Bonjour, tous le monde. Je suis de renouveau ici car j'ai été infecter et la c un virus qui ce cache car meme avec le logiciel spybot et findykill il la pas trouver le seul logiciel qui me dit qu'il y a une infection c'est systeme mechanic professional il me fais qu'il y a une erreur critique cause d'un spyware et l'ordi doit obligatoiremment redemarrer. donc voila j'aimerai comment pouvoir m'en debarassé. Merci de votre aide =)

J'ai été infecter !!!

Réponse 41 / 104

christorock Messages postés 558 Date d'inscription mercredi 1 octobre 2008 Statut Membre Dernière intervention 25 mai 2013 10
24 févr. 2009 à 18:40

d'accord ok

Réponse 42 / 104

christorock Messages postés 558 Date d'inscription mercredi 1 octobre 2008 Statut Membre Dernière intervention 25 mai 2013 10
24 févr. 2009 à 19:11

Voila C'est bon

ComboFix 09-02-21.01 - christopher 2009-02-24 19:02:03.1 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6001.1.1252.1.1036.18.766.214 [GMT 1:00]
Lancé depuis: c:\users\christopher\Documents\Downloads\ComboFix.exe
AV: BitDefender Antivirus *On-access scanning enabled* (Updated)
FW: BitDefender Firewall *enabled*
* Un nouveau point de restauration a été créé
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\users\christopher\AppData\Roaming\Microsoft\ieudinit.exe
c:\windows\system32\404Fix.exe
c:\windows\system32\Agent.OMZ.Fix.exe
c:\windows\system32\dumphive.exe
c:\windows\system32\IEDFix.C.exe
c:\windows\system32\IEDFix.exe
c:\windows\system32\mfc45.dll
c:\windows\system32\o4Patch.exe
c:\windows\system32\Process.exe
c:\windows\system32\SrchSTS.exe
c:\windows\system32\VACFix.exe
c:\windows\system32\VCCLSID.exe
c:\windows\system32\WS2Fix.exe

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-01-24 au 2009-02-24 ))))))))))))))))))))))))))))))))))))
.

2009-02-23 20:18 . 2004-04-30 09:37 160,640 --a------ c:\windows\System32\drivers\a347bus.sys
2009-02-23 20:18 . 2004-04-30 09:33 5,248 --a------ c:\windows\System32\drivers\a347scsi.sys
2009-02-22 17:20 . 2009-02-22 18:03 <REP> d-------- c:\users\christopher\DoctorWeb
2009-02-22 16:31 . 2009-02-22 16:32 <REP> d-------- C:\rsit
2009-02-21 15:27 . 2009-02-21 15:27 26 --a------ c:\users\christopher\fichier.bat
2009-02-20 22:00 . 2009-02-20 22:00 406 --a------ c:\windows\System32\ioloBootDefrag.cfg
2009-02-20 21:59 . 2009-02-20 21:59 <REP> d-------- c:\program files\iolo
2009-02-20 21:59 . 2008-09-25 11:07 922,464 --a------ c:\windows\System32\Incinerator.dll
2009-02-20 21:59 . 2008-09-24 10:32 28,672 --a------ c:\windows\System32\iolobtdfg.exe
2009-02-20 21:59 . 2008-09-03 10:41 12,800 --a------ c:\windows\System32\elrawdsk.sys
2009-02-20 21:59 . 2008-04-17 10:45 9,341 --a------ c:\windows\System32\drivers\filedisk.sys
2009-02-20 21:59 . 2008-09-09 16:45 8,192 --a------ c:\windows\System32\smrgdf.exe
2009-02-20 17:37 . 2008-09-03 10:41 12,800 --a------ c:\windows\System32\drivers\elrawdsk.sys
2009-02-20 16:06 . 2009-02-24 08:10 <REP> d-a------ c:\users\All Users\TEMP
2009-02-20 16:06 . 2009-02-24 08:10 <REP> d-a------ c:\programdata\TEMP
2009-02-16 01:21 . 2009-02-20 22:30 <REP> d-------- c:\users\christopher\AppData\Roaming\iolo
2009-02-16 01:21 . 2009-02-20 22:08 <REP> d-------- c:\users\All Users\iolo
2009-02-16 01:21 . 2009-02-20 22:08 <REP> d-------- c:\programdata\iolo
2009-02-14 23:11 . 2009-02-22 16:00 <REP> d-------- c:\program files\FindyKill
2009-02-14 20:51 . 2009-02-14 20:51 104,328 --a------ c:\windows\System32\drivers\bdfndisf.sys
2009-02-14 16:43 . 2009-02-05 22:06 51,792 --a------ c:\windows\System32\drivers\aswMonFlt.sys
2009-02-14 13:44 . 2009-02-14 13:44 <REP> d-------- c:\users\christopher\AppData\Roaming\InstallShield
2009-02-14 11:59 . 2009-02-23 21:57 171,313,164 --a------ c:\windows\MEMORY.DMP
2009-02-14 00:02 . 2008-12-05 05:32 428,544 --a------ c:\windows\System32\EncDec.dll
2009-02-14 00:02 . 2008-12-05 05:32 293,376 --a------ c:\windows\System32\psisdecd.dll
2009-02-14 00:02 . 2008-12-05 05:31 217,088 --a------ c:\windows\System32\psisrndr.ax
2009-02-14 00:02 . 2008-12-05 05:31 177,664 --a------ c:\windows\System32\mpg2splt.ax
2009-02-14 00:02 . 2008-12-05 05:31 80,896 --a------ c:\windows\System32\MSNP.ax
2009-02-12 16:36 . 2009-02-12 16:36 <REP> d-------- c:\users\All Users\Electronic Arts
2009-02-12 16:36 . 2009-02-12 16:36 <REP> d-------- c:\programdata\Electronic Arts
2009-02-11 22:16 . 2009-01-15 04:36 1,383,424 --a------ c:\windows\System32\mshtml.tlb
2009-02-11 22:16 . 2009-01-15 07:11 827,392 --a------ c:\windows\System32\wininet.dll
2009-02-11 02:35 . 2009-02-11 02:35 <REP> d-------- c:\users\All Users\WindowsSearch
2009-02-11 02:35 . 2009-02-11 02:35 <REP> d-------- c:\programdata\WindowsSearch
2009-02-11 00:35 . 2009-02-11 00:35 <REP> d-------- c:\users\christopher\AppData\Roaming\Atari
2009-02-10 23:19 . 2009-02-10 23:19 <REP> d-------- c:\users\christopher\AppData\Roaming\ubi.com
2009-02-10 23:19 . 2009-02-10 23:19 <REP> d-------- c:\program files\ubi.com
2009-02-10 23:19 . 2009-02-10 23:19 <REP> d-------- c:\program files\Common Files\PocketSoft
2009-02-10 23:19 . 2002-02-27 18:50 197,120 --a------ c:\windows\patchw32.dll
2009-02-10 23:16 . 2004-08-04 07:00 506,368 --a------ c:\windows\System32\msxml.dll
2009-02-10 22:58 . 2009-02-10 22:58 <REP> d-------- c:\users\christopher\AppData\Roaming\DWGeditor
2009-02-10 22:57 . 2009-02-10 22:58 <REP> d-------- c:\program files\DWGeditor
2009-02-10 22:55 . 2009-02-10 22:55 23 --ah----- c:\windows\yacht.xws
2009-02-10 22:43 . 2009-02-10 22:43 <REP> d-------- c:\program files\AGEIA Technologies
2009-02-10 22:42 . 2009-02-10 23:04 <REP> d-------- c:\users\All Users\SolidWorks
2009-02-10 22:42 . 2009-02-10 23:04 <REP> d-------- c:\programdata\SolidWorks
2009-02-10 22:37 . 2009-02-10 22:44 <REP> d-------- c:\program files\Common Files\SolidWorks Shared
2009-02-10 22:37 . 2009-02-10 22:43 <REP> d-------- c:\program files\Common Files\eDrawings2008
2009-02-10 22:37 . 2009-02-10 22:37 0 --a------ c:\windows\eDrawingOfficeAutomator.INI
2009-02-10 15:57 . 2009-02-10 15:57 <REP> d-------- c:\program files\EA GAMES
2009-02-10 15:33 . 2009-02-10 15:34 <REP> d-------- c:\program files\Common Files\Gestionnaire d'installation SolidWorks
2009-02-10 15:29 . 2009-02-10 15:29 <REP> d-------- c:\windows\SolidWorks
2009-02-10 15:29 . 2009-02-24 07:47 <REP> d-------- c:\users\christopher\AppData\Roaming\IM
2009-02-07 18:51 . 2009-02-07 18:51 <REP> d-------- c:\users\All Users\PC Drivers Headquarters
2009-02-07 18:51 . 2009-02-07 18:51 <REP> d-------- c:\programdata\PC Drivers Headquarters
2009-02-07 18:47 . 2009-02-07 18:47 <REP> d-------- c:\program files\PC Drivers HeadQuarters
2009-02-04 21:00 . 2009-02-04 21:00 <REP> d-------- c:\program files\Sierra
2009-02-03 22:27 . 2009-02-10 18:02 <REP> d-------- c:\program files\MSECache
2009-02-03 20:44 . 2007-10-17 10:19 20,480 --a------ c:\windows\System32\SysRestore.dll
2009-02-01 21:22 . 2009-02-01 21:22 <REP> d-------- c:\program files\gPotato.eu
2009-01-31 13:02 . 2009-01-31 13:45 <REP> d-------- c:\users\christopher\AppData\Roaming\IMVUClient
2009-01-31 13:02 . 2009-02-15 21:00 <REP> d-------- c:\users\christopher\AppData\Roaming\IMVU
2009-01-29 13:36 . 2009-02-14 20:36 81,984 --a------ c:\windows\System32\bdod.bin
2009-01-29 13:30 . 2009-01-29 13:30 850 --a------ c:\windows\System32\ProductTweaks.xml
2009-01-29 13:30 . 2009-01-29 13:30 385 --a------ c:\windows\System32\user_gensett.xml
2009-01-29 13:25 . 2009-01-29 13:25 <REP> d-------- c:\windows\System32\logs
2009-01-29 13:24 . 2009-01-29 13:24 <REP> d-------- c:\users\christopher\AppData\Roaming\BitDefender
2009-01-29 13:24 . 2009-02-14 00:06 <REP> d-------- c:\users\All Users\BitDefender
2009-01-29 13:24 . 2009-02-14 00:06 <REP> d-------- c:\programdata\BitDefender
2009-01-29 13:24 . 2009-02-14 23:45 <REP> d-------- c:\program files\BitDefender
2009-01-29 13:22 . 2009-01-29 13:22 <REP> d-------- c:\windows\System32\URTTEMP
2009-01-29 13:20 . 2009-02-14 23:45 <REP> d-------- c:\program files\Common Files\BitDefender
2009-01-29 01:46 . 2009-01-29 01:46 <REP> d-------- c:\users\christopher\AppData\Roaming\SPAMfighter
2009-01-29 01:46 . 2009-01-29 01:46 <REP> d-------- c:\program files\Common Files\Application
2009-01-29 01:45 . 2009-02-24 07:48 <REP> d-------- c:\program files\SPAMfighter
2009-01-29 01:38 . 2009-01-29 01:38 <REP> d-------- c:\program files\Microsoft SQL Server Compact Edition
2009-01-27 21:20 . 2009-01-27 21:20 <REP> d-------- c:\program files\Common Files\Adobe AIR
2009-01-27 21:08 . 2009-02-22 20:30 <REP> d-------- c:\program files\GooglePlusVideos
2009-01-27 21:05 . 2009-01-28 21:53 <REP> d-------- c:\program files\recfree
2009-01-27 21:05 . 2009-02-23 18:12 <REP> d-------- c:\program files\EasySearch
2009-01-27 21:05 . 2009-01-27 21:05 <REP> d-------- c:\program files\Conduit
2009-01-27 20:55 . 2009-01-27 20:55 <REP> d-------- C:\MoTemp
2009-01-26 22:54 . 2009-01-26 22:54 <REP> d-------- c:\program files\7-Zip
2009-01-25 03:01 . 2009-01-22 14:28 290,816 --a------ c:\windows\System32\decdll.dll
2009-01-24 14:24 . 2009-02-18 11:17 136,888 --a------ c:\windows\System32\drivers\PnkBstrK.sys
2009-01-24 14:24 . 2009-02-18 11:17 111,928 --a------ c:\windows\System32\PnkBstrB.exe
2009-01-24 14:24 . 2009-01-24 14:24 66,872 --a------ c:\windows\System32\PnkBstrA.exe
2009-01-24 02:39 . 2009-02-13 00:58 <REP> d-------- C:\PunkBuster

