5745-4389-B8C1-9F7509672ED1}
Utilitaires Sierra-->C:\Program Files\Sierra On-Line\sutil32.exe uninstall
VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{ED00D08A-3C5F-488D-93A0-A04F21F23956}
Windows Live Contrôle parental-->MsiExec.exe /X{D5D81435-B8DE-4CAF-867F-7998F2B92CFC}
Windows Live FolderShare-->MsiExec.exe /X{2075CB0A-D26F-4DAA-B424-5079296B43BA}
Windows Live Mail-->MsiExec.exe /I{5DD76286-9BE7-4894-A990-E905E91AC818}
Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Live Writer-->MsiExec.exe /X{4634B21A-CC07-4396-890C-2B8168661FEA}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
Xfire (remove only)-->"C:\Program Files\Xfire\uninst.exe"
Zombie Panic! Source-->"C:\Program Files\Steam\steam.exe" steam://uninstall/17500
======Security center information======
AV: AntiVir Desktop
======System event log======
Computer Name: 8CE05C6168CF4EE
Event Code: 4201
Message: Le système a détecté que la carte réseau \DEVICE\TCPIP_{A6BEC401-3DBC-415F-8021-2C501F87AEA1} était connectée au réseau,
et a lancé une opération normale sur la carte réseau.
Record Number: 14084
Source Name: Tcpip
Time Written: 20090930194626.000000+120
Event Type: Informations
User:
Computer Name: 8CE05C6168CF4EE
Event Code: 7035
Message: Un contrôle Arrêter a correctement été envoyé au service Configuration automatique sans fil.
Record Number: 14083
Source Name: Service Control Manager
Time Written: 20090930194625.000000+120
Event Type: Informations
User: 8CE05C6168CF4EE\Administrateur
Computer Name: 8CE05C6168CF4EE
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service GTNDIS5 NDIS Protocol Driver.
Record Number: 14082
Source Name: Service Control Manager
Time Written: 20090930194622.000000+120
Event Type: Informations
User: 8CE05C6168CF4EE\Administrateur
Computer Name: 8CE05C6168CF4EE
Event Code: 7036
Message: Le service Service COM de gravage de CD IMAPI est entré dans l'état : arrêté.
Record Number: 14081
Source Name: Service Control Manager
Time Written: 20090930194219.000000+120
Event Type: Informations
User:
Computer Name: 8CE05C6168CF4EE
Event Code: 7036
Message: Le service Service de l’iPod est entré dans l'état : en cours d'exécution.
Record Number: 14080
Source Name: Service Control Manager
Time Written: 20090930194213.000000+120
Event Type: Informations
User:
=====Application event log=====
Computer Name: 8CE05C6168CF4EE
Event Code: 2002
Message:
Record Number: 5
Source Name: EAPOL
Time Written: 20090814142553.000000+120
Event Type: Informations
User:
Computer Name: 8CE05C6168CF4EE
Event Code: 2003
Message:
Record Number: 4
Source Name: EAPOL
Time Written: 20090814142553.000000+120
Event Type: Informations
User:
Computer Name: 8CE05C6168CF4EE
Event Code: 0
Message:
Record Number: 3
Source Name: iPod Service
Time Written: 20090814142551.000000+120
Event Type: Informations
User:
Computer Name: 8CE05C6168CF4EE
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.
Record Number: 2
Source Name: SecurityCenter
Time Written: 20090814142423.000000+120
Event Type: Informations
User:
Computer Name: 8CE05C6168CF4EE
Event Code: 1
Message:
Record Number: 1
Source Name: Bonjour Service
Time Written: 20090814142423.000000+120
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\K-Lite Codec Pack\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 4 Stepping 7, GenuineIntel
"PROCESSOR_REVISION"=0407
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrateur at 2009-10-29 22:34:04
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 133 GB (57%) free of 234 GB
Total RAM: 1015 MB (4% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:34:26, on 29/10/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\MySpeedyAlert\Main.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Belkin\F5D7050v5\Belkinwcui.exe
C:\Program Files\Labtec Laser Mouse Software\MulMouse.exe
C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fou-de-fric\Fou-de-fric.exe
C:\DOCUME~1\ADMINI~1.8CE\LOCALS~1\Temp\Rar$EX00.469\intellibarre0.979.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\WINDOWS\system32\MsiExec.exe
C:\WINDOWS\system32\MsiExec.exe
C:\PROGRA~1\FREEDO~1\FDM.exe
C:\Downloads\Software\RSIT.exe
C:\Program Files\trend micro\Administrateur.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.tinit.org/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll (file missing)
R3 - URLSearchHook: myBabylon English Toolbar - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyB1.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: myBabylon English Toolbar - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyB1.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: myBabylon English Toolbar - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyB1.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\K-Lite Codec Pack\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [My Speedy Alert] "C:\Program Files\MySpeedyAlert\Main.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [AcidSend] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\FOURKN~1\1user.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [intellibarre] C:\DOCUME~1\ADMINI~1.8CE\LOCALS~1\Temp\Rar$EX00.469\intellibarre0.979.exe
