Beugue sur mon pc

Bonjour,voila ce que j'ai sur chaque site et chaque navigateur.


sur msn et tout.
merci

Voila j'ai encore ces petit AD on dirais que ils cachent des pub parsque derriere sa ya un lien ou une vidéo ou autre.

Logfile of random's system information tool 1.06 (written by random/random)
Run by emre at 2009-08-07 22:35:52
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 157 GB (85%) free of 185 GB
Total RAM: 1022 MB (38% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:36:17, on 07/08/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\WINDOWS\System32\TuneUpDefragService.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\LocalCooling\localcooling.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Aide mémoire\TrayIcon.exe
C:\Program Files\Aide mémoire\Aide mémoire.exe
C:\Documents and Settings\emre\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\emre\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\emre\Local Settings\Apps\F.lux\flux.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Documents and Settings\emre\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\emre\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\Explorer.EXE
C:\Documents and Settings\emre\Mes documents\Downloads\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\emre.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = socks=
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = plimus.com,www.plimus.com,regnow.com,www.regnow.com,
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {C94E154B-1459-4A47-966B-4B843BEFC7DB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - (no file)
O4 - HKLM\..\Run: [LocalCooling] "C:\Program Files\LocalCooling\localcooling.exe" -s
O4 - HKLM\..\Run: [OutpostMonitor] C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe /tray /noservice
O4 - HKLM\..\Run: [OutpostFeedBack] "C:\Program Files\Agnitum\Outpost Firewall Pro\feedback.exe" /dumps_startup
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /install
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-21-839522115-1284227242-2146896963-1030\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'Projets secrets')
O4 - S-1-5-18 Startup: Aide mémoire.lnk = ? (User 'SYSTEM')
O4 - .DEFAULT Startup: Aide mémoire.lnk = ? (User 'Default user')
O4 - Startup: Aide mémoire.lnk = ?
O9 - Extra button: Réglage rapide de Outpost Firewall Pro - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\Program Files\Agnitum\Outpost Firewall Pro\ie_bar.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/ [...] hcImpl.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/Mess [...] E_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/g [...] ection.cab
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://support.f-secure.com/ols/fscax.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} (Java Plug-in 1.6.0_04) -
O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} (Java Plug-in 1.6.0_06) -
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O20 - AppInit_DLLs: c:\progra~1\agnitum\outpos~1\wl_hook.dll
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Agnitum Client Security Service (acssrv) - Agnitum Ltd. - C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Boonty Games - Unknown owner - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (file missing)
O23 - Service: Google Update Service (gupdate1c9e7a887f2ba6) (gupdate1c9e7a887f2ba6) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe

--
End of file - 8497 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-839522115-1284227242-2146896963-1004Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-839522115-1284227242-2146896963-1004UA.job
C:\WINDOWS\tasks\Maintenance en 1 clic.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{F803D7A1-894D-42D1-B815-51BEBB068769}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-25 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-07-25 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{3041d03e-fd4b-44e0-b742-2d9b88305f98}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LocalCooling"=C:\Program Files\LocalCooling\localcooling.exe [2006-11-28 1900575]
"OutpostMonitor"=C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe [2008-07-15 1153352]
"OutpostFeedBack"=C:\Program Files\Agnitum\Outpost Firewall Pro\feedback.exe [2008-07-15 435528]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2009-07-09 1657376]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-07-14 13877248]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-07-14 86016]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-25 149280]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 40448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Messenger (Yahoo!)]
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe [2008-11-05 4347120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OM2_Monitor]
C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe [2008-11-07 95536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe -atboottime []

