Quelqfait planté mon pc à distance

encore des tonnes de merci pour ceux qui ont pris du temps et ont eus la patience de m'aider .

dois-je recommencer défender lyonnais car j'ai quand même réussi au bout de 4 essais , j'ai d'ailleurs posté le rapport plus haut dans ce post

voila le rapport rsit à votre demande

Logfile of random's system information tool 1.05 (written by random/random)
Run by didier at 2009-02-03 14:18:42
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 1 GB (1%) free of 153 GB
Total RAM: 894 MB (37% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:18:52, on 03/02/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Fichiers communs\BinarySense\disksvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Webroot\Washer\WasherSvc.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Registry Mechanic\RegMech.exe
C:\Program Files\Webroot\Washer\wwDisp.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Documents and Settings\didier\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
C:\Documents and Settings\didier\Application Data\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
E:\logiciels divers\RSIT.exe
C:\Program Files\trend micro\didier.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - C:\PROGRA~1\COPERN~1\COPERN~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMult.dll
R3 - URLSearchHook: WorldTV Bar Toolbar - {44c0b463-5a8a-452c-8e72-dc751dac6ec1} - C:\Program Files\WorldTV_Bar\tbWorl.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: freedomltd browser enhancer - {0B9AC82E-4BA2-C465-4057-A2080E950838} - (no file)
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: WorldTV Bar Toolbar - {44c0b463-5a8a-452c-8e72-dc751dac6ec1} - C:\Program Files\WorldTV_Bar\tbWorl.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll
O3 - Toolbar: WorldTV Bar Toolbar - {44c0b463-5a8a-452c-8e72-dc751dac6ec1} - C:\Program Files\WorldTV_Bar\tbWorl.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install
O4 - HKLM\..\Run: [NvMediaCenter] "RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [RegistryMechanic] C:\Program Files\Registry Mechanic\RegMech.exe /H
O4 - HKCU\..\Run: [Window Washer] C:\Program Files\Webroot\Washer\wwDisp.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [HDDtemp4] C:\Program Files\BinarySense\HDDTemp4\\hddtemp4 /minimized
O4 - HKCU\..\Run: [MediaDico] C:\Program Files\Micro Application\12 DICOS Indispensables\LanceMediaDICO12.exe Lancement
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: MaxTV.lnk = C:\Program Files\DMV\MaxTV4\maxtv.exe
O4 - Startup: Outil de notification Live Search.lnk = C:\Documents and Settings\didier\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: Chercher avec Copernic Agent - res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_MENU_SEARCHEXT
O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE
O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game02.zylom.com/activex/zylomgamesplayer.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{1ACBC200-693E-4B7A-81DD-B7BB4B49E6A1}: NameServer = 84.103.237.142 86.64.145.142
O17 - HKLM\System\CS1\Services\Tcpip\..\{1ACBC200-693E-4B7A-81DD-B7BB4B49E6A1}: NameServer = 84.103.237.142 86.64.145.142
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O23 - Service: ADSLAutoconnect - Unknown owner - C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HDD & SSD access service - BinarySense Ltd. - C:\Program Files\Fichiers communs\BinarySense\disksvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
O23 - Service: Window Washer Engine (wwEngineSvc) - Webroot Software, Inc. - C:\Program Files\Webroot\Washer\WasherSvc.exe
O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe

j'ai vraiment un gros problème , impossible de télécharger combofix via le lien que vous m'avez fourni dans votre précédent méssage , que faire ???

j'ai beau cliquer ou il faut , il ne veux rien enregister , comment ça ce fait , j'ai pourtant tout bien fais ???

rapport de combofix

ComboFix 09-02-02.04 - didier 2009-02-03 15:33:03.2 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.3.1252.1.1036.18.894.423 [GMT 1:00]
Lancé depuis: c:\documents and settings\didier\Bureau\ComboFix.exe
AV: Bitdefender Antivirus *On-access scanning disabled* (Updated)
FW: Bitdefender Firewall *enabled*
.

((((((((((((((((((((((((((((( Fichiers créés du 2009-01-03 au 2009-02-03 ))))))))))))))))))))))))))))))))))))
.