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-24 17:55 --------- d-----w c:\program files\Trend Micro
2009-02-24 06:45 0 ----a-w c:\windows\system32\drivers\lvuvc.hs
2009-02-23 19:20 --------- d-----w c:\programdata\McAfee
2009-02-22 19:19 --------- d-----w c:\users\christopher\AppData\Roaming\dvdcss
2009-02-22 19:03 --------- d-----w c:\program files\Free Video Converter
2009-02-22 14:52 --------- d-----w c:\program files\MessengerDiscovery
2009-02-20 15:06 --------- d-----w c:\users\christopher\AppData\Roaming\Free Download Manager
2009-02-19 17:11 --------- d--h--w c:\program files\InstallShield Installation Information
2009-02-19 00:33 --------- d-----w c:\program files\Microsoft Games
2009-02-18 22:10 --------- d-----w c:\programdata\Spybot - Search & Destroy
2009-02-16 16:11 --------- d-----w c:\program files\Malwarebytes' Anti-Malware
2009-02-15 08:34 --------- d-----w c:\users\christopher\AppData\Roaming\SPORE
2009-02-14 12:49 --------- d-----w c:\programdata\NVIDIA
2009-02-14 00:01 --------- d-----w c:\program files\ma-config.com
2009-02-12 02:01 --------- d-----w c:\programdata\Microsoft Help
2009-02-12 02:00 --------- d-----w c:\program files\Windows Mail
2009-02-11 21:37 --------- d-----w c:\users\christopher\AppData\Roaming\SolidWorks
2009-02-11 09:19 38,496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
2009-02-11 09:19 15,504 ----a-w c:\windows\system32\drivers\mbam.sys
2009-02-07 22:27 --------- d-----w c:\program files\Messenger Plus! Live
2009-02-07 15:37 --------- d-----w c:\users\christopher\AppData\Roaming\Skype
2009-02-07 15:36 --------- d-----w c:\users\christopher\AppData\Roaming\skypePM
2009-02-06 17:46 7,764,704 ----a-w c:\windows\system32\drivers\nvlddmkm.sys
2009-02-06 17:46 4,160 ----a-w c:\windows\system32\drivers\nvBridge.kmd
2009-02-01 18:41 --------- d-----w c:\program files\TuneUp Utilities 2009
2009-01-31 20:22 --------- d-----w c:\program files\Common Files\Adobe
2009-01-31 01:45 --------- d-----w c:\program files\Common Files\PX Storage Engine
2009-01-29 00:37 --------- d-----w c:\program files\Windows Live
2009-01-29 00:35 --------- d-----w c:\programdata\WLInstaller
2009-01-18 11:36 --------- d-----w c:\program files\World of Warcraft
2009-01-17 22:35 --------- d-----w c:\programdata\Microsoft Corporation
2009-01-17 22:35 --------- d-----w c:\program files\Microsoft Windows Vista Upgrade Advisor
2009-01-17 01:00 --------- d-----w c:\program files\Qtracker
2009-01-17 00:41 --------- d-----w c:\users\christopher\AppData\Roaming\Qtracker
2009-01-15 22:05 --------- d-----w c:\program files\Free Download Manager
2009-01-14 20:47 --------- d-----w c:\programdata\Messenger Plus!
2009-01-13 20:55 --------- d-----w c:\program files\Common Files\Blizzard Entertainment
2009-01-13 20:47 --------- d-----w c:\users\christopher\AppData\Roaming\DAEMON Tools Lite
2009-01-13 20:38 --------- d-----w c:\users\christopher\AppData\Roaming\DAEMON Tools Pro
2009-01-13 20:38 --------- d-----w c:\users\christopher\AppData\Roaming\DAEMON Tools
2009-01-13 20:37 --------- d-----w c:\programdata\DAEMON Tools Lite
2009-01-13 20:37 --------- d-----w c:\program files\DAEMON Tools Lite
2009-01-13 20:34 717,296 ----a-w c:\windows\system32\drivers\sptd.sys
2009-01-13 19:58 --------- d-----w c:\program files\Common Files\Macrovision Shared
2009-01-12 21:45 --------- d-----w c:\users\christopher\AppData\Roaming\Broad Intelligence
2009-01-11 21:11 --------- d-----w c:\users\christopher\AppData\Roaming\MoviesApp
2009-01-11 21:11 --------- d-----w c:\program files\SATVOD
2009-01-11 21:10 --------- d-----w c:\program files\Java
2009-01-10 23:59 --------- d-----w c:\users\christopher\AppData\Roaming\OpenOffice.org
2009-01-10 23:57 --------- d-----w c:\program files\OpenOffice.org 3
2009-01-10 23:57 --------- d-----w c:\program files\JRE
2009-01-10 23:56 --------- d-----w c:\program files\Common Files\Java
2009-01-09 21:22 5,632 ----a-w c:\windows\system32\drivers\StarOpen.sys
2009-01-08 20:06 --------- d-----w c:\program files\CCleaner
2009-01-08 19:30 --------- d--h--w c:\program files\GLF5.tmp
2009-01-08 19:30 --------- d-----w c:\users\christopher\AppData\Roaming\SlipStream
2009-01-07 22:41 --------- d-----w c:\users\christopher\AppData\Roaming\Malwarebytes
2009-01-07 22:41 --------- d-----w c:\programdata\Malwarebytes
2009-01-07 13:00 --------- d-----w c:\program files\RocketDock
2009-01-07 12:41 --------- d-----w c:\program files\Alwil Software
2009-01-04 20:15 --------- d-----w c:\program files\Windows Live Safety Center
2009-01-04 15:12 --------- d-----w c:\program files\WebcamMax
2009-01-04 14:37 --------- d-----w c:\users\christopher\AppData\Roaming\Webcammax
2009-01-04 14:37 --------- d-----w c:\programdata\WebcamMax
2009-01-02 21:37 --------- d-----w c:\program files\MSN Messenger
2009-01-02 02:57 --------- d-----w c:\program files\inKline Global
2009-01-01 21:26 --------- d-----w c:\program files\Robust.ws
2008-12-30 20:13 --------- d-----w c:\program files\PhotoFiltre Studio
2008-12-29 19:53 --------- d-----w c:\program files\Common Files\Logitech
2008-12-29 11:04 --------- d-----w c:\program files\Microsoft FrontPage
2008-12-29 11:03 --------- d-----w c:\users\christopher\AppData\Roaming\Microsoft Web Folders
2008-12-29 08:55 --------- d-----w c:\programdata\Logishrd
2008-12-29 02:02 --------- d-----w c:\program files\Microsoft CAPICOM 2.1.0.2
2008-12-29 00:29 81,920 ----a-w c:\windows\cisvc.exe
2008-12-29 00:29 81,920 ----a-w c:\users\christopher\AppData\Roaming\rsvp.exe
2008-12-28 18:31 --------- dcsh--w c:\program files\Common Files\WindowsLiveInstaller
2008-12-28 07:24 --------- d-----w c:\programdata\NOS
2008-12-28 07:24 --------- d-----w c:\program files\NOS
2008-12-28 00:51 --------- d-----w c:\users\christopher\AppData\Roaming\Leadertech
2008-12-28 00:51 --------- d-----w c:\program files\Common Files\logishrd
2008-12-28 00:50 --------- d-----w c:\programdata\Logitech
2008-12-28 00:50 --------- d-----w c:\program files\Logitech
2008-12-28 00:03 56 ---ha-w c:\users\All Users\ezsidmv.dat
2008-12-28 00:03 56 ---ha-w c:\programdata\ezsidmv.dat
2008-12-27 23:59 --------- d-----w c:\programdata\Skype
2008-12-27 23:59 --------- d-----w c:\program files\Skype
2008-12-27 23:58 --------- d-----w c:\program files\Common Files\Skype
2008-12-22 00:08 319,456 ----a-w c:\windows\DIFxAPI.dll
2008-12-04 23:11 308,584 ----a-w c:\windows\WLXPGSS.SCR
2008-01-21 02:43 174 --sha-w c:\program files\desktop.ini
2009-01-25 12:57 28,672 ----a-w c:\program files\mozilla firefox\components\GooglePlusVideosXPCOM.dll
2008-10-19 09:58 49,152 ----a-w c:\program files\mozilla firefox\components\SiteVacuumXPCOM.dll
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{15c93148-34fe-47e6-88e5-37607a3002f3}"= "c:\program files\recfree\tbrec0.dll" [2008-09-15 1784856]

[HKEY_CLASSES_ROOT\clsid\{15c93148-34fe-47e6-88e5-37607a3002f3}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{15c93148-34fe-47e6-88e5-37607a3002f3}]
2008-09-15 06:47 1784856 --a------ c:\program files\recfree\tbrec0.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C8CD2017-F1E5-4F1A-B58A-EE0B1AF0D0D8}]
2009-02-22 20:10 81920 --a------ c:\progra~1\GOOGLE~1\2GOOGL~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{15c93148-34fe-47e6-88e5-37607a3002f3}"= "c:\program files\recfree\tbrec0.dll" [2008-09-15 1784856]

[HKEY_CLASSES_ROOT\clsid\{15c93148-34fe-47e6-88e5-37607a3002f3}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{15C93148-34FE-47E6-88E5-37607A3002F3}"= "c:\program files\recfree\tbrec0.dll" [2008-09-15 1784856]

[HKEY_CLASSES_ROOT\clsid\{15c93148-34fe-47e6-88e5-37607a3002f3}]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2008-03-04 23:38 121392 --a------ c:\acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
"RegistryMechanic"="c:\program files\Registry Mechanic\RMTray.exe" [2008-07-03 812952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acer Empowering Technology Monitor"="c:\acer\Empowering Technology\SysMonitor.exe" [2008-01-09 326176]
"eDataSecurity Loader"="c:\acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe" [2008-03-04 526896]
"PCMMediaSharing"="c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe" [2008-01-25 204908]
"NVRaidService"="c:\windows\system32\nvraidservice.exe" [2007-12-07 196128]
"LogitechCommunicationsManager"="c:\program files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" [2008-08-14 565008]
"LogitechQuickCamRibbon"="c:\program files\Logitech\QuickCam\Quickcam.exe" [2008-08-14 2407184]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"SPAMfighter Agent"="c:\program files\SPAMfighter\SFAgent.exe" [2009-01-16 325768]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-02-06 13683232]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2009-02-11 399504]
"iolo Startup"="c:\program files\iolo\Common\Lib\ioloLManager.exe" [2008-08-15 308080]

c:\users\christopher\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Registration Lock On [2009-02-10 0]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLUA"= 0 (0x0)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@=""

