Pc trés, trés lent

Bonjour,

Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.

Double-clique sur RSIT.exe afin de lancer le programme.
(Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)

Clique sur Continue à l'écran Disclaimer.

Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

Note : les rapports sont sauvegardés dans le dossier C:\Rsit.

voila pour info...
info.txt logfile of random's system information tool 1.06 2010-01-15 20:46:57

======Uninstall list======

-->"C:\Program Files\Creative Installation Information\CREATIVE_MEDIASOURCE_U\Setup.exe" /remove /l0x040c
-->"C:\Program Files\Creative Installation Information\E-CENTER_NET_CONTENT_U\Setup.exe" /remove /l0x040c
-->"C:\Program Files\Creative Installation Information\E-CENTER_PLUGIN_CDBURNER_U\Setup.exe" /remove /l0x040c
-->"C:\Program Files\Creative Installation Information\E-CENTER_PLUGIN_MTP_U\Setup.exe" /remove /l0x040c
-->"C:\Program Files\Creative Installation Information\MEDIASOURCE_PLAYER_SKINPACK_U\Setup.exe" /remove /l0x040c
-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu
-->c:\WINDOWS\system32\\MSIEXEC.EXE /x {075473F5-846A-448B-BCB3-104AA1760205}
-->c:\WINDOWS\system32\\MSIEXEC.EXE /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
-->c:\WINDOWS\system32\\MSIEXEC.EXE /x {B12665F4-4E93-4AB4-B7FC-37053B524629}
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{57FA4E0F-82C9-417D-87BC-0186D6CB7A44}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5EEE551B-7692-4D68-91BF-DAD745243AFB}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63A317D0-60A6-43FC-848A-9FE4A53B29CE}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x40c /remove
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{98181885-5B28-4280-9B56-452FF877D5B9}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{98181885-5B28-4280-9B56-452FF877D5B9}\setup.exe" -l0x40c /remove
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A9BB081B-C020-4D02-A763-D32204D2563D}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A9BB081B-C020-4D02-A763-D32204D2563D}\setup.exe" -l0x40c /remove
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C029DB0E-C59F-417A-90F8-88FD5B2C4AE7}\setup.exe" -l0x40c
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Acrobat 4.0-->C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 4.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 4.0\NT\Uninst.dll"
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 7.0.5 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70500000002}
Adobe Shockwave Player 11-->C:\WINDOWS\system32\adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
Alice Auto-diagnostic-->C:\Program Files\TechCity Solutions\AliceSAV\uninstall.exe
Amélioration de nos services-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{23012310-3E05-46A5-88A9-C6CBCABCAC79} /l1036
Apple Application Support-->MsiExec.exe /I{0C34B801-6AEC-4667-B053-03A67E2D0415}
Apple Mobile Device Support-->MsiExec.exe /I{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}
Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
Audacity 1.2.6-->"C:\Program Files\Audacity\unins000.exe"
Audacity 1.3.6 (Unicode)-->"C:\Program Files\Audacity 1.3 Beta (Unicode)\unins000.exe"
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
AviSynth 2.5-->"C:\Program Files\AviSynth 2.5\Uninstall.exe"
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
CARTES et CROQUIS-->C:\WINDOWS\ST5UNST.EXE -n "c:\Croquis\ST5UNST.LOG"
CCHelp-->MsiExec.exe /I{9D1CF8B6-17B3-4832-B062-2C2DD0B57B04}
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
CCScore-->MsiExec.exe /I{B4B44FE7-41FF-4DAD-8C0A-E406DDA72992}
Connexion Facile à Internet-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{8105684D-8CA6-440D-8F58-7E5FD67A499D} /l1036
Content Transfer-->MsiExec.exe /X{CFADE4AF-C0CF-4A04-A776-741318F1658F}
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe"
Creative MediaSource 5-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}\SETUP.EXE" -l0x40c /remove
Creative System Information-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63A317D0-60A6-43FC-848A-9FE4A53B29CE}\setup.exe" -l0x40c /remove
Creative ZEN V Series-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AA9D879B-0F98-4059-85A5-D05718A1D6F7}\SETUP.EXE" -l0x40c /remove
Dealio Toolbar v4.0-->MsiExec.exe /X{94C3BB3A-56A1-43DE-A242-8B41F46E97EF}
DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Plus DirectShow Filters-->C:\Program Files\DivX\DivXDSFiltersUninstall.exe /DSFILTERS
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Documents To Go-->MsiExec.exe /X{D6FFC3B5-0CE1-4566-801D-3F9D8F000652}
Dolet Light for Finale 2005-->MsiExec.exe /X{F6F272EF-6239-45A6-B9DC-D2C11CFF73C5}
DragonBall Z Screen Saver-->sstunst2.exe DragonBall Z
Enhanced Multimedia Keyboard Solution-->C:\HP\KBD\Install.exe /u
EoRezo 1.0-->"C:\Program Files\EoRezo\unins000.exe"
EPSON Attach To Email-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{67EDD823-135A-4D59-87BD-950616D6E857}\SETUP.EXE" -l0x40c -UnInstall
EPSON Easy Photo Print-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F19D07BC-6240-49D3-BA5C-59B015DF8916}\SETUP.EXE" -l0x40c UNINST
EPSON File Manager-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E86BC406-944E-41F6-ADE6-2C136734C96B}\Setup.exe" -l0x40c UNINST
EPSON Image Clip Palette-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{314F6D08-A8B7-11D8-8446-0050BA1D384D}\Setup.exe" -l0x40c -u
EPSON Logiciel imprimante-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
EPSON Scan Assistant-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\Setup.exe" -l0x40c -u
EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r
EPSON Web-To-Page-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}\SETUP.EXE" -l0x40c -anything
ESDX4800_4200 Guide util.-->C:\Program Files\EPSON\TPMANUAL\ESDX4800_4200\USE_G\DOCUNINS.EXE
ESSAdpt-->MsiExec.exe /I{D15E9DB5-6BEB-4534-901E-80C0A29BAB97}
ESSANUP-->MsiExec.exe /I{A6F18A67-B771-4191-8A33-36D2E742D6D9}
ESSCAM-->MsiExec.exe /I{469730CC-78DF-4CD3-B286-562D459EA619}
ESSCDBK-->MsiExec.exe /I{AE1FA02D-E6A4-4EA0-8E58-6483CAC016DD}
ESScore-->MsiExec.exe /I{9D8FEE90-0377-49A9-AEFB-525BDE549BA4}
ESSgui-->MsiExec.exe /I{91517631-A9F3-4B7C-B482-43E0068FD55A}
ESShelp-->MsiExec.exe /I{87843A41-7808-4F2E-B13F-25C1E67CF2FD}
ESSini-->MsiExec.exe /I{8E92D746-CD9F-4B90-9668-42B74C14F765}
ESSPCD-->MsiExec.exe /I{14D4ED84-6A9A-45A0-96F6-1753768C3CB5}
ESSSONIC-->MsiExec.exe /I{4F677FC7-7AA8-412B-A957-F13CBE1C7331}
ESSvpaht-->MsiExec.exe /I{A5B3EB8A-4071-42F0-8E8E-7A8342AA8E69}
Finale 2005-->C:\WINDOWS\unvise32.exe C:\Program Files\Finale 2005\uninstal.log
Finale Performance Assessment-->C:\WINDOWS\unvise32.exe C:\Program Files\Finale Performance Assessment\uninstal.log
Galerie de photos Windows Live-->MsiExec.exe /X{B131E59D-202C-43C6-84C9-68F0C37541F1}
Gestionnaire de disques amovible Creative-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{57FA4E0F-82C9-417D-87BC-0186D6CB7A44}\setup.exe" -l0x40c /remove
Google SketchUp 6-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{98736A65-3C79-49EC-B7E9-A3C77774B0E6}\setup.exe" -l0x40c -removeonly
Google SketchUp 6-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B3D8B2F8-3C2C-45BC-933E-8B60E78F6684}\setup.exe" -l0x40c -removeonly
Google Toolbar for Firefox-->MsiExec.exe /X{2CCBABCB-6427-4A55-B091-49864623C43F}
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_0E996B068B56FCA2.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Earth-->MsiExec.exe /X{C084BC61-E537-11DE-8616-005056806466}
Hercules DualPix Exchange Webcam-->C:\Program Files\InstallShield Installation Information\{04BEFF7A-DF5D-4E49-AB46-BA3D3BE49FCB}\setup.exe -runfromtemp -l0x040c -removeonly
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
HLPIndex-->MsiExec.exe /I{38441BE7-79B0-42B8-8297-833704F949FE}
HLPRFO-->MsiExec.exe /I{AADAC983-FDE9-42FA-8FD9-7BB324155593}
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
HP Boot Optimizer-->MsiExec.exe /X{1341D838-719C-4A05-B50F-49420CA1B4BB}
HP DVD Play 2.1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{45D707E9-F3C4-11D9-A373-0050BAE317E1}\Setup.exe" -uninstall
HP Imaging Device Functions 7.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
HP Photosmart Premier Software 6.5-->C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP Software Update-->MsiExec.exe /X{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}
ICQ Toolbar-->C:\Program Files\ICQ6Toolbar\ICQUnToolbar.exe
ICQ6.5-->"C:\Program Files\InstallShield Installation Information\{60DE4033-9503-48D1-A483-7846BD217CA9}\setup.exe" -runfromtemp -l0x0009 -removeonly
IncrediMail-->C:\Program Files\IncrediMail\bin\ImSetup.exe /remove /addon:IncrediMail /log:IncMail.log
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
iTunes-->MsiExec.exe /I{DA34FE93-5DC5-48E0-ACC8-A5389E05BB51}
IZArc 3.81-->"C:\Program Files\IZArc\unins000.exe"
J2SE Runtime Environment 5.0 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150050}
J2SE Runtime Environment 5.0 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
Java(TM) 6 Update 16-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216016FF}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
JS World-->MsiExec.exe /I{9A8EE170-395C-4B96-B992-B9FE823330E7}
Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
Kaspersky Online Scanner-->C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe
Kit de Connexion Alice ADSL-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3A0221AD-D30B-4320-8F9B-1D0F0E6C6843}\setup.exe" -l0x40c ControlPanel
KODAK Picture CD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4C23837C-993E-11D4-9DE0-0060085C158A}\SETUP.EXE"
KSU-->MsiExec.exe /I{B997C2A0-4383-41BF-B76E-9B8B7ECFB267}
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
LightScribe System Software 1.12.29.2-->MsiExec.exe /X{CF8C077A-B467-4C43-8DB5-3A9B94FF9681}
LimeWire 5.1.4-->"C:\Program Files\LimeWire\uninstall.exe"
Logiciel Kodak EasyShare-->C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_3f1_5b3b87\Setup.exe /APR-REMOVE
Magic Ball 3-->"C:\Program Files\Oberon Media\Magic Ball 3\Uninstall.exe" "C:\Program Files\Oberon Media\Magic Ball 3\install.log"
Magic DVD Ripper V5.0-->"C:\Program Files\MagicDVDRipper\unins000.exe"
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Megavideo Video Downloader 3.15-->"C:\Program Files\DownloadToolz\Megavideo Video Downloader\unins000.exe"
Messenger Plus! 3-->"C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /Remove
Messenger Plus! Live & Sponsor (CiD)-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Security Update (KB953297)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Office PowerPoint Viewer 2003-->MsiExec.exe /X{90AF040C-6000-11D3-8CFE-0150048383C9}
Microsoft Office XP Professional avec FrontPage-->MsiExec.exe /I{9028040C-6000-11D3-8CFE-0050048383C9}
Microsoft Picture It! Express 2001-->MsiExec.exe /I{FB10FE1A-9906-44A1-B8AB-B70B19FEAB58}
Microsoft Publisher 2000-->MsiExec.exe /I{0014040C-78E1-11D2-B60F-006097C998E7}
Microsoft Search Enhancement Pack-->MsiExec.exe /X{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Works-->MsiExec.exe /I{A059DE09-1B49-4450-B340-7AE097EC3F04}
Mise à jour de sécurité pour Lecteur Windows Media (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9L$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB969897)-->"C:\WINDOWS\ie7updates\KB969897-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB976325)-->"C:\WINDOWS\ie8updates\KB976325-IE8\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958470)-->"C:\WINDOWS\$NtUninstallKB958470$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Mise à jour pour Windows Internet Explorer 8 (KB975364)-->"C:\WINDOWS\ie8updates\KB975364-IE8\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB925720)-->"C:\WINDOWS\$NtUninstallKB925720$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
Mozilla Firefox (3.5.7)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
MSXML 6 Service Pack 2 (KB973686)-->MsiExec.exe /I{56EA8BC0-3751-4B93-BC9D-6651CC36E5AA}
naruto Screensaver-->C:\WINDOWS\system32\naruto.scr /u
Navilog1 3.6.5-->"C:\Program Files\Navilog1\unins000.exe"
NDSROM Player-->C:\Program Files\NDSROM Player\Uninstal.exe
NEC Mobile Drivers-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{374CB775-8F6C-4F38-B1EE-F4DB3B74F340} /l1036
NEC WMC USB_AD1 Software-->C:\Program Files\NEC\Drivers\AD1\MARLUninstall.exe
NEC WMC USB_T1 Software-->C:\Program Files\NEC\Drivers\T1\STINUninstall.exe
Notifier-->MsiExec.exe /I{0008546E-DF6E-4CC1-AFD0-2CB8E16C95A2}
NVIDIA Drivers-->C:\WINDOWS\system32\nvunrm.exe UninstallGUI
oggcodecs-->MsiExec.exe /I{D65F0073-A820-4085-B997-A061171595A7}
OpenOffice.org 3.1-->MsiExec.exe /I{0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}
OTtBP-->MsiExec.exe /I{F71760CD-0F8B-4DCC-B7B7-6B223CC3843C}
OTtBPSDK-->MsiExec.exe /I{3CA39B0C-BA85-4D42-AC0F-1FF5F60C3353}
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Pack audio Creative-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5EEE551B-7692-4D68-91BF-DAD745243AFB}\setup.exe" -l0x40c /remove
palmOne-->MsiExec.exe /X{067CE951-4917-4C90-9CE5-8D6D8492480F}
Panda ActiveScan 2.0-->C:\Program Files\Panda Security\ActiveScan 2.0\as2uninst.exe
PCDADDIN-->MsiExec.exe /I{65D85050-5610-4A91-A3B1-D5C744291AD4}
PCDHELP-->MsiExec.exe /I{C99DCDA4-7407-4F72-A77E-C81C551D0C4E}
PCDLNCH-->MsiExec.exe /I{69BD6399-3D8F-45B7-81D9-819361F5101D}
PC-Doctor 5 for Windows-->C:\Program Files\PC-Doctor 5 for Windows\uninst.exe
PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"
PhotoJoy-->MsiExec.exe /X{15482D1C-117B-4201-8D39-985A91ED8433}
PhotoJoy-->Msiexec.exe /x{15482D1C-117B-4201-8D39-985A91ED8433} /qf /L*V "%temp%\PjUninstallLog.log"
PIF DESIGNER-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B90450DF-E781-46FD-B1F1-0C86DA40E443}\SETUP.EXE" -l0x40c anything
Poker Pop-->"C:\Program Files\Oberon Media\Poker Pop\Uninstall.exe" "C:\Program Files\Oberon Media\Poker Pop\install.log"
PowerCinema-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\Setup.exe" -uninstall
Programme de gestion Camera de Logitech®-->"C:\Program Files\Fichiers communs\Labtec\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT
Programme d'installation de Apple QuickTime-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{04024999-475D-4942-9A97-A497CA499857}\SETUP.EXE"
Python 2.2 pywin32 extensions (build 203)-->"C:\Python22\Removepywin32.exe" -u "C:\Python22\pywin32-wininst.log"
Python 2.2.3-->C:\Python22\UNWISE.EXE C:\Python22\INSTALL.LOG
Quartz Studio Free-->C:\WINDOWS\unin040c.exe -f"C:\Program Files\DigitalSoundPlanet\Quartz Studio Free 370F\DeIsL1.isu" -c"C:\Program Files\DigitalSoundPlanet\Quartz Studio Free 370F\_ISREG32.DLL"
QuickTime-->MsiExec.exe /I{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}
RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Realtek High Definition Audio Driver-->RtlUpd.exe -r -m
SAMSUNG Mobile Modem Driver Set-->C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
Samsung Mobile phone USB driver Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\5\SSSDUninstall.exe
SAMSUNG Mobile USB Modem 1.0 Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
SAMSUNG Mobile USB Modem Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
Samsung PC Studio 3 USB Driver Installer-->"C:\Program Files\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe" -runfromtemp -l0x040c -removeonly
Search Settings 1.2.1-->MsiExec.exe /X{0B1AAC97-8563-41D9-AE47-58E6A222F0E1}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SFR-->MsiExec.exe /I{C354C9B6-A4E0-4BB0-A368-6DC6BCA0E314}
SFR2-->MsiExec.exe /I{A0AF08BA-3630-4505-BFB2-A41F3837B0D0}
Shockwave-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\INSTALL.LOG
Skype 3.0-->"C:\Program Files\Skype\Phone\unins000.exe"
Skype add-on for IE-->rundll32 "C:\Program Files\Skype\Phone\IEPlugin\SkypeIEPlugin.dll",FriendlyUnregisterServer 0
Skype Plugin Manager-->MsiExec.exe /I{3D5E5C0A-5B36-4F98-99A7-287F7DBDCE03}
SoftwareUpdate 1.0-->"C:\Documents and Settings\lomig\Application Data\eoRezo\SoftwareUpdate\unins000.exe"
Sonic Express Labeler-->MsiExec.exe /X{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
Sonic MyDVD Plus-->MsiExec.exe /X{21657574-BD54-48A2-9450-EB03B2C7FC29}
Sonic RecordNow Audio-->MsiExec.exe /X{AB708C9B-97C8-4AC9-899B-DBF226AC9382}
Sonic RecordNow Copy-->MsiExec.exe /X{B12665F4-4E93-4AB4-B7FC-37053B524629}
Sonic RecordNow Data-->MsiExec.exe /X{075473F5-846A-448B-BCB3-104AA1760205}
Sonic Update Manager-->MsiExec.exe /X{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
Spybot - Search & Destroy 1.4-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins001.exe"
Star Wars Battlefront II-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3D374523-CFDE-461A-827E-2A102E2AB365}\Setup.exe" -l0x40c -removeonly
SUPER © Version 2009.bld.35 (Jan 5, 2009)-->C:\PROGRA~1\ERIGHT~1\SUPER\Setup.exe /remove /q0
Switch Sound File Converter-->C:\Program Files\NCH Swift Sound\Switch\uninst.exe
Symantec Technical Support Web Controls-->MsiExec.exe /X{DDC63227-BA06-4855-B002-BDB49E9F677E}
Tiks Texas Hold em-->"C:\Program Files\Oberon Media\Tiks Texas Hold em\Uninstall.exe" "C:\Program Files\Oberon Media\Tiks Texas Hold em\install.log"
TmNationsForever-->"C:\Program Files\TmNationsForever\unins000.exe"
tomb-->C:\WINDOWS\system32\sdbinst.exe -u "C:\WINDOWS\AppPatch\Custom\{cc541382-d312-4c5c-bde0-a884c2b8f399}.sdb"
Two Feet Texas Hold ’Em-->"C:\Program Files\Oberon Media\Two Feet Texas Hold Em\Uninstall.exe" "C:\Program Files\Oberon Media\Two Feet Texas Hold Em\install.log"
Unreal Tournament G.O.T.Y. Edition-->C:\UnrealTournament\System\Setup.exe uninstall "UnrealTournament"
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}
VideoLAN VLC media player 0.8.6c-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Internet Explorer 7-->"C:\WINDOWS\ie7\spuninst\spuninst.exe"
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Contrôle parental-->MsiExec.exe /X{D5D81435-B8DE-4CAF-867F-7998F2B92CFC}
Windows Live FolderShare-->MsiExec.exe /X{2075CB0A-D26F-4DAA-B424-5079296B43BA}
Windows Live Mail-->MsiExec.exe /I{5DD76286-9BE7-4894-A990-E905E91AC818}
Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Live Writer-->MsiExec.exe /X{4634B21A-CC07-4396-890C-2B8168661FEA}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
WinX DVD Ripper Platinum 5.1.1-->"C:\Program Files\Digiarty\WinX_DVD_Ripper_Platinum\unins000.exe"
ZENcast Organizer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C029DB0E-C59F-417A-90F8-88FD5B2C4AE7}\setup.exe" -l0x40c /remove
Zoo Tycoon: Complete Collection-->"C:\Program Files\Microsoft Games\Zoo Tycoon\UNINSTAL.EXE" /runtemp /addremove