2009-02-03 10:21 . 2009-02-03 10:29 <REP> d-------- c:\program files\RogueRemover FREE
2009-02-02 16:12 . 2009-02-02 16:13 <REP> d-------- C:\rsit
2009-02-01 18:53 . 2009-02-01 20:01 <REP> d-------- c:\program files\Ad-remover
2009-02-01 14:37 . 2003-05-20 18:11 1,667,584 --a------ c:\windows\MediaDico12Dll.dll
2009-02-01 14:37 . 2002-12-26 15:25 208,985 --a------ c:\windows\RACHook12.dll
2009-02-01 14:37 . 2002-12-26 15:31 199,680 --a------ c:\windows\MediaR12.dll
2009-02-01 14:37 . 2009-02-01 14:38 1,967 --a------ c:\windows\MediaR12.ini
2009-02-01 14:36 . 2009-02-01 14:36 <REP> d-------- c:\program files\Micro Application
2009-02-01 14:35 . 2009-02-01 14:35 <REP> d-------- c:\documents and settings\didier\WINDOWS
2009-01-31 21:07 . 2009-01-31 21:08 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware
2009-01-31 21:07 . 2009-01-14 16:11 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2009-01-31 21:07 . 2009-01-14 16:11 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2009-01-31 14:43 . 2009-01-31 14:43 <REP> d-------- c:\program files\Fichiers communs\BinarySense
2009-01-31 14:43 . 2009-01-31 14:43 <REP> d-------- c:\program files\BinarySense
2009-01-31 13:30 . 2009-01-31 13:30 <REP> d-------- c:\documents and settings\didier\Application Data\uniblue
2009-01-31 11:43 . 2009-02-03 14:18 <REP> d-------- c:\program files\Trend Micro
2009-01-30 18:57 . 2009-01-30 18:59 <REP> d-------- c:\program files\RegCleaner
2009-01-28 19:05 . 2009-01-28 19:05 <REP> d-------- c:\program files\ADSL Autoconnect
2009-01-28 16:09 . 2009-01-28 16:17 <REP> d-------- c:\documents and settings\sauvegardes
2009-01-28 14:34 . 2009-01-28 14:34 <REP> d-------- c:\documents and settings\didier\Application Data\BitDefender
2009-01-28 14:33 . 2009-01-28 15:10 <REP> d-------- c:\documents and settings\All Users\Application Data\BitDefender
2009-01-28 14:28 . 2009-02-03 15:28 81,984 --a------ c:\windows\system32\bdod.bin
2009-01-28 14:17 . 2009-02-03 15:35 121 --a------ c:\windows\bdagent.INI
2009-01-28 14:09 . 2009-01-28 14:33 <REP> d-------- c:\program files\BitDefender
2009-01-28 14:08 . 2009-01-28 14:09 <REP> d-------- c:\program files\Fichiers communs\BitDefender
2009-01-28 11:32 . 2006-06-23 18:35 44,288 --a------ c:\windows\system32\drivers\acshield.sys
2009-01-28 10:00 . 2009-01-28 11:04 <REP> d-------- C:\My Games
2009-01-28 10:00 . 2009-01-28 10:00 <REP> d-------- c:\documents and settings\All Users\Application Data\Realv1005
2009-01-28 09:58 . 2009-01-28 11:05 <REP> d-------- C:\My Download Files
2009-01-28 09:50 . 2009-01-28 09:50 774,144 --a------ c:\program files\RngInterstitial.dll
2009-01-27 22:50 . 2009-01-31 12:34 <REP> d-------- c:\program files\DAEMON Tools Lite
2009-01-26 11:25 . 2009-01-28 13:58 1,371 --a------ c:\windows\system32\%LocalXml%
2009-01-25 14:48 . 2009-01-25 14:48 <REP> d-------- c:\documents and settings\LocalService\Application Data\VCOM
2009-01-25 14:48 . 2009-01-25 14:48 <REP> d-------- c:\documents and settings\All Users\Application Data\BVRP Software
2009-01-25 14:47 . 2009-01-25 14:47 <REP> dr-hs---- C:\_Backup.RC
2009-01-25 14:47 . 2009-01-25 16:56 <REP> d--h----- C:\_Backup
2009-01-25 14:46 . 2009-01-25 14:46 <REP> d-------- c:\program files\VCOM
2009-01-25 14:46 . 2009-01-25 14:46 <REP> d-------- c:\documents and settings\didier\Application Data\VCOM
2009-01-24 16:31 . 2009-01-24 16:31 <REP> d-------- c:\documents and settings\All Users\Application Data\JollyBear
2009-01-23 15:54 . 2009-01-23 15:54 <REP> d-------- c:\documents and settings\didier\Application Data\DMV Technologies
2009-01-23 15:38 . 2009-01-30 17:47 <REP> d-------- c:\program files\adslTV
2009-01-23 15:36 . 2009-01-23 15:36 <REP> d-------- c:\program files\Dusco
2009-01-23 15:36 . 2009-01-23 15:57 311,586 --a------ c:\windows\SesamTV Media Center Uninstaller.exe
2009-01-23 15:34 . 2009-01-23 15:34 <REP> d-------- c:\windows\MaxTV
2009-01-23 15:34 . 2009-01-23 15:34 <REP> d-------- c:\program files\DMV
2009-01-23 15:19 . 2009-01-23 15:19 <REP> d-------- c:\program files\WorldTV_Bar
2009-01-23 15:18 . 2009-01-31 11:32 <REP> d-------- c:\program files\Gogglebox TV
2009-01-23 15:00 . 2006-06-29 13:07 14,048 --------- c:\windows\system32\spmsg2.dll
2009-01-23 14:57 . 2009-01-23 15:00 <REP> d-------- c:\windows\system32\XPSViewer
2009-01-23 14:57 . 2009-01-23 14:57 <REP> d-------- c:\program files\Reference Assemblies
2009-01-23 14:57 . 2009-01-23 14:57 <REP> d-------- c:\program files\MSBuild
2009-01-23 14:57 . 2009-01-23 14:57 <REP> d-------- C:\4679133918c00f8c9bf2babaa72aed
2009-01-23 14:57 . 2008-07-06 13:06 1,676,288 --------- c:\windows\system32\xpssvcs.dll
2009-01-23 14:57 . 2008-07-06 13:06 1,676,288 -----c--- c:\windows\system32\dllcache\xpssvcs.dll
2009-01-23 14:57 . 2008-07-06 11:50 597,504 -----c--- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2009-01-23 14:57 . 2008-07-06 13:06 575,488 --------- c:\windows\system32\xpsshhdr.dll
2009-01-23 14:57 . 2008-07-06 13:06 575,488 -----c--- c:\windows\system32\dllcache\xpsshhdr.dll
2009-01-23 14:57 . 2008-07-06 13:06 117,760 --------- c:\windows\system32\prntvpt.dll
2009-01-23 14:57 . 2008-07-06 13:06 89,088 -----c--- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2009-01-22 14:57 . 2009-01-22 14:57 <REP> d-------- c:\windows\33ED850653E64385B4A27E013EAF9C1A.TMP
2009-01-22 14:54 . 2009-01-22 14:54 <REP> d-------- c:\documents and settings\All Users\Application Data\BufferZone
2009-01-22 13:59 . 2009-02-01 18:43 <REP> d-------- c:\program files\Multi_Media
2009-01-22 13:59 . 2009-01-22 13:59 198,987 --a------ c:\windows\system32\gsnd.exe
2009-01-22 13:59 . 2009-01-28 15:01 48,282 --a------ c:\windows\system32\ckkcftweinm.exe
2009-01-21 14:15 . 1996-08-20 20:37 15,840 --a------ c:\windows\system32\Machnm1.exe
2009-01-21 14:15 . 2005-09-25 16:37 5,632 --a------ c:\windows\system32\Machnm64.sys
2009-01-21 14:15 . 2009-01-21 14:15 3,120 --a------ c:\windows\system32\118290.54
2009-01-21 14:15 . 2009-01-21 14:15 3,120 --a------ c:\windows\118294.78
2009-01-21 14:15 . 2003-08-13 00:27 2,304 --a------ c:\windows\system32\Machnm32.sys
2009-01-21 14:04 . 2009-01-21 14:04 <REP> d-------- c:\program files\Conduit
2009-01-21 11:04 . 2009-01-21 11:02 102,664 --a------ c:\windows\system32\drivers\tmcomm.sys
2009-01-21 11:02 . 2009-01-21 11:38 <REP> d-------- c:\documents and settings\didier\.housecall6.6
2009-01-20 21:51 . 2009-02-03 15:30 <REP> d-------- c:\program files\eMule
2009-01-20 20:56 . 2008-03-03 18:21 568 --ah----- c:\windows\nod32fixtemdono.reg
2009-01-20 20:55 . 2009-01-20 20:55 <REP> d-------- c:\program files\ESET
2009-01-19 14:11 . 2008-12-11 13:31 27,904 --a------ c:\windows\system32\uxtuneup.dll
2009-01-17 19:17 . 2009-01-17 19:17 <REP> d-------- c:\program files\Webroot
2009-01-17 19:17 . 2009-01-17 19:17 <REP> d-------- c:\documents and settings\All Users\Application Data\Webroot
2009-01-17 18:32 . 2009-01-17 19:17 <REP> d-------- c:\documents and settings\didier\Application Data\Webroot
2009-01-17 15:54 . 2007-10-03 09:33 194,888 --a------ c:\windows\Unwash6.exe
2009-01-17 10:11 . 2009-01-17 10:11 <REP> d--hs---- C:\found.000
2009-01-16 19:39 . 2009-01-16 19:39 <REP> d-------- c:\windows\system32\NtmsData
2009-01-16 17:16 . 2009-01-19 14:11 360,192 --a------ c:\windows\system32\TuneUpDefragService.exe
2009-01-16 17:07 . 2009-01-16 17:07 410,984 --a------ c:\windows\system32\deploytk.dll
2009-01-16 15:44 . 2009-01-16 15:44 <REP> d-------- c:\windows\Sun
2009-01-16 15:44 . 2009-01-19 18:22 <REP> d-------- C:\FlySuite
2009-01-16 15:31 . 2009-01-16 15:31 <REP> d-------- c:\documents and settings\didier\Application Data\OpenOffice.org
2009-01-16 15:26 . 2009-01-22 08:33 <REP> d-------- c:\program files\OpenOffice.org 3
2009-01-16 15:26 . 2009-01-16 17:07 73,728 --a------ c:\windows\system32\javacpl.cpl
2009-01-16 15:25 . 2009-01-16 17:07 <REP> d-------- c:\program files\Java
2009-01-16 15:25 . 2009-01-16 15:25 <REP> d-------- c:\program files\Fichiers communs\Java
2009-01-16 14:56 . 2009-01-16 14:56 <REP> d-------- c:\documents and settings\didier\Application Data\Windows Search
2009-01-16 14:55 . 2009-01-16 14:55 <REP> d-------- c:\documents and settings\didier\Application Data\Windows Desktop Search
2009-01-16 14:54 . 2009-01-16 14:54 <REP> d-------- c:\program files\Windows Desktop Search
2009-01-16 14:54 . 2008-03-07 18:02 192,000 -----c--- c:\windows\system32\dllcache\offfilt.dll
2009-01-16 14:54 . 2008-03-07 18:02 98,304 -----c--- c:\windows\system32\dllcache\nlhtml.dll
2009-01-16 14:54 . 2008-03-07 18:02 29,696 -----c--- c:\windows\system32\dllcache\mimefilt.dll
2009-01-16 14:53 . 2009-01-16 14:53 <REP> d-------- c:\windows\system32\URTTEMP
2009-01-15 12:31 . 2009-01-15 12:31 <REP> d-------- c:\program files\MSECache
2009-01-14 11:58 . 1999-09-10 13:06 45,056 --a------ c:\windows\system32\wnaspi32.dll
2009-01-14 11:58 . 1999-09-10 13:06 25,244 --a------ c:\windows\system32\drivers\aspi32.sys
2009-01-14 11:58 . 1999-09-10 13:06 5,600 --a------ c:\windows\system\winaspi.dll
2009-01-14 11:58 . 1999-09-10 13:06 4,672 --a------ c:\windows\system\wowpost.exe
2009-01-14 11:57 . 2009-01-14 11:57 203,776 --a------ c:\windows\system32\clrviddc.dll
2009-01-13 08:47 . 2004-02-23 21:42 1,386,496 --a------ c:\windows\system32\msvbvm60.dll
2009-01-13 08:47 . 2004-03-09 01:00 1,081,616 --a------ c:\windows\system32\MSCOMCTL.OCX
2009-01-12 20:12 . 2008-02-07 17:10 <REP> d--h----- C:\ckis
2009-01-12 19:59 . 2009-01-28 14:05 <REP> d-------- c:\program files\Kaspersky Lab
2009-01-12 19:58 . 2009-01-26 11:05 <REP> d-------- c:\documents and settings\All Users\Application Data\Kaspersky Lab Setup Files
2009-01-12 18:04 . 2009-01-12 18:04 <REP> d-------- c:\documents and settings\didier\Application Data\TeamViewer
2009-01-12 17:03 . 2009-01-12 18:42 <REP> d-------- c:\program files\SpywareBlaster
2009-01-12 17:03 . 2004-02-22 23:00 119,808 --a------ c:\windows\system32\MSSTDFMT.DLL
2009-01-12 14:36 . 2009-01-12 14:36 <REP> d-------- c:\documents and settings\didier\Application Data\Grisoft
2009-01-12 14:35 . 2009-01-12 14:35 <REP> d-------- c:\documents and settings\All Users\Application Data\Grisoft
2009-01-12 12:42 . 2009-01-16 14:54 <REP> d--h----- c:\windows\system32\GroupPolicy
2009-01-11 20:02 . 2009-01-11 20:02 <REP> d-------- c:\documents and settings\didier\Application Data\Malwarebytes
2009-01-11 20:02 . 2009-01-11 20:02 <REP> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-01-11 10:46 . 2009-01-11 10:46 <REP> d-------- c:\documents and settings\All Users\Application Data\SugarGames
2009-01-06 11:22 . 2009-02-03 15:31 <REP> d-a------ c:\documents and settings\All Users\Application Data\TEMP
2009-01-06 11:01 . 2009-01-06 11:01 17,408 --a------ C:\psapi.dll
2009-01-06 10:46 . 2005-09-23 07:29 626,688 --a------ c:\windows\system32\msvcr80.dll
2009-01-06 10:45 . 2009-01-12 18:42 <REP> d-------- c:\program files\CHRYOPROD
2009-01-05 23:05 . 2009-01-05 23:05 <REP> d-------- c:\program files\IDM Computer Solutions
2009-01-05 23:05 . 2009-01-05 23:05 <REP> d-------- c:\documents and settings\didier\Application Data\IDMComp
2009-01-05 21:33 . 2009-01-12 18:01 <REP> d-------- c:\program files\Windows Live Safety Center

