Mon Pc est instable

Bonjour,

Désinstalle Dealio Toolbar et Search Settings.

Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.

Double-clique sur RSIT.exe afin de lancer le programme.
(Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)

Clique sur Continue à l'écran Disclaimer.

Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

Note : les rapports sont sauvegardés dans le dossier C:\rsit.

Merci de ta réponse rapide

Log txt :

Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrateur at 2009-12-16 21:43:37
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 35 GB (11%) free of 305 GB
Total RAM: 2046 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:43:41, on 16/12/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\FileZilla Server\FileZilla Server.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\libusbd-nt.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\SVCHOST.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\MessengerDiscovery 2\MessengerDiscovery 2.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\MessengerDiscovery 2\MessengerDiscovery 2.exe
C:\Program Files\Vuze\Azureus.exe
C:\Program Files\Electronic Arts\The Saboteur\Saboteur.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Administrateur\Bureau\Firefox\RSIT(2).exe
C:\Documents and Settings\Administrateur\Bureau\Firefox\Administrateur.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.ask.com?o=15161&l=dis
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [FileZilla Server Interface] "C:\Program Files\FileZilla Server\FileZilla Server Interface.exe"
O4 - HKLM\..\Run: [SVCHOST] C:\WINDOWS\MDM.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /install
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [FLV Downloader] C:\Program Files\Moyea\YouTube FLV Downloader\FLVDownloader.exe -autorun
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [RGSC] C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - HKCU\..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [ProConnective] C:\Documents and Settings\Administrateur\Bureau\Nouveau dossier\ProConnective.exe /tr:1
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [AdobeUpdater] "C:\Program Files\Fichiers communs\Adobe\Updater5\AdobeUpdater.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O4 - Startup: GameRanger.lnk = C:\Documents and Settings\Administrateur\Application Data\GameRanger\GameRanger\GameRanger.exe
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\Xfire.exe
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: Orbit.lnk = C:\Program Files\Orbitdownloader\orbitdm.exe
O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201
O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203
O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - AppInit_DLLs: TeknoGods.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FileZilla Server FTP server (FileZilla Server) - FileZilla Project - C:\Program Files\FileZilla Server\FileZilla Server.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LibUsb-Win32 - Daemon, Version 0.1.10.1 (libusbd) - http://libusb-win32.sourceforge.net - C:\WINDOWS\system32\libusbd-nt.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 11459 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000123B4-9B42-4900-B3F7-F4B073EFC214}]
Octh Class - C:\Program Files\Orbitdownloader\orbitcth.dll [2009-05-04 171208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-05-12 312928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-12-01 263280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-05 764912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2009-09-02 1175944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-22 41368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-07-22 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{C55BBCD6-41AD-48AD-9953-3609C48EACC7} - Grab Pro - C:\Program Files\Orbitdownloader\GrabPro.dll [2009-05-04 670840]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2009-09-02 1175944]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-12-01 263280]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"UnlockerAssistant"=C:\Program Files\Unlocker\UnlockerAssistant.exe [2008-05-02 15872]
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-05-12 198160]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2006-01-12 155648]
"AppleSyncNotifier"=C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2009-08-13 177440]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2007-04-16 577536]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-22 148888]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"FileZilla Server Interface"=C:\Program Files\FileZilla Server\FileZilla Server Interface.exe [2009-09-06 1230336]
"SVCHOST"=C:\WINDOWS\MDM.EXE [2009-12-16 22016]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-09-05 417792]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-09-21 305440]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2009-09-23 1657448]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-09-27 13918208]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-09-27 86016]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
"FLV Downloader"=C:\Program Files\Moyea\YouTube FLV Downloader\FLVDownloader.exe [2009-03-13 3549696]
"Steam"=c:\program files\steam\steam.exe [2009-10-24 1217808]
"RGSC"=C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe [2009-05-17 306088]
"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe [2008-07-22 2772992]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-03-20 1312256]
"ProConnective"=C:\Documents and Settings\Administrateur\Bureau\Nouveau dossier\ProConnective.exe /tr:1 []
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-06-07 39408]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-13 1695232]
"AdobeUpdater"=C:\Program Files\Fichiers communs\Adobe\Updater5\AdobeUpdater.exe []
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2009-10-15 289072]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
BlueSoleil.lnk - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe
Orbit.lnk - C:\Program Files\Orbitdownloader\orbitdm.exe

C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Démarrage
GameRanger.lnk - C:\Documents and Settings\Administrateur\Application Data\GameRanger\GameRanger\GameRanger.exe
OpenOffice.org 3.1.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
Xfire.lnk - C:\Program Files\Xfire\Xfire.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="TeknoGods.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2008-10-19 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=1
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDesktopCleanupWizard"=1
"NoInstrumentation"=0
"NoResolveTrack"=1
"NoSMBalloonTip"=1
"NoSMConfigurePrograms"=1
"NoStartMenuMFUprogramsList"=0
"NoStrCmpLogical"=0
"NoWelcomeScreen"=1
"NoDriveAutoRun"=FFFFFFFF
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HideRunAsVerb"=
"NoActiveDesktop"=
"NoDriveTypeAutoRun"=
"NoInstrumentation"=
"NoResolveTrack"=
"NoStartMenuMFUprogramsList"=
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoSetActiveDesktop"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"
"C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe"="C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutLauncher.exe"="C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutLauncher.exe:*:Enabled:Burnout(TM) Paradise The Ultimate Box"
"C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe"="C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe:*:Enabled:Burnout(TM) Paradise The Ultimate Box"
"C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe"="C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe:*:Enabled:Burnout(TM) Paradise The Ultimate Box"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled nkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled nkBstrB"
"C:\Program Files\Activision\X-Men Origins - Wolverine(TM)\Binaries\Wolverine.exe"="C:\Program Files\Activision\X-Men Origins - Wolverine(TM)\Binaries\Wolverine.exe:*:Enabled:X-Men Origins - Wolverine(TM)"
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)"
"C:\Program Files\Activision\Call of Duty - World at War\CoDWaWmp.exe"="C:\Program Files\Activision\Call of Duty - World at War\CoDWaWmp.exe:*:Enabled:Call of Duty(R) - World at War(TM)"
"C:\Program Files\Activision\Call of Duty - World at War\CoDWaW.exe"="C:\Program Files\Activision\Call of Duty - World at War\CoDWaW.exe:*:Enabled:Call of Duty(R) - World at War(TM)"
"C:\Program Files\Activision\Quantum of Solace(TM)\JB_LiveEngine_s.exe"="C:\Program Files\Activision\Quantum of Solace(TM)\JB_LiveEngine_s.exe:*:Enabled:Quantum of Solace(TM)"
"C:\Program Files\Orbitdownloader\orbitdm.exe"="C:\Program Files\Orbitdownloader\orbitdm.exe:*:Enabled rbit"
"C:\Program Files\Orbitdownloader\orbitnet.exe"="C:\Program Files\Orbitdownloader\orbitnet.exe:*:Enabled rbit"
"C:\Program Files\Activision\Prototype\prototypef.exe"="C:\Program Files\Activision\Prototype\prototypef.exe:*:Enabled rototype(TM)"
"C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe"="C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe:*:Enabled:Crysis_32"
"C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe"="C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe:*:Enabled:CrysisDedicatedServer_32"
"C:\Program Files\Volition Inc\Red Faction Guerrilla\rfg.exe"="C:\Program Files\Volition Inc\Red Faction Guerrilla\rfg.exe:*:Enabled:Red Faction: Guerrilla"
"C:\Program Files\CAPCOM\RESIDENT EVIL 5\RE5DX9.EXE"="C:\Program Files\CAPCOM\RESIDENT EVIL 5\RE5DX9.EXE:*:Enabled:RESIDENT EVIL 5 (DX9)"
"C:\Program Files\CAPCOM\RESIDENT EVIL 5\RE5DX10.EXE"="C:\Program Files\CAPCOM\RESIDENT EVIL 5\RE5DX10.EXE:*:Enabled:RESIDENT EVIL 5 (DX10)"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\id Software\Enemy Territory - QUAKE Wars\etqw.exe"="C:\Program Files\id Software\Enemy Territory - QUAKE Wars\etqw.exe:*:Enabled:Enemy Territory - QUAKE Wars(TM)"
"C:\Program Files\id Software\Enemy Territory - QUAKE Wars\etqwded.exe"="C:\Program Files\id Software\Enemy Territory - QUAKE Wars\etqwded.exe:*:Enabled:etqwded.exe"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{07b3577a-42f2-11de-87ef-001617f1f5a9}]
shell\AutoRun\command - G:\RavMon.exe
shell\explore\command - G:\RavMon.exe -e
shell\open\command - G:\RavMon.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{07b35786-42f2-11de-87ef-001617f1f5a9}]
shell\AutoRun\command - F:\RavMon.exe
shell\explore\command - F:\RavMon.exe -e
shell\open\command - F:\RavMon.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3a2284c7-c16e-11de-883a-101111111111}]
shell\AutoRun\command - F:\RavMon.exe
shell\explore\command - F:\RavMon.exe -e
shell\open\command - F:\RavMon.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{86878ff5-ad37-11de-882b-001617f1f5a9}]
shell\AutoRun\command - F:\RavMon.exe
shell\explore\command - F:\RavMon.exe -e
shell\open\command - F:\RavMon.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ed8f88f2-5b3a-11de-8800-001617f1f5a9}]
shell\AutoRun\command - F:\RavMon.exe
shell\explore\command - F:\RavMon.exe -e
shell\open\command - F:\RavMon.exe