O4 - S-1-5-18 Startup: Notification de cadeaux MSN.lnk = C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: Notification de cadeaux MSN.lnk = C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe (User 'Default user')
O4 - Startup: Notification de cadeaux MSN.lnk = C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
O4 - Global Startup: Belkin Wireless G USB Adapter Client Utility.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Réglages souris Labtec.lnk = C:\Program Files\Labtec Laser Mouse Software\MulMouse.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://go.microsoft.com/fwlink/?LinkId=69157
O15 - Trusted Zone: http://*.mappy.com
O15 - Trusted Zone: http://*.orange.fr
O15 - Trusted Zone: http://rw.search.ke.voila.fr
O15 - Trusted Zone: http://orange.weborama.fr
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.systemrequirementslab.com/srl_bin/sysreqlab_...
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/Gam...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.ma-config.com/activex/MaConfig_3_5_1_0.cab
O16 - DPF: {9DF1C00D-8426-4337-972C-DC042D19A916} (FTMediaPlayer Class) - http://webtv.guidetv.orange.fr/resources/OCS_8971.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
--
End of file - 11059 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{1451F9C3-478D-48B5-AF68-BAF38A16D379}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}]
myBabylon English Toolbar - C:\Program Files\myBabylon_English\tbmyB1.dll [2009-07-25 2215960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2009-03-02 98304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-25 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-07-25 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - myBabylon English Toolbar - C:\Program Files\myBabylon_English\tbmyB1.dll [2009-07-25 2215960]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2007-12-19 135168]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2007-12-19 159744]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2007-12-19 131072]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-09-30 16864768]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]
"LVCOMSX"=C:\WINDOWS\system32\LVCOMSX.EXE [2005-07-19 221184]
"LogitechVideoRepair"=C:\Program Files\Logitech\Video\ISStart.exe [2005-06-08 458752]
"LogitechVideoTray"=C:\Program Files\Logitech\Video\LogiTray.exe [2005-06-08 217088]
"AppleSyncNotifier"=C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2009-08-13 177440]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-25 149280]
"QuickTime Task"=C:\Program Files\K-Lite Codec Pack\QuickTime\qttask.exe [2009-09-05 417792]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-09-21 305440]
"My Speedy Alert"=C:\Program Files\MySpeedyAlert\Main.exe [2007-11-25 126976]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"LogitechSoftwareUpdate"=C:\Program Files\Logitech\Video\ManifestEngine.exe [2005-06-08 196608]
"AcidSend"=C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\FOURKN~1\1user.exe []
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
"Steam"=c:\program files\steam\steam.exe [2009-10-25 1217808]
"intellibarre"=C:\DOCUME~1\ADMINI~1.8CE\LOCALS~1\Temp\Rar$EX00.469\intellibarre0.979.exe [2008-05-14 6459484]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EoEngine]
C:\Program Files\EoRezo\EoEngine.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
C:\Program Files\MSN Messenger\MsnMsgr.Exe /background []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Administrateur.8CE05C6168CF4EE^Menu Démarrer^Programmes^Démarrage^Xfire.lnk]
C:\PROGRA~1\Xfire\Xfire.exe [2005-11-01 3248776]
C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage
Belkin Wireless G USB Adapter Client Utility.lnk - C:\Program Files\Belkin\F5D7050v5\Belkinwcui.exe
Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
Réglages souris Labtec.lnk - C:\Program Files\Labtec Laser Mouse Software\MulMouse.exe
C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Menu Démarrer\Programmes\Démarrage
Notification de cadeaux MSN.lnk - C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-12-19 208896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265088]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Microsoft Games\Age of Empires II\EMPIRES2.ICD"="C:\Program Files\Microsoft Games\Age of Empires II\EMPIRES2.ICD:*:Enabled:Age of Empires II"
"C:\Program Files\Firefly Studios\Stronghold 2\Stronghold2.exe"="C:\Program Files\Firefly Studios\Stronghold 2\Stronghold2.exe:*:Enabled:Stronghold 2"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\WINDOWS\system32\usmt\migwiz.exe"="C:\WINDOWS\system32\usmt\migwiz.exe:*:Enabled:Assistant Transfert de fichiers et de paramètres"