=====HijackThis Backups=====

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) [2008-10-18]
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file) [2008-10-18]
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - (no file) [2008-10-18]

======Security center information======

AV: avast! antivirus 4.8.1368 [VPS 100115-1]

======System event log======

Computer Name: OMV
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Service COM de gravage de CD IMAPI.

Record Number: 1838
Source Name: Service Control Manager
Time Written: 20091207192334.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: OMV
Event Code: 7036
Message: Le service NLA (Network Location Awareness) est entré dans l'état : en cours d'exécution.

Record Number: 1837
Source Name: Service Control Manager
Time Written: 20091207192334.000000+060
Event Type: Informations
User:

Computer Name: OMV
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service NLA (Network Location Awareness).

Record Number: 1836
Source Name: Service Control Manager
Time Written: 20091207192334.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: OMV
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Gestionnaire de connexions d'accès distant.

Record Number: 1835
Source Name: Service Control Manager
Time Written: 20091207192334.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: OMV
Event Code: 7036
Message: Le service Téléphonie est entré dans l'état : en cours d'exécution.

Record Number: 1834
Source Name: Service Control Manager
Time Written: 20091207192334.000000+060
Event Type: Informations
User:

=====Application event log=====

Computer Name: OMV
Event Code: 4
Message: The LightScribe Service started successfully.

Record Number: 5
Source Name: LightScribeService
Time Written: 20091116201824.000000+060
Event Type: Informations
User:

Computer Name: OMV
Event Code: 0
Message:
Record Number: 4
Source Name: CLCapSvc
Time Written: 20091116201824.000000+060
Event Type: Informations
User:

Computer Name: OMV
Event Code: 0
Message:
Record Number: 3
Source Name: gupdate1c9a00e49d5414e
Time Written: 20091116201821.000000+060
Event Type: Informations
User:

Computer Name: OMV
Event Code: 0
Message:
Record Number: 2
Source Name: ICQ Service
Time Written: 20091116201821.000000+060
Event Type: Informations
User:

Computer Name: OMV
Event Code: 1
Message:
Record Number: 1
Source Name: Bonjour Service
Time Written: 20091116201821.000000+060
Event Type: Informations
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;c:\Python22;C:\Program Files\Samsung\Samsung PC Studio 3\;C:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 79 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=4f02
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"SonicCentral"=c:\Program Files\Fichiers communs\Sonic Shared\Sonic Central\
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip

-----------------EOF-----------------
et voila log...
Logfile of random's system information tool 1.06 (written by random/random)
Run by lomig at 2010-01-15 20:45:25
Microsoft Windows XP Édition familiale Service Pack 2
System drive C: has 116 GB (63%) free of 185 GB
Total RAM: 959 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:46:09, on 15/01/2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Winsudate\gibsvc.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\explorer.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Hercules\DualPix Exchange\Camservice.exe
C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
C:\Documents and Settings\lomig\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\EoRezo\eorezo.exe
C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe
C:\Program Files\palmOne\Hotsync.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Hercules\DualPix Exchange\Camservice.exe
C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
C:\Documents and Settings\lomig\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe
C:\Program Files\palmOne\Hotsync.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\lomig\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\lomig.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&loca...
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb128\SearchSettings.dll
R3 - URLSearchHook: ScriptInocUI Class - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O2 - BHO: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - C:\Program Files\Dealio Toolbar\DealioToolbarIE.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: EOBHO - {C10DC1F4-CCDF-4224-A24D-B23AFC3573C8} - C:\Program Files\EoRezo\EoRezoBHO.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb128\SearchSettings.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - C:\Program Files\Dealio Toolbar\DealioToolbarIE.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [CamserviceDP] C:\Program Files\Hercules\DualPix Exchange\Camservice.exe /startup
O4 - HKLM\..\Run: [ContentTransferWMDetector.exe] C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SoftwareHelper] C:\Documents and Settings\lomig\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [eorezo] "C:\Program Files\EoRezo\eorezo.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [regs remote] C:\DOCUME~1\lomig\APPLIC~1\2BODY~1\Seek Mail.exe
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ6\ICQ.exe" silent
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-21-2467794096-1380120373-2375025980-1011\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c (User 'solenn')
O4 - HKUS\S-1-5-21-2467794096-1380120373-2375025980-1011\..\Run: [LightScribe Control Panel] C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden (User 'solenn')
O4 - HKUS\S-1-5-21-2467794096-1380120373-2375025980-1011\..\Run: [regs remote] C:\DOCUME~1\solenn\APPLIC~1\2BODY~1\Seek Mail.exe (User 'solenn')
O4 - HKUS\S-1-5-21-2467794096-1380120373-2375025980-1011\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart (User 'solenn')
O4 - HKUS\S-1-5-21-2467794096-1380120373-2375025980-1011\..\Run: [msnmsgr] "C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe" /background (User 'solenn')
O4 - HKUS\S-1-5-21-2467794096-1380120373-2375025980-1011\..\Run: [PhotoJoy] C:\Program Files\PhotoJoy\bin\PhotoJoy.exe /c (User 'solenn')
O4 - HKUS\S-1-5-21-2467794096-1380120373-2375025980-1011\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User 'solenn')
O4 - HKUS\S-1-5-21-2467794096-1380120373-2375025980-1011\..\RunOnce: [Shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1103472 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; GTB6; .NET CLR 1.1.4322; Creative ZENcast v1.00.19; MSN Optimized;FR; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; MSN Optimized;FR)" -"http://jeuxenligne.jeux.fr/gameshell/app/gameshell.aspx..." (User 'solenn')
O4 - HKUS\S-1-5-18\..\Run: [LightScribe Control Panel] C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [LightScribe Control Panel] C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden (User 'Default user')
O4 - S-1-5-21-2467794096-1380120373-2375025980-1011 Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'solenn')
O4 - S-1-5-21-2467794096-1380120373-2375025980-1011 Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'solenn')
O4 - S-1-5-21-2467794096-1380120373-2375025980-1011 User Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'solenn')
O4 - S-1-5-21-2467794096-1380120373-2375025980-1011 User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'solenn')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE
O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\Xfire.exe
O4 - Global Startup: HotSync Manager.lnk = C:\Program Files\palmOne\Hotsync.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} (PhotoboxPhotowaysUploader5 Control) - http://assets.photobox.com/assets/aurigma/ImageUploader...
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/F...
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986....
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} - http://www.sibelius.com/download/software/win/ActiveXPl...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol...
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: Creative Service for CDROM Access - Unknown owner - C:\WINDOWS\system32\CTsvcCDA.exe (file missing)
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Service Google Update (gupdate1c9a00e49d5414e) (gupdate1c9a00e49d5414e) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
O23 - Service: Gestionnaire de mise à jour Winsudate (WinSvc) - Winsudate - C:\Program Files\Winsudate\gibsvc.exe

--
End of file - 18894 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{E2044571-AC3F-405C-8904-F3B367E6D6B8}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}]
Dealio Toolbar - C:\Program Files\Dealio Toolbar\DealioToolbarIE.dll [2009-04-09 688128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL [2006-12-18 726568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2009-08-05 113512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-25 263280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-23 764912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}]
EOBHO Class - C:\Program Files\EoRezo\EoRezoBHO.dll [2009-11-11 221184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-18 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
SearchSettings Class - C:\Program Files\Search Settings\kb128\SearchSettings.dll [2009-04-09 1091584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-18 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}]
EpsonToolBandKicker Class - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-21 368640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EE5D279F-081B-4404-994D-C6B60AAEBA6D} - EPSON Web-To-Page - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-21 368640]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - Dealio Toolbar - C:\Program Files\Dealio Toolbar\DealioToolbarIE.dll [2009-04-09 688128]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2009-06-01 962808]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-25 263280]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"CamserviceDP"=C:\Program Files\Hercules\DualPix Exchange\Camservice.exe [2007-08-10 81920]
"ContentTransferWMDetector.exe"=C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe [2008-07-11 423200]
"fssui"=C:\Program Files\Windows Live\Family Safety\fsui.exe [2009-08-05 647520]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-01-25 7311360]
"SoftwareHelper"=C:\Documents and Settings\lomig\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe [2008-12-09 368224]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-09-05 417792]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-09-21 305440]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-10-18 149280]
"eorezo"=C:\Program Files\EoRezo\eorezo.exe [2009-11-12 622592]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-06-23 68856]
"CTSyncU.exe"=C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe [2006-04-28 692224]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-05 15360]
"LightScribe Control Panel"=C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe [2008-01-24 2289664]
"regs remote"=C:\DOCUME~1\lomig\APPLIC~1\2BODY~1\Seek Mail.exe []
"ICQ"=C:\Program Files\ICQ6\ICQ.exe silent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2009-09-21 305440]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe [2008-01-24 2289664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2006-01-25 7311360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2009-09-05 417792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SearchSettings]
C:\Program Files\Search Settings\SearchSettings.exe [2009-04-09 970240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2006-12-18 25365032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoftwareHelper]
C:\Documents and Settings\lomig\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe [2008-12-09 368224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-06-23 68856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]
C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe [2005-08-18 307200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^DataViz Inc Messenger.lnk]
C:\PROGRA~1\FICHIE~1\DataViz\DVZINC~1.EXE [2006-09-13 28672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logiciel Kodak EasyShare.lnk]
C:\PROGRA~1\Kodak\KODAKE~1\bin\EASYSH~1.EXE [2004-08-11 757760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk]
C:\PROGRA~1\MICROS~3\Office10\OSA.EXE [2001-02-13 83360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Windows Desktop Search.lnk]
C:\PROGRA~1\WI459E~1\WINDOW~1.EXE [2007-02-05 118784]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
HotSync Manager.lnk - C:\Program Files\palmOne\Hotsync.exe

C:\Documents and Settings\lomig\Menu Démarrer\Programmes\Démarrage
Pin.lnk - C:\hp\bin\CLOAKER.EXE
Xfire.lnk - C:\Program Files\Xfire\Xfire.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2007-02-05 294400]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll schannel.dll digest.dll msnsspc.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7

Il faudrait que ceux qui utilisent ce PC fassent attention à ce qu'ils téléchargent. Il y a plusieurs infections.