======File associations======

.reg - edit -
.reg - open -

======List of files/folders created in the last 3 months======

2009-12-06 23:07:36 ----D---- C:\Program Files\Serious Sam HD - The First Encounter
2009-12-06 21:58:55 ----A---- C:\WINDOWS\WXCAYD.INI
2009-12-06 21:58:52 ----D---- C:\Program Files\CalculatorX
2009-11-30 20:33:46 ----A---- C:\WINDOWS\system32\xfcodec.dll
2009-11-29 17:37:14 ----N---- C:\WINDOWS\system32\spmsg.dll
2009-11-29 17:37:13 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2009-11-29 17:35:13 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2009-11-17 23:18:49 ----D---- C:\Program Files\Microsoft
2009-11-13 12:16:31 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2009-11-13 12:16:30 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2009-11-13 12:16:30 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2009-11-13 12:16:29 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2009-11-13 12:16:28 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2009-11-13 12:16:28 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2009-11-13 12:16:27 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2009-11-09 22:28:00 ----A---- C:\WINDOWS\system32\GkSui20.EXE
2009-11-09 22:27:59 ----D---- C:\Program Files\RedTube Movie Ripper V3.6.4
2009-11-07 19:21:12 ----D---- C:\Documents and Settings\Administrateur\Application Data\Codemasters
2009-11-07 19:10:31 ----D---- C:\Documents and Settings\All Users\Application Data\InstallShield
2009-10-29 22:45:28 ----D---- C:\Documents and Settings\All Users\Application Data\Trymedia
2009-10-28 22:28:46 ----D---- C:\Program Files\YouTUBE (TM) movie downloader
2009-10-27 21:13:18 ----D---- C:\WINDOWS\D56B0E274A3E46C9B5C1D93D580C099C.TMP
2009-10-26 19:16:25 ----D---- C:\Program Files\SAW
2009-10-25 17:12:37 ----D---- C:\Program Files\Audacity
2009-10-25 14:57:16 ----D---- C:\Documents and Settings\All Users\Application Data\AVS4YOU
2009-10-25 14:56:42 ----D---- C:\Documents and Settings\Administrateur\Application Data\AVS4YOU
2009-10-25 14:56:37 ----D---- C:\Program Files\Fichiers communs\AVSMedia
2009-10-25 14:56:36 ----D---- C:\Program Files\AVS4YOU
2009-10-25 14:56:36 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2009-10-20 04:56:57 ----D---- C:\Program Files\LogMeIn Hamachi
2009-10-15 20:11:09 ----D---- C:\Program Files\Ask.com
2009-10-15 20:10:48 ----D---- C:\Program Files\uTorrent
2009-10-15 20:02:58 ----D---- C:\Documents and Settings\Administrateur\Application Data\uTorrent
2009-10-12 23:40:52 ----D---- C:\Program Files\IDoser v4
2009-10-09 17:19:02 ----D---- C:\Program Files\videofixer
2009-10-08 13:11:49 ----D---- C:\Documents and Settings\All Users\Application Data\Bluetooth
2009-10-08 13:05:59 ----A---- C:\WINDOWS\system32\btinstall.dll
2009-10-08 13:05:59 ----A---- C:\WINDOWS\system32\btfunc.dll
2009-10-08 13:05:58 ----D---- C:\Program Files\IVT Corporation
2009-10-07 22:36:20 ----D---- C:\Documents and Settings\Administrateur\Application Data\Nero
2009-10-07 22:00:02 ----A---- C:\WINDOWS\Irremote.ini
2009-10-07 21:57:12 ----D---- C:\Program Files\Windows Sidebar
2009-10-07 21:44:08 ----D---- C:\Program Files\Nero
2009-10-07 21:43:37 ----D---- C:\Program Files\Fichiers communs\Nero
2009-10-07 21:43:37 ----D---- C:\Documents and Settings\All Users\Application Data\Nero
2009-10-07 16:34:39 ----N---- C:\WINDOWS\system32\vxblock.dll
2009-10-07 16:34:39 ----N---- C:\WINDOWS\system32\pxwave.dll
2009-10-07 16:34:39 ----N---- C:\WINDOWS\system32\pxmas.dll
2009-10-07 16:34:39 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2009-10-07 16:34:39 ----N---- C:\WINDOWS\system32\pxdrv.dll
2009-10-07 16:34:39 ----N---- C:\WINDOWS\system32\px.dll
2009-10-07 16:34:12 ----D---- C:\WINDOWS\system32\IOSUBSYS
2009-10-06 01:43:46 ----D---- C:\Program Files\gBurner
2009-10-05 00:27:35 ----D---- C:\Program Files\iPod
2009-10-05 00:27:31 ----D---- C:\Program Files\iTunes
2009-10-05 00:27:31 ----D---- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-09-27 18:20:06 ----A---- C:\WINDOWS\system32\nvcpluir.dll
2009-09-27 18:20:04 ----A---- C:\WINDOWS\system32\nvcplui.exe
2009-09-27 18:20:02 ----A---- C:\WINDOWS\system32\nvrszht.dll
2009-09-27 18:20:02 ----A---- C:\WINDOWS\system32\nvrszhc.dll
2009-09-27 18:20:02 ----A---- C:\WINDOWS\system32\nvrstr.dll
2009-09-27 18:20:02 ----A---- C:\WINDOWS\system32\nvrsth.dll
2009-09-27 18:20:02 ----A---- C:\WINDOWS\system32\nvrssv.dll
2009-09-27 18:20:02 ----A---- C:\WINDOWS\system32\nvrssl.dll
2009-09-27 18:20:02 ----A---- C:\WINDOWS\system32\nvrssk.dll
2009-09-27 18:20:02 ----A---- C:\WINDOWS\system32\nvrsru.dll
2009-09-27 18:20:02 ----A---- C:\WINDOWS\system32\nvrsptb.dll
2009-09-27 18:20:02 ----A---- C:\WINDOWS\system32\nvrspt.dll
2009-09-27 18:20:02 ----A---- C:\WINDOWS\system32\nvrspl.dll
2009-09-27 18:20:02 ----A---- C:\WINDOWS\system32\nvrsno.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvwddi.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrsnl.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrsko.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrsja.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrsit.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrshu.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrshe.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrsfr.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrsfi.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrsesm.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrses.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrseng.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrsel.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrsde.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrsda.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrscs.dll
2009-09-27 18:20:00 ----A---- C:\WINDOWS\system32\nvrsar.dll
2009-09-27 18:19:52 ----A---- C:\WINDOWS\system32\nvwssr.dll
2009-09-27 18:19:52 ----A---- C:\WINDOWS\system32\nvwss.dll
2009-09-27 18:19:50 ----A---- C:\WINDOWS\system32\nvvitvsr.dll
2009-09-27 18:19:50 ----A---- C:\WINDOWS\system32\nvvitvs.dll
2009-09-27 18:19:48 ----A---- C:\WINDOWS\system32\nvmoblsr.dll
2009-09-27 18:19:48 ----A---- C:\WINDOWS\system32\nvmobls.dll
2009-09-27 18:19:48 ----A---- C:\WINDOWS\system32\nvmccssr.dll
2009-09-27 18:19:48 ----A---- C:\WINDOWS\system32\nvmccss.dll
2009-09-27 18:19:48 ----A---- C:\WINDOWS\system32\nvgamesr.dll
2009-09-27 18:19:48 ----A---- C:\WINDOWS\system32\nvgames.dll
2009-09-27 18:19:46 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2009-09-27 18:19:46 ----A---- C:\WINDOWS\system32\nvmctray.dll
2009-09-27 18:19:46 ----A---- C:\WINDOWS\system32\nvdispsr.dll
2009-09-27 18:19:46 ----A---- C:\WINDOWS\system32\nvdisps.dll
2009-09-27 18:19:46 ----A---- C:\WINDOWS\system32\nvcpl.dll
2009-09-27 18:19:46 ----A---- C:\WINDOWS\system32\nvcolor.exe
2009-09-27 18:19:40 ----A---- C:\WINDOWS\system32\nvmccs.dll
2009-09-25 18:16:21 ----A---- C:\WINDOWS\MDM.EXE
2009-09-25 18:15:51 ----SH---- C:\WINDOWS\SVCHOST.INI
2009-09-25 18:15:51 ----RSH---- C:\WINDOWS\SVCHOST.EXE
2009-09-25 17:31:16 ----D---- C:\Program Files\Fichiers communs\Symantec Shared
2009-09-23 19:14:16 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec
2009-09-23 19:14:16 ----D---- C:\Documents and Settings\All Users\Application Data\Norton
2009-09-23 19:14:15 ----D---- C:\Documents and Settings\All Users\Application Data\NortonInstaller
2009-09-23 18:44:37 ----D---- C:\Program Files\OpenAL
2009-09-23 18:44:37 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2009-09-23 18:44:37 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2009-09-23 18:39:55 ----D---- C:\Program Files\Paradox Interactive
2009-09-23 16:14:06 ----D---- C:\WINDOWS\system32\Adobe
2009-09-22 21:05:04 ----D---- C:\Documents and Settings\Administrateur\Application Data\Auslogics
2009-09-22 21:01:01 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-09-22 21:00:38 ----D---- C:\Program Files\Auslogics
2009-09-22 15:43:15 ----D---- C:\WINDOWS\B83FC356B7C0441F8A4DD71E088E7974.TMP
2009-09-21 17:29:27 ----D---- C:\Program Files\RADVideo