C:\Documents and Settings\emre\Menu Démarrer\Programmes\Démarrage
Aide mémoire.lnk - C:\Program Files\Aide mémoire\TrayIcon.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="c:\progra~1\agnitum\outpos~1\wl_hook.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
"{4F07DA45-8170-4859-9B5F-037EF2970034}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FDCENT.SYS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HideFilesAndFolders_S]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FDCENT.SYS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HideFilesAndFolders_S]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableChangePassword"=0
"DisableLockWorkstation"=0
"HideFastUserSwitching"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoClose"=0
"NoLogoff"=0
"StartMenuLogOff"=0
"NoSMHelp"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\EA GAMES\Battlefield 2 Demo\BF2.exe"="C:\Program Files\EA GAMES\Battlefield 2 Demo\BF2.exe:*:Enabled:Battlefield 2"
"C:\WINDOWS\system32\dpnsvr.exe"="C:\WINDOWS\system32\dpnsvr.exe:*isabled:Microsoft DirectPlay8 Server"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

======List of files/folders created in the last 1 months======

2009-08-05 18:44:54 ----D---- C:\Documents and Settings\emre\Application Data\FileZilla
2009-08-05 18:25:27 ----D---- C:\Program Files\FileZilla FTP Client
2009-08-05 16:47:46 ----D---- C:\Documents and Settings\emre\Application Data\Hide IP NG
2009-08-05 10:03:57 ----A---- C:\WINDOWS\system32\javaws.exe
2009-08-05 10:03:57 ----A---- C:\WINDOWS\system32\javaw.exe
2009-08-05 10:03:57 ----A---- C:\WINDOWS\system32\java.exe
2009-08-04 19:00:50 ----A---- C:\WINDOWS\system32\msvcr70.dll
2009-08-02 11:39:48 ----D---- C:\Program Files\Windows Live SkyDrive
2009-07-30 17:07:08 ----D---- C:\Documents and Settings\emre\Application Data\Neuronyx
2009-07-29 14:02:11 ----HD---- C:\WINDOWS\msdownld.tmp
2009-07-29 14:00:54 ----D---- C:\WINDOWS\Media
2009-07-29 14:00:08 ----HDC---- C:\WINDOWS\ie8
2009-07-26 20:52:46 ----A---- C:\WINDOWS\system32\TUProgSt.exe
2009-07-26 20:52:45 ----A---- C:\WINDOWS\system32\uxtuneup.dll
2009-07-26 20:52:43 ----A---- C:\WINDOWS\system32\TuneUpDefragService.exe
2009-07-26 20:49:36 ----D---- C:\Program Files\NVIDIA Corporation
2009-07-26 20:49:31 ----D---- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
2009-07-26 15:14:26 ----D---- C:\Documents and Settings\emre\Application Data\Malwarebytes
2009-07-23 21:44:03 ----D---- C:\WINDOWS\system32\Filt
2009-07-23 21:44:03 ----D---- C:\Program Files\Agnitum
2009-07-23 21:43:46 ----D---- C:\Documents and Settings\All Users\Application Data\Agnitum
2009-07-23 19:05:16 ----D---- C:\Documents and Settings\emre\Application Data\Jetico Personal Firewall
2009-07-23 18:20:09 ----D---- C:\Program Files\VS Revo Group
2009-07-23 17:08:23 ----D---- C:\Documents and Settings\emre\Application Data\GlarySoft
2009-07-22 22:17:28 ----D---- C:\Documents and Settings\emre\Application Data\PCToolsFirewallPlus
2009-07-22 22:12:44 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-07-22 22:12:31 ----D---- C:\Program Files\Fichiers communs\PC Tools
2009-07-22 20:52:48 ----N---- C:\WINDOWS\system32\vxblock.dll
2009-07-22 20:52:48 ----N---- C:\WINDOWS\system32\pxwave.dll
2009-07-22 20:52:48 ----N---- C:\WINDOWS\system32\pxsfs.dll
2009-07-22 20:52:48 ----N---- C:\WINDOWS\system32\pxmas.dll
2009-07-22 20:52:48 ----N---- C:\WINDOWS\system32\pxinsi64.exe
2009-07-22 20:52:48 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2009-07-22 20:52:48 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2009-07-22 20:52:48 ----N---- C:\WINDOWS\system32\pxdrv.dll
2009-07-22 20:52:48 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
2009-07-22 20:52:48 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2009-07-22 20:52:48 ----N---- C:\WINDOWS\system32\pxafs.dll