Télécharge Lop S&D (par Eric_71) sur ton Bureau.

Puis double-clique sur Lop S&D présent sur ton Bureau.
(Sous Vista, il faut cliquer droit sur Lop S&D et choisir Exécuter en tant qu'administrateur)

Sélectionne la langue souhaitée, puis choisis l'option 1 (Recherche).

Patiente jusqu'à la fin du scan.

Poste le rapport généré (C:\lopR.txt).

--------------------\\ Lop S&D 4.2.3-6 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3500+ )
BIOS : BIOS Ver: A7225NH5 V3.13 07/18/06 14:31:38
USER : lomig ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1368 [VPS 100115-2] 4.8.1368 (Activated)

"C:\Lop SD" ( MAJ : 27-08-2008|22:40 )
Option : [1] ( 16/01/2010|12:22 )

--------------------\\ Listing des dossiers dans APPLIC~1

[20/05/2009|10:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[23/11/2004|16:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[26/10/2005|23:34] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[20/05/2009|10:27] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[20/05/2009|10:28] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[03/01/2006|02:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
[03/01/2006|02:48] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec

[15/10/2009|16:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[08/04/2009|22:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[23/05/2007|09:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[24/10/2009|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[08/03/2008|16:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[30/03/2009|19:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[30/07/2009|17:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishGamesCache
[22/08/2009|11:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag
[03/01/2006|02:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[13/09/2006|16:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DataViz
[23/11/2004|16:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[18/12/2008|17:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[03/01/2006|02:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
[13/09/2006|16:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HotSync
[03/01/2006|02:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[17/08/2009|13:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ICQ
[26/08/2008|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\IM
[26/08/2008|12:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\IncrediMail
[03/01/2006|02:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[24/05/2008|17:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[18/10/2008|15:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
[10/04/2009|09:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LightScribe
[31/08/2008|13:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MakeMusic
[29/08/2008|13:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[01/08/2008|11:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[21/11/2009|10:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[20/07/2008|19:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NCH Swift Sound
[02/02/2007|10:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[09/04/2009|19:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PferdeHof
[24/09/2008|21:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PhotoJoy
[25/09/2006|18:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[03/01/2006|02:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[02/01/2007|13:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[03/01/2006|02:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[20/05/2009|09:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[05/11/2008|15:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[25/05/2007|19:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[29/12/2008|19:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TrackMania
[02/09/2006|16:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[11/09/2006|19:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[29/04/2009|13:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[17/11/2007|10:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[14/01/2010|22:52] C:\DOCUME~1\COMPAQ~1\APPLIC~1\2 body
[21/10/2008|09:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe
[11/01/2008|09:04] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdobeUM
[01/06/2009|22:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdSigner
[13/12/2009|16:34] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer
[01/05/2009|09:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Arcsoft
[24/03/2009|16:54] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Audacity
[30/03/2009|19:04] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AVS4YOU
[16/11/2006|22:41] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Creative
[22/01/2008|17:12] C:\DOCUME~1\COMPAQ~1\APPLIC~1\CyberLink
[09/05/2009|11:11] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Dealio
[23/11/2004|16:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\desktop.ini
[02/05/2007|17:27] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DivX
[23/10/2008|18:28] C:\DOCUME~1\COMPAQ~1\APPLIC~1\EPSON
[04/11/2009|20:24] C:\DOCUME~1\COMPAQ~1\APPLIC~1\GDIPFONTCACHEV1.DAT
[13/09/2007|17:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google
[21/11/2007|15:27] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help
[13/09/2006|16:34] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HotSync
[06/03/2008|16:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HP
[02/09/2006|15:25] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HPQ
[08/11/2009|15:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Icones
[29/05/2008|14:15] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ICQ Toolbar
[26/10/2005|23:34] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities
[08/11/2008|17:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InstallShield
[13/09/2006|16:41] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech
[02/09/2006|15:38] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia
[21/05/2009|10:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Malwarebytes
[12/12/2009|19:02] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft
[11/09/2006|18:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft Web Folders
[23/07/2009|17:27] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla
[22/11/2009|20:44] C:\DOCUME~1\COMPAQ~1\APPLIC~1\OpenOffice.org
[03/01/2006|02:24] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Real
[09/05/2009|11:11] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Search Settings
[10/06/2009|10:24] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Skype
[28/05/2007|14:01] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic
[16/01/2009|18:34] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sony Corporation
[03/09/2006|11:22] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun
[05/11/2007|11:54] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Symantec
[29/05/2007|22:28] C:\DOCUME~1\COMPAQ~1\APPLIC~1\TaoUSign
[07/02/2008|16:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\U3
[28/09/2007|17:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Windows Desktop Search

[23/11/2004|16:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[26/10/2005|23:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[27/05/2009|11:58] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[03/01/2006|02:53] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[03/01/2006|02:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[03/01/2006|02:48] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[07/12/2009|19:48] C:\DOCUME~1\LOCALS~1\APPLIC~1\Apple Computer
[09/11/2009|17:42] C:\DOCUME~1\LOCALS~1\APPLIC~1\HotSync
[08/11/2009|15:08] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[15/11/2009|12:47] C:\DOCUME~1\LOCALS~1\APPLIC~1\Sun

[22/08/2009|15:11] C:\DOCUME~1\lomig\APPLIC~1\2 body
[02/05/2009|16:09] C:\DOCUME~1\lomig\APPLIC~1\Adobe
[12/11/2006|13:23] C:\DOCUME~1\lomig\APPLIC~1\AdobeUM
[15/10/2009|16:32] C:\DOCUME~1\lomig\APPLIC~1\Apple Computer
[22/11/2009|12:32] C:\DOCUME~1\lomig\APPLIC~1\Audacity
[17/04/2009|19:55] C:\DOCUME~1\lomig\APPLIC~1\AVS4YOU
[22/09/2006|19:17] C:\DOCUME~1\lomig\APPLIC~1\Creative
[12/11/2006|11:17] C:\DOCUME~1\lomig\APPLIC~1\CyberLink
[08/05/2009|16:20] C:\DOCUME~1\lomig\APPLIC~1\Dealio
[23/11/2004|16:13] C:\DOCUME~1\lomig\APPLIC~1\desktop.ini
[26/02/2009|18:20] C:\DOCUME~1\lomig\APPLIC~1\DivX
[15/10/2009|16:47] C:\DOCUME~1\lomig\APPLIC~1\dvdcss
[12/09/2009|11:32] C:\DOCUME~1\lomig\APPLIC~1\EoRezo
[09/12/2007|10:52] C:\DOCUME~1\lomig\APPLIC~1\EPSON
[22/08/2008|18:26] C:\DOCUME~1\lomig\APPLIC~1\Fit3DLive
[04/11/2009|17:58] C:\DOCUME~1\lomig\APPLIC~1\GDIPFONTCACHEV1.DAT
[14/09/2007|18:14] C:\DOCUME~1\lomig\APPLIC~1\Google
[09/09/2006|16:55] C:\DOCUME~1\lomig\APPLIC~1\Help
[13/09/2006|17:53] C:\DOCUME~1\lomig\APPLIC~1\HotSync
[22/10/2006|11:18] C:\DOCUME~1\lomig\APPLIC~1\HP
[12/11/2006|13:51] C:\DOCUME~1\lomig\APPLIC~1\HPQ
[10/07/2008|20:52] C:\DOCUME~1\lomig\APPLIC~1\ICQ
[21/05/2008|16:36] C:\DOCUME~1\lomig\APPLIC~1\ICQ Toolbar
[26/10/2005|23:34] C:\DOCUME~1\lomig\APPLIC~1\Identities
[03/10/2007|16:14] C:\DOCUME~1\lomig\APPLIC~1\InstallShield
[26/08/2008|11:46] C:\DOCUME~1\lomig\APPLIC~1\InstallShield Installation Information
[12/11/2006|11:27] C:\DOCUME~1\lomig\APPLIC~1\Leadertech
[05/09/2006|19:28] C:\DOCUME~1\lomig\APPLIC~1\Macromedia
[29/08/2008|13:54] C:\DOCUME~1\lomig\APPLIC~1\Malwarebytes
[02/05/2009|15:04] C:\DOCUME~1\lomig\APPLIC~1\Microsoft
[24/03/2009|19:38] C:\DOCUME~1\lomig\APPLIC~1\Mozilla
[20/07/2008|19:53] C:\DOCUME~1\lomig\APPLIC~1\NCH Swift Sound
[25/05/2007|18:18] C:\DOCUME~1\lomig\APPLIC~1\PlayFirst
[06/09/2006|16:08] C:\DOCUME~1\lomig\APPLIC~1\Real
[10/04/2009|09:51] C:\DOCUME~1\lomig\APPLIC~1\Samsung
[08/05/2009|16:20] C:\DOCUME~1\lomig\APPLIC~1\Search Settings
[19/02/2009|21:34] C:\DOCUME~1\lomig\APPLIC~1\Skype
[12/11/2006|11:27] C:\DOCUME~1\lomig\APPLIC~1\Sonic
[28/01/2009|21:28] C:\DOCUME~1\lomig\APPLIC~1\Sony Corporation
[17/09/2006|19:02] C:\DOCUME~1\lomig\APPLIC~1\Sun
[05/11/2007|20:22] C:\DOCUME~1\lomig\APPLIC~1\Symantec
[10/01/2010|20:18] C:\DOCUME~1\lomig\APPLIC~1\vlc
[28/09/2007|19:11] C:\DOCUME~1\lomig\APPLIC~1\Windows Desktop Search
[16/12/2006|12:22] C:\DOCUME~1\lomig\APPLIC~1\Xfire

[26/01/2008|09:59] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[22/08/2009|11:26] C:\DOCUME~1\solenn\APPLIC~1\2 body
[25/02/2009|16:00] C:\DOCUME~1\solenn\APPLIC~1\Adobe
[08/11/2006|10:11] C:\DOCUME~1\solenn\APPLIC~1\AdobeUM
[17/10/2009|11:24] C:\DOCUME~1\solenn\APPLIC~1\Apple Computer
[24/03/2009|19:18] C:\DOCUME~1\solenn\APPLIC~1\Audacity
[07/11/2006|18:49] C:\DOCUME~1\solenn\APPLIC~1\Creative
[31/07/2009|14:19] C:\DOCUME~1\solenn\APPLIC~1\CyberLink
[08/05/2009|17:37] C:\DOCUME~1\solenn\APPLIC~1\Dealio
[23/11/2004|16:13] C:\DOCUME~1\solenn\APPLIC~1\desktop.ini
[15/06/2007|20:04] C:\DOCUME~1\solenn\APPLIC~1\DivX
[08/12/2007|15:29] C:\DOCUME~1\solenn\APPLIC~1\EPSON
[23/08/2008|19:22] C:\DOCUME~1\solenn\APPLIC~1\Fit3DLive
[03/12/2009|21:33] C:\DOCUME~1\solenn\APPLIC~1\GDIPFONTCACHEV1.DAT
[15/09/2007|11:50] C:\DOCUME~1\solenn\APPLIC~1\Google
[03/11/2007|19:29] C:\DOCUME~1\solenn\APPLIC~1\Help
[16/10/2006|21:41] C:\DOCUME~1\solenn\APPLIC~1\HotSync
[24/05/2008|17:39] C:\DOCUME~1\solenn\APPLIC~1\HP
[02/11/2006|17:55] C:\DOCUME~1\solenn\APPLIC~1\HPQ
[07/05/2008|19:28] C:\DOCUME~1\solenn\APPLIC~1\ICQ
[31/01/2008|15:00] C:\DOCUME~1\solenn\APPLIC~1\ICQ Toolbar
[26/10/2005|23:34] C:\DOCUME~1\solenn\APPLIC~1\Identities
[01/09/2007|09:50] C:\DOCUME~1\solenn\APPLIC~1\Leadertech
[07/11/2009|11:24] C:\DOCUME~1\solenn\APPLIC~1\LimeWire
[06/11/2009|18:26] C:\DOCUME~1\solenn\APPLIC~1\Macromedia
[05/11/2009|17:37] C:\DOCUME~1\solenn\APPLIC~1\Malwarebytes
[29/04/2009|14:15] C:\DOCUME~1\solenn\APPLIC~1\Microsoft
[16/02/2009|13:43] C:\DOCUME~1\solenn\APPLIC~1\Mozilla
[25/02/2009|13:46] C:\DOCUME~1\solenn\APPLIC~1\NCH Swift Sound
[18/10/2009|15:40] C:\DOCUME~1\solenn\APPLIC~1\OpenOffice.org
[21/11/2006|17:48] C:\DOCUME~1\solenn\APPLIC~1\Real
[08/05/2009|17:37] C:\DOCUME~1\solenn\APPLIC~1\Search Settings
[01/09/2007|09:50] C:\DOCUME~1\solenn\APPLIC~1\Sonic
[28/12/2008|15:05] C:\DOCUME~1\solenn\APPLIC~1\Sony Corporation
[02/11/2006|12:37] C:\DOCUME~1\solenn\APPLIC~1\Sun
[05/11/2007|12:51] C:\DOCUME~1\solenn\APPLIC~1\Symantec
[28/09/2007|16:37] C:\DOCUME~1\solenn\APPLIC~1\Windows Desktop Search

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[18/12/2009 15:34][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[16/01/2010 12:18][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{E2044571-AC3F-405C-8904-F3B367E6D6B8}.job
[16/01/2010 11:34][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[16/01/2010 11:09][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[16/01/2010 11:09][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 12:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ MsgPlus SPONSOR INSTALLED !