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-03 10:06 --------- d-----w c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-02-02 13:16 --------- d-----w c:\program files\CCleaner
2009-01-30 13:48 --------- d-----w c:\documents and settings\didier\Application Data\vlc
2009-01-28 14:50 --------- d-----w c:\program files\Radio Fr Solo
2009-01-28 14:21 86,792 ----a-w c:\windows\system32\drivers\bdfndisf.sys
2009-01-28 08:50 --------- d-----w c:\program files\Real
2009-01-28 08:49 --------- d-----w c:\program files\Fichiers communs\Real
2009-01-26 09:58 --------- d-----w c:\program files\MUSK Codec Pack v6
2009-01-26 09:58 --------- d-----w c:\program files\DivX
2009-01-25 16:24 --------- d-----w c:\program files\Google
2009-01-21 15:08 --------- d--h--w c:\program files\InstallShield Installation Information
2009-01-19 13:17 --------- d-----w c:\program files\TuneUp Utilities 2009
2009-01-19 13:11 603,904 ----a-w c:\windows\system32\TUProgSt.exe
2009-01-17 18:17 --------- d-----w c:\program files\Fichiers communs\Webroot Shared
2009-01-02 02:00 --------- d-----w c:\program files\MSXML 4.0
2009-01-01 13:15 --------- d-----w c:\program files\Nouvelle Cible
2009-01-01 13:07 --------- d-----w c:\documents and settings\didier\Application Data\DivX
2009-01-01 13:06 --------- d-----w c:\program files\DFX
2009-01-01 13:06 --------- d-----w c:\documents and settings\All Users\Application Data\DFX
2009-01-01 13:05 --------- d-----w c:\documents and settings\All Users\Application Data\Yahoo! Companion
2009-01-01 13:01 717,296 ----a-w c:\windows\system32\drivers\sptd.sys
2009-01-01 12:59 --------- d-----w c:\documents and settings\didier\Application Data\DAEMON Tools
2009-01-01 12:56 --------- d-----w c:\program files\Fichiers communs\Copernic
2009-01-01 12:56 --------- d-----w c:\program files\Copernic Agent
2009-01-01 12:56 --------- d-----w c:\documents and settings\didier\Application Data\Copernic
2009-01-01 12:55 --------- d-----w c:\program files\Yahoo!
2009-01-01 12:52 --------- d-----w c:\documents and settings\didier\Application Data\BSplayer PRO
2009-01-01 12:51 --------- d-----w c:\program files\Webteh
2009-01-01 12:36 --------- d-----w c:\documents and settings\didier\Application Data\ESTsoft
2009-01-01 12:35 --------- d-----w c:\program files\ESTsoft
2009-01-01 12:35 --------- d-----w c:\documents and settings\All Users\Application Data\ESTsoft
2008-12-31 22:31 --------- d-----w c:\documents and settings\didier\Application Data\Nero
2008-12-31 22:29 --------- d-----w c:\program files\Fichiers communs\Nero
2008-12-31 22:20 --------- d-----w c:\program files\Nero
2008-12-31 22:19 --------- d-----w c:\program files\Windows Sidebar
2008-12-31 22:15 --------- d-----w c:\documents and settings\All Users\Application Data\Nero
2008-12-31 16:59 --------- d-sh--w c:\documents and settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}
2008-12-31 14:04 --------- d-----w c:\program files\GameSpy Arcade
2008-12-31 14:03 --------- d-----w c:\program files\Ricochet Xtreme
2008-12-31 14:02 155,995 ----a-w c:\windows\java\Packages\[u]0/uRRL79FF.ZIP
2008-12-31 14:02 --------- d-----w c:\program files\ReflexiveArcade
2008-12-31 14:01 --------- d-----w c:\program files\WildTangent
2008-12-31 13:58 --------- d-----w c:\program files\Fichiers communs\Logitech
2008-12-31 13:57 --------- d-----w c:\program files\Logitech
2008-12-31 13:51 --------- d-----w c:\program files\ArcSoft
2008-12-31 11:48 --------- d-----w c:\program files\Fichiers communs\Adobe
2008-12-31 10:32 --------- d-----w c:\program files\Windows Live
2008-12-31 10:32 --------- d-----w c:\program files\Microsoft Silverlight
2008-12-31 10:30 --------- d-----w c:\program files\Microsoft Sync Framework
2008-12-31 10:29 --------- d-----w c:\program files\Microsoft SQL Server Compact Edition
2008-12-31 10:28 --------- d-----w c:\program files\Windows Live SkyDrive
2008-12-31 10:28 --------- d-----w c:\program files\Microsoft
2008-12-31 10:20 --------- d-----w c:\program files\Fichiers communs\Windows Live
2008-12-31 10:16 --------- d-----w c:\documents and settings\didier\Application Data\MSNInstaller
2008-12-31 10:13 --------- d-----w c:\documents and settings\didier\Application Data\InterTrust
2008-12-31 10:07 --------- d-----w c:\program files\Fichiers communs\DFX
2008-12-31 10:02 --------- d-----w c:\program files\Lavalys
2008-12-31 10:01 --------- d-----w c:\program files\Easy CD-DA Extractor 10
2008-12-31 09:24 --------- d-----w c:\program files\EPSON
2008-12-31 09:23 --------- d-----w c:\program files\Smart Panel
2008-12-31 09:23 --------- d-----w c:\program files\Fichiers communs\Python
2008-12-31 09:20 39,936 ----a-w c:\windows\system32\drivers\CDAC11BA.EXE
2008-12-31 09:20 --------- d-----w c:\documents and settings\didier\Application Data\ABBYY
2008-12-31 09:19 --------- d-----w c:\program files\ABBYY
2008-12-30 20:19 --------- d-----w c:\program files\aMSN
2008-12-30 20:13 --------- d-----w c:\program files\VideoLAN
2008-12-30 19:42 36,734 ----a-w c:\windows\system32\OggDSuninst.exe
2008-12-30 19:42 --------- d-----w c:\program files\ffdshow
2008-12-30 19:41 --------- d-----w c:\program files\On2 Technologies
2008-12-30 19:41 --------- d-----w c:\program files\Media Player Classic
2008-12-30 19:41 --------- d-----w c:\program files\Fichiers communs\InstallShield
2008-12-30 19:41 --------- d-----w c:\program files\3ivx
2008-12-30 19:41 --------- d-----w c:\documents and settings\All Users\Application Data\Apple Computer
2008-12-30 19:34 --------- d-----w c:\program files\Fichiers communs\xing shared
2008-12-30 19:17 --------- d-----w c:\documents and settings\didier\Application Data\TuneUp Software
2008-12-30 19:16 --------- d-----w c:\documents and settings\All Users\Application Data\TuneUp Software
2008-12-30 19:05 --------- d-----w c:\documents and settings\All Users\Application Data\NVIDIA
2008-12-30 19:03 315,392 ----a-w c:\windows\HideWin.exe
2008-12-30 19:03 --------- d-----w c:\program files\Realtek
2008-12-30 18:53 --------- d-----w c:\documents and settings\didier\Application Data\ESET
2008-12-30 18:52 --------- d-----w c:\documents and settings\All Users\Application Data\ESET
2008-12-30 18:43 --------- d-----w c:\program files\microsoft frontpage
2008-12-30 18:42 --------- d-----w c:\program files\Services en ligne
2008-12-11 10:57 333,952 ----a-w c:\windows\system32\drivers\srv.sys
2008-12-08 16:01 55,136 ----a-w c:\windows\system32\drivers\fssfltr_tdi.sys
2008-12-04 23:11 308,584 ----a-w c:\windows\WLXPGSS.SCR
2008-12-02 21:37 49,480 ----a-w c:\windows\system32\sirenacm.dll
2008-11-21 21:47 524,288 ----a-w c:\windows\system32\DivXsm.exe
2008-11-21 21:47 3,596,288 ----a-w c:\windows\system32\qt-dx331.dll
2008-11-21 21:47 129,784 ------w c:\windows\system32\pxafs.dll
2008-11-21 21:47 120,056 ------w c:\windows\system32\pxcpyi64.exe
2008-11-21 21:47 118,520 ------w c:\windows\system32\pxinsi64.exe
2008-11-21 21:46 200,704 ----a-w c:\windows\system32\ssldivx.dll
2008-11-21 21:46 1,044,480 ----a-w c:\windows\system32\libdivx.dll
2008-11-21 21:44 161,096 ----a-w c:\windows\system32\DivXCodecVersionChecker.exe
2008-11-21 21:44 12,288 ----a-w c:\windows\system32\DivXWMPExtType.dll
.