"C:\Program Files\Sierra\Empire Earth II\EE2.exe"="C:\Program Files\Sierra\Empire Earth II\EE2.exe:*:Enabled:Empire Earth II"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\Firaxis Games\Sid Meier's Civilization 4\Civilization4.exe"="C:\Program Files\Firaxis Games\Sid Meier's Civilization 4\Civilization4.exe:*:Enabled:Sid Meier's Civilization 4"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Steam\SteamApps\jerem64600\counter-strike\hl.exe"="C:\Program Files\Steam\SteamApps\jerem64600\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"
"C:\Program Files\Steam\SteamApps\jerem64600\deathmatch classic\hl.exe"="C:\Program Files\Steam\SteamApps\jerem64600\deathmatch classic\hl.exe:*:Enabled:Half-Life Launcher"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"
======List of files/folders created in the last 1 months======
2009-10-29 22:34:09 ----D---- C:\Program Files\trend micro
2009-10-29 22:34:04 ----D---- C:\rsit
2009-10-29 19:08:23 ----D---- C:\WINDOWS\LastGood
2009-10-27 23:53:48 ----A---- C:\cleannavi.txt
2009-10-27 23:53:16 ----D---- C:\Program Files\Navilog1
2009-10-27 12:53:15 ----A---- C:\lopR.txt
2009-10-27 12:52:51 ----D---- C:\Lop SD
2009-10-27 01:19:48 ----D---- C:\Program Files\Avira
2009-10-27 01:19:48 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Avira
2009-10-26 22:43:11 ----A---- C:\WINDOWS\ntbtlog.txt
2009-10-26 00:40:01 ----HDC---- C:\WINDOWS\$NtUninstallKB961503$
2009-10-26 00:39:25 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2009-10-26 00:34:28 ----D---- C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\VTExtra
2009-10-26 00:33:29 ----D---- C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\KC Softwares
2009-10-25 11:16:36 ----A---- C:\WINDOWS\system32\muweb.dll
2009-10-25 11:16:36 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2009-10-25 11:16:36 ----A---- C:\WINDOWS\system32\mucltui.dll
2009-10-24 18:25:20 ----D---- C:\Program Files\Microsoft Office Outlook Connector
2009-10-24 18:24:06 ----D---- C:\Program Files\Microsoft Sync Framework
2009-10-24 18:23:04 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2009-10-24 18:21:16 ----D---- C:\Program Files\Microsoft
2009-10-24 18:20:58 ----D---- C:\Program Files\Windows Live SkyDrive
2009-10-24 18:11:22 ----D---- C:\Program Files\Fichiers communs\Windows Live
2009-10-23 22:19:46 ----D---- C:\Program Files\MySpeedyAlert
2009-10-22 17:49:20 ----D---- C:\Program Files\PokerStars
2009-10-19 23:29:45 ----D---- C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\Kyuubi-Game
2009-10-19 23:29:45 ----D---- C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\KyuubiGame
2009-10-18 15:58:20 ----D---- C:\Program Files\KC Softwares
2009-10-18 10:34:57 ----D---- C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\KyuubiBarre
2009-10-16 16:21:13 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2009-10-16 16:18:08 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2009-10-16 16:18:00 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2009-10-16 16:17:54 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2009-10-16 16:17:46 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2009-10-16 16:17:37 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2009-10-16 16:17:27 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2009-10-16 16:17:18 ----HDC---- C:\WINDOWS\$NtUninstallKB973525$
2009-10-16 16:17:04 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2009-10-04 18:59:52 ----D---- C:\Program Files\Steam
2009-10-01 21:49:54 ----D---- C:\Program Files\ESET
2009-10-01 18:23:16 ----A---- C:\WINDOWS\RTacDbg.txt
2009-10-01 18:21:30 ----D---- C:\Program Files\Belkin
2009-10-01 18:21:23 ----D---- C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\InstallShield
======List of files/folders modified in the last 1 months======
2009-10-29 22:34:24 ----SHD---- C:\WINDOWS\Installer
2009-10-29 22:34:18 ----SHD---- C:\Config.Msi
2009-10-29 22:34:09 ----RD---- C:\Program Files
2009-10-29 22:33:25 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-10-29 22:32:40 ----AD---- C:\WINDOWS\system32
2009-10-29 22:32:24 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft Help
2009-10-29 22:27:29 ----D---- C:\WINDOWS\Prefetch
2009-10-29 19:08:35 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-10-29 19:08:30 ----HD---- C:\WINDOWS\inf
2009-10-29 19:08:30 ----D---- C:\WINDOWS\Temp
2009-10-29 19:08:29 ----D---- C:\WINDOWS\Help
2009-10-29 19:08:25 ----D---- C:\WINDOWS\system32\CatRoot2
2009-10-29 19:08:23 ----D---- C:\WINDOWS
2009-10-28 11:28:14 ----D---- C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\Free Download Manager
2009-10-28 09:39:35 ----A---- C:\WINDOWS\NeroDigital.ini