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"SponsorInstalled"=dword:00000000


--------------------\\ Listing des dossiers dans C:\Program Files

[08/07/2009|09:22] C:\Program Files\2 body
[22/10/2007|19:34] C:\Program Files\Adobe
[02/09/2006|15:38] C:\Program Files\Alice
[05/11/2008|15:52] C:\Program Files\Alwil Software
[07/11/2007|18:35] C:\Program Files\Asthme Academy
[24/03/2009|16:55] C:\Program Files\Audacity
[22/03/2009|10:48] C:\Program Files\Audacity 1.3 Beta (Unicode)
[09/11/2007|17:59] C:\Program Files\Audible
[18/04/2009|19:24] C:\Program Files\AviSynth 2.5
[03/05/2009|11:07] C:\Program Files\AVS4YOU
[08/04/2009|22:00] C:\Program Files\Bonjour
[20/05/2009|09:11] C:\Program Files\CCleaner
[08/07/2009|09:21] C:\Program Files\Circle Developement
[20/10/2005|20:06] C:\Program Files\ComPlus Applications
[19/02/2007|20:07] C:\Program Files\Core Design
[19/02/2007|17:19] C:\Program Files\Creative
[22/09/2006|18:13] C:\Program Files\Creative Installation Information
[03/01/2006|02:27] C:\Program Files\CyberLink
[08/05/2009|16:19] C:\Program Files\Dealio Toolbar
[15/10/2009|16:57] C:\Program Files\Digiarty
[17/11/2009|15:53] C:\Program Files\DigitalSoundPlanet
[02/12/2006|12:01] C:\Program Files\directx
[14/03/2009|14:29] C:\Program Files\DivX
[13/09/2006|17:02] C:\Program Files\Documents To Go
[10/01/2010|19:00] C:\Program Files\DownloadToolz
[21/04/2008|16:42] C:\Program Files\Droppix
[18/12/2009|18:22] C:\Program Files\EoRezo
[02/09/2006|16:17] C:\Program Files\EPSON
[09/05/2009|21:23] C:\Program Files\eRightSoft
[29/04/2009|13:46] C:\Program Files\Fichiers communs
[20/05/2009|08:39] C:\Program Files\File Scanner Library (Spybot - Search & Destroy)
[31/08/2008|13:22] C:\Program Files\Finale 2005
[31/08/2008|13:21] C:\Program Files\Finale Performance Assessment
[21/03/2009|16:18] C:\Program Files\GamersFirst
[30/12/2009|10:37] C:\Program Files\Google
[08/11/2008|17:53] C:\Program Files\Hercules
[03/01/2006|02:37] C:\Program Files\Hewlett-Packard
[04/06/2008|12:45] C:\Program Files\Hip Interactive
[03/01/2006|02:26] C:\Program Files\HP
[17/08/2009|13:31] C:\Program Files\ICQ6
[17/08/2009|13:34] C:\Program Files\ICQ6.5
[17/08/2009|13:33] C:\Program Files\ICQ6Toolbar
[04/04/2008|17:35] C:\Program Files\ICQToolbar
[21/04/2008|16:48] C:\Program Files\illiminable
[16/02/2009|13:58] C:\Program Files\IncrediMail
[11/04/2009|08:27] C:\Program Files\InstallShield Installation Information
[12/12/2009|19:17] C:\Program Files\Internet Explorer
[15/10/2009|16:28] C:\Program Files\iPod
[09/05/2009|21:14] C:\Program Files\Ipod Video Converter
[15/10/2009|16:29] C:\Program Files\iTunes
[11/04/2009|13:03] C:\Program Files\IVCsoft
[21/07/2009|11:02] C:\Program Files\IZArc
[18/10/2009|15:35] C:\Program Files\Java
[18/10/2009|15:36] C:\Program Files\JRE
[05/11/2009|18:03] C:\Program Files\JS World
[25/09/2006|19:15] C:\Program Files\Kodak
[30/06/2009|16:20] C:\Program Files\LimeWire
[08/11/2008|17:31] C:\Program Files\Logitech
[25/02/2009|13:50] C:\Program Files\Lucas Learning
[04/12/2009|18:39] C:\Program Files\MagicDVDRipper
[29/08/2008|13:54] C:\Program Files\Malwarebytes' Anti-Malware
[22/08/2008|15:06] C:\Program Files\Messenger
[08/07/2009|09:21] C:\Program Files\Messenger Plus! Live
[01/08/2008|10:28] C:\Program Files\MessengerPlus! 3
[29/04/2009|13:56] C:\Program Files\Microsoft
[29/08/2007|21:52] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[11/09/2006|18:35] C:\Program Files\microsoft frontpage
[28/07/2009|13:27] C:\Program Files\Microsoft Games
[11/09/2006|18:36] C:\Program Files\Microsoft Office
[21/10/2009|16:33] C:\Program Files\Microsoft Picture It! PhotoPub
[09/10/2009|09:13] C:\Program Files\Microsoft Silverlight
[27/09/2007|18:36] C:\Program Files\Microsoft SQL Server Compact Edition
[29/04/2009|14:03] C:\Program Files\Microsoft Sync Framework
[03/01/2006|02:29] C:\Program Files\Microsoft Works
[20/05/2009|08:38] C:\Program Files\Misc. Support Library (Spybot - Search & Destroy)
[26/10/2005|23:36] C:\Program Files\Movie Maker
[16/01/2010|12:19] C:\Program Files\Mozilla Firefox
[22/08/2009|11:09] C:\Program Files\MSBuild
[04/09/2006|18:44] C:\Program Files\MSN
[26/10/2005|23:36] C:\Program Files\MSN Gaming Zone
[01/08/2008|10:37] C:\Program Files\MSN Messenger
[19/11/2006|03:01] C:\Program Files\MSXML 4.0
[28/12/2008|15:03] C:\Program Files\MSXML 6.0
[29/08/2008|13:07] C:\Program Files\Navilog1
[28/10/2009|13:59] C:\Program Files\NCH Software
[20/07/2008|19:53] C:\Program Files\NCH Swift Sound
[20/07/2009|19:17] C:\Program Files\NDSROM Player
[25/08/2008|14:51] C:\Program Files\NEC
[23/06/2007|15:25] C:\Program Files\NetMeeting
[25/05/2007|18:18] C:\Program Files\Oberon Media
[26/10/2005|23:36] C:\Program Files\Online Services
[18/10/2009|15:36] C:\Program Files\OpenOffice.org 3
[17/08/2009|22:09] C:\Program Files\Outlook Express
[13/09/2006|17:30] C:\Program Files\palmOne
[10/06/2009|10:29] C:\Program Files\Panda Security
[03/01/2006|02:35] C:\Program Files\PC-Doctor 5 for Windows
[28/10/2008|20:43] C:\Program Files\PhotoFiltre
[24/09/2008|21:44] C:\Program Files\PhotoJoy
[15/10/2009|16:26] C:\Program Files\QuickTime
[03/01/2006|02:24] C:\Program Files\Real
[22/08/2009|11:09] C:\Program Files\Reference Assemblies
[10/04/2009|09:51] C:\Program Files\Samsung
[20/05/2009|08:39] C:\Program Files\SDHelper (Spybot - Search & Destroy)
[08/05/2009|16:19] C:\Program Files\Search Settings
[03/01/2006|02:39] C:\Program Files\Services en ligne
[02/01/2007|13:12] C:\Program Files\Skype
[03/01/2006|02:25] C:\Program Files\Sonic
[28/12/2008|15:04] C:\Program Files\Sony
[20/05/2009|09:07] C:\Program Files\Spybot - Search & Destroy
[20/05/2009|08:39] C:\Program Files\TeaTimer (Spybot - Search & Destroy)
[02/09/2006|15:38] C:\Program Files\TechCity Solutions
[15/07/2008|12:02] C:\Program Files\TmNationsForever
[28/08/2008|08:56] C:\Program Files\Trend Micro
[22/06/2007|17:30] C:\Program Files\TryMedia
[06/06/2009|15:17] C:\Program Files\tuxguitar-1.1
[15/10/2009|18:28] C:\Program Files\UltraMixer
[20/10/2005|20:06] C:\Program Files\Uninstall Information
[10/01/2010|20:17] C:\Program Files\VideoLAN
[10/07/2007|10:30] C:\Program Files\warcraft iii
[27/09/2007|18:36] C:\Program Files\Windows Desktop Search
[07/10/2009|18:48] C:\Program Files\Windows Live
[29/04/2009|13:55] C:\Program Files\Windows Live SkyDrive
[09/03/2007|19:15] C:\Program Files\Windows Media Connect 2
[07/02/2008|15:40] C:\Program Files\Windows Media Player
[26/10/2005|23:36] C:\Program Files\Windows NT
[20/10/2005|20:05] C:\Program Files\WindowsUpdate
[22/10/2007|19:33] C:\Program Files\WinRAR
[08/11/2009|15:05] C:\Program Files\Winsudate
[26/10/2005|23:37] C:\Program Files\xerox

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[22/10/2007|19:34] C:\Program Files\Fichiers communs\Adobe
[15/10/2009|16:28] C:\Program Files\Fichiers communs\Apple
[03/05/2009|11:08] C:\Program Files\Fichiers communs\AVSMedia
[21/09/2006|17:50] C:\Program Files\Fichiers communs\Creative
[13/09/2006|16:50] C:\Program Files\Fichiers communs\DataViz
[11/09/2006|18:31] C:\Program Files\Fichiers communs\Designer
[14/03/2009|11:11] C:\Program Files\Fichiers communs\DivX Shared
[21/04/2008|16:47] C:\Program Files\Fichiers communs\Droppix
[03/01/2006|02:20] C:\Program Files\Fichiers communs\HP
[02/09/2006|16:15] C:\Program Files\Fichiers communs\InstallShield
[03/01/2006|02:05] C:\Program Files\Fichiers communs\Java
[25/09/2006|19:15] C:\Program Files\Fichiers communs\KODAK
[03/09/2006|10:18] C:\Program Files\Fichiers communs\Labtec
[21/04/2008|16:46] C:\Program Files\Fichiers communs\LightScribe
[05/03/2009|23:13] C:\Program Files\Fichiers communs\Microsoft Shared
[26/10/2005|23:35] C:\Program Files\Fichiers communs\MSSoap
[19/05/2007|12:34] C:\Program Files\Fichiers communs\Oberon Media
[26/10/2005|23:35] C:\Program Files\Fichiers communs\ODBC
[03/01/2006|02:24] C:\Program Files\Fichiers communs\Real
[26/10/2005|23:35] C:\Program Files\Fichiers communs\Services
[02/01/2007|13:12] C:\Program Files\Fichiers communs\Skype
[03/01/2006|02:24] C:\Program Files\Fichiers communs\Sonic Shared
[28/12/2008|15:04] C:\Program Files\Fichiers communs\Sony Shared
[26/10/2005|23:35] C:\Program Files\Fichiers communs\SpeechEngines
[03/01/2006|02:25] C:\Program Files\Fichiers communs\SureThing Shared
[16/12/2006|09:01] C:\Program Files\Fichiers communs\SWF Studio
[19/05/2009|16:54] C:\Program Files\Fichiers communs\Symantec Shared
[13/06/2007|22:30] C:\Program Files\Fichiers communs\System
[03/01/2006|02:25] C:\Program Files\Fichiers communs\TiVo Shared
[29/04/2009|13:46] C:\Program Files\Fichiers communs\Windows Live
[17/11/2007|10:47] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[31/08/2008|13:19] C:\Program Files\Fichiers communs\Wise Installation Wizard
[03/01/2006|02:24] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 74 Processus )

IEXPLORE.EXE ~ [PID:2644]
IEXPLORE.EXE ~ [PID:3492]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\FLAG ISO.dat
C:\DOCUME~1\COMPAQ~1\APPLIC~1\2body~1
C:\DOCUME~1\lomig\APPLIC~1\2body~1
C:\DOCUME~1\solenn\APPLIC~1\2body~1
C:\Program Files\2body~1
C:\DOCUME~1\lomig\LOCALS~1\Temp\msgpl_aca4.tmp
C:\DOCUME~1\lomig\LOCALS~1\Temp\msgpl_caef.tmp
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"regs remote"="C:\\DOCUME~1\\lomig\\APPLIC~1\\2BODY~1\\Seek Mail.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-16 12:23:26
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 74

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:905][D:44]-> C:\DOCUME~1\lomig\LOCALS~1\Temp
[F:77][D:0]-> C:\DOCUME~1\lomig\Cookies
[F:3590][D:20]-> C:\DOCUME~1\lomig\LOCALS~1\TEMPOR~1\content.IE5

--------------------\\ Fin du rapport a 12:27:27
voila le rapport
merci et bonne journée

Relance Lop S&D.
(Sous Vista, il faut cliquer droit sur Lop S&D et choisir Exécuter en tant qu'administrateur)

Choisis cette fois-ci l'option 2 (Suppression).

Ne ferme pas la fenêtre lors de la suppression !

Poste le rapport généré (C:\lopR.txt).

(Si le Bureau ne réapparaît pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)

voila le rapport

--------------------\\ Lop S&D 4.2.3-6 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3500+ )
BIOS : BIOS Ver: A7225NH5 V3.13 07/18/06 14:31:38
USER : lomig ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1368 [VPS 100117-0] 4.8.1368 (Activated)

"C:\Lop SD" ( MAJ : 27-08-2008|22:40 )
Option : [2] ( 17/01/2010|10:45 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\FLAG ISO.dat
Supprime! - C:\DOCUME~1\lomig\LOCALS~1\Temp\msgpl_aca4.tmp
Supprime! - C:\DOCUME~1\lomig\LOCALS~1\Temp\msgpl_caef.tmp
Supprime! - C:\Program Files\Circle Developement\Uninstall.exe
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\2body~1
Supprime! - C:\DOCUME~1\lomig\APPLIC~1\2body~1
Supprime! - C:\DOCUME~1\solenn\APPLIC~1\2body~1
Supprime! - C:\Program Files\2body~1
Supprime! - C:\Program Files\Circle Developement

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[20/05/2009|10:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[23/11/2004|16:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[26/10/2005|23:34] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[20/05/2009|10:27] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[20/05/2009|10:28] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[03/01/2006|02:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
[03/01/2006|02:48] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec

[15/10/2009|16:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[08/04/2009|22:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[23/05/2007|09:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[24/10/2009|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[08/03/2008|16:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[30/03/2009|19:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[30/07/2009|17:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishGamesCache
[03/01/2006|02:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[13/09/2006|16:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DataViz
[23/11/2004|16:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[18/12/2008|17:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[03/01/2006|02:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
[13/09/2006|16:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HotSync
[03/01/2006|02:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[17/08/2009|13:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ICQ
[26/08/2008|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\IM
[26/08/2008|12:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\IncrediMail
[03/01/2006|02:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[24/05/2008|17:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[18/10/2008|15:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
[10/04/2009|09:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LightScribe
[31/08/2008|13:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MakeMusic
[29/08/2008|13:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[01/08/2008|11:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[21/11/2009|10:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[20/07/2008|19:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NCH Swift Sound
[02/02/2007|10:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[09/04/2009|19:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PferdeHof
[24/09/2008|21:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PhotoJoy
[25/09/2006|18:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[03/01/2006|02:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[02/01/2007|13:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[03/01/2006|02:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[20/05/2009|09:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[05/11/2008|15:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[25/05/2007|19:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[29/12/2008|19:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TrackMania
[02/09/2006|16:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[11/09/2006|19:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[29/04/2009|13:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[17/11/2007|10:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[21/10/2008|09:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe
[11/01/2008|09:04] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdobeUM
[01/06/2009|22:03] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdSigner
[13/12/2009|16:34] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer
[01/05/2009|09:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Arcsoft
[24/03/2009|16:54] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Audacity
[30/03/2009|19:04] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AVS4YOU
[16/11/2006|22:41] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Creative
[22/01/2008|17:12] C:\DOCUME~1\COMPAQ~1\APPLIC~1\CyberLink
[09/05/2009|11:11] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Dealio
[23/11/2004|16:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\desktop.ini
[02/05/2007|17:27] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DivX
[23/10/2008|18:28] C:\DOCUME~1\COMPAQ~1\APPLIC~1\EPSON
[04/11/2009|20:24] C:\DOCUME~1\COMPAQ~1\APPLIC~1\GDIPFONTCACHEV1.DAT
[13/09/2007|17:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google
[21/11/2007|15:27] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help
[13/09/2006|16:34] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HotSync
[06/03/2008|16:36] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HP
[02/09/2006|15:25] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HPQ
[08/11/2009|15:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Icones
[29/05/2008|14:15] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ICQ Toolbar
[26/10/2005|23:34] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities
[08/11/2008|17:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InstallShield
[13/09/2006|16:41] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech
[02/09/2006|15:38] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia
[21/05/2009|10:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Malwarebytes
[12/12/2009|19:02] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft
[11/09/2006|18:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft Web Folders
[23/07/2009|17:27] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla
[22/11/2009|20:44] C:\DOCUME~1\COMPAQ~1\APPLIC~1\OpenOffice.org
[03/01/2006|02:24] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Real
[09/05/2009|11:11] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Search Settings
[10/06/2009|10:24] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Skype
[28/05/2007|14:01] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic
[16/01/2009|18:34] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sony Corporation
[03/09/2006|11:22] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun
[05/11/2007|11:54] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Symantec
[29/05/2007|22:28] C:\DOCUME~1\COMPAQ~1\APPLIC~1\TaoUSign
[07/02/2008|16:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\U3
[28/09/2007|17:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Windows Desktop Search