((((((((((((((((((((((((((((( snapshot@2009-02-03_15.22.38.79 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-02-03 14:29:30 16,384 ----atw c:\windows\Temp\Perflib_Perfdata_1ac.dat
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{44c0b463-5a8a-452c-8e72-dc751dac6ec1}"= "c:\program files\WorldTV_Bar\tbWorl.dll" [2007-10-17 1498136]

[HKEY_CLASSES_ROOT\clsid\{44c0b463-5a8a-452c-8e72-dc751dac6ec1}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{44c0b463-5a8a-452c-8e72-dc751dac6ec1}]
2007-10-17 10:41 1498136 --a------ c:\program files\WorldTV_Bar\tbWorl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{44c0b463-5a8a-452c-8e72-dc751dac6ec1}"= "c:\program files\WorldTV_Bar\tbWorl.dll" [2007-10-17 1498136]

[HKEY_CLASSES_ROOT\clsid\{44c0b463-5a8a-452c-8e72-dc751dac6ec1}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{44C0B463-5A8A-452C-8E72-DC751DAC6EC1}"= "c:\program files\WorldTV_Bar\tbWorl.dll" [2007-10-17 1498136]

[HKEY_CLASSES_ROOT\clsid\{44c0b463-5a8a-452c-8e72-dc751dac6ec1}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HDDtemp4"="c:\program files\BinarySense\HDDTemp4\\hddtemp4" [X]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2008-12-02 3882312]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"RegistryMechanic"="c:\program files\Registry Mechanic\RegMech.exe" [2008-07-08 2828184]
"Window Washer"="c:\program files\Webroot\Washer\wwDisp.exe" [2007-10-03 1206600]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-01-25 39408]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2008-07-24 490952]
"MediaDico"="c:\program files\Micro Application\12 DICOS Indispensables\LanceMediaDICO12.exe" [2002-12-24 253952]
"eMuleAutoStart"="c:\program files\eMule\emule.exe" [2008-08-01 5480448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-12-30 185872]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-01-16 136600]
"BitDefender Antiphishing Helper"="c:\program files\BitDefender\BitDefender 2008\IEShow.exe" [2007-10-09 61440]
"BDAgent"="c:\program files\BitDefender\BitDefender 2008\bdagent.exe" [2009-01-28 368640]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-31 7634944]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-31 86016]
"SkyTel"="SkyTel.EXE" [2007-06-15 c:\windows\SkyTel.exe]
"RTHDCPL"="RTHDCPL.EXE" [2007-07-05 c:\windows\RTHDCPL.exe]
"nwiz"="nwiz.exe" [2006-10-31 c:\windows\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\didier\Menu D‚marrer\Programmes\D‚marrage\
MaxTV.lnk - c:\program files\DMV\MaxTV4\maxtv.exe [2008-11-10 5486001]
Outil de notification Live Search.lnk - c:\documents and settings\didier\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe [2008-12-31 143360]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe [2008-05-26 123904]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2008-05-26 304128]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.DIV3"= DivXc32.dll
"vidc.DIV4"= DivXc32f.dll
"msacm.divxa32"= DivXa32.acm
"vidc.3IV2"= 3ivxVfWCodec.dll
"msacm.ac3filter"= ac3filter.acm

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=

R2 ADSLAutoconnect;ADSLAutoconnect;c:\program files\ADSL Autoconnect\ADSL Autoconnect.exe [2009-01-28 446464]
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2008-12-31 55136]
R2 HDD & SSD access service;HDD & SSD access service;c:\program files\Fichiers communs\BinarySense\disksvc.exe [2009-01-16 204336]
R2 SeaPort;SeaPort;c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2008-12-04 226640]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service;c:\windows\system32\TUProgSt.exe [2008-12-31 603904]
R2 wwEngineSvc;Window Washer Engine;c:\program files\Webroot\Washer\WasherSvc.exe [2009-01-17 598856]
R3 Bdfndisf;BitDefender Firewall NDIS Filter Service;c:\windows\system32\drivers\bdfndisf.sys [2008-01-25 86792]
R3 fhlppppoe;PPPOE/ADSL miniport;c:\windows\system32\drivers\fhlpppoe.sys [2008-12-30 49200]
S2 NOD32FiXTemDono;Eset Nod32 Boot;c:\windows\system32\regedt32.exe [2002-08-30 3584]
S3 fsssvc;Windows Live Contrôle parental;c:\program files\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bdx REG_MULTI_SZ scan

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Contenu du dossier 'Tâches planifiées'

2009-02-03 c:\windows\Tasks\Maintenance en 1 clic.job
- c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-12 15:04]
.
.
------- Examen supplémentaire -------
.
mWindow Title =
IE: Chercher avec Copernic Agent - c:\program files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_MENU_SEARCHEXT
TCP: {1ACBC200-693E-4B7A-81DD-B7BB4B49E6A1} = 84.103.237.140 86.64.145.140
Handler: copernicagent - {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} - c:\progra~1\COPERN~1\COPERN~1.DLL
Handler: copernicagentcache - {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} - c:\progra~1\COPERN~1\COPERN~1.DLL
DPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab
DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game02.zylom.com/activex/zylomgamesplayer.cab
FF - ProfilePath - c:\documents and settings\didier\Application Data\Mozilla\Firefox\Profiles\jsi9cfr8.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF - prefs.js: browser.search.selectedEngine - DAEMON Search
FF - prefs.js: browser.startup.homepage - hxxp://www.daemon-search.com/startpage
FF - prefs.js: keyword.URL - hxxp://search.live.com/results.aspx?mkt=fr-FR&FORM=MIMWA5&q=
FF - component: c:\program files\Real\RealPlayer\browserrecord\components\nprpbrowserrecordplugin.dll
FF - plugin: c:\documents and settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npgcplug.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npracplug.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npzylomgamesplayer.dll
FF - plugin: c:\program files\Real\RealArcade\Plugins\Mozilla\npracplug.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll

---- PARAMETRES FIREFOX ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("pref.browser.homepage.disable_button.bookmark_page", false);
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("pref.browser.homepage.disable_button.current_page", false);
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("pref.browser.homepage.disable_button.restore_default", false);
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("browser.places.importBookmarksHTML", true);
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("browser.places.importDefaults", false);
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("browser.search.selectedEngine", "xeoo.com");
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("keyword.URL", "http://xeoo.com/?p=url&a=firefox&k=");
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("browser.startup.homepage", "http://www.xeoo.com/?p=h&a=firefox");
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-03 15:35:16
Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
Heure de fin: 2009-02-03 15:36:35
ComboFix-quarantined-files.txt 2009-02-03 14:36:33
ComboFix2.txt 2009-02-03 14:23:34

Avant-CF: 846 880 768 octets libres
Après-CF: 831,021,056 octets libres

370 --- E O F --- 2009-01-16 11:16:31
incommpréhenssible à mes yeux

re ,

combofix m'a bousillé bit défender , pourquoi ???

je suis donc maintenant protégé par ESET SMART SECURYTI

combofix as t'il fait avancé l'affaire ?

non je n'ai pas installé binary sense et je n'ai pas non plus de toolba sur mon bureau surtout search and destroy

si binary sense , c'est moi , c'était pour mesurer la température de mes ventilos

mais ou est donc cette toolbar , pas sur mon bureau , c'est sur

non aprés recherche , je n'ai que google comme toolbar pas S&D , je ne la trouve absollument pas rien sur le bureau ni en recherche

en toolbars j'ai trouvé juste yahoo et world tv sur i.explorer peut-être une de ccleaner mais rien d'autre ???

c'est un problème distant de mon appartement qu'il y a , j'en suis certains , du voisinage s'amuse avec moi pour me faire c...r

rapport de toolbar s&d


-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : didier ( Administrator )
BOOT : Normal boot
Antivirus : ESET Smart Security 3.0 3.0 (Activated)
Firewall : Pare-feu personnel d'ESET 3.0.650.0 (Activated)
C:\ (Local Disk) - NTFS - Total:149 Go (Free:0 Go)
D:\ (CD or DVD)
E:\ (Local Disk) - NTFS - Total:465 Go (Free:0 Go)
F:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 03/02/2009|17:27 )

-----------\\ Recherche de Fichiers / Dossiers ...

C:\Program Files\Multi_Media
C:\Program Files\Multi_Media\tbMult.dll

-----------\\ Extensions

(didier) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar
(didier) - {99B98C2C-7274-45a3-A640-D9DF1A1C8460} => cookieculler
(didier) - {AE93811A-5C9A-4d34-8462-F7B864FC4696} => stumbleupon
(didier) - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} => adblockplus
(didier) - {D2A6A719-7CBC-4594-85FD-C36AD881424F} => blueorganizer
(didier) - {DDC359D1-844A-42a7-9AA1-88A850A938A8} => chrome
(didier) - {e2337727-f9c9-411b-929e-287584341d1a} => lincomp


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Default_search_url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="https://www.msn.com/fr-fr"
"Search Bar"="http://www.bing.com/spresults.aspx"


--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !


1 - "C:\ToolBar SD\TB_1.txt" - 03/02/2009|17:27 - Option : [1]

-----------\\ Fin du rapport a 17:27:58,64


encore merci lyonnais92

contenu du 2éme rapport toolbar , je fais la suite aprés


-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : didier ( Administrator )
BOOT : Normal boot
Antivirus : ESET Smart Security 3.0 3.0 (Activated)
Firewall : Pare-feu personnel d'ESET 3.0.650.0 (Activated)
C:\ (Local Disk) - NTFS - Total:149 Go (Free:0 Go)
D:\ (CD or DVD)
E:\ (Local Disk) - NTFS - Total:465 Go (Free:0 Go)
F:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( 03/02/2009|17:39 )

-----------\\ SUPPRESSION

Supprime! - C:\Program Files\Multi_Media\tbMult.dll
Supprime! - C:\Program Files\Multi_Media

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ Extensions

(didier) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar
(didier) - {99B98C2C-7274-45a3-A640-D9DF1A1C8460} => cookieculler
(didier) - {AE93811A-5C9A-4d34-8462-F7B864FC4696} => stumbleupon
(didier) - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} => adblockplus
(didier) - {D2A6A719-7CBC-4594-85FD-C36AD881424F} => blueorganizer
(didier) - {DDC359D1-844A-42a7-9AA1-88A850A938A8} => chrome
(didier) - {e2337727-f9c9-411b-929e-287584341d1a} => lincomp


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Default_search_url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="https://www.msn.com/fr-fr/"
"Search Bar"="http://www.bing.com/spresults.aspx"


--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !


1 - "C:\ToolBar SD\TB_1.txt" - 03/02/2009|17:27 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 03/02/2009|17:40 - Option : [2]

-----------\\ Fin du rapport a 17:40:19,03



à tout de suite

pardon mais un glisser déposer , c'est quoi ?
j'suis un peut bête , encore des séquelles

rapport de combofix

ComboFix 09-02-02.04 - didier 2009-02-03 17:59:56.3 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.3.1252.1.1036.18.894.458 [GMT 1:00]
Lancé depuis: c:\documents and settings\didier\Bureau\ComboFix.exe
Commutateurs utilisés :: c:\documents and settings\didier\Bureau\CFscript.txt
AV: Bitdefender Antivirus *On-access scanning disabled* (Updated)
AV: ESET Smart Security 3.0 *On-access scanning disabled* (Updated)
FW: Bitdefender Firewall *enabled*
FW: Pare-feu personnel d'ESET *enabled*
* Un nouveau point de restauration a été créé

FILE ::
c:\windows\system32\ckkcftweinm.exe
c:\windows\system32\gsnd.exe
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\ckkcftweinm.exe
c:\windows\system32\gsnd.exe

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-01-03 au 2009-02-03 ))))))))))))))))))))))))))))))))))))
.