2009-10-28 07:16:28 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-10-28 00:55:29 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-10-28 00:55:26 ----D---- C:\WINDOWS\system32\drivers
2009-10-28 00:46:37 ----D---- C:\Program Files\Mozilla Firefox
2009-10-28 00:01:28 ----D---- C:\Downloads
2009-10-27 08:16:13 ----D---- C:\Program Files\Yahoo!
2009-10-27 01:19:13 ----D---- C:\WINDOWS\WinSxS
2009-10-27 01:17:25 ----D---- C:\WINDOWS\network diagnostic
2009-10-26 23:10:50 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-10-26 00:31:53 ----SD---- C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\Microsoft
2009-10-25 11:26:20 ----HD---- C:\WINDOWS\$hf_mig$
2009-10-24 20:58:08 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-10-24 20:13:58 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Messenger Plus!
2009-10-24 19:33:36 ----RSD---- C:\WINDOWS\assembly
2009-10-24 19:33:18 ----D---- C:\WINDOWS\Microsoft.NET
2009-10-24 18:24:42 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-10-24 18:24:40 ----D---- C:\Program Files\Windows Live
2009-10-24 18:23:56 ----SD---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft
2009-10-24 18:23:19 ----D---- C:\WINDOWS\system32\DirectX
2009-10-24 18:11:22 ----D---- C:\Program Files\Fichiers communs
2009-10-16 16:50:06 ----D---- C:\Program Files\Internet Explorer
2009-10-16 16:22:01 ----A---- C:\WINDOWS\imsins.BAK
2009-10-11 22:01:27 ----D---- C:\Documents and Settings\Administrateur.8CE05C6168CF4EE\Application Data\Adobe
2009-10-03 21:18:51 ----D---- C:\Program Files\iTunes
2009-10-03 21:16:06 ----D---- C:\Program Files\iPod
2009-10-03 21:16:02 ----D---- C:\Program Files\Fichiers communs\Apple
2009-10-02 19:01:57 ----A---- C:\WINDOWS\system32\MRT.exe
2009-10-01 18:21:28 ----HD---- C:\Program Files\InstallShield Installation Information
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R1 moufiltr;Mouse Filter Driver; C:\WINDOWS\system32\drivers\moufiltr.sys [2006-05-08 9969]
R1 MUsbFltr;WayTechUSBFilterDriver; C:\WINDOWS\system32\drivers\MUsbFltr.sys [2006-06-27 9088]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-10-27 28520]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.5.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2009-10-01 21035]
R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-10-27 55656]
R2 EAPPkt;Realtek EAPPkt Protocol; C:\WINDOWS\system32\DRIVERS\EAPPkt.sys [2006-11-15 38144]
R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-08-05 54752]
R3 BELKIN;Belkin Wireless G USB Network Adapter; C:\WINDOWS\system32\DRIVERS\BLKWGU.sys [2007-12-18 273280]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-12-19 5854688]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-10-02 4878336]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-28 12288]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2008-04-07 105088]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys [2005-05-27 22016]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2005-05-27 7136]
S3 PID_08A0;QuickCam IM(PID_08A0); C:\WINDOWS\system32\DRIVERS\LV302AV.SYS [2005-05-27 913280]
S3 RT73;Belkin Wireless 54G USB Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\rt73.sys [2007-10-02 451968]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-06-05 39424]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-10-27 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-10-27 185089]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-06-05 144712]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-07-25 153376]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-09-21 545568]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 fsssvc;Service Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-05-29 234864]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------

Ok, on continue le nettoyage.


1/

Lance ce fichier : C:\Program Files\trend micro\Administrateur.exe

Choisis Do a system scan only.

Coche les cases qui sont devant les lignes suivantes :

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O4 - HKCU\..\Run: [AcidSend] C:\DOCUME~1\ADMINI~1.8CE\APPLIC~1\FOURKN~1\1user.exe

O4 - HKCU\..\Run: [intellibarre] C:\DOCUME~1\ADMINI~1.8CE\LOCALS~1\Temp\Rar$EX00.469\intellibarre0.979.exe

Clique en bas sur Fix checked. Mets oui si HijackThis te demande quelque chose.

Ferme HijackThis.


2/

Télécharge Ad-Remover (de Cyrildu17 / C_XX) sur ton Bureau.

/!\ Déconnecte-toi et ferme toutes applications en cours /!\

Double-clique sur AD-R situé sur ton Bureau pour le lancer.
(Sous Vista, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)

Choisis la langue F pour français.

Au menu principal, choisis l'option L.

/!\ Laisse travailler l'outil /!\

Poste le rapport qui apparaît à la fin (C:\Ad-Report-CLEAN.log).

"Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Kaspersky, etc.) comme étant un RiskTool. Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.