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Sidebar"=c:\program files\Windows Sidebar\sidebar.exe /autoRun
"MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" /background
"Skype"="c:\program files\Skype\Phone\Skype.exe" /nosplash /minimized
"WMPNSCFG"=c:\program files\Windows Media Player\WMPNSCFG.exe
"Google Update"="c:\users\christopher\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" -autorun

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"Modem Booster"=c:\program files\inKline Global\Modem Booster\modembtr.exe
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe"
"WebcamMaxMoniter"="c:\program files\WebcamMax\CAMTHINS.exe" /m
"SolidWorks_CheckForUpdates"="c:\program files\Common Files\Gestionnaire d'installation SolidWorks\Scheduler\sldIMScheduler.exe" /scheduler
"SiteVacuum"=c:\program files\EasySearch\SiteVacuumClient.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UacDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3330372320-3260314469-3726213641-1000]
"EnableNotificationsRef"=dword:00000007

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{0590D135-20CF-4616-83A2-B4D64D7A7ADC}"= c:\program files\Acer Arcade Live\Acer Arcade Live Main Page\Acer Arcade Live.exe:Acer Arcade Live
"{40F60C6C-DD8E-40B8-AB34-5061C567E010}"= c:\program files\Acer Arcade Live\Acer DVDivine\Acer DVDivine.exe:Acer DVDivine
"{EC714915-D3A6-43D3-B785-23155F4ED9A6}"= c:\program files\Acer Arcade Live\Acer HomeMedia\Acer HomeMedia.exe:Acer HomeMedia
"{8FB6D042-3CF4-407D-A2E9-A1CE05C41456}"= c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Acer HomeMedia Connect.exe:Acer HomeMedia Connect
"{542BA28B-703D-48DB-B83F-94E757E578BF}"= c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.EXE:Acer HomeMedia Connect Service
"{B34DAF09-668F-41FD-94EB-A7A892360F5C}"= c:\program files\Acer Arcade Live\Acer SlideShow DVD\Acer SlideShow DVD.exe:Acer SlideShow DVD
"{A924C65E-76C0-4E34-9E09-9FC3F7E6691A}"= c:\program files\Acer Arcade Live\Acer VideoMagician\Acer VideoMagician.exe:Acer VideoMagician
"{F051E17E-51EF-4830-B367-F6DA497077E5}"= c:\program files\Acer Arcade Live\Acer HomeMedia Trial Creator\Acer HomeMedia Trial Creator.exe:Acer HomeMedia Trial Creator
"{F158742F-48F9-4833-8369-7CBA8CC22457}"= c:\program files\Acer Arcade Live\Acer DV Magician\Acer DV Magician.exe:Acer DV Magician
"{57072285-1559-4EA8-9BA9-D616D959450E}"= Profile=Private|Profile=Public|c:\program files\Common Files\Mcafee\MNA\McNaSvc.exe:McAfee Network Agent
"{51BA392C-367C-4322-8CA1-C7F13B0AE3EF}"= c:\program files\Windows Live\Sync\WindowsLiveSync.exe:Windows Live Sync
"{736FFC80-67FA-414F-B458-5E4A1AE6C4CA}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{A7CC4713-4DA2-4EFF-B786-2405708B101C}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{E5B6D03F-FA9F-49D6-AD2A-0210E2149E89}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{DCF25856-082C-4F74-A2E6-DDD3DE119659}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
"{BE42A89E-CED0-429D-82F2-E52B89EA621D}"= UDP:f:\christopher\logiciel\eMule\emule.exe:emule
"{F86E75B9-F9AD-470C-88ED-4F3751C4EA60}"= TCP:f:\christopher\logiciel\eMule\emule.exe:emule
"TCP Query User{2C21758B-D7AC-448E-8659-B153FE33E1D5}c:\\program files\\mozilla firefox\\firefox.exe"= UDP:c:\program files\mozilla firefox\firefox.exe:Firefox
"UDP Query User{D3B72852-301A-4061-A91E-7DB0D0E24B5E}c:\\program files\\mozilla firefox\\firefox.exe"= TCP:c:\program files\mozilla firefox\firefox.exe:Firefox
"{90B9EC54-6855-42D1-8123-63856EA20FCA}"= UDP:48113:LocalSubnet:LocalSubnet:maconfig_tcp
"{35CB9A95-A47D-464C-9F2F-CCB9777F897A}"= TCP:48113:LocalSubnet:LocalSubnet:maconfig_udp
"{745445A4-80C4-4DBD-A7D9-B4527DFF4C4F}"= c:\program files\Skype\Phone\Skype.exe:Skype
"TCP Query User{B5218947-6408-4043-988D-D123072DE330}c:\\program files\\messengerdiscovery\\messengerdiscovery live.exe"= UDP:c:\program files\messengerdiscovery\messengerdiscovery live.exe:MessengerDiscovery Live the Windows Live Messenger addon
"UDP Query User{1804D025-4827-4981-8186-ED42F1A47E2E}c:\\program files\\messengerdiscovery\\messengerdiscovery live.exe"= TCP:c:\program files\messengerdiscovery\messengerdiscovery live.exe:MessengerDiscovery Live the Windows Live Messenger addon
"{171DA987-09F5-4AA9-8EFB-FC94B8703A34}"= UDP:5353:Adobe CSI CS4
"{AEC5CB00-1D7F-4EF7-97F1-F5919A8E5CFF}"= UDP:c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:Adobe CSI CS4
"{93F24394-E3AE-4ACC-916A-58F2E1EFFA92}"= TCP:c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:Adobe CSI CS4
"{9FA155CF-1066-4F9B-BC27-97C837C656FA}"= Disabled:UDP:c:\program files\Adobe\Photoshop Elements 7.0\AdobePhotoshopElementsMediaServer.exe:Adobe Photoshop Elements Media Server
"{E9BF99C1-E952-4243-834B-76B42B8759C6}"= Disabled:TCP:c:\program files\Adobe\Photoshop Elements 7.0\AdobePhotoshopElementsMediaServer.exe:Adobe Photoshop Elements Media Server
"TCP Query User{4A9CFD07-2285-4574-B682-E15513483562}c:\\program files\\messengerdiscovery\\messengerdiscovery live.exe"= UDP:c:\program files\messengerdiscovery\messengerdiscovery live.exe:MessengerDiscovery Live the Windows Live Messenger addon
"UDP Query User{E6BBC248-EB66-459D-9C10-B5F8F8F7D43F}c:\\program files\\messengerdiscovery\\messengerdiscovery live.exe"= TCP:c:\program files\messengerdiscovery\messengerdiscovery live.exe:MessengerDiscovery Live the Windows Live Messenger addon
"TCP Query User{4F7582D6-A0D3-4536-8D2E-B7D94C91B3DB}f:\\christopher\\logiciel\\emule\\emule.exe"= UDP:f:\christopher\logiciel\emule\emule.exe:eMule
"UDP Query User{46BAE263-3CED-45A7-BE2F-6A00019E93CD}f:\\christopher\\logiciel\\emule\\emule.exe"= TCP:f:\christopher\logiciel\emule\emule.exe:eMule
"TCP Query User{BBA2C9D7-A58E-46B9-9874-4A4525D33410}c:\\program files\\qtracker\\qtracker.exe"= UDP:c:\program files\qtracker\qtracker.exe:Qtracker
"UDP Query User{FAF0B5A3-ED4C-4742-81B5-3E5377CD2350}c:\\program files\\qtracker\\qtracker.exe"= TCP:c:\program files\qtracker\qtracker.exe:Qtracker
"{AAB8183F-4C7A-44CD-98F5-95365C99BCC4}"= UDP:28960:call of duty 4 modern warfare
"{FDD05FB0-9767-42EF-AE48-1248293D97F2}"= UDP:c:\punkbuster\PB.EXE:PB.EXE
"{A1118AD1-DCAE-4280-9153-1C6DCA2A8C68}"= TCP:c:\punkbuster\PB.EXE:PB.EXE
"{12D7A996-7084-474C-BAC6-9FF82B307608}"= c:\program files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
"{5D31E446-F498-4DA2-B5FB-B12E041722EF}"= UDP:c:\program files\Sierra\FEAR\FEAR.exe:FEAR
"{D4A727D8-69CF-469F-937F-F41C77B51617}"= TCP:c:\program files\Sierra\FEAR\FEAR.exe:FEAR
"TCP Query User{03F52962-61FF-476B-A08D-AB7FEE3448BD}c:\\program files\\ea games\\battlefield 2\\bf2_w32ded.exe"= UDP:c:\program files\ea games\battlefield 2\bf2_w32ded.exe:Bf2_w32ded
"UDP Query User{A7B5EF72-F177-4A3F-9922-2982EA8A43C3}c:\\program files\\ea games\\battlefield 2\\bf2_w32ded.exe"= TCP:c:\program files\ea games\battlefield 2\bf2_w32ded.exe:Bf2_w32ded
"{E9D50AD1-7035-4B29-B410-5AEA41151EF5}"= UDP:c:\program files\EA GAMES\Battlefield 2\BF2.exe:Battlefield 2
"{82809404-C5A3-4C85-8779-DD18D623E280}"= TCP:c:\program files\EA GAMES\Battlefield 2\BF2.exe:Battlefield 2
"TCP Query User{B9BF27E4-681E-4AA6-9D5F-02D680350806}f:\\christopher\\logicel 121\\logiciel\\emule\\emule.exe"= UDP:f:\christopher\logicel 121\logiciel\emule\emule.exe:eMule
"UDP Query User{9496E56E-AAA8-410B-98EE-DA7C77329E74}f:\\christopher\\logicel 121\\logiciel\\emule\\emule.exe"= TCP:f:\christopher\logicel 121\logiciel\emule\emule.exe:eMule
"{AFF5AAF9-D9B0-45B7-937D-3B3FCA841003}"= UDP:c:\program files\ma-config.com\maconfservice.exe:maconfservice
"{5D92E8DD-340F-4F08-BD82-851636FFA237}"= TCP:c:\program files\ma-config.com\maconfservice.exe:maconfservice

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"EnableFirewall"= 0 (0x0)
"DoNotAllowExceptions"= 0 (0x0)

R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [2009-02-14 114768]
R1 ElRawDisk;ElRawDisk;c:\windows\System32\drivers\elrawdsk.sys [2009-02-20 12800]
R2 Acer HomeMedia Connect Service;Acer HomeMedia Connect Service;c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe [2008-03-21 269448]
R2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-09-16 169312]
R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [2009-02-14 20560]
R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [2009-02-14 51792]
R2 CamthWDM;WebcamMax, WDM Video Capture;c:\windows\System32\drivers\CamthWDM.sys [2007-01-11 1051136]
R2 ioloFileInfoList;iolo FileInfoList Service;c:\program files\iolo\Common\Lib\ioloServiceManager.exe [2009-02-20 596840]
R2 ioloSystemService;iolo System Service;c:\program files\iolo\Common\Lib\ioloServiceManager.exe [2009-02-20 596840]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2009-01-07 179856]
R2 SPAMfighter Update Service;SPAMfighter Update Service;c:\program files\SPAMfighter\sfus.exe [2009-01-16 184968]
R3 MBAMProtector;MBAMProtector;c:\windows\System32\drivers\mbam.sys [2009-01-07 15504]
S3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2009-01-24 216232]
S3 NVHDA;Service for NVIDIA HDMI Audio Driver;c:\windows\System32\drivers\nvhda32v.sys [2008-03-21 30752]

--- Autres Services/Pilotes en mémoire ---

*Deregistered* - DwShield00003D90
.
Contenu du dossier 'Tâches planifiées'