[23/11/2004|16:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[26/10/2005|23:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[27/05/2009|11:58] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[03/01/2006|02:53] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[03/01/2006|02:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[03/01/2006|02:48] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[07/12/2009|19:48] C:\DOCUME~1\LOCALS~1\APPLIC~1\Apple Computer
[09/11/2009|17:42] C:\DOCUME~1\LOCALS~1\APPLIC~1\HotSync
[08/11/2009|15:08] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[15/11/2009|12:47] C:\DOCUME~1\LOCALS~1\APPLIC~1\Sun

[02/05/2009|16:09] C:\DOCUME~1\lomig\APPLIC~1\Adobe
[12/11/2006|13:23] C:\DOCUME~1\lomig\APPLIC~1\AdobeUM
[15/10/2009|16:32] C:\DOCUME~1\lomig\APPLIC~1\Apple Computer
[22/11/2009|12:32] C:\DOCUME~1\lomig\APPLIC~1\Audacity
[17/04/2009|19:55] C:\DOCUME~1\lomig\APPLIC~1\AVS4YOU
[22/09/2006|19:17] C:\DOCUME~1\lomig\APPLIC~1\Creative
[12/11/2006|11:17] C:\DOCUME~1\lomig\APPLIC~1\CyberLink
[08/05/2009|16:20] C:\DOCUME~1\lomig\APPLIC~1\Dealio
[23/11/2004|16:13] C:\DOCUME~1\lomig\APPLIC~1\desktop.ini
[26/02/2009|18:20] C:\DOCUME~1\lomig\APPLIC~1\DivX
[15/10/2009|16:47] C:\DOCUME~1\lomig\APPLIC~1\dvdcss
[12/09/2009|11:32] C:\DOCUME~1\lomig\APPLIC~1\EoRezo
[09/12/2007|10:52] C:\DOCUME~1\lomig\APPLIC~1\EPSON
[22/08/2008|18:26] C:\DOCUME~1\lomig\APPLIC~1\Fit3DLive
[04/11/2009|17:58] C:\DOCUME~1\lomig\APPLIC~1\GDIPFONTCACHEV1.DAT
[14/09/2007|18:14] C:\DOCUME~1\lomig\APPLIC~1\Google
[09/09/2006|16:55] C:\DOCUME~1\lomig\APPLIC~1\Help
[13/09/2006|17:53] C:\DOCUME~1\lomig\APPLIC~1\HotSync
[22/10/2006|11:18] C:\DOCUME~1\lomig\APPLIC~1\HP
[12/11/2006|13:51] C:\DOCUME~1\lomig\APPLIC~1\HPQ
[10/07/2008|20:52] C:\DOCUME~1\lomig\APPLIC~1\ICQ
[21/05/2008|16:36] C:\DOCUME~1\lomig\APPLIC~1\ICQ Toolbar
[26/10/2005|23:34] C:\DOCUME~1\lomig\APPLIC~1\Identities
[03/10/2007|16:14] C:\DOCUME~1\lomig\APPLIC~1\InstallShield
[26/08/2008|11:46] C:\DOCUME~1\lomig\APPLIC~1\InstallShield Installation Information
[12/11/2006|11:27] C:\DOCUME~1\lomig\APPLIC~1\Leadertech
[05/09/2006|19:28] C:\DOCUME~1\lomig\APPLIC~1\Macromedia
[29/08/2008|13:54] C:\DOCUME~1\lomig\APPLIC~1\Malwarebytes
[02/05/2009|15:04] C:\DOCUME~1\lomig\APPLIC~1\Microsoft
[24/03/2009|19:38] C:\DOCUME~1\lomig\APPLIC~1\Mozilla
[20/07/2008|19:53] C:\DOCUME~1\lomig\APPLIC~1\NCH Swift Sound
[25/05/2007|18:18] C:\DOCUME~1\lomig\APPLIC~1\PlayFirst
[06/09/2006|16:08] C:\DOCUME~1\lomig\APPLIC~1\Real
[10/04/2009|09:51] C:\DOCUME~1\lomig\APPLIC~1\Samsung
[08/05/2009|16:20] C:\DOCUME~1\lomig\APPLIC~1\Search Settings
[19/02/2009|21:34] C:\DOCUME~1\lomig\APPLIC~1\Skype
[12/11/2006|11:27] C:\DOCUME~1\lomig\APPLIC~1\Sonic
[28/01/2009|21:28] C:\DOCUME~1\lomig\APPLIC~1\Sony Corporation
[17/09/2006|19:02] C:\DOCUME~1\lomig\APPLIC~1\Sun
[05/11/2007|20:22] C:\DOCUME~1\lomig\APPLIC~1\Symantec
[10/01/2010|20:18] C:\DOCUME~1\lomig\APPLIC~1\vlc
[28/09/2007|19:11] C:\DOCUME~1\lomig\APPLIC~1\Windows Desktop Search
[16/12/2006|12:22] C:\DOCUME~1\lomig\APPLIC~1\Xfire

[26/01/2008|09:59] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[25/02/2009|16:00] C:\DOCUME~1\solenn\APPLIC~1\Adobe
[08/11/2006|10:11] C:\DOCUME~1\solenn\APPLIC~1\AdobeUM
[17/10/2009|11:24] C:\DOCUME~1\solenn\APPLIC~1\Apple Computer
[24/03/2009|19:18] C:\DOCUME~1\solenn\APPLIC~1\Audacity
[07/11/2006|18:49] C:\DOCUME~1\solenn\APPLIC~1\Creative
[31/07/2009|14:19] C:\DOCUME~1\solenn\APPLIC~1\CyberLink
[08/05/2009|17:37] C:\DOCUME~1\solenn\APPLIC~1\Dealio
[23/11/2004|16:13] C:\DOCUME~1\solenn\APPLIC~1\desktop.ini
[15/06/2007|20:04] C:\DOCUME~1\solenn\APPLIC~1\DivX
[08/12/2007|15:29] C:\DOCUME~1\solenn\APPLIC~1\EPSON
[23/08/2008|19:22] C:\DOCUME~1\solenn\APPLIC~1\Fit3DLive
[03/12/2009|21:33] C:\DOCUME~1\solenn\APPLIC~1\GDIPFONTCACHEV1.DAT
[15/09/2007|11:50] C:\DOCUME~1\solenn\APPLIC~1\Google
[03/11/2007|19:29] C:\DOCUME~1\solenn\APPLIC~1\Help
[16/10/2006|21:41] C:\DOCUME~1\solenn\APPLIC~1\HotSync
[24/05/2008|17:39] C:\DOCUME~1\solenn\APPLIC~1\HP
[02/11/2006|17:55] C:\DOCUME~1\solenn\APPLIC~1\HPQ
[07/05/2008|19:28] C:\DOCUME~1\solenn\APPLIC~1\ICQ
[31/01/2008|15:00] C:\DOCUME~1\solenn\APPLIC~1\ICQ Toolbar
[26/10/2005|23:34] C:\DOCUME~1\solenn\APPLIC~1\Identities
[01/09/2007|09:50] C:\DOCUME~1\solenn\APPLIC~1\Leadertech
[07/11/2009|11:24] C:\DOCUME~1\solenn\APPLIC~1\LimeWire
[06/11/2009|18:26] C:\DOCUME~1\solenn\APPLIC~1\Macromedia
[05/11/2009|17:37] C:\DOCUME~1\solenn\APPLIC~1\Malwarebytes
[29/04/2009|14:15] C:\DOCUME~1\solenn\APPLIC~1\Microsoft
[16/02/2009|13:43] C:\DOCUME~1\solenn\APPLIC~1\Mozilla
[25/02/2009|13:46] C:\DOCUME~1\solenn\APPLIC~1\NCH Swift Sound
[18/10/2009|15:40] C:\DOCUME~1\solenn\APPLIC~1\OpenOffice.org
[21/11/2006|17:48] C:\DOCUME~1\solenn\APPLIC~1\Real
[08/05/2009|17:37] C:\DOCUME~1\solenn\APPLIC~1\Search Settings
[01/09/2007|09:50] C:\DOCUME~1\solenn\APPLIC~1\Sonic
[28/12/2008|15:05] C:\DOCUME~1\solenn\APPLIC~1\Sony Corporation
[02/11/2006|12:37] C:\DOCUME~1\solenn\APPLIC~1\Sun
[05/11/2007|12:51] C:\DOCUME~1\solenn\APPLIC~1\Symantec
[28/09/2007|16:37] C:\DOCUME~1\solenn\APPLIC~1\Windows Desktop Search

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[18/12/2009 15:34][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[17/01/2010 10:44][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{E2044571-AC3F-405C-8904-F3B367E6D6B8}.job
[17/01/2010 01:34][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[17/01/2010 10:42][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[17/01/2010 10:42][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 12:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ MsgPlus SPONSOR INSTALLED !

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"SponsorInstalled"=dword:00000000


--------------------\\ Listing des dossiers dans C:\Program Files

[22/10/2007|19:34] C:\Program Files\Adobe
[02/09/2006|15:38] C:\Program Files\Alice
[05/11/2008|15:52] C:\Program Files\Alwil Software
[07/11/2007|18:35] C:\Program Files\Asthme Academy
[24/03/2009|16:55] C:\Program Files\Audacity
[22/03/2009|10:48] C:\Program Files\Audacity 1.3 Beta (Unicode)
[09/11/2007|17:59] C:\Program Files\Audible
[18/04/2009|19:24] C:\Program Files\AviSynth 2.5
[03/05/2009|11:07] C:\Program Files\AVS4YOU
[08/04/2009|22:00] C:\Program Files\Bonjour
[20/05/2009|09:11] C:\Program Files\CCleaner
[20/10/2005|20:06] C:\Program Files\ComPlus Applications
[19/02/2007|20:07] C:\Program Files\Core Design
[19/02/2007|17:19] C:\Program Files\Creative
[22/09/2006|18:13] C:\Program Files\Creative Installation Information
[03/01/2006|02:27] C:\Program Files\CyberLink
[08/05/2009|16:19] C:\Program Files\Dealio Toolbar
[15/10/2009|16:57] C:\Program Files\Digiarty
[17/11/2009|15:53] C:\Program Files\DigitalSoundPlanet
[02/12/2006|12:01] C:\Program Files\directx
[14/03/2009|14:29] C:\Program Files\DivX
[13/09/2006|17:02] C:\Program Files\Documents To Go
[10/01/2010|19:00] C:\Program Files\DownloadToolz
[21/04/2008|16:42] C:\Program Files\Droppix
[18/12/2009|18:22] C:\Program Files\EoRezo
[02/09/2006|16:17] C:\Program Files\EPSON
[09/05/2009|21:23] C:\Program Files\eRightSoft
[29/04/2009|13:46] C:\Program Files\Fichiers communs
[20/05/2009|08:39] C:\Program Files\File Scanner Library (Spybot - Search & Destroy)
[31/08/2008|13:22] C:\Program Files\Finale 2005
[31/08/2008|13:21] C:\Program Files\Finale Performance Assessment
[21/03/2009|16:18] C:\Program Files\GamersFirst
[30/12/2009|10:37] C:\Program Files\Google
[08/11/2008|17:53] C:\Program Files\Hercules
[03/01/2006|02:37] C:\Program Files\Hewlett-Packard
[04/06/2008|12:45] C:\Program Files\Hip Interactive
[03/01/2006|02:26] C:\Program Files\HP
[17/08/2009|13:31] C:\Program Files\ICQ6
[17/08/2009|13:34] C:\Program Files\ICQ6.5
[17/08/2009|13:33] C:\Program Files\ICQ6Toolbar
[04/04/2008|17:35] C:\Program Files\ICQToolbar
[21/04/2008|16:48] C:\Program Files\illiminable
[16/02/2009|13:58] C:\Program Files\IncrediMail
[11/04/2009|08:27] C:\Program Files\InstallShield Installation Information
[12/12/2009|19:17] C:\Program Files\Internet Explorer
[15/10/2009|16:28] C:\Program Files\iPod
[09/05/2009|21:14] C:\Program Files\Ipod Video Converter
[15/10/2009|16:29] C:\Program Files\iTunes
[11/04/2009|13:03] C:\Program Files\IVCsoft
[21/07/2009|11:02] C:\Program Files\IZArc
[18/10/2009|15:35] C:\Program Files\Java
[18/10/2009|15:36] C:\Program Files\JRE
[05/11/2009|18:03] C:\Program Files\JS World
[25/09/2006|19:15] C:\Program Files\Kodak
[30/06/2009|16:20] C:\Program Files\LimeWire
[08/11/2008|17:31] C:\Program Files\Logitech
[25/02/2009|13:50] C:\Program Files\Lucas Learning
[04/12/2009|18:39] C:\Program Files\MagicDVDRipper
[29/08/2008|13:54] C:\Program Files\Malwarebytes' Anti-Malware
[22/08/2008|15:06] C:\Program Files\Messenger
[08/07/2009|09:21] C:\Program Files\Messenger Plus! Live
[01/08/2008|10:28] C:\Program Files\MessengerPlus! 3
[29/04/2009|13:56] C:\Program Files\Microsoft
[29/08/2007|21:52] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[11/09/2006|18:35] C:\Program Files\microsoft frontpage
[28/07/2009|13:27] C:\Program Files\Microsoft Games
[11/09/2006|18:36] C:\Program Files\Microsoft Office
[21/10/2009|16:33] C:\Program Files\Microsoft Picture It! PhotoPub
[09/10/2009|09:13] C:\Program Files\Microsoft Silverlight
[27/09/2007|18:36] C:\Program Files\Microsoft SQL Server Compact Edition
[29/04/2009|14:03] C:\Program Files\Microsoft Sync Framework
[03/01/2006|02:29] C:\Program Files\Microsoft Works
[20/05/2009|08:38] C:\Program Files\Misc. Support Library (Spybot - Search & Destroy)
[26/10/2005|23:36] C:\Program Files\Movie Maker
[17/01/2010|10:43] C:\Program Files\Mozilla Firefox
[22/08/2009|11:09] C:\Program Files\MSBuild
[04/09/2006|18:44] C:\Program Files\MSN
[26/10/2005|23:36] C:\Program Files\MSN Gaming Zone
[01/08/2008|10:37] C:\Program Files\MSN Messenger
[19/11/2006|03:01] C:\Program Files\MSXML 4.0
[28/12/2008|15:03] C:\Program Files\MSXML 6.0
[29/08/2008|13:07] C:\Program Files\Navilog1
[28/10/2009|13:59] C:\Program Files\NCH Software
[20/07/2008|19:53] C:\Program Files\NCH Swift Sound
[20/07/2009|19:17] C:\Program Files\NDSROM Player
[25/08/2008|14:51] C:\Program Files\NEC
[23/06/2007|15:25] C:\Program Files\NetMeeting
[25/05/2007|18:18] C:\Program Files\Oberon Media
[26/10/2005|23:36] C:\Program Files\Online Services
[18/10/2009|15:36] C:\Program Files\OpenOffice.org 3
[17/08/2009|22:09] C:\Program Files\Outlook Express
[13/09/2006|17:30] C:\Program Files\palmOne
[10/06/2009|10:29] C:\Program Files\Panda Security
[03/01/2006|02:35] C:\Program Files\PC-Doctor 5 for Windows
[28/10/2008|20:43] C:\Program Files\PhotoFiltre
[24/09/2008|21:44] C:\Program Files\PhotoJoy
[15/10/2009|16:26] C:\Program Files\QuickTime
[03/01/2006|02:24] C:\Program Files\Real
[22/08/2009|11:09] C:\Program Files\Reference Assemblies
[10/04/2009|09:51] C:\Program Files\Samsung
[20/05/2009|08:39] C:\Program Files\SDHelper (Spybot - Search & Destroy)
[08/05/2009|16:19] C:\Program Files\Search Settings
[03/01/2006|02:39] C:\Program Files\Services en ligne
[02/01/2007|13:12] C:\Program Files\Skype
[03/01/2006|02:25] C:\Program Files\Sonic
[28/12/2008|15:04] C:\Program Files\Sony
[20/05/2009|09:07] C:\Program Files\Spybot - Search & Destroy
[20/05/2009|08:39] C:\Program Files\TeaTimer (Spybot - Search & Destroy)
[02/09/2006|15:38] C:\Program Files\TechCity Solutions
[15/07/2008|12:02] C:\Program Files\TmNationsForever
[28/08/2008|08:56] C:\Program Files\Trend Micro
[22/06/2007|17:30] C:\Program Files\TryMedia
[06/06/2009|15:17] C:\Program Files\tuxguitar-1.1
[15/10/2009|18:28] C:\Program Files\UltraMixer
[20/10/2005|20:06] C:\Program Files\Uninstall Information
[10/01/2010|20:17] C:\Program Files\VideoLAN
[10/07/2007|10:30] C:\Program Files\warcraft iii
[27/09/2007|18:36] C:\Program Files\Windows Desktop Search
[07/10/2009|18:48] C:\Program Files\Windows Live
[29/04/2009|13:55] C:\Program Files\Windows Live SkyDrive
[09/03/2007|19:15] C:\Program Files\Windows Media Connect 2
[07/02/2008|15:40] C:\Program Files\Windows Media Player
[26/10/2005|23:36] C:\Program Files\Windows NT
[20/10/2005|20:05] C:\Program Files\WindowsUpdate
[22/10/2007|19:33] C:\Program Files\WinRAR
[08/11/2009|15:05] C:\Program Files\Winsudate
[26/10/2005|23:37] C:\Program Files\xerox