2009-07-22 20:52:48 ----N---- C:\WINDOWS\system32\px.dll
2009-07-22 20:52:34 ----D---- C:\Documents and Settings\emre\Application Data\vlc
2009-07-22 20:51:53 ----D---- C:\Program Files\Foxit Software
2009-07-22 20:51:53 ----D---- C:\Documents and Settings\emre\Application Data\Foxit
2009-07-22 20:51:10 ----D---- C:\Program Files\VideoLAN
2009-07-22 12:22:08 ----D---- C:\Documents and Settings\emre\Application Data\CloneSpy
2009-07-19 19:45:17 ----D---- C:\Documents and Settings\emre\Application Data\teamspeak2
2009-07-14 13:35:08 ----A---- C:\WINDOWS\system32\nvcpluir.dll
2009-07-14 13:35:08 ----A---- C:\WINDOWS\system32\nvcplui.exe
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrszht.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrszhc.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrstr.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrsth.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrssv.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrssl.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrssk.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrsru.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrsptb.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrspt.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrspl.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrsno.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrsnl.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrsko.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrsja.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrsit.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrshu.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrshe.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrsfr.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrsfi.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrsesm.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrses.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrseng.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrsel.dll
2009-07-14 13:35:06 ----A---- C:\WINDOWS\system32\nvrsde.dll
2009-07-14 13:35:04 ----A---- C:\WINDOWS\system32\nvwddi.dll
2009-07-14 13:35:04 ----A---- C:\WINDOWS\system32\nvrsda.dll
2009-07-14 13:35:04 ----A---- C:\WINDOWS\system32\nvrscs.dll
2009-07-14 13:35:04 ----A---- C:\WINDOWS\system32\nvrsar.dll
2009-07-14 13:35:00 ----A---- C:\WINDOWS\system32\nvwssr.dll
2009-07-14 13:35:00 ----A---- C:\WINDOWS\system32\nvwss.dll
2009-07-14 13:35:00 ----A---- C:\WINDOWS\system32\nvvitvsr.dll
2009-07-14 13:35:00 ----A---- C:\WINDOWS\system32\nvvitvs.dll
2009-07-14 13:34:58 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2009-07-14 13:34:58 ----A---- C:\WINDOWS\system32\nvmoblsr.dll
2009-07-14 13:34:58 ----A---- C:\WINDOWS\system32\nvmobls.dll
2009-07-14 13:34:58 ----A---- C:\WINDOWS\system32\nvmctray.dll
2009-07-14 13:34:58 ----A---- C:\WINDOWS\system32\nvmccssr.dll
2009-07-14 13:34:58 ----A---- C:\WINDOWS\system32\nvmccss.dll
2009-07-14 13:34:58 ----A---- C:\WINDOWS\system32\nvgamesr.dll
2009-07-14 13:34:58 ----A---- C:\WINDOWS\system32\nvgames.dll
2009-07-14 13:34:58 ----A---- C:\WINDOWS\system32\nvdispsr.dll
2009-07-14 13:34:58 ----A---- C:\WINDOWS\system32\nvdisps.dll
2009-07-14 13:34:58 ----A---- C:\WINDOWS\system32\nvcpl.dll
2009-07-14 13:34:58 ----A---- C:\WINDOWS\system32\nvcolor.exe
2009-07-14 13:34:56 ----A---- C:\WINDOWS\system32\nvmccs.dll
2009-07-12 11:26:33 ----D---- C:\Documents and Settings\emre\Application Data\Todae
2009-07-10 15:31:26 ----D---- C:\WINDOWS\Internet Logs
2009-07-09 21:04:55 ----A---- C:\WINDOWS\system32\Erasext.dll
2009-07-09 21:04:55 ----A---- C:\WINDOWS\system32\Eraserl.exe
2009-07-09 21:04:55 ----A---- C:\WINDOWS\system32\Eraser.dll
2009-07-09 21:04:54 ----D---- C:\Program Files\Eraser
2009-07-09 18:21:22 ----D---- C:\Program Files\a-squared Free
2009-07-08 19:28:47 ----A---- C:\WINDOWS\uninst.exe