======List of files/folders modified in the last 3 months======

2009-12-16 21:41:51 ----D---- C:\Documents and Settings\Administrateur\Application Data\Azureus
2009-12-16 21:41:20 ----D---- C:\Program Files\Mozilla Firefox
2009-12-16 21:41:13 ----RD---- C:\Program Files
2009-12-16 21:41:11 ----SHD---- C:\WINDOWS\Installer
2009-12-16 21:40:41 ----D---- C:\WINDOWS\WinSxS
2009-12-16 21:00:53 ----D---- C:\Documents and Settings\Administrateur\Application Data\vlc
2009-12-16 20:47:33 ----D---- C:\Documents and Settings\Administrateur\Application Data\Orbit
2009-12-16 20:47:12 ----D---- C:\Program Files\Steam
2009-12-16 20:46:44 ----D---- C:\WINDOWS\Temp
2009-12-16 20:46:18 ----D---- C:\WINDOWS\system32\CatRoot2
2009-12-16 13:47:12 ----D---- C:\Documents and Settings\Administrateur\Application Data\LimeWire
2009-12-16 03:01:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-12-16 00:30:13 ----D---- C:\WINDOWS\Prefetch
2009-12-14 22:34:32 ----A---- C:\WINDOWS\NeroDigital.ini
2009-12-14 18:41:30 ----D---- C:\Documents and Settings\Administrateur\Application Data\Xfire
2009-12-13 11:33:52 ----D---- C:\WINDOWS
2009-12-12 19:01:07 ----D---- C:\downloads
2009-12-11 16:07:11 ----D---- C:\Program Files\Xfire
2009-12-11 15:21:53 ----SHD---- C:\System Volume Information
2009-12-06 23:10:51 ----D---- C:\WINDOWS\system32\DirectX
2009-12-06 23:10:49 ----HD---- C:\WINDOWS\inf
2009-12-06 23:09:36 ----RSD---- C:\WINDOWS\assembly
2009-12-06 22:02:08 ----A---- C:\WINDOWS\ST6UNST.EXE
2009-12-06 22:02:07 ----N---- C:\WINDOWS\Setup1.exe
2009-12-06 22:02:07 ----D---- C:\WINDOWS\system32
2009-12-06 15:58:10 ----D---- C:\Documents and Settings\Administrateur\Application Data\dvdcss
2009-12-03 18:08:56 ----D---- C:\Program Files\Electronic Arts
2009-12-03 17:59:50 ----D---- C:\Program Files\CAPCOM
2009-12-03 17:53:24 ----HD---- C:\Program Files\InstallShield Installation Information
2009-11-30 20:39:22 ----D---- C:\Program Files\Bethesda Softworks
2009-11-29 17:37:55 ----D---- C:\WINDOWS\system32\CatRoot
2009-11-29 17:37:02 ----D---- C:\Program Files\Windows Media Player
2009-11-29 17:37:02 ----D---- C:\Program Files\Windows Media Connect 2
2009-11-29 17:36:59 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-11-29 17:36:59 ----D---- C:\WINDOWS\Help
2009-11-23 21:54:38 ----D---- C:\Program Files\Vuze
2009-11-13 11:00:12 ----D---- C:\Program Files\Activision
2009-11-12 18:52:16 ----D---- C:\Documents and Settings\Administrateur\Application Data\Nokia
2009-11-10 18:42:04 ----D---- C:\Program Files\Codemasters
2009-11-07 19:12:42 ----D---- C:\WINDOWS\system32\drivers
2009-11-07 19:10:31 ----D---- C:\Documents and Settings\Administrateur\Application Data\InstallShield
2009-11-07 19:03:31 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-11-07 19:03:31 ----D---- C:\Program Files\Fichiers communs\InstallShield
2009-11-07 18:53:48 ----D---- C:\Documents and Settings\All Users\Application Data\Fallout3
2009-11-01 14:57:53 ----D---- C:\Program Files\SWAT 4
2009-10-27 21:13:24 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-10-27 21:13:22 ----RSH---- C:\boot.ini
2009-10-27 21:13:08 ----D---- C:\Program Files\Fichiers communs\Wise Installation Wizard
2009-10-25 15:10:07 ----D---- C:\Program Files\AV Vcs 7.0 DIAMOND
2009-10-25 14:56:44 ----RSD---- C:\WINDOWS\Fonts
2009-10-25 14:56:37 ----D---- C:\Program Files\Fichiers communs
2009-10-25 14:55:45 ----A---- C:\WINDOWS\system32\BASSMOD.dll
2009-10-17 19:51:15 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2009-10-17 19:51:07 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2009-10-17 19:51:03 ----A---- C:\WINDOWS\game.ini
2009-10-15 20:11:17 ----SD---- C:\WINDOWS\Tasks
2009-10-14 22:21:41 ----D---- C:\Documents and Settings\Administrateur\Application Data\mIRC
2009-10-12 19:27:09 ----D---- C:\Program Files\mIRC
2009-10-09 17:43:00 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-10-09 13:47:35 ----D---- C:\WINDOWS\SoftwareDistribution
2009-10-07 16:34:06 ----D---- C:\Program Files\Google
2009-10-07 15:07:33 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-10-05 00:36:04 ----D---- C:\Documents and Settings\Administrateur\Application Data\Apple Computer
2009-10-05 00:27:29 ----D---- C:\Program Files\Fichiers communs\Apple
2009-10-05 00:26:53 ----D---- C:\Program Files\QuickTime
2009-10-04 20:52:58 ----D---- C:\Program Files\SystemRequirementsLab
2009-10-04 20:52:51 ----D---- C:\Documents and Settings\Administrateur\Application Data\SystemRequirementsLab
2009-10-01 20:33:25 ----D---- C:\Program Files\THQ
2009-10-01 20:13:26 ----D---- C:\Program Files\Micro Application
2009-10-01 20:12:32 ----D---- C:\Program Files\Ubisoft
2009-10-01 20:10:14 ----D---- C:\Program Files\Eidos
2009-09-27 16:12:22 ----A---- C:\WINDOWS\system32\nvudisp.exe
2009-09-27 16:12:22 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2009-09-27 16:12:22 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2009-09-27 16:12:22 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2009-09-27 16:12:22 ----A---- C:\WINDOWS\system32\nvcuda.dll
2009-09-27 16:12:22 ----A---- C:\WINDOWS\system32\nvcodins.dll
2009-09-27 16:12:22 ----A---- C:\WINDOWS\system32\nvcod.dll
2009-09-27 16:12:22 ----A---- C:\WINDOWS\system32\nvapi.dll
2009-09-27 16:12:22 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2009-09-24 09:24:18 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2009-09-23 04:32:32 ----D---- C:\Documents and Settings\Administrateur\Application Data\MessengerDiscovery 2
2009-09-21 17:29:40 ----A---- C:\WINDOWS\win.ini
2009-09-21 01:53:33 ----D---- C:\Program Files\DAEMON Tools Lite

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-05-10 279712]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-05-10 25888]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-09-24 4122368]
R3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2005-05-31 20480]
R3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys [2005-04-30 11860]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2009-05-18 26600]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.10.1; C:\WINDOWS\system32\drivers\libusb0.sys [2005-03-09 33792]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-14 12288]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-09-27 7655872]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-14 5888]
R3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
R3 SCREAMINGBDRIVER;Screaming Bee Audio; C:\WINDOWS\system32\drivers\ScreamingBAudio.sys [2007-08-24 21920]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [2004-10-19 61312]
R3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2005-03-25 82148]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\WINDOWS\system32\DRIVERS\vcsvad.sys [2008-12-10 17792]
S3 avkxyiu2;avkxyiu2; C:\WINDOWS\system32\drivers\avkxyiu2.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2005-04-30 10804]
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [2005-05-31 23000]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-04-23 26176]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nenum13E;nenum13E; \??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\nenum13E.sys []
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2009-02-09 17664]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2009-02-09 22016]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\WINDOWS\system32\drivers\nmwcdnsu.sys [2009-03-19 136704]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\WINDOWS\system32\drivers\nmwcdnsuc.sys [2009-03-19 8320]
S3 ovt519;Eye Toy; C:\WINDOWS\System32\Drivers\ov519vid.sys [2003-10-15 174530]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RivaTuner32;RivaTuner32; \??\C:\Program Files\RivaTuner v2.23\RivaTuner32.sys []
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2009-02-09 7808]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-06-05 39424]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2009-02-09 7808]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2008-10-19 38528]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]
S3 zlportio;zlportio; \??\C:\Program Files\UltraStar Deluxe\zlportio.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sr;Pilote de filtre de restauration système; C:\WINDOWS\system32\DRIVERS\sr.sys [2008-04-14 73600]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-06-05 144712]
R2 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2005-04-06 110592]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 FileZilla Server;FileZilla Server FTP server; C:\Program Files\FileZilla Server\FileZilla Server.exe [2009-09-06 729088]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-07-22 152984]
R2 libusbd;LibUsb-Win32 - Daemon, Version 0.1.10.1; C:\WINDOWS\system32\libusbd-nt.exe [2005-03-09 18944]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe [2008-12-05 935208]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-09-27 172100]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-10-17 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-10-17 103736]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-09-21 545568]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-03-04 621056]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2009-10-09 1078664]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-07 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S4 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S4 NetTcpPortSharing;Service de partage de ports Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]

-----------------EOF-----------------

Info txt:

info.txt logfile of random's system information tool 1.06 2009-07-20 19:34:59

======Uninstall list======

-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->MsiExec /X{1C4551A6-4743-4093-91E4-1477CD655043}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Act of War - Direct Action-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F9B915DF-B79C-4747-9BA3-9705A57DC717}\SETUP.EXE" -l0x40c
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A80000000002}
Ancient Weapon Sounds-->MsiExec.exe /I{03C5A850-1827-48FF-8A03-63EB217DB260}
Apple Mobile Device Support-->MsiExec.exe /I{8355F970-601D-442D-A79B-1D7DB4F24CAD}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
ArmA2 Uninstall-->C:\Program files\Bohemia Interactive\ArmA 2\UnInstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
AV Voice Changer Software DIAMOND 7.0-->C:\PROGRA~1\AVVCS7~1.0DI\UNWISE.EXE C:\PROGRA~1\AVVCS7~1.0DI\INSTALL.LOG
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Bully Scholarship Edition-->"C:\Program Files\InstallShield Installation Information\{A724605D-B399-4304-B8C7-33B3EF7D4677}\setup.exe" -runfromtemp -l0x040c -removeonly
Bully Scholarship Edition-->MsiExec.exe /X{A724605D-B399-4304-B8C7-33B3EF7D4677}
Burnout(TM) Paradise The Ultimate Box-->MsiExec.exe /X{9A996B6A-846E-4A89-B9C4-17546B7BE49F}
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch-->C:\Program Files\InstallShield Installation Information\{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}\setup.exe -runfromtemp -l0x0409
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch-->C:\Program Files\InstallShield Installation Information\{931C37FC-594D-43A9-B10F-A2F2B1F03498}\setup.exe -runfromtemp -l0x0409
Call of Duty(R) 4 - Modern Warfare(TM)-->C:\Program Files\InstallShield Installation Information\{E48469CC-635E-4FD5-A122-1497C286D217}\setup.exe -runfromtemp -l0x0409
Call of Juarez - Bound in Blood-->C:\Program Files\InstallShield Installation Information\{FEFAF112-4DA8-479C-89E2-7DE25091711A}\Setup.exe -runfromtemp -l0x040c
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Comic Sound Pack-->MsiExec.exe /I{1A6041E8-C07C-4E22-A944-8F45EA029B11}
CopyTrans Suite désinstallation uniquement-->C:\Program Files\WindSolutions\CopyTrans Suite\CopyTransControlCenter.exe uninstall
Creatures of Darkness-->MsiExec.exe /I{5B616A3F-43D9-4F0B-9F49-D39342A98592}
DAEMON Tools Toolbar-->C:\Program Files\DAEMON Tools Toolbar\uninst.exe
Deep Space Voices-->MsiExec.exe /I{336E1A2D-E3EB-4846-B7D0-BD75BBBBC0A4}
DFU by Belgium-iPhone-->MsiExec.exe /I{274C4F97-DCEA-41F8-8ADB-D4564E3B4A69}
D-Link VGA Webcam-->C:\WINDOWS\CleanDev.exe C:\WINDOWS\ov519.TXT
EA Download Manager-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{EF7E931D-DC84-471B-8DB6-A83358095474} /l1036
EAX4 Unified Redist-->MsiExec.exe /X{89661B04-C646-4412-B6D3-5E19F02F1F37}
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Enemy Territory - Quake Wars(TM)-->C:\Program Files\id Software\Enemy Territory - QUAKE Wars\uninstall.exe
Fantasy Voice Pack-->MsiExec.exe /I{8061C2C9-C2A3-4550-A3FC-585B646840CB}
Free FLV Converter V 6.5-->"C:\Program Files\Free FLV Converter\unins000.exe"
Free Sound Recorder-->C:\PROGRA~1\FREESO~1\UNWISE.EXE C:\PROGRA~1\FREESO~1\INSTALL.LOG
FUEL-->C:\Program Files\InstallShield Installation Information\{F51FF206-2273-4B3E-A90A-4752AE288C12}\setup.exe -runfromtemp -l0x040c -removeonly
Furry Voices for Second Life-->MsiExec.exe /I{0DB44859-4112-4946-BE5E-A4275B3FFB5E}
Galactic Voices-->MsiExec.exe /I{DF3FE308-58F2-45E2-9BB0-6A993794AD5C}
Ghost Recon Advanced Warfighter-->C:\Program Files\InstallShield Installation Information\{EFC97089-04D6-42CE-A707-A343B4A7D2CD}\setup.exe -runfromtemp -l0x040c -removeonly
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_9DE96A29E721D90A.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Half-Life 2: Episode One-->"C:\Program Files\Steam\steam.exe" steam://uninstall/380
Half-Life 2: Episode Two-->"C:\Program Files\Steam\steam.exe" steam://uninstall/420
Half-Life 2-->"C:\Program Files\Steam\steam.exe" steam://uninstall/220
Hamachi 1.0.3.0-->C:\Program Files\Hamachi\uninstall.exe
HijackThis 2.0.2-->"C:\Documents and Settings\Administrateur\Bureau\Firefox\HijackThis.exe" /uninstall
Hitman Blood Money-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A804B134-F03D-4EFD-9BC0-DCD257AA1B22}\setup.exe" -l0xc0c -removeonly
Hitman: Contracts-->C:\PROGRA~1\Eidos\HITMAN~2\uninstall.exe
Image Resizer Powertoy for Windows XP-->MsiExec.exe /I{1CB92574-96F2-467B-B793-5CEB35C40C29}
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
iTunes-->MsiExec.exe /I{5D601655-6D54-4384-B52C-17EC5385FBBD}
Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
Joint Task Force-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BCB9DF93-537D-433D-AF3B-36025DEF5798}\setup.exe" -l0x40c -removeonly
LibUSB-Win32-0.1.10.1-->"C:\Program Files\LibUSB-Win32-0.1.10.1\unins000.exe"
LimeWire 5.1.2-->"C:\Program Files\LimeWire\uninstall.exe"
Male Voice Pack-->MsiExec.exe /I{45BF4F8E-7BE7-4384-94C6-60AC70C401C6}
Mercenaries(tm) 2: l'Enfer des Favelas-->MsiExec.exe /X{26FDF89A-FA65-4FA2-8522-37CC84DFDCEE}
MessengerDiscovery 2.0.44-->"C:\Program Files\MessengerDiscovery 2\unins000.exe"
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft .NET Framework 3.0 French Language Pack-->MsiExec.exe /X{E3C080B0-23F5-49AF-89F8-8E8DBC89E659}
Microsoft .NET Framework 3.0-->c:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0\setup.exe
Microsoft .NET Framework 3.0-->MsiExec.exe /X{15095BF3-A3D7-4DDF-B193-3A496881E003}
Microsoft Games for Windows - LIVE -->MsiExec.exe /X{4D243BA7-9AC4-46D1-90E5-EEB88974F501}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{05B49229-22A2-4F88-842A-BBC2EBE1CCF6}