2009-02-03 17:26 . 2009-02-03 17:40 <REP> d-------- C:\ToolBar SD
2009-02-03 10:21 . 2009-02-03 10:29 <REP> d-------- c:\program files\RogueRemover FREE
2009-02-02 16:12 . 2009-02-02 16:13 <REP> d-------- C:\rsit
2009-02-01 18:53 . 2009-02-01 20:01 <REP> d-------- c:\program files\Ad-remover
2009-02-01 14:37 . 2003-05-20 18:11 1,667,584 --a------ c:\windows\MediaDico12Dll.dll
2009-02-01 14:37 . 2002-12-26 15:25 208,985 --a------ c:\windows\RACHook12.dll
2009-02-01 14:37 . 2002-12-26 15:31 199,680 --a------ c:\windows\MediaR12.dll
2009-02-01 14:37 . 2009-02-01 14:38 1,967 --a------ c:\windows\MediaR12.ini
2009-02-01 14:36 . 2009-02-01 14:36 <REP> d-------- c:\program files\Micro Application
2009-02-01 14:35 . 2009-02-01 14:35 <REP> d-------- c:\documents and settings\didier\WINDOWS
2009-01-31 21:07 . 2009-01-31 21:08 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware
2009-01-31 21:07 . 2009-01-14 16:11 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2009-01-31 21:07 . 2009-01-14 16:11 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2009-01-31 14:43 . 2009-01-31 14:43 <REP> d-------- c:\program files\Fichiers communs\BinarySense
2009-01-31 14:43 . 2009-01-31 14:43 <REP> d-------- c:\program files\BinarySense
2009-01-31 13:30 . 2009-01-31 13:30 <REP> d-------- c:\documents and settings\didier\Application Data\uniblue
2009-01-31 11:43 . 2009-02-03 14:18 <REP> d-------- c:\program files\Trend Micro
2009-01-30 18:57 . 2009-01-30 18:59 <REP> d-------- c:\program files\RegCleaner
2009-01-28 19:05 . 2009-01-28 19:05 <REP> d-------- c:\program files\ADSL Autoconnect
2009-01-28 16:09 . 2009-01-28 16:17 <REP> d-------- c:\documents and settings\sauvegardes
2009-01-28 14:28 . 2009-02-03 15:45 81,984 --a------ c:\windows\system32\bdod.bin
2009-01-28 14:17 . 2009-02-03 15:40 121 --a------ c:\windows\bdagent.INI
2009-01-28 14:09 . 2009-02-03 15:46 <REP> d-------- c:\program files\BitDefender
2009-01-28 14:08 . 2009-02-03 15:46 <REP> d-------- c:\program files\Fichiers communs\BitDefender
2009-01-28 11:32 . 2006-06-23 18:35 44,288 --a------ c:\windows\system32\drivers\acshield.sys
2009-01-28 10:00 . 2009-01-28 11:04 <REP> d-------- C:\My Games
2009-01-28 10:00 . 2009-01-28 10:00 <REP> d-------- c:\documents and settings\All Users\Application Data\Realv1005
2009-01-28 09:58 . 2009-01-28 11:05 <REP> d-------- C:\My Download Files
2009-01-28 09:50 . 2009-01-28 09:50 774,144 --a------ c:\program files\RngInterstitial.dll
2009-01-27 22:50 . 2009-01-31 12:34 <REP> d-------- c:\program files\DAEMON Tools Lite
2009-01-26 11:25 . 2009-01-28 13:58 1,371 --a------ c:\windows\system32\%LocalXml%
2009-01-25 14:48 . 2009-01-25 14:48 <REP> d-------- c:\documents and settings\LocalService\Application Data\VCOM
2009-01-25 14:48 . 2009-01-25 14:48 <REP> d-------- c:\documents and settings\All Users\Application Data\BVRP Software
2009-01-25 14:47 . 2009-01-25 14:47 <REP> dr-hs---- C:\_Backup.RC
2009-01-25 14:47 . 2009-01-25 16:56 <REP> d--h----- C:\_Backup
2009-01-25 14:46 . 2009-01-25 14:46 <REP> d-------- c:\program files\VCOM
2009-01-25 14:46 . 2009-01-25 14:46 <REP> d-------- c:\documents and settings\didier\Application Data\VCOM
2009-01-24 16:31 . 2009-01-24 16:31 <REP> d-------- c:\documents and settings\All Users\Application Data\JollyBear
2009-01-23 15:54 . 2009-01-23 15:54 <REP> d-------- c:\documents and settings\didier\Application Data\DMV Technologies
2009-01-23 15:38 . 2009-01-30 17:47 <REP> d-------- c:\program files\adslTV
2009-01-23 15:36 . 2009-01-23 15:36 <REP> d-------- c:\program files\Dusco
2009-01-23 15:36 . 2009-01-23 15:57 311,586 --a------ c:\windows\SesamTV Media Center Uninstaller.exe
2009-01-23 15:34 . 2009-01-23 15:34 <REP> d-------- c:\windows\MaxTV
2009-01-23 15:34 . 2009-01-23 15:34 <REP> d-------- c:\program files\DMV
2009-01-23 15:19 . 2009-01-23 15:19 <REP> d-------- c:\program files\WorldTV_Bar
2009-01-23 15:18 . 2009-01-31 11:32 <REP> d-------- c:\program files\Gogglebox TV
2009-01-23 15:00 . 2006-06-29 13:07 14,048 --------- c:\windows\system32\spmsg2.dll
2009-01-23 14:57 . 2009-01-23 15:00 <REP> d-------- c:\windows\system32\XPSViewer
2009-01-23 14:57 . 2009-01-23 14:57 <REP> d-------- c:\program files\Reference Assemblies
2009-01-23 14:57 . 2009-01-23 14:57 <REP> d-------- c:\program files\MSBuild
2009-01-23 14:57 . 2009-01-23 14:57 <REP> d-------- C:\4679133918c00f8c9bf2babaa72aed
2009-01-23 14:57 . 2008-07-06 13:06 1,676,288 --------- c:\windows\system32\xpssvcs.dll
2009-01-23 14:57 . 2008-07-06 13:06 1,676,288 -----c--- c:\windows\system32\dllcache\xpssvcs.dll
2009-01-23 14:57 . 2008-07-06 11:50 597,504 -----c--- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2009-01-23 14:57 . 2008-07-06 13:06 575,488 --------- c:\windows\system32\xpsshhdr.dll
2009-01-23 14:57 . 2008-07-06 13:06 575,488 -----c--- c:\windows\system32\dllcache\xpsshhdr.dll
2009-01-23 14:57 . 2008-07-06 13:06 117,760 --------- c:\windows\system32\prntvpt.dll
2009-01-23 14:57 . 2008-07-06 13:06 89,088 -----c--- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2009-01-22 14:57 . 2009-01-22 14:57 <REP> d-------- c:\windows\33ED850653E64385B4A27E013EAF9C1A.TMP
2009-01-22 14:54 . 2009-01-22 14:54 <REP> d-------- c:\documents and settings\All Users\Application Data\BufferZone
2009-01-21 14:15 . 1996-08-20 20:37 15,840 --a------ c:\windows\system32\Machnm1.exe
2009-01-21 14:15 . 2005-09-25 16:37 5,632 --a------ c:\windows\system32\Machnm64.sys
2009-01-21 14:15 . 2009-01-21 14:15 3,120 --a------ c:\windows\system32\118290.54
2009-01-21 14:15 . 2009-01-21 14:15 3,120 --a------ c:\windows\118294.78
2009-01-21 14:15 . 2003-08-13 00:27 2,304 --a------ c:\windows\system32\Machnm32.sys
2009-01-21 14:04 . 2009-01-21 14:04 <REP> d-------- c:\program files\Conduit
2009-01-21 11:04 . 2009-01-21 11:02 102,664 --a------ c:\windows\system32\drivers\tmcomm.sys
2009-01-21 11:02 . 2009-01-21 11:38 <REP> d-------- c:\documents and settings\didier\.housecall6.6
2009-01-20 21:51 . 2009-02-03 17:23 <REP> d-------- c:\program files\eMule
2009-01-20 20:56 . 2008-03-03 18:21 568 --ah----- c:\windows\nod32fixtemdono.reg
2009-01-20 20:55 . 2009-01-20 20:55 <REP> d-------- c:\program files\ESET
2009-01-19 14:11 . 2008-12-11 13:31 27,904 --a------ c:\windows\system32\uxtuneup.dll
2009-01-17 19:17 . 2009-01-17 19:17 <REP> d-------- c:\program files\Webroot
2009-01-17 19:17 . 2009-01-17 19:17 <REP> d-------- c:\documents and settings\All Users\Application Data\Webroot
2009-01-17 18:32 . 2009-01-17 19:17 <REP> d-------- c:\documents and settings\didier\Application Data\Webroot
2009-01-17 15:54 . 2007-10-03 09:33 194,888 --a------ c:\windows\Unwash6.exe
2009-01-17 10:11 . 2009-01-17 10:11 <REP> d--hs---- C:\found.000
2009-01-16 19:39 . 2009-01-16 19:39 <REP> d-------- c:\windows\system32\NtmsData
2009-01-16 17:16 . 2009-01-19 14:11 360,192 --a------ c:\windows\system32\TuneUpDefragService.exe
2009-01-16 17:07 . 2009-01-16 17:07 410,984 --a------ c:\windows\system32\deploytk.dll
2009-01-16 15:44 . 2009-01-16 15:44 <REP> d-------- c:\windows\Sun
2009-01-16 15:44 . 2009-01-19 18:22 <REP> d-------- C:\FlySuite
2009-01-16 15:31 . 2009-01-16 15:31 <REP> d-------- c:\documents and settings\didier\Application Data\OpenOffice.org
2009-01-16 15:26 . 2009-01-22 08:33 <REP> d-------- c:\program files\OpenOffice.org 3
2009-01-16 15:26 . 2009-01-16 17:07 73,728 --a------ c:\windows\system32\javacpl.cpl
2009-01-16 15:25 . 2009-01-16 17:07 <REP> d-------- c:\program files\Java
2009-01-16 15:25 . 2009-01-16 15:25 <REP> d-------- c:\program files\Fichiers communs\Java
2009-01-16 14:56 . 2009-01-16 14:56 <REP> d-------- c:\documents and settings\didier\Application Data\Windows Search
2009-01-16 14:55 . 2009-01-16 14:55 <REP> d-------- c:\documents and settings\didier\Application Data\Windows Desktop Search
2009-01-16 14:54 . 2009-01-16 14:54 <REP> d-------- c:\program files\Windows Desktop Search
2009-01-16 14:54 . 2008-03-07 18:02 192,000 -----c--- c:\windows\system32\dllcache\offfilt.dll
2009-01-16 14:54 . 2008-03-07 18:02 98,304 -----c--- c:\windows\system32\dllcache\nlhtml.dll
2009-01-16 14:54 . 2008-03-07 18:02 29,696 -----c--- c:\windows\system32\dllcache\mimefilt.dll
2009-01-16 14:53 . 2009-01-16 14:53 <REP> d-------- c:\windows\system32\URTTEMP
2009-01-15 12:31 . 2009-01-15 12:31 <REP> d-------- c:\program files\MSECache
2009-01-14 11:58 . 1999-09-10 13:06 45,056 --a------ c:\windows\system32\wnaspi32.dll
2009-01-14 11:58 . 1999-09-10 13:06 25,244 --a------ c:\windows\system32\drivers\aspi32.sys
2009-01-14 11:58 . 1999-09-10 13:06 5,600 --a------ c:\windows\system\winaspi.dll
2009-01-14 11:58 . 1999-09-10 13:06 4,672 --a------ c:\windows\system\wowpost.exe
2009-01-14 11:57 . 2009-01-14 11:57 203,776 --a------ c:\windows\system32\clrviddc.dll
2009-01-13 08:47 . 2004-02-23 21:42 1,386,496 --a------ c:\windows\system32\msvbvm60.dll
2009-01-13 08:47 . 2004-03-09 01:00 1,081,616 --a------ c:\windows\system32\MSCOMCTL.OCX
2009-01-12 20:12 . 2008-02-07 17:10 <REP> d--h----- C:\ckis
2009-01-12 19:59 . 2009-01-28 14:05 <REP> d-------- c:\program files\Kaspersky Lab
2009-01-12 19:58 . 2009-01-26 11:05 <REP> d-------- c:\documents and settings\All Users\Application Data\Kaspersky Lab Setup Files
2009-01-12 18:04 . 2009-01-12 18:04 <REP> d-------- c:\documents and settings\didier\Application Data\TeamViewer
2009-01-12 17:03 . 2009-01-12 18:42 <REP> d-------- c:\program files\SpywareBlaster
2009-01-12 17:03 . 2004-02-22 23:00 119,808 --a------ c:\windows\system32\MSSTDFMT.DLL
2009-01-12 14:36 . 2009-01-12 14:36 <REP> d-------- c:\documents and settings\didier\Application Data\Grisoft
2009-01-12 14:35 . 2009-01-12 14:35 <REP> d-------- c:\documents and settings\All Users\Application Data\Grisoft
2009-01-12 12:42 . 2009-01-16 14:54 <REP> d--h----- c:\windows\system32\GroupPolicy
2009-01-11 20:02 . 2009-01-11 20:02 <REP> d-------- c:\documents and settings\didier\Application Data\Malwarebytes
2009-01-11 20:02 . 2009-01-11 20:02 <REP> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-01-11 10:46 . 2009-01-11 10:46 <REP> d-------- c:\documents and settings\All Users\Application Data\SugarGames
2009-01-06 11:22 . 2009-02-03 17:23 <REP> d-a------ c:\documents and settings\All Users\Application Data\TEMP
2009-01-06 11:01 . 2009-01-06 11:01 17,408 --a------ C:\psapi.dll
2009-01-06 10:46 . 2005-09-23 07:29 626,688 --a------ c:\windows\system32\msvcr80.dll
2009-01-06 10:45 . 2009-01-12 18:42 <REP> d-------- c:\program files\CHRYOPROD
2009-01-05 23:05 . 2009-01-05 23:05 <REP> d-------- c:\program files\IDM Computer Solutions
2009-01-05 23:05 . 2009-01-05 23:05 <REP> d-------- c:\documents and settings\didier\Application Data\IDMComp
2009-01-05 21:33 . 2009-01-12 18:01 <REP> d-------- c:\program files\Windows Live Safety Center
2009-01-05 18:54 . 2009-01-05 18:54 42 --a------ c:\windows\system32\Jiii_PNUCT.pnc
2009-01-05 18:54 . 2009-01-05 18:54 42 --a------ c:\windows\system32\AK083E209605E394C.lie
2009-01-05 18:53 . 2009-01-06 15:11 <REP> d-------- c:\program files\Perfect Uninstaller
2009-01-05 11:52 . 2009-01-24 16:31 <REP> d-------- c:\documents and settings\didier\Application Data\Zylom