======List of files/folders modified in the last 1 months======

2009-08-07 22:35:42 ----D---- C:\WINDOWS\Prefetch
2009-08-07 22:23:21 ----D---- C:\WINDOWS\Temp
2009-08-07 21:00:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-08-07 18:05:27 ----SHD---- C:\WINDOWS\Installer
2009-08-07 18:05:27 ----SHD---- C:\Config.Msi
2009-08-07 17:12:11 ----D---- C:\Program Files\Mozilla Firefox
2009-08-07 16:48:57 ----D---- C:\WINDOWS\system32\CatRoot2
2009-08-07 14:01:54 ----D---- C:\WINDOWS
2009-08-07 14:01:05 ----D---- C:\WINDOWS\system32\LogFiles
2009-08-06 10:18:01 ----D---- C:\Program Files\Fichiers communs
2009-08-05 18:25:27 ----RD---- C:\Program Files
2009-08-05 10:25:46 ----D---- C:\WINDOWS\system32\config
2009-08-05 10:03:57 ----D---- C:\WINDOWS\system32
2009-08-05 10:03:54 ----D---- C:\Program Files\Java
2009-08-04 22:00:00 ----D---- C:\Program Files\TuneUp Utilities 2009
2009-08-04 21:37:19 ----SHD---- C:\RECYCLER
2009-08-04 21:37:19 ----D---- C:\Documents and Settings
2009-08-04 18:14:51 ----D---- C:\Documents and Settings\emre\Application Data\dvdcss
2009-08-04 11:14:25 ----D---- C:\Program Files\Tomato
2009-08-03 20:30:16 ----D---- C:\Program Files\ma-config.com
2009-08-03 20:21:24 ----D---- C:\Program Files\Netcraft Toolbar
2009-08-03 20:19:32 ----D---- C:\Program Files\CoreStreet
2009-08-03 18:10:30 ----HD---- C:\WINDOWS\inf
2009-08-02 11:39:53 ----D---- C:\Program Files\Windows Live
2009-07-31 22:58:41 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-07-31 13:13:32 ----D---- C:\Program Files\EA GAMES
2009-07-31 13:13:31 ----HD---- C:\Program Files\InstallShield Installation Information
2009-07-30 15:35:52 ----D---- C:\Program Files\SpeedFan
2009-07-29 20:55:20 ----D---- C:\WINDOWS\Debug
2009-07-29 14:54:00 ----SD---- C:\WINDOWS\Tasks
2009-07-29 14:51:06 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-07-29 14:51:06 ----D---- C:\WINDOWS\system32\fr-FR
2009-07-29 14:51:06 ----D---- C:\WINDOWS\Help
2009-07-29 14:51:06 ----D---- C:\Program Files\Internet Explorer
2009-07-29 14:01:51 ----HD---- C:\WINDOWS\$hf_mig$
2009-07-29 14:01:01 ----D---- C:\WINDOWS\WBEM
2009-07-29 09:38:18 ----D---- C:\WINDOWS\WinSxS
2009-07-27 18:36:44 ----D---- C:\WINDOWS\Microsoft.NET
2009-07-26 20:49:19 ----D---- C:\WINDOWS\system32\drivers
2009-07-26 20:49:09 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-07-26 16:57:25 ----D---- C:\Program Files\Yahoo!
2009-07-26 14:43:37 ----HD---- C:\WINDOWS\NiwradSoft Shell Pack
2009-07-26 12:27:22 ----D---- C:\WINDOWS\system32\Restore
2009-07-25 05:23:00 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-07-23 17:20:46 ----D---- C:\Program Files\Fichiers communs\Nero
2009-07-23 17:12:26 ----D---- C:\Documents and Settings\All Users\Application Data\Comodo
2009-07-23 17:08:32 ----D---- C:\Program Files\totalcmd
2009-07-23 13:13:54 ----D---- C:\WINDOWS\BDOSCAN8
2009-07-22 20:52:54 ----D---- C:\Program Files\DivX
2009-07-22 20:52:32 ----D---- C:\Program Files\Fichiers communs\DivX Shared
2009-07-22 14:19:25 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-07-22 13:43:10 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-07-22 12:25:13 ----SHD---- C:\System Volume Information
2009-07-22 11:14:29 ----D---- C:\Program Files\Messenger Plus! Live
2009-07-19 18:45:00 ----A---- C:\WINDOWS\system32\ieframe.dll
2009-07-19 15:15:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2009-07-18 18:03:49 ----A---- C:\WINDOWS\system32\shdocvw.dll
2009-07-15 16:38:54 ----D---- C:\Program Files\Microsoft Games
2009-07-14 20:54:00 ----A---- C:\WINDOWS\system32\nvudisp.exe
2009-07-14 20:54:00 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2009-07-14 20:54:00 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2009-07-14 20:54:00 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2009-07-14 20:54:00 ----A---- C:\WINDOWS\system32\nvcuda.dll
2009-07-14 20:54:00 ----A---- C:\WINDOWS\system32\nvcodins.dll
2009-07-14 20:54:00 ----A---- C:\WINDOWS\system32\nvcod.dll
2009-07-14 20:54:00 ----A---- C:\WINDOWS\system32\nvapi.dll