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7-->"C:\WINDOWS\$NtUninstallWdf01007$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft WSE 3.0 Runtime-->MsiExec.exe /X{E3E71D07-CD27-46CB-8448-16D4FB29AA13}
mIRC-->C:\Program Files\mIRC\uninstall.exe _?=C:\Program Files\mIRC
MobileMe Control Panel-->MsiExec.exe /I{DDBB28C8-B2AA-45A1-8DCE-059A798509FB}
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
Module de prise en charge linguistique du français de Microsoft .NET Framework 3.0-->c:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0 French Language Pack\setup.exe
MorphVOX Pro-->MsiExec.exe /I{2F95F20C-658E-4758-B76C-111C0B3BF4B2}
Moyea YouTube FLV Downloader version: 2.0.8.0-->"C:\Program Files\Moyea\YouTube FLV Downloader\unins000.exe"
Mozilla Firefox (3.0.11)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVC80_x86-->MsiExec.exe /I{212748BB-0DA5-46DE-82A1-403736DC9F27}
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 6.0 Parser (KB925673)-->MsiExec.exe /I{FE9126DB-5F84-495A-BB46-3C724F1C2D08}
Mumble and Murmur-->C:\Program Files\Mumble\Uninstall.exe
Nero 6 Ultra Edition-->C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
Nokia Connectivity Cable Driver-->MsiExec.exe /I{82427977-8776-4087-90CA-9F65174D3C4D}
Nokia PC Suite-->C:\Documents and Settings\All Users\Application Data\Installations\{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}\nokia-pc-suite_nokia_pc_suite_7.1.26.0_anglais_28522.exe
Nokia PC Suite-->MsiExec.exe /I{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}
NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
NVIDIA PhysX-->MsiExec.exe /X{1C4551A6-4743-4093-91E4-1477CD655043}
OpenOffice.org 3.1-->MsiExec.exe /I{0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}
OPERATION7-->"c:\Fiaa\OPERATION7\uninstall.exe"
Orbit Downloader-->"C:\Program Files\Orbitdownloader\unins000.exe"
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Package de pilotes Windows - Nokia Modem (02/23/2009 7.01.0.2)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokbtmdm_171C10620CF14FA76859E310DF8C6CF642D81C73\nokbtmdm.inf
Package de pilotes Windows - Nokia Modem (02/24/2009 4.0)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokia_blue_5929FEDBB724B17D4BCDD74361BD95262BE1608B\nokia_bluetooth.inf
Package de pilotes Windows - Nokia Modem (05/22/2008 3.8)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokia_blue_6F90B0F4A73A2F780A1010B5D6CB5DDFB098181E\nokia_bluetooth.inf
Package de pilotes Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.inf
PC Connectivity Solution-->MsiExec.exe /I{B7CB0BF3-791E-44D3-9F04-786E36D51C9D}
Personality Voices-->MsiExec.exe /I{29C042AB-059B-414C-840E-94775E3F24A8}
Portal-->"C:\Program Files\Steam\steam.exe" steam://uninstall/400
Qtracker-->C:\PROGRA~1\Qtracker\UNWISE.EXE C:\PROGRA~1\Qtracker\INSTALL.LOG
QuickTime-->MsiExec.exe /I{C78EAC6F-7A73-452E-8134-DBB2165C5A68}
RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" -l0x40c -removeonly
RivaTuner v2.23-->"C:\Program Files\RivaTuner v2.23\uninstall.exe"
Rockstar Games Social Club-->"C:\Program Files\InstallShield Installation Information\{08B3869E-D282-424C-9AFC-870E04A4BA14}\setup.exe" -runfromtemp -l0x040c -removeonly
Sci-Fi 2 Sound Pack-->MsiExec.exe /I{BC2338E1-8E22-4E41-A7F3-11943B0A52E7}
Sci-Fi Voice Pack-->MsiExec.exe /I{216E21F4-0489-4311-92D6-20D1FB950FCE}
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Sony Eyetoy USB Webcam Drivers and Software-->"C:\Program Files\SEUCDaS\0.8\unins002.exe"
SpeedFan (remove only)-->"C:\Program Files\SpeedFan\uninstall.exe"
Splinter Cell Pandora Tomorrow-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{084A9731-D05B-4ADA-B4A0-0ADD25FD7152}\setup.exe" -l0x40c
Spooky Sounds-->MsiExec.exe /I{FF88307C-AEA0-4978-AB94-D5C5BF902B5C}
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Steam-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
STREET FIGHTER IV-->MsiExec.exe /X{59ABBDF0-E1E5-48AF-85FB-F523A08C3490}
SUPER © Version 2009.bld.35 (Jan 5, 2009)-->C:\PROGRA~1\ERIGHT~1\SUPER\Setup.exe /remove /q0
Team Fortress 2-->"C:\Program Files\Steam\steam.exe" steam://uninstall/440
TeamSpeak 2 RC2-->"C:\Program Files\Teamspeak2_RC2\unins000.exe"
Tom Clancy's Splinter Cell Double Agent-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAD1691A-FA24-4B95-9009-3257B8440ECC}\setup.exe" -l0x40c -removeonly
Translator Fun Voice Pack-->MsiExec.exe /I{602A1471-063B-4E03-9DCE-0210B914EFF5}
UltraStar Deluxe-->C:\Program Files\UltraStar Deluxe\Uninstall.exe
Unlocker 1.8.7-->C:\Program Files\Unlocker\uninst.exe
VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Vuze Toolbar-->"C:\Program Files\AskBarDis\unins000.exe"
Vuze-->C:\Program Files\Vuze\uninstall.exe
Windows Communication Foundation-->MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Presentation Foundation Language Pack (FRA)-->MsiExec.exe /X{6901DD22-527A-41EF-9059-E81FEDE9E494}
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Trust Core Codecs-->"C:\WINDOWS\System32\UnWTCC.exe"
Windows Trust Installer-->"C:\Program Files\WTInstaller\Désinstaller.exe"
Windows Workflow Foundation FR Language Pack-->MsiExec.exe /I{B84C141C-9A13-44BE-9A69-301D7B11D836}
Windows Workflow Foundation-->MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
winpwn 2.0.0.3-->C:\Program Files\winpwn\uninstall winpwn.exe
WinRAR-->"C:\Program Files\WinRAR\uninstall.exe"
WinSCP 4.1.8-->"C:\Program Files\WinSCP\unins000.exe"
Xfire (remove only)-->"C:\Program Files\Xfire\uninst.exe"
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
XtremSplit-->"C:\Program Files\XtremSplit\Désinstaller.exe"