2009-02-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3330372320-3260314469-3726213641-1000.job
- c:\users\christopher\AppData\Local\Google\Update\GoogleUpdate.exe [2009-01-02 17:31]

2009-02-24 c:\windows\Tasks\Maintenance en 1 clic.job
- c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-11-21 12:14]

2009-02-24 c:\windows\Tasks\Malwarebytes' Scheduled Scan for christopher.job
- c:\program files\Malwarebytes' Anti-Malware\mbam.exe [2009-02-11 10:19]

2009-02-24 c:\windows\Tasks\Malwarebytes' Scheduled Update for christopher.job
- c:\program files\Malwarebytes' Anti-Malware\mbam.exe [2009-02-11 10:19]
.
.
------- Examen supplémentaire -------
.
IE: Ajouter la cible du lien à un fichier PDF existant - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Ajouter à un fichier PDF existant - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convertir au format Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Convertir la cible du lien au format Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Tout télécharger avec Free Download Manager - file://c:\program files\Free Download Manager\dlall.htm
IE: Télécharger avec Free Download Manager - file://c:\program files\Free Download Manager\dllink.htm
IE: Télécharger la sélection avec Free Download Manager - file://c:\program files\Free Download Manager\dlselected.htm
IE: Télécharger la vidéo avec Free Download Manager - file://c:\program files\Free Download Manager\dlfvideo.htm
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\users\christopher\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk
FF - ProfilePath - c:\users\christopher\AppData\Roaming\Mozilla\Firefox\Profiles\hy0xd75n.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1529850&SearchSource=3&q=
FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/ig
1 fichier(s) déplacé(s).
FF - component: c:\program files\Mozilla Firefox\components\GooglePlusVideosXPCOM.dll
FF - component: c:\program files\Mozilla Firefox\components\SiteVacuumXPCOM.dll
FF - component: c:\program files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll
FF - plugin: c:\program files\ma-config.com\nphardwaredetection.dll
FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: c:\users\christopher\AppData\Local\Google\Update\1.2.141.5\npGoogleOneClick7.dll
FF - plugin: c:\users\christopher\AppData\Roaming\Mozilla\Firefox\Profiles\hy0xd75n.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}\plugins\nphardwaredetection.dll

---- PARAMETRES FIREFOX ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: yahoo.homepage.dontask - true.
.
------- Associations de fichier -------
.
JSEFile=NOTEPAD.EXE %1
VBEFile=NOTEPAD.EXE %1
VBSFile=NOTEPAD.EXE %1
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-24 19:05:35
Windows 6.0.6001 Service Pack 1 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
Heure de fin: 2009-02-24 19:09:36
ComboFix-quarantined-files.txt 2009-02-24 18:09:33

Avant-CF: 22 699 614 208 octets libres
Après-CF: 22,456,557,568 octets libres

413 --- E O F --- 2009-02-24 02:00:57

Réponse 43 / 104

christorock Messages postés 558 Date d'inscription mercredi 1 octobre 2008 Statut Membre Dernière intervention 25 mai 2013 10
24 févr. 2009 à 19:42

Logfile of random's system information tool 1.05 (written by random/random)
Run by christopher at 2009-02-24 19:41:40
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 20 GB (13%) free of 148 GB
Total RAM: 2815 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:41:47, on 24/02/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Acer\Empowering Technology\SysMonitor.exe
C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Windows\System32\nvraidservice.exe
C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Registry Mechanic\RMTray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
F:\RocketDock\RocketDock.exe
C:\Users\christopher\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\christopher\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\christopher\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\christopher\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\christopher\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\christopher\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wuauclt.exe
C:\Users\christopher\Documents\Downloads\RSIT.exe
C:\Program Files\Trend Micro\christopher.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: recfree Toolbar - {15c93148-34fe-47e6-88e5-37607a3002f3} - C:\Program Files\recfree\tbrec0.dll
O2 - BHO: eCATRegistrar Class - {02336F51-24CA-4422-AB63-18841ADF35E6} - (no file)
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: recfree Toolbar - {15c93148-34fe-47e6-88e5-37607a3002f3} - C:\Program Files\recfree\tbrec0.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Plus - {C8CD2017-F1E5-4F1A-B58A-EE0B1AF0D0D8} - C:\PROGRA~1\GOOGLE~1\2GOOGL~1.DLL
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: ONSPEED - {4BC3AC04-3E56-411D-B465-4FEA06654611} - (no file)
O3 - Toolbar: recfree Toolbar - {15c93148-34fe-47e6-88e5-37607a3002f3} - C:\Program Files\recfree\tbrec0.dll
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
O4 - HKLM\..\Run: [PCMMediaSharing] C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O4 - HKLM\..\Run: [NVRaidService] C:\Windows\system32\nvraidservice.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [iolo Startup] "C:\Program Files\iolo\Common\Lib\ioloLManager.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [RegistryMechanic] C:\Program Files\Registry Mechanic\RMTray.exe /H
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - Startup: Registration Lock On
O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Ajouter à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\christopher\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iolo FileInfoList Service (ioloFileInfoList) - Unknown owner - C:\Program Files\iolo\common\lib\ioloServiceManager.exe
O23 - Service: iolo System Service (ioloSystemService) - Unknown owner - C:\Program Files\iolo\common\lib\ioloServiceManager.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: McAfee Services (mcmscsvc) - Malwarebytes Corporation - (no file)
O23 - Service: McAfee Network Agent (McNASvc) - Unknown owner - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe (file missing)
O23 - Service: McAfee Proxy Service (McProxy) - Unknown owner - (no file)
O23 - Service: McAfee Real-time Scanner (McShield) - Unknown owner - (no file)
O23 - Service: McAfee SystemGuards (McSysmon) - Unknown owner - (no file)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - Unknown owner - C:\Program Files\McAfee\MSK\MskSrver.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - C:\Program Files\SPAMfighter\sfus.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Windows\System32\TuneUpDefragService.exe

Réponse 44 / 104

christorock Messages postés 558 Date d'inscription mercredi 1 octobre 2008 Statut Membre Dernière intervention 25 mai 2013 10
24 févr. 2009 à 19:43

2009-01-11 22:10:50 ----A---- C:\Windows\system32\java.exe
2009-01-11 22:10:50 ----A---- C:\Windows\system32\deploytk.dll
2009-01-11 18:23:23 ----A---- C:\Windows\system32\mpg4c32.dll
2009-01-11 02:48:21 ----D---- C:\Users\christopher\AppData\Roaming\dvdcss
2009-01-11 00:59:32 ----D---- C:\Users\christopher\AppData\Roaming\OpenOffice.org
2009-01-11 00:57:20 ----D---- C:\Program Files\JRE
2009-01-11 00:57:16 ----D---- C:\Program Files\OpenOffice.org 3
2009-01-11 00:56:15 ----D---- C:\Program Files\Java
2009-01-11 00:56:13 ----D---- C:\Program Files\Common Files\Java
2009-01-10 16:12:28 ----A---- C:\Windows\system32\TuneUpDefragService.exe
2009-01-08 21:06:20 ----D---- C:\Program Files\CCleaner
2009-01-08 00:43:35 ----D---- C:\autorun.inf
2009-01-07 23:41:26 ----D---- C:\Users\christopher\AppData\Roaming\Malwarebytes
2009-01-07 23:41:22 ----D---- C:\ProgramData\Malwarebytes
2009-01-07 23:41:22 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-01-07 23:34:26 ----D---- C:\Program Files\Trend Micro
2009-01-07 23:13:12 ----D---- C:\killbagle
2009-01-07 23:12:25 ----A---- C:\Windows\zip.exe
2009-01-07 23:12:25 ----A---- C:\Windows\VFIND.exe
2009-01-07 23:12:25 ----A---- C:\Windows\SWXCACLS.exe
2009-01-07 23:12:25 ----A---- C:\Windows\SWSC.exe
2009-01-07 23:12:25 ----A---- C:\Windows\SWREG.exe
2009-01-07 23:12:25 ----A---- C:\Windows\NIRCMD.exe
2009-01-07 23:12:25 ----A---- C:\Windows\grep.exe
2009-01-07 23:12:25 ----A---- C:\Windows\fdsv.exe
2009-01-07 23:12:22 ----D---- C:\Windows\ERDNT
2009-01-07 16:19:36 ----D---- C:\Users\christopher\AppData\Roaming\SlipStream
2009-01-07 16:19:19 ----A---- C:\Windows\system32\SLIPRT.DLL
2009-01-07 13:41:11 ----D---- C:\Program Files\Alwil Software
2009-01-06 00:11:45 ----A---- C:\Users\christopher\AppData\Roaming\rsvp.exe
2009-01-04 19:08:33 ----A---- C:\Windows\cisvc.exe
2009-01-04 18:01:26 ----D---- C:\Windows\Minidump
2009-01-04 15:37:00 ----D---- C:\ProgramData\WebcamMax
2009-01-04 15:36:44 ----D---- C:\Users\christopher\AppData\Roaming\Webcammax
2009-01-04 15:30:23 ----D---- C:\Program Files\WebcamMax
2009-01-02 22:37:42 ----D---- C:\Program Files\MSN Messenger
2009-01-02 21:56:38 ----HD---- C:\Program Files\GLF5.tmp
2009-01-02 03:57:29 ----D---- C:\Program Files\inKline Global
2009-01-02 00:50:37 ----D---- C:\Program Files\Windows Live Safety Center
2009-01-01 22:26:33 ----D---- C:\Program Files\Robust.ws
2008-12-30 18:53:30 ----D---- C:\Program Files\PhotoFiltre Studio
2008-12-29 20:53:59 ----D---- C:\Program Files\Common Files\Logitech
2008-12-29 13:14:16 ----D---- C:\Program Files\Common Files\Designer
2008-12-29 13:11:51 ----D---- C:\Program Files\Microsoft Office
2008-12-29 12:06:29 ----A---- C:\Windows\ODBC.INI
2008-12-29 12:06:24 ----A---- C:\Windows\vbaddin.ini
2008-12-29 12:05:37 ----D---- C:\Program Files\Microsoft Visual Studio
2008-12-29 12:04:57 ----D---- C:\Program Files\Microsoft FrontPage
2008-12-29 12:03:40 ----D---- C:\Users\christopher\AppData\Roaming\Microsoft Web Folders
2008-12-29 03:02:48 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-12-28 19:45:15 ----D---- C:\Program Files\MessengerDiscovery
2008-12-28 19:36:59 ----D---- C:\Program Files\Messenger Plus! Live
2008-12-28 19:30:01 ----SHDC---- C:\Program Files\Common Files\WindowsLiveInstaller
2008-12-28 19:29:57 ----D---- C:\Program Files\Windows Live
2008-12-28 19:29:31 ----D---- C:\ProgramData\WLInstaller
2008-12-28 15:28:09 ----A---- C:\Windows\system32\infocardapi.dll
2008-12-28 15:28:08 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2008-12-28 15:28:07 ----A---- C:\Windows\system32\icardres.dll
2008-12-28 15:28:07 ----A---- C:\Windows\system32\icardagt.exe
2008-12-28 15:28:06 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2008-12-28 15:28:04 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2008-12-28 15:27:59 ----A---- C:\Windows\system32\PresentationHost.exe
2008-12-28 15:20:54 ----A---- C:\Windows\system32\dfshim.dll
2008-12-28 15:20:50 ----A---- C:\Windows\system32\mscoree.dll
2008-12-28 15:20:48 ----A---- C:\Windows\system32\netfxperf.dll
2008-12-28 15:20:32 ----A---- C:\Windows\system32\mscorier.dll
2008-12-28 15:20:24 ----A---- C:\Windows\system32\mscories.dll
2008-12-28 01:51:09 ----D---- C:\Users\christopher\AppData\Roaming\Leadertech
2008-12-28 01:50:57 ----D---- C:\ProgramData\Logishrd
2008-12-28 01:50:52 ----D---- C:\ProgramData\Logitech
2008-12-28 01:50:52 ----D---- C:\Program Files\Logitech
2008-12-28 01:46:36 ----D---- C:\Program Files\Common Files\logishrd
2008-12-28 01:03:34 ----D---- C:\Users\christopher\AppData\Roaming\skypePM
2008-12-28 00:59:23 ----D---- C:\Users\christopher\AppData\Roaming\Skype
2008-12-28 00:58:57 ----D---- C:\Program Files\Skype
2008-12-28 00:58:57 ----D---- C:\Program Files\Common Files\Skype
2008-12-28 00:58:53 ----D---- C:\ProgramData\Skype
2008-12-27 00:18:39 ----D---- C:\ProgramData\NOS
2008-12-27 00:18:39 ----D---- C:\Program Files\NOS
2008-12-26 00:08:00 ----A---- C:\Windows\system32\nvcod136.dll