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-03 10:06 --------- d-----w c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-02-02 13:16 --------- d-----w c:\program files\CCleaner
2009-01-30 13:48 --------- d-----w c:\documents and settings\didier\Application Data\vlc
2009-01-28 14:50 --------- d-----w c:\program files\Radio Fr Solo
2009-01-28 08:50 --------- d-----w c:\program files\Real
2009-01-28 08:49 --------- d-----w c:\program files\Fichiers communs\Real
2009-01-26 09:58 --------- d-----w c:\program files\MUSK Codec Pack v6
2009-01-26 09:58 --------- d-----w c:\program files\DivX
2009-01-25 16:24 --------- d-----w c:\program files\Google
2009-01-21 15:08 --------- d--h--w c:\program files\InstallShield Installation Information
2009-01-19 13:17 --------- d-----w c:\program files\TuneUp Utilities 2009
2009-01-19 13:11 603,904 ----a-w c:\windows\system32\TUProgSt.exe
2009-01-17 18:17 --------- d-----w c:\program files\Fichiers communs\Webroot Shared
2009-01-02 02:00 --------- d-----w c:\program files\MSXML 4.0
2009-01-01 13:15 --------- d-----w c:\program files\Nouvelle Cible
2009-01-01 13:07 --------- d-----w c:\documents and settings\didier\Application Data\DivX
2009-01-01 13:06 --------- d-----w c:\program files\DFX
2009-01-01 13:06 --------- d-----w c:\documents and settings\All Users\Application Data\DFX
2009-01-01 13:05 --------- d-----w c:\documents and settings\All Users\Application Data\Yahoo! Companion
2009-01-01 13:01 717,296 ----a-w c:\windows\system32\drivers\sptd.sys
2009-01-01 12:59 --------- d-----w c:\documents and settings\didier\Application Data\DAEMON Tools
2009-01-01 12:56 --------- d-----w c:\program files\Fichiers communs\Copernic
2009-01-01 12:56 --------- d-----w c:\program files\Copernic Agent
2009-01-01 12:56 --------- d-----w c:\documents and settings\didier\Application Data\Copernic
2009-01-01 12:55 --------- d-----w c:\program files\Yahoo!
2009-01-01 12:52 --------- d-----w c:\documents and settings\didier\Application Data\BSplayer PRO
2009-01-01 12:51 --------- d-----w c:\program files\Webteh
2009-01-01 12:36 --------- d-----w c:\documents and settings\didier\Application Data\ESTsoft
2009-01-01 12:35 --------- d-----w c:\program files\ESTsoft
2009-01-01 12:35 --------- d-----w c:\documents and settings\All Users\Application Data\ESTsoft
2008-12-31 22:31 --------- d-----w c:\documents and settings\didier\Application Data\Nero
2008-12-31 22:29 --------- d-----w c:\program files\Fichiers communs\Nero
2008-12-31 22:20 --------- d-----w c:\program files\Nero
2008-12-31 22:19 --------- d-----w c:\program files\Windows Sidebar
2008-12-31 22:15 --------- d-----w c:\documents and settings\All Users\Application Data\Nero
2008-12-31 16:59 --------- d-sh--w c:\documents and settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}
2008-12-31 14:04 --------- d-----w c:\program files\GameSpy Arcade
2008-12-31 14:03 --------- d-----w c:\program files\Ricochet Xtreme
2008-12-31 14:02 155,995 ----a-w c:\windows\java\Packages\[u]0/uRRL79FF.ZIP
2008-12-31 14:02 --------- d-----w c:\program files\ReflexiveArcade
2008-12-31 14:01 --------- d-----w c:\program files\WildTangent
2008-12-31 13:58 --------- d-----w c:\program files\Fichiers communs\Logitech
2008-12-31 13:57 --------- d-----w c:\program files\Logitech
2008-12-31 13:51 --------- d-----w c:\program files\ArcSoft
2008-12-31 11:48 --------- d-----w c:\program files\Fichiers communs\Adobe
2008-12-31 10:32 --------- d-----w c:\program files\Windows Live
2008-12-31 10:32 --------- d-----w c:\program files\Microsoft Silverlight
2008-12-31 10:30 --------- d-----w c:\program files\Microsoft Sync Framework
2008-12-31 10:29 --------- d-----w c:\program files\Microsoft SQL Server Compact Edition
2008-12-31 10:28 --------- d-----w c:\program files\Windows Live SkyDrive
2008-12-31 10:28 --------- d-----w c:\program files\Microsoft
2008-12-31 10:20 --------- d-----w c:\program files\Fichiers communs\Windows Live
2008-12-31 10:16 --------- d-----w c:\documents and settings\didier\Application Data\MSNInstaller
2008-12-31 10:13 --------- d-----w c:\documents and settings\didier\Application Data\InterTrust
2008-12-31 10:07 --------- d-----w c:\program files\Fichiers communs\DFX
2008-12-31 10:02 --------- d-----w c:\program files\Lavalys
2008-12-31 10:01 --------- d-----w c:\program files\Easy CD-DA Extractor 10
2008-12-31 09:24 --------- d-----w c:\program files\EPSON
2008-12-31 09:23 --------- d-----w c:\program files\Smart Panel
2008-12-31 09:23 --------- d-----w c:\program files\Fichiers communs\Python
2008-12-31 09:20 39,936 ----a-w c:\windows\system32\drivers\CDAC11BA.EXE
2008-12-31 09:20 --------- d-----w c:\documents and settings\didier\Application Data\ABBYY
2008-12-31 09:19 --------- d-----w c:\program files\ABBYY
2008-12-30 20:19 --------- d-----w c:\program files\aMSN
2008-12-30 20:13 --------- d-----w c:\program files\VideoLAN
2008-12-30 19:42 36,734 ----a-w c:\windows\system32\OggDSuninst.exe
2008-12-30 19:42 --------- d-----w c:\program files\ffdshow
2008-12-30 19:41 --------- d-----w c:\program files\On2 Technologies
2008-12-30 19:41 --------- d-----w c:\program files\Media Player Classic
2008-12-30 19:41 --------- d-----w c:\program files\Fichiers communs\InstallShield
2008-12-30 19:41 --------- d-----w c:\program files\3ivx
2008-12-30 19:41 --------- d-----w c:\documents and settings\All Users\Application Data\Apple Computer
2008-12-30 19:34 --------- d-----w c:\program files\Fichiers communs\xing shared
2008-12-30 19:17 --------- d-----w c:\documents and settings\didier\Application Data\TuneUp Software
2008-12-30 19:16 --------- d-----w c:\documents and settings\All Users\Application Data\TuneUp Software
2008-12-30 19:05 --------- d-----w c:\documents and settings\All Users\Application Data\NVIDIA
2008-12-30 19:03 315,392 ----a-w c:\windows\HideWin.exe
2008-12-30 19:03 --------- d-----w c:\program files\Realtek
2008-12-30 18:53 --------- d-----w c:\documents and settings\didier\Application Data\ESET
2008-12-30 18:52 --------- d-----w c:\documents and settings\All Users\Application Data\ESET
2008-12-30 18:43 --------- d-----w c:\program files\microsoft frontpage
2008-12-30 18:42 --------- d-----w c:\program files\Services en ligne
2008-12-11 10:57 333,952 ----a-w c:\windows\system32\drivers\srv.sys
2008-12-08 16:01 55,136 ----a-w c:\windows\system32\drivers\fssfltr_tdi.sys
2008-12-04 23:11 308,584 ----a-w c:\windows\WLXPGSS.SCR
2008-12-02 21:37 49,480 ----a-w c:\windows\system32\sirenacm.dll
2008-11-21 21:47 524,288 ----a-w c:\windows\system32\DivXsm.exe
2008-11-21 21:47 3,596,288 ----a-w c:\windows\system32\qt-dx331.dll
2008-11-21 21:47 129,784 ------w c:\windows\system32\pxafs.dll
2008-11-21 21:47 120,056 ------w c:\windows\system32\pxcpyi64.exe
2008-11-21 21:47 118,520 ------w c:\windows\system32\pxinsi64.exe
2008-11-21 21:46 200,704 ----a-w c:\windows\system32\ssldivx.dll
2008-11-21 21:46 1,044,480 ----a-w c:\windows\system32\libdivx.dll
2008-11-21 21:44 161,096 ----a-w c:\windows\system32\DivXCodecVersionChecker.exe
2008-11-21 21:44 12,288 ----a-w c:\windows\system32\DivXWMPExtType.dll
.

((((((((((((((((((((((((((((( snapshot@2009-02-03_15.22.38.79 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-02-03 14:50:14 10,134 ----a-r c:\windows\Installer\{7BC7FB09-E69D-427B-97D0-BDD48B045F5E}\callmsi.exe
+ 2009-02-03 14:50:14 140,544 ----a-r c:\windows\Installer\{7BC7FB09-E69D-427B-97D0-BDD48B045F5E}\egui.exe
+ 2008-03-13 15:43:42 40,456 ----a-w c:\windows\system32\drivers\eamon.sys
+ 2008-03-13 15:44:36 29,704 ----a-w c:\windows\system32\drivers\easdrv.sys
+ 2008-03-13 15:52:12 71,176 ----a-w c:\windows\system32\drivers\epfw.sys
+ 2008-03-13 15:52:16 30,728 ----a-w c:\windows\system32\drivers\epfwndis.sys
+ 2008-03-13 15:52:16 54,280 ----a-w c:\windows\system32\drivers\epfwtdi.sys
+ 2009-02-03 16:22:05 16,384 ----atw c:\windows\Temp\Perflib_Perfdata_194.dat
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{44c0b463-5a8a-452c-8e72-dc751dac6ec1}"= "c:\program files\WorldTV_Bar\tbWorl.dll" [2007-10-17 1498136]

[HKEY_CLASSES_ROOT\clsid\{44c0b463-5a8a-452c-8e72-dc751dac6ec1}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{44c0b463-5a8a-452c-8e72-dc751dac6ec1}]
2007-10-17 10:41 1498136 --a------ c:\program files\WorldTV_Bar\tbWorl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{44c0b463-5a8a-452c-8e72-dc751dac6ec1}"= "c:\program files\WorldTV_Bar\tbWorl.dll" [2007-10-17 1498136]

[HKEY_CLASSES_ROOT\clsid\{44c0b463-5a8a-452c-8e72-dc751dac6ec1}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{44C0B463-5A8A-452C-8E72-DC751DAC6EC1}"= "c:\program files\WorldTV_Bar\tbWorl.dll" [2007-10-17 1498136]