=====HijackThis Backups=====

O4 - HKCU\..\RunOnce: [SpybotDeletingD9248] cmd.exe /c del "C:\WINDOWS\system32\system.exe" [2009-07-20]
O4 - HKCU\..\RunOnce: [SpybotDeletingB1535] command.com /c del "C:\WINDOWS\system32\system.exe" [2009-07-20]
O4 - HKLM\..\Run: [system] C:\WINDOWS\system32\system.exe [2009-07-20]

======Hosts File======

127.0.0.1 localhost
127.0.0.1 mpa.one.microsoft.com
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com

======System event log======

Computer Name: WINDOWS-43A5D35
Event Code: 35
Message: Le service de temps synchronise maintenant l'heure système avec la
source de temps time.windows.com (ntp.m|0x1|192.168.1.3:123->207.46.197.32:123).

Record Number: 5
Source Name: W32Time
Time Written: 20090629143437.000000+120
Event Type: Informations
User:

Computer Name: WINDOWS-43A5D35
Event Code: 10
Message: Ce lecteur ne semble pas prendre en charge la lecture audio numérique.

Record Number: 4
Source Name: redbook
Time Written: 20090629143425.000000+120
Event Type: Informations
User:

Computer Name: WINDOWS-43A5D35
Event Code: 1000
Message: L'ordinateur a redémarré après une vérification d'erreur. La vérification d'erreur était :
0x0000007e (0xc0000005, 0xbd134dd7, 0xb47dfc40, 0xb47df93c).
L'intégralité du vidage n'a pas été enregistrée.

Record Number: 3
Source Name: Save Dump
Time Written: 20090629143408.000000+120
Event Type: Informations
User:

Computer Name: WINDOWS-43A5D35
Event Code: 6005
Message: Le service d'Enregistrement d'événement a démarré.

Record Number: 2
Source Name: EventLog
Time Written: 20090629143406.000000+120
Event Type: Informations
User:

Computer Name: WINDOWS-43A5D35
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 3 Multiprocessor Free.

Record Number: 1
Source Name: EventLog
Time Written: 20090629143406.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: WINDOWS-43A5D35
Event Code: 1000
Message: Les compteurs de performances pour le service MSDTC (MSDTC) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.

Record Number: 5
Source Name: LoadPerf
Time Written: 20090510165452.000000+120
Event Type: Informations
User:

Computer Name: WINDOWS-43A5D35
Event Code: 1000
Message: Les compteurs de performances pour le service TermService (Services Terminal Server) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.