2009-07-14 20:54:00 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2009-07-12 11:26:33 ----D---- C:\Program Files\windows media player
2009-07-11 11:16:18 ----A---- C:\WINDOWS\wincmd.ini
2009-07-10 18:11:32 ----D---- C:\WINDOWS\system32\DirectX
2009-07-10 15:41:06 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-07-10 07:01:34 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2009-07-09 21:28:25 ----D---- C:\Documents and Settings\emre\Application Data\ESTsoft
2009-07-09 21:20:06 ----D---- C:\Program Files\LocalCooling
2009-07-09 10:46:34 ----SD---- C:\Documents and Settings\emre\Application Data\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdPPM;Pilote de processeur AMD HwPState; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 FDCENT;FDCENT; \??\C:\WINDOWS\system32\drivers\FDCENT.SYS []
R1 SandBox;SandBox; C:\WINDOWS\system32\DRIVERS\SandBox.sys [2008-07-11 673920]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-07-14 28520]
R2 713xTVCard;SAA7134 TV Card; C:\WINDOWS\system32\DRIVERS\SAA713x.sys [2004-11-30 276736]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-01-08 165376]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-03-24 55640]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-01-08 18048]
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2006-11-10 18688]
R3 afw;Agnitum firewall driver; C:\WINDOWS\system32\DRIVERS\afw.sys [2008-06-30 30864]
R3 afwcore;afwcore; C:\WINDOWS\system32\drivers\afwcore.sys [2008-06-30 234640]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-01-24 4127488]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-07-14 7741664]
R3 P0630VID;Creative WebCam Live!; C:\WINDOWS\system32\DRIVERS\P0630Vid.sys [2004-04-14 91797]
R3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S1 aslm75;aslm75; \??\C:\WINDOWS\system32\drivers\aslm75.sys []
S3 Ad-Watch Connect Filter;Ad-Watch Connect Kernel Filter; \??\C:\WINDOWS\system32\drivers\NSDriver.sys []
S3 ASWFilt;ASWFilt; C:\WINDOWS\system32\Filt\ASWFilt.dll [2008-07-11 33408]
S3 catchme;catchme; \??\C:\DOCUME~1\emre\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 fbxusb;Carte réseau virtuelle FreeBox USB (32 bits); C:\WINDOWS\system32\DRIVERS\fbxusb32.sys [2007-08-27 31128]
S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys []
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nm;Pilote du Moniteur réseau; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 ovt530;Hercules Webcam Classic; C:\WINDOWS\System32\Drivers\ov530vid.sys []
S3 Point32;Microsoft IntelliPoint Filter Driver; C:\WINDOWS\system32\DRIVERS\point32.sys [2006-11-08 21760]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-05 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 a2free;a-squared Free Service; C:\Program Files\a-squared Free\a2service.exe [2009-07-21 1864824]
R2 acssrv;Agnitum Client Security Service; C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe [2008-07-15 1238344]
R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-07-14 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-07-14 185089]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-07-25 153376]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-07-14 168004]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2008-06-19 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-06-27 202448]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; C:\WINDOWS\System32\TUProgSt.exe [2009-07-26 604488]
R2 UxTuneUp;TuneUp Extension de thème; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2009-07-26 361288]
S2 gupdate1c9e7a887f2ba6;Google Update Service (gupdate1c9e7a887f2ba6); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-06-07 133104]
S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 Boonty Games;Boonty Games; C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe []
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-05-29 234864]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe []
S4 NetTcpPortSharing;Service de partage de ports Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]