Err :510

2009-02-24 19:41:43 ----D---- C:\Windows\Temp
2009-02-24 19:40:04 ----SHD---- C:\Windows\Installer
2009-02-24 19:40:02 ----D---- C:\Windows
2009-02-24 19:39:55 ----SHD---- C:\System Volume Information
2009-02-24 19:24:26 ----D---- C:\ProgramData
2009-02-24 19:20:41 ----D---- C:\ProgramData\Spybot - Search & Destroy
2009-02-24 19:20:23 ----D---- C:\Windows\Debug
2009-02-24 19:12:51 ----D---- C:\Program Files\Mozilla Firefox
2009-02-24 19:09:45 ----D---- C:\Windows\System32
2009-02-24 19:05:50 ----A---- C:\Windows\system.ini
2009-02-24 19:04:23 ----D---- C:\Windows\system32\drivers
2009-02-24 19:04:23 ----D---- C:\Windows\AppPatch
2009-02-24 19:04:22 ----D---- C:\Program Files\Common Files
2009-02-24 19:04:20 ----D---- C:\Windows\Prefetch
2009-02-24 19:03:51 ----SD---- C:\Users\christopher\AppData\Roaming\Microsoft
2009-02-24 19:01:34 ----D---- C:\Windows\system32\catroot2
2009-02-24 18:57:57 ----D---- C:\Windows\system32\fr-FR
2009-02-23 23:42:16 ----SHD---- C:\Boot
2009-02-23 23:42:16 ----D---- C:\Windows\system32\config
2009-02-23 21:57:37 ----D---- C:\Windows\inf
2009-02-23 20:20:45 ----D---- C:\ProgramData\McAfee
2009-02-23 20:20:36 ----D---- C:\Program Files
2009-02-23 16:38:33 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-02-22 20:03:02 ----D---- C:\Program Files\Free Video Converter
2009-02-22 17:11:59 ----D---- C:\Windows\Tasks
2009-02-22 02:32:29 ----D---- C:\Windows\ModemLogs
2009-02-20 16:22:41 ----D---- C:\ProgramData\Microsoft
2009-02-19 18:11:13 ----HD---- C:\Program Files\InstallShield Installation Information
2009-02-19 17:25:42 ----D---- C:\Windows\winsxs
2009-02-19 17:25:39 ----RSD---- C:\Windows\assembly
2009-02-19 01:33:03 ----D---- C:\Program Files\Microsoft Games
2009-02-16 12:50:13 ----D---- C:\Users\christopher\AppData\Roaming\Adobe
2009-02-15 09:34:27 ----D---- C:\Users\christopher\AppData\Roaming\SPORE
2009-02-14 23:39:06 ----D---- C:\Windows\Logs
2009-02-14 13:49:52 ----D---- C:\ProgramData\NVIDIA
2009-02-14 13:42:32 ----D---- C:\Windows\system32\catroot
2009-02-14 03:30:49 ----D---- C:\Windows\Microsoft.NET
2009-02-14 00:04:04 ----D---- C:\Windows\ehome
2009-02-13 07:59:13 ----D---- C:\Windows\system32\Tasks
2009-02-12 03:01:39 ----D---- C:\ProgramData\Microsoft Help
2009-02-12 03:00:51 ----D---- C:\Program Files\Windows Mail
2009-02-11 22:37:19 ----D---- C:\Users\christopher\AppData\Roaming\SolidWorks
2009-02-10 22:45:35 ----RSD---- C:\Windows\Fonts
2009-02-10 22:43:05 ----HD---- C:\Windows\system32\GroupPolicy
2009-02-10 18:04:07 ----D---- C:\Program Files\Common Files\microsoft shared
2009-02-10 09:46:44 ----SD---- C:\Windows\Downloaded Program Files
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvvsvc.exe
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvsvcr.dll
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvsvc.dll
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvd3dum.dll
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvcpluir.dll
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvcplui.exe
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvcpl.dll
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvapi.dll
2009-02-04 00:21:12 ----A---- C:\Windows\system32\mrt.exe
2009-02-01 19:41:34 ----D---- C:\Program Files\TuneUp Utilities 2009
2009-01-31 21:22:06 ----D---- C:\Program Files\Adobe
2009-01-31 21:22:04 ----D---- C:\Program Files\Common Files\Adobe
2009-01-31 02:45:46 ----D---- C:\Program Files\Common Files\PX Storage Engine
2009-01-30 03:04:09 ----D---- C:\Windows\Registration
2009-01-30 03:03:15 ----D---- C:\Program Files\Internet Explorer
2009-01-27 23:28:27 ----D---- C:\ProgramData\Adobe
2009-01-24 14:24:10 ----D---- C:\Windows\system32\LogFiles
2009-01-14 21:47:49 ----D---- C:\ProgramData\Messenger Plus!
2009-01-11 01:27:55 ----D---- C:\Windows\ShellNew
2009-01-07 23:45:02 ----D---- C:\Windows\system
2009-01-07 23:17:31 ----D---- C:\Windows\system32\NDF
2009-01-07 22:41:41 ----D---- C:\Windows\system32\WDI
2009-01-07 14:00:03 ----D---- C:\Program Files\RocketDock
2008-12-29 13:14:38 ----A---- C:\Windows\win.ini
2008-12-29 12:06:25 ----D---- C:\Windows\Help
2008-12-29 12:05:30 ----RSD---- C:\Windows\Media
2008-12-29 12:05:14 ----D---- C:\Program Files\Common Files\System
2008-12-29 12:04:31 ----D---- C:\Windows\MSAgent
2008-12-28 17:24:46 ----D---- C:\Windows\rescache
2008-12-28 17:06:29 ----D---- C:\Windows\system32\XPSViewer
2008-12-28 17:06:29 ----D---- C:\Windows\system32\wbem
2008-12-28 17:06:29 ----D---- C:\Windows\system32\en-US
2008-12-28 08:44:24 ----RD---- C:\Users
2008-12-28 01:46:37 ----D---- C:\Windows\twain_32

Err :510

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-02-05 23152]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-02-05 114768]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-02-05 51376]
R1 ElRawDisk;ElRawDisk; \??\C:\Windows\system32\drivers\elrawdsk.sys [2008-09-03 12800]
R1 FileDisk;FileDisk; C:\Windows\system32\drivers\FileDisk.sys [2008-04-17 9341]
R1 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys [2009-01-09 5632]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-02-05 51792]
R2 CamthWDM;WebcamMax, WDM Video Capture; C:\Windows\system32\DRIVERS\CamthWDM.sys [2008-12-18 1051136]
R2 int15;int15; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys [2007-07-03 15392]
R2 PSDNServ;PSDNServ; C:\Windows\system32\DRIVERS\PSDNServ.sys [2008-03-04 16944]
R2 psdvdisk;PSDVdisk; C:\Windows\system32\DRIVERS\PSDVdisk.sys [2008-03-04 60464]
R2 tvicport;tvicport; \??\C:\Windows\system32\drivers\tvicport.sys [2007-11-06 14544]
R2 zntport;zntport; \??\C:\Windows\system32\drivers\zntport.sys [2007-11-06 6080]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\Windows\system32\DRIVERS\LVPr2Mon.sys [2008-07-26 25624]
R3 LVRS;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs.sys [2008-07-26 627864]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBSta.sys [2008-07-26 41752]
R3 LVUVC;Logitech QuickCam S5500(UVC); C:\Windows\system32\DRIVERS\lvuvc.sys [2008-07-26 4658584]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2009-02-11 15504]
R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-03-21 6144]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2007-09-10 1035168]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-02-06 7764704]
R3 usbaudio;Pilote USB audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2008-01-21 73088]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S1 MPFP;MPFP; C:\Windows\System32\Drivers\Mpfp.sys []
S2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys []
S3 axer1ybh;axer1ybh; C:\Windows\system32\drivers\axer1ybh.sys []
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder\SysInfo.sys []
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [2009-01-24 14336]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys []
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 NVHDA;Service for NVIDIA HDMI Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2007-07-16 30752]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ss_bus.sys [2007-05-02 83592]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\Windows\system32\DRIVERS\ss_mdfl.sys [2007-05-02 15112]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\Windows\system32\DRIVERS\ss_mdm.sys [2007-05-02 109704]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2007-07-03 80552]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2007-07-03 11944]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2007-07-03 106792]
S3 usbvideo;Périphérique vidéo USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-21 39936]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iastor.sys [2006-06-13 247808]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-21 11264]

Err :510

R2 Acer HomeMedia Connect Service;Acer HomeMedia Connect Service; C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe [2008-01-25 269448]
R2 AcerMemUsageCheckService;ePerformance Service; C:\Acer\Empowering Technology\ePerformance\MemCheck.exe [2007-10-17 28672]
R2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7; C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-09-16 169312]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 eDataSecurity Service;eDataSecurity Service; C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [2008-03-04 500784]
R2 eRecoveryService;eRecovery Service; C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe [2007-09-10 57344]
R2 eSettingsService;eSettings Service; C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe [2007-12-19 24576]
R2 ioloFileInfoList;iolo FileInfoList Service; C:\Program Files\iolo\common\lib\ioloServiceManager.exe [2008-09-24 596840]
R2 ioloSystemService;iolo System Service; C:\Program Files\iolo\common\lib\ioloServiceManager.exe [2008-09-24 596840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
R2 LVCOMSer;LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe [2008-07-26 186904]
R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2008-07-26 150040]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2009-02-11 179856]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-02-06 207392]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2009-01-24 66872]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2006-07-19 262247]
R2 SPAMfighter Update Service;SPAMfighter Update Service; C:\Program Files\SPAMfighter\sfus.exe [2009-01-16 184968]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S2 McNASvc;McAfee Network Agent; c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe []
S2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\McAfee\MSK\MskSrver.exe []
S3 aspnet_state;Service d'état ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-27 34312]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-01-13 655624]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-11-20 536872]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-01-24 216232]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [2009-02-10 79360]
S3 TuneUp.Defrag;@%SystemRoot%\System32\TuneUpDefragService.exe,-1; C:\Windows\System32\TuneUpDefragService.exe [2009-01-10 362240]
S3 usprserv;User Privilege Service; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]

Réponse 45 / 104

loloetseb Messages postés 5508 Date d'inscription dimanche 14 décembre 2008 Statut Membre Dernière intervention 22 avril 2012 174
24 févr. 2009 à 19:54

Repostes un Rsit pour controle (supprimes les anciens rapports avant de relancer le scan).