Record Number: 4
Source Name: LoadPerf
Time Written: 20090510165448.000000+120
Event Type: Informations
User:

Computer Name: WINDOWS-43A5D35
Event Code: 1000
Message: Les compteurs de performances pour le service RemoteAccess (Routage et accès distant) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.

Record Number: 3
Source Name: LoadPerf
Time Written: 20090510165351.000000+120
Event Type: Informations
User:

Désinstalle Vuze Toolbar.

Télécharge UsbFix (de Chiquitine29 & C_XX) sur ton Bureau.

Branche tes sources de données externes à ton PC (clé USB, disque dur externe, carte SD, etc...) sans les ouvrir.

Double-clique sur UsbFix pour l'exécuter.

Choisis l'option 1 (Recherche).

Laisse travailler l'outil.

Poste le rapport UsbFix.txt.

Note : le rapport UsbFix.txt est sauvegardé à la racine du disque (C:\UsbFix.txt).

"Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Kaspersky, etc.) comme étant un RiskTool. Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.

voilà:

p
############################## | UsbFix V6.064 |

User : Administrateur (Administrateurs) # WINDOWS-43A5D35
Update on 16/12/2009 by Chiquitine29, C_XX & Chimay8
Start at: 23:24:15 | 16/12/2009
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

Intel(R) Core(TM)2 Duo CPU E4600 @ 2.40GHz
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Disabled

C:\ -> Disque fixe local # 298,08 Go (33,77 Go free) # NTFS
D:\ -> Disque CD-ROM
E:\ -> Disque CD-ROM
G:\ -> Disque amovible # 1,9 Go (533,32 Mo free) # FAT32

############################## | Processus actifs |

C:\WINDOWS\System32\smss.exe 512
C:\WINDOWS\system32\csrss.exe 592
C:\WINDOWS\system32\winlogon.exe 656
C:\WINDOWS\system32\services.exe 708
C:\WINDOWS\system32\lsass.exe 728
C:\WINDOWS\system32\nvsvc32.exe 908
C:\WINDOWS\system32\svchost.exe 936
C:\WINDOWS\system32\svchost.exe 992
C:\WINDOWS\System32\svchost.exe 1060
C:\WINDOWS\system32\svchost.exe 1096
C:\WINDOWS\system32\svchost.exe 1164
C:\WINDOWS\system32\svchost.exe 1220
C:\WINDOWS\system32\spoolsv.exe 1420
C:\WINDOWS\Explorer.EXE 1768
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe 1904
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe 1924
C:\Program Files\Bonjour\mDNSResponder.exe 1940
C:\WINDOWS\System32\svchost.exe 1984
C:\Program Files\FileZilla Server\FileZilla Server.exe 2004
C:\Program Files\Java\jre6\bin\jqs.exe 248
C:\WINDOWS\system32\libusbd-nt.exe 316
C:\Program Files\Unlocker\UnlockerAssistant.exe 556
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe 576
C:\WINDOWS\SOUNDMAN.EXE 560
C:\Program Files\Java\jre6\bin\jusched.exe 612
C:\WINDOWS\SVCHOST.EXE 1040
C:\WINDOWS\system32\RUNDLL32.EXE 1084
C:\Program Files\Windows Live\Messenger\msnmsgr.exe 1208
C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe 1632
C:\WINDOWS\system32\PnkBstrA.exe 424
C:\WINDOWS\system32\PnkBstrB.exe 300
C:\WINDOWS\system32\svchost.exe 652
C:\WINDOWS\system32\wbem\wmiapsrv.exe 2196
C:\WINDOWS\system32\wscntfy.exe 2352
C:\WINDOWS\System32\alg.exe 2384
C:\Program Files\DAEMON Tools Lite\daemon.exe 2400
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 2628
C:\Program Files\Messenger\msmsgs.exe 2672
C:\Program Files\iPod\bin\iPodService.exe 2888
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe 3652
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe 3996
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe 4052
C:\Program Files\MessengerDiscovery 2\MessengerDiscovery 2.exe 2892
C:\Program Files\Windows Live\Contacts\wlcomm.exe 3880
C:\Program Files\Windows Live\Messenger\msnmsgr.exe 3716
C:\Program Files\MessengerDiscovery 2\MessengerDiscovery 2.exe 3960
C:\Program Files\Vuze\Azureus.exe 2944
C:\Program Files\Mozilla Firefox\firefox.exe 1884
C:\WINDOWS\system32\wbem\wmiprvse.exe 932

################## | Fichiers # Dossiers infectieux |

C:\WINDOWS\svchost.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\NEW2842.tmp.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\utt2841.tmp.exe
G:\autorun.inf
G:\autorun.inf -> fichier appelé : "G:\RavMon.exe" ( Présent ! )
G:\ravmon.exe

################## | Registre # Clés infectieuses |

[HKLM\Software\Microsoft\Windows\CurrentVersion\Run] "svchost"
[HKLM\SYSTEM\CurrentControlSet\Services\FileZilla Server]
[HKLM\SYSTEM\ControlSet001\Services\FileZilla Server]
[HKLM\SYSTEM\ControlSet003\Services\FileZilla Server]
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FILEZILLA_SERVER]
[HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_FILEZILLA_SERVER]
[HKLM\SYSTEM\ControlSet003\Enum\Root\LEGACY_FILEZILLA_SERVER]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoRecentDocsHistory"

################## | Registre # Mountpoints2 |

HKCU\..\..\Explorer\MountPoints2\{07b3577a-42f2-11de-87ef-001617f1f5a9}
Shell\AutoRun\command =G:\RavMon.exe
Shell\explore\Command =G:\RavMon.exe -e
Shell\open\Command =G:\RavMon.exe

HKCU\..\..\Explorer\MountPoints2\{07b35786-42f2-11de-87ef-001617f1f5a9}
Shell\AutoRun\command =F:\RavMon.exe
Shell\explore\Command =F:\RavMon.exe -e
Shell\open\Command =F:\RavMon.exe

HKCU\..\..\Explorer\MountPoints2\{3a2284c7-c16e-11de-883a-101111111111}
Shell\AutoRun\command =F:\RavMon.exe
Shell\explore\Command =F:\RavMon.exe -e
Shell\open\Command =F:\RavMon.exe

HKCU\..\..\Explorer\MountPoints2\{86878ff5-ad37-11de-882b-001617f1f5a9}
Shell\AutoRun\command =F:\RavMon.exe
Shell\explore\Command =F:\RavMon.exe -e
Shell\open\Command =F:\RavMon.exe

HKCU\..\..\Explorer\MountPoints2\{ed8f88f2-5b3a-11de-8800-001617f1f5a9}
Shell\AutoRun\command =F:\RavMon.exe
Shell\explore\Command =F:\RavMon.exe -e
Shell\open\Command =F:\RavMon.exe

################## | Cracks / Keygens / Serials |

"C:\Documents and Settings\Administrateur\Bureau\Firefox\keygen.exe"
07/10/2009 20:05 |Size 299520 |Crc32 3fc2847b |Md5 178f9c0ab40780b4caa790836bae223e

"C:\Documents and Settings\Administrateur\Bureau\Patch fr Fallout 3 complet (voix texte) + crack by TRiViUM\Fallout 3\Extractor.exe"
28/10/2008 02:36 |Size 313408 |Crc32 9ba0bb62 |Md5 c996635f25e94550e637bfeb7128235f