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[22/10/2007|19:34] C:\Program Files\Fichiers communs\Adobe
[15/10/2009|16:28] C:\Program Files\Fichiers communs\Apple
[03/05/2009|11:08] C:\Program Files\Fichiers communs\AVSMedia
[21/09/2006|17:50] C:\Program Files\Fichiers communs\Creative
[13/09/2006|16:50] C:\Program Files\Fichiers communs\DataViz
[11/09/2006|18:31] C:\Program Files\Fichiers communs\Designer
[14/03/2009|11:11] C:\Program Files\Fichiers communs\DivX Shared
[21/04/2008|16:47] C:\Program Files\Fichiers communs\Droppix
[03/01/2006|02:20] C:\Program Files\Fichiers communs\HP
[02/09/2006|16:15] C:\Program Files\Fichiers communs\InstallShield
[03/01/2006|02:05] C:\Program Files\Fichiers communs\Java
[25/09/2006|19:15] C:\Program Files\Fichiers communs\KODAK
[03/09/2006|10:18] C:\Program Files\Fichiers communs\Labtec
[21/04/2008|16:46] C:\Program Files\Fichiers communs\LightScribe
[05/03/2009|23:13] C:\Program Files\Fichiers communs\Microsoft Shared
[26/10/2005|23:35] C:\Program Files\Fichiers communs\MSSoap
[19/05/2007|12:34] C:\Program Files\Fichiers communs\Oberon Media
[26/10/2005|23:35] C:\Program Files\Fichiers communs\ODBC
[03/01/2006|02:24] C:\Program Files\Fichiers communs\Real
[26/10/2005|23:35] C:\Program Files\Fichiers communs\Services
[02/01/2007|13:12] C:\Program Files\Fichiers communs\Skype
[03/01/2006|02:24] C:\Program Files\Fichiers communs\Sonic Shared
[28/12/2008|15:04] C:\Program Files\Fichiers communs\Sony Shared
[26/10/2005|23:35] C:\Program Files\Fichiers communs\SpeechEngines
[03/01/2006|02:25] C:\Program Files\Fichiers communs\SureThing Shared
[16/12/2006|09:01] C:\Program Files\Fichiers communs\SWF Studio
[19/05/2009|16:54] C:\Program Files\Fichiers communs\Symantec Shared
[13/06/2007|22:30] C:\Program Files\Fichiers communs\System
[03/01/2006|02:25] C:\Program Files\Fichiers communs\TiVo Shared
[29/04/2009|13:46] C:\Program Files\Fichiers communs\Windows Live
[17/11/2007|10:47] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[31/08/2008|13:19] C:\Program Files\Fichiers communs\Wise Installation Wizard
[03/01/2006|02:24] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 57 Processus )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-17 10:47:23
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 74

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:903][D:44]-> C:\DOCUME~1\lomig\LOCALS~1\Temp
[F:77][D:0]-> C:\DOCUME~1\lomig\Cookies
[F:3590][D:20]-> C:\DOCUME~1\lomig\LOCALS~1\TEMPOR~1\content.IE5

--------------------\\ Fin du rapport a 10:51:26

merci beaucoup

Désinstalle Dealio Toolbar, EoRezo et Search Settings.

Télécharge Ad-Remover (de Cyrildu17 / C_XX) sur ton Bureau.

/!\ Déconnecte-toi et ferme toutes applications en cours /!\

Double-clique sur AD-R situé sur ton Bureau pour le lancer.
(Sous Vista, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)

Choisis la langue F pour français.

Au menu principal, choisis l'option L.

/!\ Laisse travailler l'outil /!\

Poste le rapport qui apparaît à la fin (C:\Ad-Report-CLEAN.log).

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

Note : "Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Kaspersky, etc.) comme étant un RiskTool. Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.

.
======= RAPPORT D'AD-REMOVER 1.1.4.6_H | UNIQUEMENT XP/VISTA/7 =======
.
Mis à jour par C_XX le 17.01.2010 à 17:43
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 17:54:26, 17/01/2010 | Mode Normal | Option: CLEAN
Exécuté de: C:\Ad-Remover\
Système d'exploitation: Microsoft® Windows XP™ Service Pack 2 v5.1.2600
Nom du PC: OMV | Utilisateur actuel: lomig
.
============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
.
Service: winsvc

C:\Program Files\Dealio Toolbar
C:\Program Files\EoRezo
C:\Program Files\Search Settings
C:\Program Files\TryMedia
C:\Program Files\Winsudate
C:\DOCUME~1\lomig\APPLIC~1\Dealio
C:\DOCUME~1\lomig\APPLIC~1\EoRezo
C:\DOCUME~1\lomig\APPLIC~1\Search Settings
C:\Documents and Settings\lomig\Local Settings\Application Data\EoRezo
C:\Windows\Installer\10cda92.msi
C:\Windows\Installer\10cda99.msi
C:\Documents and Settings\solenn\Application Data\Macromedia\Flash Player\#SharedObjects\P758C4ZV\casino.com
C:\Documents and Settings\solenn\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#casino.com
C:\Documents and Settings\solenn\Application Data\Dealio
C:\Documents and Settings\LocalService\Local Settings\Application Data\EoRezo
C:\Documents and Settings\solenn\Local Settings\Application Data\EoRezo
C:\Documents and Settings\solenn\Application Data\Search Settings
C:\DOCUME~1\lomig\LOCALS~1\Temp\is-UH9BU.tmp\EoRezo

(!) -- Fichiers temporaires supprimés.

.
HKCU\software\Dealio
HKCU\software\EoRezo
HKCU\software\FunWebProducts
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
HKCU\software\Search Settings
HKLM\Software\Classes\CLSID\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
HKLM\Software\Classes\CLSID\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}
HKLM\Software\Classes\CLSID\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
HKLM\software\classes\installer\Features\A3BB3C491A65ED342A24B8144FE679FE
HKLM\software\classes\installer\Products\79CAA1B036589D14EA74856E2A220F1E
HKLM\software\classes\installer\Products\A3BB3C491A65ED342A24B8144FE679FE
HKLM\Software\Classes\Interface\{D5A1EF9A-7948-435D-8B87-D6A598317288}
HKLM\Software\Classes\Interface\{DF76E9B7-35EC-46FC-AF56-5B79DED9D64F}
HKLM\software\classes\SearchSettings.BHO
HKLM\software\classes\SearchSettings.BHO.1
HKLM\Software\Classes\TypeLib\{18AF7201-4F14-4BCF-93FE-45617CF259FF}
HKLM\Software\Classes\TypeLib\{937936AF-28CA-4973-B8AE-F250406149A2}
HKLM\Software\Classes\TypeLib\{CD082CCA-086F-4FD8-8FD7-247A0DBBD1CC}
HKLM\software\Dealio
HKLM\software\EoRezo
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
HKLM\software\microsoft\shared tools\msconfig\startupreg\SearchSettings
HKLM\software\microsoft\shared tools\msconfig\startupreg\SoftwareHelper
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\0292226F570267D459357AF78015E534
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\03285961954D5824C85975D955031EE8
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\23A03A6765D10864EB278629A2DF32C3
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\3A4FCCE032CA50340A6975C92410AE30
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\6AC3985F4D64C2245A96D31569D1BF40
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\6E00D9B24354FBA44AE2CA0FA86EF2E2
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\7C13F41728A69EF41AA1A3372FB86FA6
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\855847FA0E25FBA46B8516389DFDD4B3
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\9DC2844D0E3E8924C8973C3B3BAE1F58
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\AFEB575AA30ACB243B748619F62F0782
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\B92A2929968AED344BD6B34AD60E6604
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\C7D9132F42224AC49BD8C06A0F8E39C4
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\F461B8DD96FF5AA41A52D14E1D7B69C7
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Products\79CAA1B036589D14EA74856E2A220F1E
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Products\A3BB3C491A65ED342A24B8144FE679FE
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\eorezo
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SoftwareHelper
HKLM\software\microsoft\windows\currentversion\uninstall\{0B1AAC97-8563-41D9-AE47-58E6A222F0E1}
HKLM\software\microsoft\windows\currentversion\uninstall\{94C3BB3A-56A1-43DE-A242-8B41F46E97EF}
HKLM\software\microsoft\windows\currentversion\uninstall\SoftwareUpdate_is1
HKLM\software\Search Settings
HKLM\software\Trymedia Systems
HKU\.default\software\EoRezo
.
============== Scan additionnel ==============
.
.
* Mozilla FireFox Version 3.5.7 [fr] *
.
Nom du profil: uaooevwz.default (lomig)
.
(lomig, Invalidprefs.js) Browser.download.lastDir, C:\Documents and Settings\lomig\Bureau
(lomig, Invalidprefs.js) Browser.search.defaultenginename, ICQ Search
(lomig, Invalidprefs.js) Browser.search.defaulturl, hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
(lomig, Invalidprefs.js) Browser.search.selectedEngine, ICQ Search
(lomig, Invalidprefs.js) Browser.startup.homepage, hxxp://y.lo.st
(lomig, Invalidprefs.js) Extensions.enabledItems, {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.3,{20a82645-c095-46ed-80e3-08825760534b}:1.1,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.2
(lomig, Invalidprefs.js) Keyword.URL, hxxp://search.icq.com/search/afe_results.php?ch_id=afex&q=
.
(lomig, Invalidprefs.js) EFFACE - Browser.startup.homepage, hxxp://y.lo.st
.
(lomig, prefs.js) Browser.download.dir, C:\Documents and Settings\lomig\Bureau
(lomig, prefs.js) Browser.download.lastDir, C:\Documents and Settings\lomig\Bureau
(lomig, prefs.js) Browser.search.defaultenginename, ICQ Search
(lomig, prefs.js) Browser.search.defaulturl, hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
(lomig, prefs.js) Browser.search.selectedEngine, ICQ Search
(lomig, prefs.js) Browser.startup.homepage, hxxp://www.google.fr/
(lomig, prefs.js) Extensions.enabledItems, {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.6.4,illimitux@illimitux.net:3.5,{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16,jqs@sun.com:1.0,{20a82645-c095-46ed-80e3-08825760534b}:1.1,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.7
(lomig, prefs.js) Keyword.URL, hxxp://search.icq.com/search/afe_results.php?ch_id=afex&q=
.
.
.
* Internet Explorer Version 8.0.6001.18702 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Do404Search: 01000000
Local Page: C:\WINDOWS\system32\blank.htm
Show_ToolBar: yes
Start Page: hxxp://fr.msn.com/
Enable Browser Extensions: yes
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
Start Page Redirect Cache: hxxp://fr.msn.com/?ocid=iehp
Start Page Redirect Cache_TIMESTAMP: 78312f7f5a95ca01
Start Page Redirect Cache AcceptLangs: fr
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Start Page: hxxp://fr.msn.com/
Use Custom Search URL: 0 (0x0)
Search bar: hxxp://search.msn.com/spbasic.htm
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
============== Suspect (Cracks, Serials, ...) ==============
.
C:\Documents and Settings\Compaq_Propri‚taire\Local Settings\Temp\sspatch2.exe
.
===================================
.
8688 Octet(s) - C:\Ad-Report-CLEAN[1].log
.
446 Fichier(s) - C:\DOCUME~1\lomig\LOCALS~1\Temp
117 Fichier(s) - C:\WINDOWS\Temp
8 Fichier(s) - C:\WINDOWS\Prefetch
.
19 Fichier(s) - C:\Ad-Remover\BACKUP
144 Fichier(s) - C:\Ad-Remover\QUARANTINE
.
Fin à: 18:04:30 | 17/01/2010 - CLEAN[1]
.
============== E.O.F ==============

et voila! bonne soirée ....

Bien.