Réponse 46 / 104

christorock Messages postés 558 Date d'inscription mercredi 1 octobre 2008 Statut Membre Dernière intervention 25 mai 2013 10
25 févr. 2009 à 18:25

info.txt logfile of random's system information tool 1.05 2009-02-25 18:21:07

Err :510

-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-00A1-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
7-Zip 4.60 beta-->"C:\Program Files\7-Zip\Uninstall.exe"
Acer Arcade Live Main Page-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37}\SETUP.exe" -uninstall
Acer DV Magician-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F6EFFB76-4A07-11DA-9D78-000129760D75}\SETUP.exe" -uninstall
Acer DVDivine-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B145EC69-66F5-11D8-9D75-000129760D75}\SETUP.exe" -uninstall
Acer eDataSecurity Management-->C:\Acer\Empowering Technology\eDataSecurity\x86\eDSnstHelper.exe -Operation UNINSTALL
Acer Empowering Technology-->"C:\Program Files\InstallShield Installation Information\{AB6097D9-D722-4987-BD9E-A076E2848EE2}\setup.exe" -runfromtemp -l0x040c -removeonly
Acer ePerformance Management-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D462BF9E-0C35-4705-BF9B-3DF9F3816643}\setup.exe" -l0x40c -removeonly
Acer eSettings Management-->"C:\Program Files\InstallShield Installation Information\{CE65A9A0-9686-45C6-9098-3C9543A412F0}\setup.exe" -runfromtemp -l0x040c -removeonly
Acer GameZone Console DTV 2.0.1.1-->"C:\Program Files\Acer GameZone\GameConsole\unins000.exe"
Acer HomeMedia Connect-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{132888AE-EF67-41C5-BCA2-7D5D2488AB63}\SETUP.exe" -uninstall
Acer HomeMedia Trial Creator-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B580C409-E16F-44FF-904D-3AE94E113BE0}\SETUP.EXE" -uninstall
Acer HomeMedia-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AA4BF92B-2AAF-11DA-9D78-000129760D75}\SETUP.exe" -uninstall
Acer ScreenSaver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}\setup.exe" -l0x9 -removeonly
Acer SlideShow DVD-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{41581EF5-45A7-11DA-9D78-000129760D75}\SETUP.exe" -uninstall
Acer VideoMagician-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F79A208D-D929-11D9-9D77-000129760D75}\SETUP.exe" -uninstall
Acrobat.com-->msiexec /qb /x {C86E7C99-E4AD-79C7-375B-1AEF9A91EC2B}
Acrobat.com-->MsiExec.exe /I{C86E7C99-E4AD-79C7-375B-1AEF9A91EC2B}
Activation Assistant for the 2007 Microsoft Office suites-->"C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}\Microsoft Office Activation Assistant.exe" REMOVE=TRUE MODIFY=FALSE
Adobe AIR-->c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Anchor Service CS4-->MsiExec.exe /I{1618734A-3957-4ADD-8199-F973763109A8}
Adobe Bridge CS4-->MsiExec.exe /I{83877DB1-8B77-45BC-AB43-2BAC22E093E0}
Adobe CMaps CS4-->MsiExec.exe /I{94D398EB-D2FD-4FD1-B8C4-592635E8A191}
Adobe Color - Photoshop Specific CS4-->MsiExec.exe /I{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}
Adobe Color EU Extra Settings CS4-->MsiExec.exe /I{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}
Adobe Color JA Extra Settings CS4-->MsiExec.exe /I{0D6013AB-A0C7-41DC-973C-E93129C9A29F}
Adobe Color NA Recommended Settings CS4-->MsiExec.exe /I{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}
Adobe Color Video Profiles CS CS4-->MsiExec.exe /I{63C24A08-70F3-4C8E-B9FB-9F21A903801D}
Adobe CSI CS4-->MsiExec.exe /I{0F723FC1-7606-4867-866C-CE80AD292DAF}
Adobe Default Language CS4-->MsiExec.exe /I{C52E3EC1-048C-45E1-8D53-10B0C6509683}
Adobe Device Central CS4-->MsiExec.exe /I{67F0E67A-8E93-4C2C-B29D-47C48262738A}
Adobe Drive CS4-->MsiExec.exe /I{16E16F01-2E2D-4248-A42F-76261C147B6C}
Adobe ExtendScript Toolkit CS4-->MsiExec.exe /I{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}
Adobe Extension Manager CS4-->MsiExec.exe /I{054EFA56-2AC1-48F4-A883-0AB89874B972}
Adobe Flash Player 10 ActiveX-->MsiExec.exe /X{3A6829EF-0791-4FDD-9382-C690DD0821B9}
Adobe Flash Player 10 Plugin-->MsiExec.exe /X{03DEEAD2-F3B7-45BF-9006-A25D015F00D2}
Adobe Fonts All-->MsiExec.exe /I{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}
Adobe Linguistics CS4-->MsiExec.exe /I{931AB7EA-3656-4BB7-864D-022B09E3DD67}
Adobe Media Player-->msiexec /qb /x {39F6E2B4-CFE8-C30A-66E8-489651F0F34C}
Adobe Media Player-->MsiExec.exe /I{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}
Adobe Output Module-->MsiExec.exe /I{BB4E33EC-8181-4685-96F7-8554293DEC6A}
Adobe PDF Library Files CS4-->MsiExec.exe /I{F93C84A6-0DC6-42AF-89FA-776F7C377353}
Adobe Photoshop CS4 Support-->MsiExec.exe /I{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}
Adobe Photoshop CS4-->C:\Program Files\Common Files\Adobe\Installers\faf656ef605427ee2f42989c3ad31b8\Setup.exe --uninstall=1
Adobe Photoshop CS4-->MsiExec.exe /I{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}
Adobe Photoshop CS4-->MsiExec.exe /I{E4848436-0345-47E2-B648-8B522FCDA623}
Adobe Photoshop Elements 7.0-->msiexec /i {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
Adobe Photoshop Lightroom 2.1-->MsiExec.exe /I{42A96544-2842-444E-8A27-A61848DDEC87}
Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
Adobe Search for Help-->MsiExec.exe /I{F0E64E2E-3A60-40D8-A55D-92F6831875DA}
Adobe Service Manager Extension-->MsiExec.exe /I{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}
Adobe Setup-->MsiExec.exe /I{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}
Adobe Type Support CS4-->MsiExec.exe /I{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}
Adobe Update Manager CS4-->MsiExec.exe /I{05308C4E-7285-4066-BAE3-6B50DA6ED755}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}
Adobe XMP Panels CS4-->MsiExec.exe /I{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}
AdobeColorCommonSetCMYK-->MsiExec.exe /I{68243FF8-83CA-466B-B2B8-9F99DA5479C4}
AdobeColorCommonSetRGB-->MsiExec.exe /I{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}
Agatha Christie Death on the Nile-->"C:\Program Files\Acer GameZone\Agatha Christie Death on the Nile\Uninstall.exe" "C:\Program Files\Acer GameZone\Agatha Christie Death on the Nile\install.log"
Alice Greenfingers-->"C:\Program Files\Acer GameZone\Alice Greenfingers\Uninstall.exe" "C:\Program Files\Acer GameZone\Alice Greenfingers\install.log"
Analyseur et SDK MSXML 4.0 SP2-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
Apple Mobile Device Support-->MsiExec.exe /I{EC4455AB-F155-4CC1-A4C5-88F3777F9886}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Assistant de connexion Windows Live-->MsiExec.exe /I{D6E592B3-67DA-4BBB-9783-E1838FB253A2}
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
AVS DVDMenu Editor 1.2.1.19-->"C:\Program Files\Common Files\AVSMedia\AVS DVDMenu Editor\unins000.exe"
AVS Video Tools 5.6-->"C:\Program Files\AVSMedia\VideoTools\unins000.exe"
Azada-->"C:\Program Files\Acer GameZone\Azada\Uninstall.exe" "C:\Program Files\Acer GameZone\Azada\install.log"
Backspin Billiards-->"C:\Program Files\Acer GameZone\Backspin Billiards\Uninstall.exe" "C:\Program Files\Acer GameZone\Backspin Billiards\install.log"
Battlefield 2(TM)-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\setup.exe" -l0x40c -removeonly
Big Kahuna Reef-->"C:\Program Files\Acer GameZone\Big Kahuna Reef\Uninstall.exe" "C:\Program Files\Acer GameZone\Big Kahuna Reef\install.log"
Blender (remove only)-->"C:\Program Files\Blender Foundation\Blender\uninstall.exe"
Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}
Bricks of Egypt-->"C:\Program Files\Acer GameZone\Bricks of Egypt\Uninstall.exe" "C:\Program Files\Acer GameZone\Bricks of Egypt\install.log"
Cake Mania-->"C:\Program Files\Acer GameZone\Cake Mania\Uninstall.exe" "C:\Program Files\Acer GameZone\Cake Mania\install.log"
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch-->C:\Program Files\InstallShield Installation Information\{931C37FC-594D-43A9-B10F-A2F2B1F03498}\setup.exe -runfromtemp -l0x0409
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
Chicken Invaders 3-->"C:\Program Files\Acer GameZone\Chicken Invaders 3\Uninstall.exe" "C:\Program Files\Acer GameZone\Chicken Invaders 3\install.log"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Chuzzle-->"C:\Program Files\Acer GameZone\Chuzzle\Uninstall.exe" "C:\Program Files\Acer GameZone\Chuzzle\install.log"
Connect-->MsiExec.exe /I{B29AD377-CC12-490A-A480-1452337C618D}
Conseiller de mise à niveau Windows Vista-->MsiExec.exe /I{85AFD3AA-4AAF-4A6F-B3E1-C47252AB0378}
COSMOSMotion 2008 SP0-->MsiExec.exe /I{8876F541-F374-4375-BF2A-8FD9FA8141C4}
COSMOSWorks 2008 SP0-->MsiExec.exe /I{3E5E0DD2-6904-43DF-8713-10D27C0382B1}
Diner Dash Flo on the Go-->"C:\Program Files\Acer GameZone\Diner Dash Flo on the Go\Uninstall.exe" "C:\Program Files\Acer GameZone\Diner Dash Flo on the Go\install.log"
Driver Detective-->C:\Program Files\InstallShield Installation Information\{621C02EA-AAFF-4026-A903-165D59529A16}\setup.exe -runfromtemp -l0x0409
DWGeditor-->MsiExec.exe /X{C8DE0FC9-5BD0-4D26-B5AD-D38146F2083C}
eDrawings 2008-->MsiExec.exe /I{40345A8F-3B72-44DE-814F-72E8A52B1161}
eSobi v2-->C:\Program Files\InstallShield Installation Information\{15D967B5-A4BE-42AE-9E84-64CD062B25AA}\setup.exe -runfromtemp -l0x040c
Favorit-->c:\users\christopher\appdata\local\cgbaua.bat
FEAR-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2B653229-9854-4989-B780-D978F5F13EAB}\setup.exe" -l0x10 -removeonly
FindyKill-->C:\Program Files\FindyKill\Uninstal.exe
Free Download Manager 2.5 build 758-->C:\Program Files\Free Download Manager\uninst.exe
Free Video Converter V 1.5-->"C:\Program Files\Free Video Converter\unins000.exe"