[HKEY_CLASSES_ROOT\clsid\{44c0b463-5a8a-452c-8e72-dc751dac6ec1}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HDDtemp4"="c:\program files\BinarySense\HDDTemp4\\hddtemp4" [X]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2008-12-02 3882312]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"RegistryMechanic"="c:\program files\Registry Mechanic\RegMech.exe" [2008-07-08 2828184]
"Window Washer"="c:\program files\Webroot\Washer\wwDisp.exe" [2007-10-03 1206600]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-01-25 39408]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2008-07-24 490952]
"MediaDico"="c:\program files\Micro Application\12 DICOS Indispensables\LanceMediaDICO12.exe" [2002-12-24 253952]
"eMuleAutoStart"="c:\program files\eMule\emule.exe" [2008-08-01 5480448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-12-30 185872]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-01-16 136600]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-31 7634944]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-31 86016]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2008-03-13 1443072]
"SkyTel"="SkyTel.EXE" [2007-06-15 c:\windows\SkyTel.exe]
"RTHDCPL"="RTHDCPL.EXE" [2007-07-05 c:\windows\RTHDCPL.exe]
"nwiz"="nwiz.exe" [2006-10-31 c:\windows\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\didier\Menu D‚marrer\Programmes\D‚marrage\
MaxTV.lnk - c:\program files\DMV\MaxTV4\maxtv.exe [2008-11-10 5486001]
Outil de notification Live Search.lnk - c:\documents and settings\didier\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe [2008-12-31 143360]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe [2008-05-26 123904]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2008-05-26 304128]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.DIV3"= DivXc32.dll
"vidc.DIV4"= DivXc32f.dll
"msacm.divxa32"= DivXa32.acm
"vidc.3IV2"= 3ivxVfWCodec.dll
"msacm.ac3filter"= ac3filter.acm

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=

R2 ADSLAutoconnect;ADSLAutoconnect;c:\program files\ADSL Autoconnect\ADSL Autoconnect.exe [2009-01-28 446464]
R2 ekrn;Eset Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2008-03-13 472320]
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2008-12-31 55136]
R2 HDD & SSD access service;HDD & SSD access service;c:\program files\Fichiers communs\BinarySense\disksvc.exe [2009-01-16 204336]
R2 SeaPort;SeaPort;c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2008-12-04 226640]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service;c:\windows\system32\TUProgSt.exe [2008-12-31 603904]
R2 wwEngineSvc;Window Washer Engine;c:\program files\Webroot\Washer\WasherSvc.exe [2009-01-17 598856]
R3 fhlppppoe;PPPOE/ADSL miniport;c:\windows\system32\drivers\fhlpppoe.sys [2008-12-30 49200]
S2 NOD32FiXTemDono;Eset Nod32 Boot;c:\windows\system32\regedt32.exe [2002-08-30 3584]
S3 fsssvc;Windows Live Contrôle parental;c:\program files\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bdx REG_MULTI_SZ scan

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Contenu du dossier 'Tâches planifiées'

2009-02-03 c:\windows\Tasks\Maintenance en 1 clic.job
- c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-12 15:04]
.
.
------- Examen supplémentaire -------
.
mWindow Title =
IE: Chercher avec Copernic Agent - c:\program files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_MENU_SEARCHEXT
TCP: {1ACBC200-693E-4B7A-81DD-B7BB4B49E6A1} = 84.103.237.140 86.64.145.140
Handler: copernicagent - {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} - c:\progra~1\COPERN~1\COPERN~1.DLL
Handler: copernicagentcache - {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} - c:\progra~1\COPERN~1\COPERN~1.DLL
DPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab
DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game02.zylom.com/activex/zylomgamesplayer.cab
FF - ProfilePath - c:\documents and settings\didier\Application Data\Mozilla\Firefox\Profiles\jsi9cfr8.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF - prefs.js: browser.search.selectedEngine - DAEMON Search
FF - prefs.js: browser.startup.homepage - hxxp://www.daemon-search.com/startpage
FF - prefs.js: keyword.URL - hxxp://search.live.com/results.aspx?mkt=fr-FR&FORM=MIMWA5&q=
FF - component: c:\program files\Real\RealPlayer\browserrecord\components\nprpbrowserrecordplugin.dll
FF - plugin: c:\documents and settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npgcplug.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npracplug.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npzylomgamesplayer.dll
FF - plugin: c:\program files\Real\RealArcade\Plugins\Mozilla\npracplug.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll

---- PARAMETRES FIREFOX ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("pref.browser.homepage.disable_button.bookmark_page", false);
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("pref.browser.homepage.disable_button.current_page", false);
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("pref.browser.homepage.disable_button.restore_default", false);
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("browser.places.importBookmarksHTML", true);
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("browser.places.importDefaults", false);
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("browser.search.selectedEngine", "xeoo.com");
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("keyword.URL", "http://xeoo.com/?p=url&a=firefox&k=");
c:\program files\Mozilla Firefox\defaults\profile\prefs.js - user_pref("browser.startup.homepage", "http://www.xeoo.com/?p=h&a=firefox");
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-03 18:01:06
Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
Heure de fin: 2009-02-03 18:02:22
ComboFix-quarantined-files.txt 2009-02-03 17:02:20
ComboFix2.txt 2009-02-03 14:36:36
ComboFix3.txt 2009-02-03 14:23:34

Avant-CF: 764 325 888 octets libres
Après-CF: 755,462,144 octets libres

388 --- E O F --- 2009-01-16 11:16:31

je fais ensuite hijackthis

@+

cela vous donne quoi ?

sinon une personne me demande de passer via un site de dialogue genre msn , car il recoit des mails en quantité industrielle

excusez-moi , mais je suis handicapé avec de lours séquelles suite a 2 A.V.C

merci d'accepter mes sincères excuses et merci de votre compréhension , je n'est pas les adresses msn de mes contacts , excusez-moi pour ces éventuelles nuisances

PS: je passe par ce site pour de l'aide , n'est-ce pas fais pour ?

encore pardon de tout ces mails que vous recevez

mdr et je suis poli parce que le ton pourrait monter assez vite.

Commence par regarder soigneusement si le courriel que tu reçois ne te dit pas aussi comment il faut faire pour arrêter qu'un courriel te soit envoyé à chaque message.

Sinon, regarde sur le site si ça n'est pas indiqué quelque part.

j'ai écris à lyonnais92 pour lui en faire part , j'attend ça réponse

sinon oui , c'est bien de l'entraide que je sollicite mais apparament mon problème est vraiment récurant , il dur , c'est à en devenir fou , je vous jure

sinon mille pardon , je m'excuse vraiment sincérement pour ces désagrément

Je pense qu'il suffit d'aller a droite de ton écran dans la colonne marquée "MES INTERVENTIONS" et de cliquer sur la croix noire/rouge en face de "18:48 quelqfait planté mon pc à distance (zebulon)"

La plupart des interventions d'aides se passent entre 2 personnes, bizarre de découvrir cela avec 2600 messages au compteur !

je vais essayé de voir cela avec lyonnais92 en dehors de ce site si je peux

encore pardon , je pense pouvoir vous comprendre , vraiment désolé

dois-je me résigné ou peut-être quelqu'un pourras m'aider via msn ou via un autre site , car je suis déjà bloqué chez moi ( à cause de mes A.V.C )alors si mon pc ne fonctionne plus comme il faut , je suis vraiment foutu , bon à me coller une balle , il faudrait encore que je puisse le faire ça aussi.
y'auras t'il une âme charitable et compréhensive qui accepteras ???

re ,

ce fut long , mais ça y est , j'ai fini , voila le rapport de malwarebyts'

Malwarebytes' Anti-Malware 1.33
Version de la base de données: 1721
Windows 5.1.2600 Service Pack 3

03/02/2009 21:00:37
mbam-log-2009-02-03 (21-00-37).txt

Type de recherche: Examen complet (C:\|D:\|F:\|)
Eléments examinés: 105779
Temps écoulé: 34 minute(s), 45 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\Program Files\eMule\Uninstall.exe (Trojan.Downloader) -> Quarantined and deleted successfully.

bonjour ,
je vais continuer mais auparavant je dois vous faire par que mon pc a encore planté cette nuit à 4h10 , je m'en suis rendu compte vers 5h , quelle joie de ce lever à cette heure pour relancer mon modem .

je suis presque certains que cela viens de l'exterieur de chez moi , peut-être avec un aimant puissant à proximité de chez moi ou certaines ondes ???

problème toujours en application et fort embêtant , pire que ça , nuisible et nocif .

@+

je viens d'essayer de taper combofix /u dans exécuter , cela ne marche pas , je lai pourtant bien tapé et est remis un raccourci combofix sur mon bureau , je fais donc toolscleaner , bizarre pour combofix , non , ne marche t'il plus ???

bonjour ,
non mon installation électrique date , mais un ami va me changer ça bientôt en m'aidant à installer ma neufbox , dans 10 à 15 jours maxi
ça pourrait venir de ça ?

En plus des virus, oui c'est possible :) On t'aide pour les virus peut-être présents sur ton ordinateur ... merci notamment à Lyonnais92 :) ! Car les ordinateurs n'aiment pas les micros-coupures électriques ou les défauts d'alimentations électriques. merci beaucoup - "Info ReactOS®" -