Désinstalle Ad-Remover.

Refais un scan RSIT et poste le rapport log.

Logfile of random's system information tool 1.06 (written by random/random)
Run by lomig at 2010-01-18 18:41:06
Microsoft Windows XP Édition familiale Service Pack 2
System drive C: has 120 GB (65%) free of 185 GB
Total RAM: 959 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:41:13, on 18/01/2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Hercules\DualPix Exchange\Camservice.exe
C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe
C:\Program Files\palmOne\Hotsync.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\lomig\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\lomig.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&loca...
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: ScriptInocUI Class - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [CamserviceDP] C:\Program Files\Hercules\DualPix Exchange\Camservice.exe /startup
O4 - HKLM\..\Run: [ContentTransferWMDetector.exe] C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ6\ICQ.exe" silent
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [LightScribe Control Panel] C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [LightScribe Control Panel] C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden (User 'Default user')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE
O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\Xfire.exe
O4 - Global Startup: HotSync Manager.lnk = C:\Program Files\palmOne\Hotsync.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} (PhotoboxPhotowaysUploader5 Control) - http://assets.photobox.com/assets/aurigma/ImageUploader...
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/F...
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986....
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} - http://www.sibelius.com/download/software/win/ActiveXPl...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol...
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: Creative Service for CDROM Access - Unknown owner - C:\WINDOWS\system32\CTsvcCDA.exe (file missing)
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Service Google Update (gupdate1c9a00e49d5414e) (gupdate1c9a00e49d5414e) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe

--
End of file - 14288 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{E2044571-AC3F-405C-8904-F3B367E6D6B8}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL [2006-12-18 726568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2009-08-05 113512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-25 263280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-23 764912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-18 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-18 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}]
EpsonToolBandKicker Class - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-21 368640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EE5D279F-081B-4404-994D-C6B60AAEBA6D} - EPSON Web-To-Page - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-21 368640]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2009-06-01 962808]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-25 263280]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"CamserviceDP"=C:\Program Files\Hercules\DualPix Exchange\Camservice.exe [2007-08-10 81920]
"ContentTransferWMDetector.exe"=C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe [2008-07-11 423200]
"fssui"=C:\Program Files\Windows Live\Family Safety\fsui.exe [2009-08-05 647520]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-01-25 7311360]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-09-05 417792]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-09-21 305440]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-10-18 149280]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
""= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-06-23 68856]
"CTSyncU.exe"=C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe [2006-04-28 692224]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-05 15360]
"LightScribe Control Panel"=C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe [2008-01-24 2289664]
"ICQ"=C:\Program Files\ICQ6\ICQ.exe silent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2009-09-21 305440]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe [2008-01-24 2289664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2006-01-25 7311360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2009-09-05 417792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2006-12-18 25365032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-06-23 68856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]
C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe [2005-08-18 307200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^DataViz Inc Messenger.lnk]
C:\PROGRA~1\FICHIE~1\DataViz\DVZINC~1.EXE [2006-09-13 28672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logiciel Kodak EasyShare.lnk]
C:\PROGRA~1\Kodak\KODAKE~1\bin\EASYSH~1.EXE [2004-08-11 757760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk]
C:\PROGRA~1\MICROS~3\Office10\OSA.EXE [2001-02-13 83360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Windows Desktop Search.lnk]
C:\PROGRA~1\WI459E~1\WINDOW~1.EXE [2007-02-05 118784]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
HotSync Manager.lnk - C:\Program Files\palmOne\Hotsync.exe

C:\Documents and Settings\lomig\Menu Démarrer\Programmes\Démarrage
Pin.lnk - C:\hp\bin\CLOAKER.EXE
Xfire.lnk - C:\Program Files\Xfire\Xfire.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2007-02-05 294400]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll schannel.dll digest.dll msnsspc.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\CyberLink\PowerCinema\PowerCinema.exe"="C:\Program Files\CyberLink\PowerCinema\PowerCinema.exe:*:Enabled:CyberLink PowerCinema"
"C:\Program Files\CyberLink\PowerCinema\PCMService.exe"="C:\Program Files\CyberLink\PowerCinema\PCMService.exe:*:Enabled:CyberLink PowerCinema Resident Program"
"C:\Program Files\AOL 9.0\waol.exe"="C:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL France"
"J:\IncrediMail\bin\IncrediMail_Install.exe"="J:\IncrediMail\bin\IncrediMail_Install.exe:*:Enabled:IncrediMail Installer"
"C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\ImInstaller\IncrediMail\IncrediMail_Install.exe"="C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\ImInstaller\IncrediMail\IncrediMail_Install.exe:*:Enabled:IncrediMail Installer"
"C:\Documents and Settings\lomig\Local Settings\Temp\ImInstaller\IncrediMail\IncrediMail_Install.exe"="C:\Documents and Settings\lomig\Local Settings\Temp\ImInstaller\IncrediMail\IncrediMail_Install.exe:*:Enabled:IncrediMail Installer"
"C:\Program Files\IncrediMail\bin\IMApp.exe"="C:\Program Files\IncrediMail\bin\IMApp.exe:*:Enabled:IncrediMail"
"C:\Program Files\IncrediMail\bin\IncMail.exe"="C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail"
"C:\Program Files\IncrediMail\bin\ImpCnt.exe"="C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\IncrediMail\bin\ImLc.exe"="C:\Program Files\IncrediMail\bin\ImLc.exe:*:Enabled:IncrediMail"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Documents and Settings\lomig\Bureau\jeux\magentic_install.exe"="C:\Documents and Settings\lomig\Bureau\jeux\magentic_install.exe:*:Enabled:IncrediMail Installer"
"C:\Documents and Settings\lomig\Local Settings\Temp\ImInstaller\Magentic\magentic_install.exe"="C:\Documents and Settings\lomig\Local Settings\Temp\ImInstaller\Magentic\magentic_install.exe:*:Enabled:IncrediMail Installer"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\pchealth\helpctr\binaries\HelpCtr.exe"="C:\WINDOWS\pchealth\helpctr\binaries\HelpCtr.exe:*:Enabled:Assistance à distance - Windows Messenger et voix"
"C:\Program Files\PhotoJoy\Bin\PjApp.exe"="C:\Program Files\PhotoJoy\Bin\PjApp.exe:*:Enabled hotoJoy"
"C:\Program Files\PhotoJoy\Bin\PjImp.exe"="C:\Program Files\PhotoJoy\Bin\PjImp.exe:*:Enabled hotoJoy"
"C:\Program Files\PhotoJoy\Bin\PhotoJoy.exe"="C:\Program Files\PhotoJoy\Bin\PhotoJoy.exe:*:Enabled hotoJoy"
"C:\Documents and Settings\solenn\Bureau\LimeWire\LimeWire.exe"="C:\Documents and Settings\solenn\Bureau\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Documents and Settings\solenn\Bureau\divers\LimeWire\LimeWire.exe"="C:\Documents and Settings\solenn\Bureau\divers\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Hercules\DualPix Exchange\Station2.exe"="C:\Program Files\Hercules\DualPix Exchange\Station2.exe:*:Enabled:Hercules Webcam Station Evolution SE"
"C:\Warcraft III\Warcraft III\Warcraft III.exe"="C:\Warcraft III\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"="C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:*:Enabled:Veoh Web Player "
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9fa81912-b4a0-11dd-8da7-0016179d085e}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe MS32DLL.dll.vbs


======File associations======

.reg - open - regedit.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-01-17 17:47:14 ----D---- C:\Ad-Remover
2010-01-15 20:45:25 ----D---- C:\rsit
2010-01-13 22:30:12 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-01-13 22:30:00 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-01-10 20:18:16 ----D---- C:\Documents and Settings\lomig\Application Data\vlc
2010-01-10 19:00:04 ----D---- C:\Program Files\DownloadToolz

======List of files/folders modified in the last 1 months======

2010-01-18 18:41:06 ----D---- C:\WINDOWS\Prefetch
2010-01-18 18:29:34 ----D---- C:\Program Files\Mozilla Firefox
2010-01-18 18:28:43 ----D---- C:\WINDOWS\Temp
2010-01-18 09:04:36 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-01-17 19:12:47 ----AD---- C:\WINDOWS
2010-01-17 18:03:29 ----SHD---- C:\WINDOWS\Installer
2010-01-17 17:57:49 ----D---- C:\Program Files
2010-01-17 10:51:26 ----D---- C:\Lop SD
2010-01-17 10:51:26 ----A---- C:\lopR.txt
2010-01-15 21:37:03 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-15 18:52:12 ----D---- C:\WINDOWS\system32
2010-01-14 17:28:27 ----D---- C:\WINDOWS\AppPatch
2010-01-13 22:30:17 ----HD---- C:\WINDOWS\inf
2010-01-13 22:30:15 ----D---- C:\WINDOWS\system32\dllcache
2010-01-13 22:30:11 ----HD---- C:\WINDOWS\$hf_mig$
2010-01-13 22:30:08 ----A---- C:\WINDOWS\imsins.BAK
2010-01-10 20:17:38 ----D---- C:\Program Files\VideoLAN
2010-01-05 01:17:46 ----A---- C:\WINDOWS\system32\MRT.exe
2009-12-30 10:38:20 ----SHD---- C:\Config.Msi
2009-12-30 10:37:55 ----D---- C:\Program Files\Google

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 AmdK8;Pilote de processeur AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 43008]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-11-25 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [2008-05-06 16512]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-08-05 54752]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-05 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 camfilt2;camfilt2; C:\WINDOWS\System32\Drivers\camfilt2.sys [2007-05-29 94208]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-08 138752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-03-08 4246016]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-05 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-01-25 3535520]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-03-03 34176]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-03-03 13056]
R3 Ps2;PS2; C:\WINDOWS\system32\DRIVERS\PS2.sys [2005-12-12 19072]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2007-05-16 9602944]
R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-03 59264]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2005-03-31 27008]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-05 57600]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-04 17024]
R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
R3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
R3 WN5301;LIteon Wireless PCI Network Adapter Service; C:\WINDOWS\system32\DRIVERS\wn5301.sys [2005-10-05 468768]
S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-03 14848]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
S3 ltmodem5;LT Modem Driver; C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys [2004-08-04 607452]
S3 marlbus;NEC WMC USB_AD1 Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\marlbus.sys [2005-09-02 58352]
S3 marlmdfl;NEC WMC USB_AD1 Modem Filter; C:\WINDOWS\system32\DRIVERS\marlmdfl.sys [2005-09-02 8272]
S3 marlmdm;NEC WMC USB_AD1 Modem Drivers; C:\WINDOWS\system32\DRIVERS\marlmdm.sys [2005-09-02 93968]
S3 marlobex;NEC WMC USB_AD1 OBEX Interface Drivers (WDM); C:\WINDOWS\system32\DRIVERS\marlobex.sys [2005-09-02 83344]
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 PalmUSBD;PalmUSBD; C:\WINDOWS\system32\drivers\PalmUSBD.sys [2004-06-09 16694]
S3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2004-01-21 5915]
S3 PID_08A0;Labtec WebCam Pro(PID_08A0); C:\WINDOWS\system32\DRIVERS\LV302AV.SYS [2004-01-21 271360]
S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 sony_ssm.sys;sony_ssm.sys; \??\C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\sony_ssm.sys []
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ss_bus.sys [2007-05-02 83592]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys [2007-05-02 15112]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ss_mdm.sys [2007-05-02 109704]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 SymIM;Symantec Network Security Intermediate Filter Service; C:\WINDOWS\system32\DRIVERS\SymIM.sys []
S3 SymIMMP;SymIMMP; C:\WINDOWS\system32\DRIVERS\SymIM.sys []
S3 U2SP;USB to Serial Converter Driver(Philips); C:\WINDOWS\system32\DRIVERS\u2s2kxp.sys [2003-05-14 23948]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-08-28 40448]
S3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-05 20480]
S3 usbvideo;Périphérique vidéo USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2004-08-03 78464]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 WUDFRd;WUDFRd; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [2006-09-28 82944]
S4 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 CLCapSvc;CyberLink Background Capture Service (CBCS); C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe [2006-02-25 266338]
R2 CLSched;CyberLink Task Scheduler (CTS); C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe [2006-02-25 114784]
R2 CyberLink Media Library Service;CyberLink Media Library Service; C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe [2006-02-25 1073152]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2009-06-01 222968]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-18 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [2008-01-24 73728]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-01-25 131139]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R2 UserAccess7;SecuROM User Access Service (V7); C:\WINDOWS\system32\UAService7.exe [2007-04-18 221184]
R2 WSearch;Recherche Windows; C:\WINDOWS\system32\SearchIndexer.exe [2007-02-05 300032]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-05 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-09-21 545568]
S2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\system32\CTsvcCDA.exe []
S2 gupdate1c9a00e49d5414e;Service Google Update (gupdate1c9a00e49d5414e); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-03-08 133104]
S2 Planificateur LiveUpdate automatique;Planificateur LiveUpdate automatique; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe []
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2004-08-05 268800]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 fsssvc;Service Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-22 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

voila..

C'est beaucoup mieux.

Télécharge UsbFix (de Chiquitine29 & C_XX) sur ton Bureau.

Branche tes sources de données externes à ton PC (clé USB, disque dur externe, carte SD, etc...) sans les ouvrir.

Double-clique sur UsbFix pour l'exécuter.
(Sous Vista, il faut cliquer droit sur UsbFix et choisir Exécuter en tant qu'administrateur)

Choisis l'option 1 (Recherche).

Laisse travailler l'outil.

Poste le rapport UsbFix.txt.

Note : le rapport UsbFix.txt est sauvegardé à la racine du disque (C:\UsbFix.txt).

"Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool. Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.

le liens pour usb fix ne marche pas: "404 - Not Found"
je fais comment?

http://pagesperso-orange.fr/NosTools/Chiquitine29/UsbFi...