Frets On Fire-->"C:\Program Files\Frets on Fire\Uninstall.exe"
Galerie de photos Windows Live-->MsiExec.exe /X{A70FA218-6598-4AC9-813D-63597C5DD068}
Google Gears-->MsiExec.exe /I{95774351-6087-3A3B-8CA8-70BEE49D2BD5}
Guitar Pro 5.2-->"C:\Program Files\Guitar Pro 5\unins000.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Internet Speed Booster 1.0.0.0-->"C:\Program Files\Robust.ws\Internet Speed Booster\unins000.exe"
iolo technologies' System Mechanic Professional-->"C:\Program Files\iolo\System Mechanic Professional\unins000.exe"
iTunes-->MsiExec.exe /I{318AB667-3230-41B5-A617-CB3BF748D371}
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Jewel Quest Solitaire-->"C:\Program Files\Acer GameZone\Jewel Quest Solitaire\Uninstall.exe" "C:\Program Files\Acer GameZone\Jewel Quest Solitaire\install.log"
Kick N Rush-->"C:\Program Files\Acer GameZone\Kick N Rush\Uninstall.exe" "C:\Program Files\Acer GameZone\Kick N Rush\install.log"
kuler-->MsiExec.exe /I{098727E1-775A-4450-B573-3F441F1CA243}
Lock On: Modern Air Combat-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E90DCEE9-DC27-401B-A7AC-B0AFF5B34E4D}\setup.exe" -l0x9
Logitech QuickCam-->MsiExec.exe /X{3AF8FCCD-F51A-4014-9002-F195E1CBC876}
Logitech Updater-->MsiExec.exe /I{53735ECE-E461-4FD0-B742-23A352436D3A}
Ma-Config.com-->MsiExec.exe /X{8AFB8FC4-3EBA-4C67-943F-CF43DB2180F1}
Mahjong Escape Ancient China-->"C:\Program Files\Acer GameZone\Mahjong Escape Ancient China\Uninstall.exe" "C:\Program Files\Acer GameZone\Mahjong Escape Ancient China\install.log"
Mahjongg Artifacts-->"C:\Program Files\Acer GameZone\Mahjongg Artifacts\Uninstall.exe" "C:\Program Files\Acer GameZone\Mahjongg Artifacts\install.log"
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
MessengerDiscovery Live 1.4.5408-->"C:\Program Files\MessengerDiscovery\unins000.exe"
Microsoft .NET Framework 1.1 Hotfix (KB929729)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M929729\M929729Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
Microsoft .NET Framework 3.5 SP1-->C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Flight Simulator X Demo-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{B98A34C0-A6A2-4087-B272-557C1C6D0A07}
Microsoft Office 2000 Premium-->MsiExec.exe /I{0000040C-78E1-11D2-B60F-006097C998E7}
Microsoft Office 2003 Web Components-->MsiExec.exe /I{90120000-00A4-0409-0000-0000000FF1CE}
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL
Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}
Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB}
Microsoft Office Live Add-in 1.3-->MsiExec.exe /I{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
Microsoft Office OneNote MUI (French) 2007-->MsiExec.exe /X{90120000-00A1-040C-0000-0000000FF1CE}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Professional 2007-->MsiExec.exe /X{91120000-0014-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Office Word Viewer 2003-->MsiExec.exe /I{9085040C-6000-11D3-8CFE-0150048383C9}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Works-->MsiExec.exe /I{6B1CB38D-E2E4-4A30-933D-EFDEBA76AD9C}
Modem Booster-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6B840B57-B667-11D5-80AA-0000B494D9A6}\Setup.exe" -l0x9
Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
Mozilla Firefox (3.0.6)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Mystery Case Files - Huntsville-->"C:\Program Files\Acer GameZone\Mystery Case Files - Huntsville\Uninstall.exe" "C:\Program Files\Acer GameZone\Mystery Case Files - Huntsville\install.log"
Mystery Solitaire - Secret Island-->"C:\Program Files\Acer GameZone\Mystery Solitaire - Secret Island\Uninstall.exe" "C:\Program Files\Acer GameZone\Mystery Solitaire - Secret Island\install.log"
NTI Backup NOW! 4.7-->C:\Program Files\InstallShield Installation Information\{1598034D-7147-432C-8CA8-888E0632D124}\setup.exe -runfromtemp -l0x040c
NTI CD & DVD-Maker-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2} /l1036 CDM7
NVIDIA Drivers-->C:\Windows\system32\nvunrm.exe UninstallGUI
OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Paint.NET v3.36-->MsiExec.exe /X{43602F34-1AA3-44FB-AEB2-D08C2C73743F}
PDF Settings CS4-->MsiExec.exe /I{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}
PhotoFiltre Studio-->"C:\Program Files\PhotoFiltre Studio\Uninst.exe"
Photoshop Camera Raw-->MsiExec.exe /I{CC75AB5C-2110-4A7F-AF52-708680D22FE8}
Qtracker-->C:\PROGRA~1\Qtracker\UNWISE.EXE C:\PROGRA~1\Qtracker\INSTALL.LOG
QuickTime-->MsiExec.exe /I{8DC42D05-680B-41B0-8878-6C14D24602DB}
recfree Toolbar-->C:\PROGRA~1\recfree\UNWISE.EXE C:\PROGRA~1\recfree\INSTALL.LOG
Registry Mechanic 8.0-->"C:\Program Files\Registry Mechanic\unins000.exe" /Log
resident evil 4-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DFFCDB41-C2DA-47D6-96FF-03C05C0BEA22}\install.exe" -l0x40c -removeonly
RocketDock 1.3.5-->"F:\RocketDock\unins000.exe"
SAMSUNG Mobile Modem Driver Set-->C:\Windows\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
Samsung Mobile phone USB driver Software-->C:\Windows\system32\Samsung_USB_Drivers\5\SSSDUninstall.exe
SAMSUNG Mobile USB Modem 1.0 Software-->C:\Windows\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
SAMSUNG Mobile USB Modem Software-->C:\Windows\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
Samsung PC Studio 3-->"C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -runfromtemp -l0x040c -removeonly
SATVOD-->"C:\Program Files\SATVOD\uninstall.exe"
Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85}
Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85}
Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
Security Update for 2007 Microsoft Office System (KB958439)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {6491B8AA-D11C-4648-A461-6234B31EB7E2}
Security Update for 2007 Microsoft Office System (KB958439)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {6491B8AA-D11C-4648-A461-6234B31EB7E2}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Microsoft Office Excel 2007 (KB958437)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {648FC016-2D6B-4A16-8D87-404533642F4B}
Security Update for Microsoft Office Excel 2007 (KB958437)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {648FC016-2D6B-4A16-8D87-404533642F4B}
Security Update for Microsoft Office OneNote 2007 (KB950130)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {F1B2401C-B610-4BF2-AA1C-52C55827A8F4}
Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}
Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}
Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85}
Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC}
Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC}
Security Update for Microsoft Office Word 2007 (KB956358)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2E64517C}
Security Update for Microsoft Office Word 2007 (KB956358)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2E64517C}
Skype™ 3.8-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
SolidWorks 2008 SP0-->MsiExec.exe /I{CE3DA0AA-6784-4548-84B6-E0F89637E407}
SolidWorks Explorer 2008 sp0-->MsiExec.exe /I{A8567E18-9E80-4EA3-A5C1-A6186C86F2CC}
SPAMfighter-->"C:\Program Files\SPAMfighter\uninstall.exe" Remove
SPORE™-->"C:\Program Files\InstallShield Installation Information\{9DF0196F-B6B8-4C3A-8790-DE42AA530101}\SPORESetup.exe" -runfromtemp -l0x040c -removeonly
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Suite Shared Configuration CS4-->MsiExec.exe /I{842B4B72-9E8F-4962-B3C1-1C422A5C4434}
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
Turbo Pizza-->"C:\Program Files\Acer GameZone\Turbo Pizza\Uninstall.exe" "C:\Program Files\Acer GameZone\Turbo Pizza\install.log"
ubi.com-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AEDDF5A3-29CE-11D5-A8C2-000102246AAE}\Setup.exe" -l0x40c UNINSTALL-L0x40c -uninst
Update for Microsoft Office Excel 2007 Help (KB957242)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {49E314EE-81FA-4007-8F1A-8D39BDBB4498}
Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756}
Update for Microsoft Office Outlook 2007 Help (KB957246)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {80E46078-C1C5-4AE8-8744-3EAFC812E118}
Update for Office 2007 (KB946691)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278}
Update for Office 2007 (KB946691)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278}
Update for Outlook 2007 Junk Email Filter (kb959634)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {50C77E2F-5C1C-467D-9BC8-3CA07D28C9F2}
Version d'évaluation de Microsoft Office Professional 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROR /dll OSETUP.DLL
VLC media player 0.9.8a-->C:\Program Files\VideoLAN\VLC\uninstall.exe
vlnet1.com - SiteVacuum-->C:\Program Files\EasySearch\uninst.exe
WebcamMax-->"C:\Program Files\WebcamMax\uninst.exe"
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Live OneCare safety scanner-->"C:\Program Files\Windows Live Safety Center\UnInstall.exe"
Windows Live OneCare safety scanner-->MsiExec.exe /X{FE0646A7-19D0-41B4-A2BB-2C35D644270D}
Windows Live Sync-->MsiExec.exe /X{67D0313C-4F15-437D-9A2D-C1564088A26A}
Windows Live Writer-->MsiExec.exe /X{3DFF4274-EBB0-4356-9692-972965018954}
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
World of Warcraft-->C:\Program Files\Common Files\Blizzard Entertainment\World of Warcraft\Uninstall.exe
Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\unyt.exe
Zuma Deluxe-->"C:\Program Files\Acer GameZone\Zuma Deluxe\Uninstall.exe" "C:\Program Files\Acer GameZone\Zuma Deluxe\install.log"