-----------------EOF-----------------


info.txt logfile of random's system information tool 1.06 2009-05-14 20:39:55

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9.1.1 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
ALTools Update-->"C:\Program Files\ESTsoft\ALUpdate\unins000.exe"
ALZip-->"C:\Program Files\ESTsoft\ALZip\unins000.exe"
Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
a-squared Free 4.0-->"C:\Program Files\a-squared Free\unins000.exe"
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Utilitaire de désinstallation du logiciel-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
COMODO Firewall Pro-->C:\Program Files\Comodo\Firewall\fwconfig.exe -uninstalln
Creative WebCam Live! Driver (1.00.06.0414)-->C:\WINDOWS\CtDrvIns.exe -uninstall -script Pd0630.uns -unsext NT -plugin P0630Pin.dll -pluginres P0630Pin.crl
DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Eraser-->"C:\Documents and Settings\All Users\Application Data\{A25FEDC1-F6D7-440C-BCE2-B71F595F6646}\EraserSetup32.exe" REMOVE=TRUE MODIFY=FALSE
Eraser-->C:\Documents and Settings\All Users\Application Data\{A25FEDC1-F6D7-440C-BCE2-B71F595F6646}\EraserSetup32.exe
Glary Utilities 2.12.0.658-->"C:\Program Files\Glary Utilities\unins000.exe"
Google Earth-->MsiExec.exe /I{1E04F83B-2AB9-4301-9EF7-E86307F79C72}
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
HP Product Detection-->MsiExec.exe /X{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
iTunes-->MsiExec.exe /I{DDDE0BE3-0CBE-4BF6-B75A-E3F69C947843}
J2SE Runtime Environment 5.0 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
K-Lite Mega Codec Pack 4.7.5-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
LocalCooling 1.04-->"C:\Program Files\LocalCooling\unins000.exe"
Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{0BD83598-C2EF-3343-847B-7D2E84599128}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Mise à jour pour Windows Internet Explorer 8 (KB968220)-->"C:\WINDOWS\ie8updates\KB968220-IE8\spuninst\spuninst.exe"
Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
Mozilla Firefox (3.0.10)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 Parser and SDK-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
MSXML 6 Service Pack 2 (KB954459)-->MsiExec.exe /I{97AA1F3C-DD64-4AA6-AEC5-F8F9F4CC21C5}
Notepad++-->C:\Program Files\Notepad++\uninstall.exe
NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
OLYMPUS Master 2-->MsiExec.exe /X{45FCADDB-0B29-457E-83A1-D245C62A716C}
OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Paint.NET v3.36-->MsiExec.exe /X{43602F34-1AA3-44FB-AEB2-D08C2C73743F}
PC SECURITY TEST 2009-->"C:\Program Files\AxBx\PC Security Test 2009\unins000.exe"
PhotoFiltre Studio-->"C:\Program Files\PhotoFiltre Studio\Uninst.exe"
Prevx 3.0-->"C:\Program Files\Prevx\prevx.exe" /prop UNINSTALL=Y
QuickTime-->MsiExec.exe /I{8DC42D05-680B-41B0-8878-6C14D24602DB}
Radio_France Toolbar-->C:\PROGRA~1\RADIO_~1\UNWISE.EXE /U C:\PROGRA~1\RADIO_~1\INSTALL.LOG
Safari-->MsiExec.exe /I{582D2A53-F426-4C5E-A2E6-43C1AB36B907}
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SpeedFan (remove only)-->"C:\Program Files\SpeedFan\uninstall.exe"
SpoofStick for Internet Explorer 1.02-->C:\Program Files\CoreStreet\SpoofStick\uninst.exe
System Requirements Lab-->C:\Program Files\SystemRequirementsLab\Uninstall.exe
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}
VDownloader 0.82-->"C:\Program Files\VDOWNLOADER\unins000.exe"
VirusKeeper 2009 Pro Evaluation-->"C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\unins000.exe"
VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Yahoo! Messenger-->C:\PROGRA~1\Yahoo!\MESSEN~1\UNWISE.EXE /U C:\PROGRA~1\Yahoo!\MESSEN~1\INSTALL.LOG