############################## | UsbFix V6.083 |

User : lomig (Utilisateurs) # OMV
Update on 30/01/2010 by El Desaparecido , C_XX & Chimay8
Start at: 18:13:18 | 31/01/2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

AMD Athlon(tm) 64 Processor 3500+
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 2
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1368 [VPS 100130-1] 4.8.1368 [ Enabled | Updated ]

C:\ -> Disque fixe local # 180,69 Go (116,92 Go free) [PRESARIO] # NTFS
D:\ -> Disque fixe local # 5,6 Go (721,32 Mo free) [PRESARIO_RP] # FAT32
E:\ -> Disque CD-ROM
F:\ -> Disque amovible
G:\ -> Disque amovible
H:\ -> Disque amovible
I:\ -> Disque amovible
J:\ -> Disque amovible # 7,45 Go (4,21 Go free) [USB DISK] # FAT32
K:\ -> Disque amovible
L:\ -> Disque amovible

############################## | Processus actifs |

C:\WINDOWS\System32\smss.exe 660
C:\WINDOWS\system32\csrss.exe 752
C:\WINDOWS\system32\winlogon.exe 776
C:\WINDOWS\system32\services.exe 820
C:\WINDOWS\system32\lsass.exe 832
C:\WINDOWS\system32\svchost.exe 984
C:\WINDOWS\system32\svchost.exe 1044
C:\WINDOWS\System32\svchost.exe 1188
C:\WINDOWS\system32\svchost.exe 1220
C:\WINDOWS\system32\svchost.exe 1352
C:\WINDOWS\system32\svchost.exe 1504
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe 1652
C:\Program Files\Alwil Software\Avast4\ashServ.exe 1700
C:\WINDOWS\system32\spoolsv.exe 2016
C:\WINDOWS\system32\svchost.exe 272
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe 304
C:\Program Files\Bonjour\mDNSResponder.exe 320
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe 444
C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe 460
C:\Program Files\ICQ6Toolbar\ICQ Service.exe 564
C:\Program Files\Java\jre6\bin\jqs.exe 632
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe 748
C:\WINDOWS\system32\nvsvc32.exe 1384
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 1408
C:\WINDOWS\system32\svchost.exe 1540
C:\WINDOWS\system32\UAService7.exe 1612
C:\WINDOWS\system32\SearchIndexer.exe 1744
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe 1952
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe 2060
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe 2100
C:\WINDOWS\system32\wbem\wmiapsrv.exe 2228
C:\WINDOWS\System32\alg.exe 2420
C:\WINDOWS\System32\svchost.exe 2384
C:\Program Files\iPod\bin\iPodService.exe 3820
C:\WINDOWS\Explorer.EXE 916
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe 2664
C:\Program Files\Hercules\DualPix Exchange\Camservice.exe 3900
C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe 2164
C:\Program Files\iTunes\iTunesHelper.exe 3744
C:\Program Files\Java\jre6\bin\jusched.exe 3812
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 3912
C:\WINDOWS\system32\wuauclt.exe 3396
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe 4092
C:\Program Files\Windows Live\Messenger\msnmsgr.exe 108
C:\WINDOWS\system32\ctfmon.exe 2812
C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe 580
C:\Program Files\palmOne\Hotsync.exe 1216
C:\Program Files\Mozilla Firefox\firefox.exe 3008
C:\WINDOWS\system32\wbem\wmiprvse.exe 1712

################## | Elements infectieux |

C:\DOCUME~1\lomig\LOCALS~1\Temp\13616E~1.exe
C:\DOCUME~1\lomig\LOCALS~1\Temp\718631~1.exe
C:\temp.txt
D:\autorun.inf

################## | Registre |


################## | Mountpoints2 |

HKCU\..\..\Explorer\MountPoints2\D
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480

HKCU\..\..\Explorer\MountPoints2\{9fa81912-b4a0-11dd-8da7-0016179d085e}
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe MS32DLL.dll.vbs

################## | ! Fin du rapport # UsbFix V6.083 ! |

Branche tes sources de données externes à ton PC (clé USB, disque dur externe, carte SD, etc...) sans les ouvrir.

Double-clique sur UsbFix présent sur ton Bureau pour le lancer.

Choisis l'option 2 (Suppression).

Ton Bureau disparaîtra et le PC redémarrera.

Au redémarrage, UsbFix scannera ton PC, laisse travailler l'outil.

Ensuite, poste le rapport UsbFix.txt qui apparaîtra avec le Bureau.

Note : le rapport UsbFix.txt est sauvegardé à la racine du disque (C:\UsbFix.txt).

############################## | UsbFix V6.083 |

User : lomig (Utilisateurs) # OMV
Update on 30/01/2010 by El Desaparecido , C_XX & Chimay8
Start at: 12:43:59 | 07/02/2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

AMD Athlon(tm) 64 Processor 3500+
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 2
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1368 [VPS 100206-2] 4.8.1368 [ Enabled | Updated ]

C:\ -> Disque fixe local # 180,69 Go (116,71 Go free) [PRESARIO] # NTFS
D:\ -> Disque fixe local # 5,6 Go (721,34 Mo free) [PRESARIO_RP] # FAT32
E:\ -> Disque CD-ROM
F:\ -> Disque amovible
G:\ -> Disque amovible
H:\ -> Disque amovible
I:\ -> Disque amovible
J:\ -> Disque amovible # 7,45 Go (4,21 Go free) [USB DISK] # FAT32
K:\ -> Disque amovible

############################## | Processus actifs |

C:\WINDOWS\System32\smss.exe 660
C:\WINDOWS\system32\csrss.exe 736
C:\WINDOWS\system32\winlogon.exe 760
C:\WINDOWS\system32\services.exe 804
C:\WINDOWS\system32\lsass.exe 816
C:\WINDOWS\system32\svchost.exe 964
C:\WINDOWS\system32\svchost.exe 1024
C:\WINDOWS\System32\svchost.exe 1168
C:\WINDOWS\system32\svchost.exe 1200
C:\WINDOWS\system32\logonui.exe 1232
C:\WINDOWS\system32\svchost.exe 1336
C:\WINDOWS\system32\svchost.exe 1480
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe 1632
C:\Program Files\Alwil Software\Avast4\ashServ.exe 1680
C:\WINDOWS\system32\spoolsv.exe 1992
C:\WINDOWS\system32\svchost.exe 244
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe 284
C:\Program Files\Bonjour\mDNSResponder.exe 300
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe 424
C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe 440
C:\Program Files\ICQ6Toolbar\ICQ Service.exe 548
C:\Program Files\Java\jre6\bin\jqs.exe 612
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe 732
C:\WINDOWS\system32\nvsvc32.exe 1356
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 1388
C:\WINDOWS\system32\svchost.exe 1524
C:\WINDOWS\system32\UAService7.exe 1584
C:\WINDOWS\system32\SearchIndexer.exe 1428
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe 1920
C:\WINDOWS\system32\wuauclt.exe 476
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe 2060
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe 2080
C:\WINDOWS\system32\wbem\wmiapsrv.exe 2212
C:\WINDOWS\System32\alg.exe 2400
C:\WINDOWS\system32\wbem\wmiprvse.exe 2700
C:\WINDOWS\system32\userinit.exe 3740
C:\WINDOWS\Explorer.EXE 3812
C:\Program Files\Google\Update\GoogleUpdate.exe 3820
C:\WINDOWS\system32\SearchProtocolHost.exe 3828
C:\WINDOWS\system32\SearchFilterHost.exe 3924
C:\WINDOWS\system32\wbem\wmiprvse.exe 4048

################## | Elements infectieux |

Supprimé ! C:\Recycler\S-1-5-21-2467794096-1380120373-2375025980-1008
Supprimé ! C:\Recycler\S-1-5-21-2467794096-1380120373-2375025980-1010
Supprimé ! C:\Recycler\S-1-5-21-2467794096-1380120373-2375025980-1011

################## | Registre |


################## | Mountpoints2 |


################## | Listing des fichiers présent |

[17/01/2010 18:04|--a------|9029] C:\Ad-Report-CLEAN[1].log
[23/11/2004 15:21|--a------|0] C:\AUTOEXEC.BAT
[02/09/2006 14:50|-rahs----|218] C:\BOOT.BAK
[10/06/2009 13:54|-rahs----|296] C:\boot.ini
[04/08/2004 22:00|-rahs----|4952] C:\Bootfont.bin
[29/08/2008 13:07|--a------|3282] C:\cleannavi.txt
[04/08/2004 22:00|-r-hs----|263488] C:\cmldr
[20/07/2008 18:38|--a------|74] C:\CMLoader.log
[23/11/2004 15:21|--a------|0] C:\CONFIG.SYS
[16/06/2008 16:57|--a------|31334] C:\EasyShare.dmp
[?|?|?] C:\hiberfil.sys
[14/01/2007 11:21|--a------|2296] C:\INSTALL.LOG
[23/11/2004 15:21|-rahs----|0] C:\IO.SYS
[17/01/2010 10:51|--a------|23493] C:\lopR.txt
[23/11/2004 15:21|-rahs----|0] C:\MSDOS.SYS
[04/08/2004 22:00|-rahs----|47564] C:\NTDETECT.COM
[04/08/2004 22:00|-rahs----|251712] C:\ntldr
[29/02/2004 16:44|--a------|52576] C:\orange.bmp
[?|?|?] C:\pagefile.sys
[25/04/2008 18:52|--a------|190] C:\Raccourci vers PRESARIO_RP (D).lnk
[13/10/2008 19:38|--a------|3177] C:\rapport.txt
[20/05/2009 11:23|--a------|23656] C:\rapportBitdefender.html
[20/05/2009 15:30|--a------|27788] C:\rapportKasper.html
[31/10/2005 16:56|--a------|700416] C:\StubInstaller.exe
[24/05/2001 12:59|--a------|162304] C:\UNWISE.EXE
[07/02/2010 12:51|--a------|4534] C:\UsbFix.txt
[01/02/2010 20:33|--a------|32194639] C:\UsbFix_Upload_Me_OMV.zip
[27/07/2001 15:07|---hs----|0] D:\AUTOEXEC.BAT
[09/01/2002 18:52|---hs----|244] D:\BOOT.INI
[16/08/2001 18:26|---hs----|237728] D:\CMLDR
[28/07/2001 06:07|---hs----|0] D:\CONFIG.SYS
[25/05/2005 03:48|---hs----|102] D:\Desktop.ini
[10/09/2002 09:21|---hs----|7850] D:\Folder.htt
[17/06/2001 16:31|---hs----|0] D:\GRAPH
[25/01/2002 09:21|---hs----|0] D:\GRAPH16
[30/11/2004 04:01|---hs----|73728] D:\Info.exe
[28/07/2001 06:07|---hs----|0] D:\IO.SYS
[28/07/2001 06:07|---hs----|0] D:\MSDOS.SYS
[25/07/2001 22:00|---hs----|45124] D:\NTDETECT.COM
[24/02/2004 18:38|--a------|498] D:\BATCH.OLD
[25/07/2001 22:00|---hs----|222880] D:\NTLDR
[03/03/2003 05:46|---hs----|111377] D:\protect.ed
[02/01/2006 19:56|---hs----|36] D:\SAVEFILE.DIR
[03/03/2003 05:41|---hs----|88038] D:\Warning.bmp
[02/01/2006 20:17|---hs----|938] D:\MASTER.LOG
[17/08/2001 07:32|---hs----|0] D:\NTFS
[23/05/2001 20:19|---hs----|0] D:\SVGA
[18/08/2001 07:00|---hs----|10] D:\WIN51
[22/01/2001 06:00|---hs----|11] D:\WIN51.B2
[25/07/2001 07:00|---hs----|11] D:\WIN51.RC1
[25/07/2001 12:47|---hs----|11] D:\WIN51.RC2
[18/08/2001 07:00|---hs----|10] D:\WIN51IC
[20/03/2001 06:00|---hs----|11] D:\WIN51IC.B2
[25/07/2001 07:00|---hs----|11] D:\WIN51IC.RC1
[25/07/2001 07:00|---hs----|11] D:\WIN51IC.RC2
[17/08/2001 07:00|---hs----|10] D:\WIN51IP
[22/01/2001 06:00|---hs----|11] D:\WIN51IP.B2
[25/07/2001 12:47|---hs----|11] D:\WIN51IP.RC2
[17/08/2001 05:17|---hs----|184] D:\WINBOM.INI
[02/01/2006 20:16|---hs----|6] D:\BLOCK.RIN
[02/01/2006 20:17|--ahs----|938] D:\USER
[01/02/2006 04:08|--ahs----|1552] D:\BATCH.LOG

################## | Vaccination |

# C:\autorun.inf -> Dossier créé par UsbFix.
# D:\autorun.inf -> Dossier créé par UsbFix.
# J:\autorun.inf -> Dossier créé par UsbFix.

################## | Upload |

Veuillez envoyer le fichier : C:\UsbFix_Upload_Me_OMV.zip : http://chiquitine.changelog.fr/Sample/Upload.php
Merci pour votre contribution .

################## | ! Fin du rapport # UsbFix V6.083 ! |

et voila...encore merci de me venir en aide

Relance UsbFix et choisis l'option 6 pour le désinstaller.

Mets à jour Java.

Mets à jour Adobe Reader.

Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.

Double-clique sur le fichier téléchargé pour lancer le processus d'installation.

Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.

Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.

Sélectionne Exécuter un examen rapide.

Clique sur Rechercher. L'analyse démarre.

A la fin de l'analyse, un message s'affiche :

Citation :

L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.

Ferme tes navigateurs.

Si des malwares ont été détectés, clique sur Afficher les résultats.

Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.

MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.

Malwarebytes' Anti-Malware 1.44
Version de la base de données: 3755
Windows 5.1.2600 Service Pack 2
Internet Explorer 8.0.6001.18702

18/02/2010 19:13:13
mbam-log-2010-02-18 (19-13-13).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 400565
Temps écoulé: 1 hour(s), 47 minute(s), 33 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 21

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{af2e62b6-f9e1-4d4f-a10a-9dc8e6dcbcc0} (Adware.VideoEgg) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SecurityProviders (Broken.SecurityProviders) -> Bad: (msapsspc.dll schannel.dll digest.dll msnsspc.dll) Good: (msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\Ad-Remover\QUARANTINE\DOCUME~1\lomig\APPLIC~1\EoRezo\SOFTWA~1\SoftwareUpdate.exe.vir (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\Ad-Remover\QUARANTINE\DOCUME~1\lomig\APPLIC~1\EoRezo\SOFTWA~1\SoftwareUpdateHP.exe.vir (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\Ad-Remover\QUARANTINE\PROGRA~1\EoRezo\eorezo.exe.vir (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\Ad-Remover\QUARANTINE\PROGRA~1\EoRezo\EoRezoBHO.dll.vir (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\Ad-Remover\QUARANTINE\PROGRA~1\WINSUD~1\gibcom.dll.vir (Adware.Gibmedia) -> Quarantined and deleted successfully.
C:\Ad-Remover\QUARANTINE\PROGRA~1\WINSUD~1\gibidl.dll.vir (Adware.Gibmedia) -> Quarantined and deleted successfully.
C:\Ad-Remover\QUARANTINE\PROGRA~1\WINSUD~1\gibsvc.exe.vir (Adware.Gibmedia) -> Quarantined and deleted successfully.
C:\Ad-Remover\QUARANTINE\PROGRA~1\WINSUD~1\gibupt.exe.vir (Adware.Gibmedia) -> Quarantined and deleted successfully.
C:\Ad-Remover\QUARANTINE\PROGRA~1\WINSUD~1\gibusr.exe.vir (Adware.Gibmedia) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP1016\A0198249.exe (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP1016\A0198250.dll (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP1016\A0198255.dll (Adware.Gibmedia) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP1016\A0198256.dll (Adware.Gibmedia) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP1016\A0198257.exe (Adware.Gibmedia) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP1016\A0198258.exe (Adware.Gibmedia) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP1016\A0198259.exe (Adware.Gibmedia) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP1016\A0198261.exe (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP1016\A0198262.exe (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\Program Files\TechCity Solutions\AliceSAV\shfolder.dll (Malware.Packer.Gen) -> Quarantined and deleted successfully.
C:\Program Files\Navilog1\gnc.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
C:\Documents and Settings\Compaq_Propriétaire\Favoris\Online Security Test.URL (Rogue.Link) -> Quarantined and deleted successfully.


désolé...j'ai un peu tardé (vacance  ) merci de m'aider : je sais que sa prend du temps et ...le temps c'est de l'argent comme on dit^^ bonne soirée