"C:\Documents and Settings\Administrateur\Bureau\Patch fr Fallout 3 complet (voix texte) + crack by TRiViUM\Fallout 3\Fallout3.exe"
28/10/2008 01:45 |Size 13922304 |Crc32 65f16ab7 |Md5 127e4e3ccf2641f58ef0d3b6f8da2998

"C:\Documents and Settings\Administrateur\Bureau\Patch fr Fallout 3 complet (voix texte) + crack by TRiViUM\Fallout 3\FalloutLauncher.exe"
28/10/2008 01:06 |Size 1581056 |Crc32 2e29ad09 |Md5 113072a9b406203256a8b967fa79ad97

"C:\Documents and Settings\Administrateur\Mes documents\KEYGEN.exe"
03/02/2009 19:03 |Size 8192 |Crc32 10355f99 |Md5 3ea967d5a1535f3aa821944473a20bb7

"C:\Documents and Settings\Administrateur\Mes documents\Azureus Downloads\GTA IV PC Version\Crack\GTAIV.exe"
01/12/2009 00:17 |Size 13411688 |Crc32 be148d03 |Md5 9fa1c2a3f2932d46538bc14e715cfccc

"C:\Documents and Settings\Administrateur\Mes documents\Azureus Downloads\GTA IV PC Version\Crack\LaunchGTAIV.exe"
01/12/2009 00:03 |Size 5127312 |Crc32 bf182af8 |Md5 24429f04b410172169c19574e017e461

"C:\Documents and Settings\Administrateur\Mes documents\Ex-Sense pro\crack\t-ex3119.exe"
25/06/2003 03:30 |Size 18432 |Crc32 ff67187f |Md5 149aac6b3cef18ebc797224d7481f580

"C:\Documents and Settings\Administrateur\Mes documents\Ex-Sense pro\crack\redsn0w-win_0.8\redsn0w.exe"
07/07/2009 09:04 |Size 16193536 |Crc32 01324e34 |Md5 aeb7ac29b1954c992f33335da1e59189

"C:\Documents and Settings\Administrateur\Mes documents\Hitman Blood Money\Crack\IDoser.exe"
26/08/2006 19:42 |Size 344064 |Crc32 c954bcc3 |Md5 e36c9e9359390a92db2e45c76213869f

"C:\Documents and Settings\Administrateur\Mes documents\Hitman Blood Money\Crack\Uninstal.exe"
31/03/2007 16:52 |Size 77732 |Crc32 6c2b9a39 |Md5 3d9f0e9d588de5a8200787d6e20d0719

"C:\Documents and Settings\All Users\Documents\Ma musique\chantillons de musique\Nouveau dossier\keygen.exe"
30/05/2007 23:08 |Size 64512 |Crc32 e04a6557 |Md5 5c256586ae8d2bccdd829fb50e3e0064

"C:\Documents and Settings\Administrateur\Bureau\Firefox\F3 Crack 1.6.rar"
-> contain : *Crack\FalloutLauncher.exe

"C:\Documents and Settings\Administrateur\Local Settings\Temp\crack nfs shift.rar"
-> contain : crack nfs shift\rld-nfss.exe

"C:\Documents and Settings\Administrateur\Local Settings\Temp\crack nfs shift.rar"
-> contain : crack nfs shift\shift.exe

"C:\Documents and Settings\Administrateur\Mes documents\Azureus Downloads\Patch fr Fallout 3 complet (voix texte) + crack by TRiViUM.rar"
-> contain : Patch fr Fallout 3 complet (voix texte) + crack by TRiViUM\Fallout 3\Extractor.exe

"C:\Documents and Settings\Administrateur\Mes documents\Azureus Downloads\Patch fr Fallout 3 complet (voix texte) + crack by TRiViUM.rar"
-> contain : Patch fr Fallout 3 complet (voix texte) + crack by TRiViUM\Fallout 3\Fallout3.exe

"C:\Documents and Settings\Administrateur\Mes documents\Azureus Downloads\Patch fr Fallout 3 complet (voix texte) + crack by TRiViUM.rar"
-> contain : Patch fr Fallout 3 complet (voix texte) + crack by TRiViUM\Fallout 3\FalloutLauncher.exe

"C:\Documents and Settings\Administrateur\Mes documents\Azureus Downloads\Patch fr Fallout 3 complet (voix texte) + crack by TRiViUM.rar"
-> contain : Patch fr Fallout 3 complet (voix texte) + crack by TRiViUM\Virtual Clone Drive 5411.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : MorphVOX Pro 3.4.1\MorphVOX Pro 3.4.1.EXE

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : Voice Packs\VP-CreaturesOfDarkness_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : Voice Packs\VP-DeepSpace_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : Voice Packs\VP-Fantasy_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : Voice Packs\VP-Female_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : Voice Packs\VP-FurryVoices_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : Voice Packs\VP-Galactic_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : Voice Packs\VP-Male_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : Voice Packs\VP-SciFi_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : Voice Packs\VP-TranslatorFun_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : SP-Fantasy_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : SP-FarmAnimal_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : SP-SciFi2_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : SP-SciFi_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : SP-SpookySounds_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : VP-CreaturesOfDarkness_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : VP-DeepSpace_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : VP-Fantasy_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : VP-Female_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : VP-FurryVoices_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : VP-Galactic_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : VP-Male_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : VP-Personality_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : VP-SciFi_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : VP-TranslatorFun_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : MorphVOXJunior_Install-1.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : MorphVOXPro_Install-1.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : Skin-BlueSatin_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : SP-AncientWeapon_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside](1).rar"
-> contain : SP-Comic_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : MorphVOX Pro 3.4.1\MorphVOX Pro 3.4.1.EXE

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : Patch\morphvox.pro.3.0.5.build.39239-patch.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : Voice Packs\VP-CreaturesOfDarkness_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : Voice Packs\VP-DeepSpace_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : Voice Packs\VP-Fantasy_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : Voice Packs\VP-Female_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : Voice Packs\VP-FurryVoices_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : Voice Packs\VP-Galactic_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : Voice Packs\VP-Male_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : Voice Packs\VP-SciFi_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : Voice Packs\VP-TranslatorFun_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : SP-Fantasy_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : SP-FarmAnimal_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : SP-SciFi2_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : SP-SciFi_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : SP-SpookySounds_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : VP-CreaturesOfDarkness_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : VP-DeepSpace_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : VP-Fantasy_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : VP-Female_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : VP-FurryVoices_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : VP-Galactic_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : VP-Male_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : VP-Personality_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : VP-SciFi_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : VP-TranslatorFun_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : MorphVOXJunior_Install-1.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : MorphVOXPro_Install-1.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : Skin-BlueSatin_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : SP-AncientWeapon_Install.exe

"C:\Program Files\eMule\Incoming\MorphVOX PRO 3.4.1 - Voice Changer + Crack and voice packs [Marziano Inside].rar"
-> contain : SP-Comic_Install.exe


################## | ! Fin du rapport # UsbFix V6.064 ! |

Branche tes sources de données externes à ton PC (clé USB, disque dur externe, carte SD, etc...) sans les ouvrir.

Double-clique sur UsbFix présent sur ton Bureau pour le lancer.

Choisis l'option 2 (Suppression).

Ton Bureau disparaîtra et le PC redémarrera.

Au redémarrage, UsbFix scannera ton PC, laisse travailler l'outil.

Ensuite, poste le rapport UsbFix.txt qui apparaîtra avec le Bureau.

Note : le rapport UsbFix.txt est sauvegardé à la racine du disque (C:\UsbFix.txt).