======Hosts File======

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com

======Security center information======

AV: AntiVir Desktop
AV: VirusKeeper 2009 Pro antivirus
FW: COMODO Firewall Pro

======System event log======

Computer Name: EMRE-7DC4470B81
Event Code: 7023
Message: Le service Gestion d'applications s'est arrêté avec l'erreur :
Le module spécifié est introuvable.


Record Number: 14440
Source Name: Service Control Manager
Time Written: 20090501175922.000000+120
Event Type: erreur
User:

Computer Name: EMRE-7DC4470B81
Event Code: 7036
Message: Le service Gestion d'applications est entré dans l'état : arrêté.

Record Number: 14439
Source Name: Service Control Manager
Time Written: 20090501175922.000000+120
Event Type: Informations
User:

Computer Name: EMRE-7DC4470B81
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Gestion d'applications.

Record Number: 14438
Source Name: Service Control Manager
Time Written: 20090501175922.000000+120
Event Type: Informations
User: EMRE-7DC4470B81\emre

Computer Name: EMRE-7DC4470B81
Event Code: 7023
Message: Le service Gestion d'applications s'est arrêté avec l'erreur :
Le module spécifié est introuvable.


Record Number: 14437
Source Name: Service Control Manager
Time Written: 20090501175921.000000+120
Event Type: erreur
User:

Computer Name: EMRE-7DC4470B81
Event Code: 7036
Message: Le service Gestion d'applications est entré dans l'état : arrêté.

Record Number: 14436
Source Name: Service Control Manager
Time Written: 20090501175921.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: EMRE-7DC4470B81
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.

Record Number: 5
Source Name: SecurityCenter
Time Written: 20090421105446.000000+120
Event Type: Informations
User:

Computer Name: EMRE-7DC4470B81
Event Code: 1
Message:
Record Number: 4
Source Name: Bonjour Service
Time Written: 20090421105442.000000+120
Event Type: Informations
User:

Computer Name: EMRE-7DC4470B81
Event Code: 4096
Message: Le service AntiVir a bien démarré!

Record Number: 3
Source Name: Avira AntiVir
Time Written: 20090421103514.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: EMRE-7DC4470B81
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.

Record Number: 2
Source Name: SecurityCenter
Time Written: 20090421103513.000000+120
Event Type: Informations
User:

Computer Name: EMRE-7DC4470B81
Event Code: 1
Message:
Record Number: 1
Source Name: Bonjour Service
Time Written: 20090421103507.000000+120
Event Type: Informations
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem;C:\Program Files\Fichiers communs\DivX Shared;C:\Program Files\ESTsoft\ALZip
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 35 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=2302
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip

-----------------EOF-----------------

Oui,j'avais supprimer hide ip ng peux t-on supprimer les restes des pare-feu antivirus ?
Ya de formte chance que cela proviennet d'une mise a jour.

Oui,cclener je le fais toujours avant de fermer mon pc.
Je n'ai pas de point de restauration....
Enfin je vais supprimer tout les moduels aextension et compagnie.

Non il sont toujours la mem desactivé.
Ben je les supprime en faite

J'ai trouver sa vient d'un extension qui bloque la pub ^^ merci de m'avoir aider.
Je n'ai pas ce que tu as marqué en haut dans mon pc. Je sais pas comment sa se fait que il sont toujours dans mon pc =O