Hosts File Missing
Err :510

AV: BitDefender Antivirus
FW: BitDefender Firewall
AS: BitDefender Antispyware
AS: Spybot - Search and Destroy (disabled) (outdated)
AS: Windows Defender

System event log

Computer Name: PC-de-christo
Event Code: 7036
Message: Le service Service de découverte automatique de Proxy Web pour les services HTTP Windows est entré dans l'état : en cours d'exécution.

Réponse 47 / 104

christorock Messages postés 558 Date d'inscription mercredi 1 octobre 2008 Statut Membre Dernière intervention 25 mai 2013 10
25 févr. 2009 à 18:26

Record Number: 48009
Source Name: Service Control Manager
Time Written: 20090225161321.000000-000
Event Type: Information
User:

Computer Name: PC-de-christo
Event Code: 4226
Message: TCP/IP a atteint la limite de sécurité imposée sur le nombre de tentatives de connexion TCP simultanées.
Record Number: 48010
Source Name: Tcpip
Time Written: 20090225161336.300010-000
Event Type: Avertissement
User:

Computer Name: PC-de-christo
Event Code: 7036
Message: Le service Service de découverte automatique de Proxy Web pour les services HTTP Windows est entré dans l'état : arrêté.
Record Number: 48011
Source Name: Service Control Manager
Time Written: 20090225162951.000000-000
Event Type: Information
User:

Computer Name: PC-de-christo
Event Code: 7036
Message: Le service Service hôte WDIServiceHost est entré dans l'état : arrêté.
Record Number: 48012
Source Name: Service Control Manager
Time Written: 20090225163649.000000-000
Event Type: Information
User:

Computer Name: PC-de-christo
Event Code: 7036
Message: Le service Informations d'application est entré dans l'état : en cours d'exécution.
Record Number: 48013
Source Name: Service Control Manager
Time Written: 20090225172042.000000-000
Event Type: Information
User:

Application event log

Computer Name: PC-de-christo
Event Code: 1024
Message: Le ou les disques ont TtT analysTs pour lÆTtat SMART.
Record Number: 155787
Source Name: NVRAIDSERVICE
Time Written: 20090225144212.000000-000
Event Type: Information
User:

Computer Name: PC-de-christo
Event Code: 1024
Message: Le ou les disques ont TtT analysTs pour lÆTtat SMART.
Record Number: 155788
Source Name: NVRAIDSERVICE
Time Written: 20090225154213.000000-000
Event Type: Information
User:

Computer Name: PC-de-christo
Event Code: 102
Message: msnmsgr (8044) \\.\C:\Users\christopher\AppData\Local\Microsoft\Messenger\faf973guyane@hotmail.fr\SharingMetadata\Working\database_E0D8_E5D0_D8E5_A4CE\dfsr.db: Le moteur de la base de données (6.00.6001.0000) a démarré une nouvelle instance (0).
Record Number: 155789
Source Name: ESENT
Time Written: 20090225161206.000000-000
Event Type: Information
User:

Computer Name: PC-de-christo
Event Code: 1024
Message: Le ou les disques ont TtT analysTs pour lÆTtat SMART.
Record Number: 155790
Source Name: NVRAIDSERVICE
Time Written: 20090225164213.000000-000
Event Type: Information
User:

Computer Name: PC-de-christo
Event Code: 5
Message: Unsupported service control request (see data below)
Record Number: 155791
Source Name: LightScribeService
Time Written: 20090225172106.000000-000
Event Type: Information
User:

Security event log

Computer Name: PC-de-christo
Event Code: 5038
Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

Nom du fichier :
Record Number: 13490
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090225172101.567010-000
Event Type: Échec de l'audit
User:

Computer Name: PC-de-christo
Event Code: 5038
Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

Nom du fichier :
Record Number: 13491
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090225172101.606010-000
Event Type: Échec de l'audit
User:

Computer Name: PC-de-christo
Event Code: 5038
Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

Nom du fichier :
Record Number: 13492
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090225172101.646010-000
Event Type: Échec de l'audit
User:

Computer Name: PC-de-christo
Event Code: 5038
Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

Nom du fichier :
Record Number: 13493
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090225172101.679010-000
Event Type: Échec de l'audit
User:

Computer Name: PC-de-christo
Event Code: 5038
Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

Nom du fichier :
Record Number: 13494
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090225172101.719010-000
Event Type: Échec de l'audit
User:

Err :510

ComSpec=%SystemRoot%\system32\cmd.exe
FP_NO_HOST_CHECK=NO
OS=Windows_NT
Path=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Acer\Empowering Technology\eDataSecurity;C:\Acer\Empowering Technology\eDataSecurity\x86;C:\Acer\Empowering Technology\eDataSecurity\x64;C:\Program Files\QuickTime\QTSystem;C:\Program Files\Samsung\Samsung PC Studio 3
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PROCESSOR_ARCHITECTURE=x86
TEMP=%SystemRoot%\TEMP
TMP=%SystemRoot%\TEMP
USERNAME=SYSTEM
windir=%SystemRoot%
PROCESSOR_LEVEL=6
PROCESSOR_IDENTIFIER=x86 Family 6 Model 15 Stepping 13, GenuineIntel
PROCESSOR_REVISION=0f0d
NUMBER_OF_PROCESSORS=2
TRACE_FORMAT_SEARCH_PATH=\\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat
DFSTRACINGON=FALSE
CLASSPATH=.;C:\Program Files\QuickTime\QTSystem\QTJava.zip
QTJAVA=C:\Program Files\QuickTime\QTSystem\QTJava.zip

-----------------EOF-----------------

Réponse 48 / 104

christorock Messages postés 558 Date d'inscription mercredi 1 octobre 2008 Statut Membre Dernière intervention 25 mai 2013 10
25 févr. 2009 à 18:27

Voila^^

Réponse 49 / 104

loloetseb Messages postés 5508 Date d'inscription dimanche 14 décembre 2008 Statut Membre Dernière intervention 22 avril 2012 174
25 févr. 2009 à 18:53

---> Désactive ton antivirus le temps de la manipulation car OTMoveIt3 est détecté comme une infection à tort.

---> Télécharge OTMoveIt3 (OldTimer) sur ton Bureau :

http://oldtimer.geekstogo.com/OTMoveIt3.exe

---> Double-clique sur OTMoveIt3.exe afin de le lancer.

---> Copie (Ctrl+C) le texte suivant ci-dessous :

:processes
explorer.exe

:files
c:\windows\system32\sysrestore.dll

:commands
[purity]
[emptytemp]
[start explorer]
[reboot]

---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.

---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.

---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log

Réponse 50 / 104

christorock Messages postés 558 Date d'inscription mercredi 1 octobre 2008 Statut Membre Dernière intervention 25 mai 2013 10
25 févr. 2009 à 20:02

d'accord mais sinon je suis encore infecter?

Réponse 51 / 104

loloetseb Messages postés 5508 Date d'inscription dimanche 14 décembre 2008 Statut Membre Dernière intervention 22 avril 2012 174
25 févr. 2009 à 20:38

Oui tu as encore plusieurs lignes suspectes

Réponse 52 / 104

christorock Messages postés 558 Date d'inscription mercredi 1 octobre 2008 Statut Membre Dernière intervention 25 mai 2013 10
25 févr. 2009 à 21:30

il veut pas poster le rapport du logiciel OTMoveIt3

Réponse 53 / 104

loloetseb Messages postés 5508 Date d'inscription dimanche 14 décembre 2008 Statut Membre Dernière intervention 22 avril 2012 174
26 févr. 2009 à 01:13

Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log

Réponse 54 / 104

christorock Messages postés 558 Date d'inscription mercredi 1 octobre 2008 Statut Membre Dernière intervention 25 mai 2013 10
28 févr. 2009 à 13:46

salut, jsui dsl du retard enfaite. Oui donc mas enfaite le rapport il c'est pas enregistrer dans le C: mais c bon sa été supprimé par succée le truc que tu ma dit de faire

Réponse 55 / 104

loloetseb Messages postés 5508 Date d'inscription dimanche 14 décembre 2008 Statut Membre Dernière intervention 22 avril 2012 174
28 févr. 2009 à 14:52

Repostes un Rsit pour controle (supprimes les anciens rapports avant de lancer le scan)

Réponse 56 / 104

christorock Messages postés 558 Date d'inscription mercredi 1 octobre 2008 Statut Membre Dernière intervention 25 mai 2013 10
28 févr. 2009 à 21:25

Logfile of random's system information tool 1.05 (written by random/random)
Run by christopher at 2009-02-28 21:24:38
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 22 GB (15%) free of 148 GB
Total RAM: 2815 MB (52% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:24:45, on 28/02/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Acer\Empowering Technology\SysMonitor.exe
C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Windows\System32\nvraidservice.exe
C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Registry Mechanic\RMTray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
F:\RocketDock\RocketDock.exe
C:\Windows\system32\wuauclt.exe
C:\Users\christopher\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\christopher\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\christopher\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\christopher\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\christopher\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\christopher\Documents\Downloads\RSIT (2).exe
C:\Program Files\Trend Micro\christopher.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www1.mini20.com/?tm=1&kw=Secure+Web+Search+Engine&KW1=Secure%20Web%20Search%20Engine&KW2=Best%20Malware%20Detection%20And%20Removal%20Software&searchbox=0&domainname=0&backfill=0
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: recfree Toolbar - {15c93148-34fe-47e6-88e5-37607a3002f3} - C:\Program Files\recfree\tbrec1.dll
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: eCATRegistrar Class - {02336F51-24CA-4422-AB63-18841ADF35E6} - (no file)
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: recfree Toolbar - {15c93148-34fe-47e6-88e5-37607a3002f3} - C:\Program Files\recfree\tbrec1.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
O2 - BHO: Google Plus - {C8CD2017-F1E5-4F1A-B58A-EE0B1AF0D0D8} - C:\PROGRA~1\GOOGLE~1\2GOOGL~1.DLL
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: ONSPEED - {4BC3AC04-3E56-411D-B465-4FEA06654611} - (no file)
O3 - Toolbar: recfree Toolbar - {15c93148-34fe-47e6-88e5-37607a3002f3} - C:\Program Files\recfree\tbrec1.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
O4 - HKLM\..\Run: [PCMMediaSharing] C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O4 - HKLM\..\Run: [NVRaidService] C:\Windows\system32\nvraidservice.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [iolo Startup] "C:\Program Files\iolo\Common\Lib\ioloLManager.exe"
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKCU\..\Run: [RegistryMechanic] C:\Program Files\Registry Mechanic\RMTray.exe /H
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Startup: Registration Lock On
O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Ajouter à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\christopher\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iolo FileInfoList Service (ioloFileInfoList) - Unknown owner - C:\Program Files\iolo\common\lib\ioloServiceManager.exe
O23 - Service: iolo System Service (ioloSystemService) - Unknown owner - C:\Program Files\iolo\common\lib\ioloServiceManager.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: McAfee Services (mcmscsvc) - Malwarebytes Corporation - (no file)
O23 - Service: McAfee Network Agent (McNASvc) - Unknown owner - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe (file missing)
O23 - Service: McAfee Proxy Service (McProxy) - Unknown owner - (no file)
O23 - Service: McAfee Real-time Scanner (McShield) - Unknown owner - (no file)
O23 - Service: McAfee SystemGuards (McSysmon) - Unknown owner - (no file)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - Unknown owner - C:\Program Files\McAfee\MSK\MskSrver.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - C:\Program Files\SPAMfighter\sfus.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Windows\System32\TuneUpDefragService.exe

Réponse 57 / 104

christorock Messages postés 558 Date d'inscription mercredi 1 octobre 2008 Statut Membre Dernière intervention 25 mai 2013 10
28 févr. 2009 à 21:26

2009-02-20 16:05:54 ----D---- C:\Program Files\Registry Mechanic
2009-02-16 01:21:46 ----D---- C:\Users\christopher\AppData\Roaming\iolo
2009-02-16 01:21:46 ----D---- C:\ProgramData\iolo
2009-02-14 23:11:55 ----D---- C:\Program Files\FindyKill
2009-02-14 16:43:23 ----A---- C:\Windows\system32\aswBoot.exe
2009-02-14 13:44:22 ----D---- C:\Users\christopher\AppData\Roaming\InstallShield
2009-02-14 01:06:47 ----A---- C:\Windows\system32\nvudisp.exe
2009-02-14 01:06:43 ----A---- C:\Windows\system32\nvwssr.dll
2009-02-14 01:06:43 ----A---- C:\Windows\system32\nvwss.dll
2009-02-14 01:06:43 ----A---- C:\Windows\system32\nvwgf2um.dll
2009-02-14 01:06:41 ----A---- C:\Windows\system32\nvvitvsr.dll
2009-02-14 01:06:41 ----A---- C:\Windows\system32\nvvitvs.dll
2009-02-14 01:06:41 ----A---- C:\Windows\system32\nvsvsr.dll
2009-02-14 01:06:41 ----A---- C:\Windows\system32\nvsvs.dll
2009-02-14 01:06:41 ----A---- C:\Windows\system32\nvoglv32.dll
2009-02-14 01:06:41 ----A---- C:\Windows\system32\nvmoblsr.dll
2009-02-14 01:06:41 ----A---- C:\Windows\system32\nvmobls.dll
2009-02-14 01:06:40 ----A---- C:\Windows\system32\nvmctray.dll
2009-02-14 01:06:40 ----A---- C:\Windows\system32\nvmccssr.dll
2009-02-14 01:06:40 ----A---- C:\Windows\system32\nvmccss.dll
2009-02-14 01:06:40 ----A---- C:\Windows\system32\nvmccsrs.dll
2009-02-14 01:06:40 ----A---- C:\Windows\system32\nvmccs.dll
2009-02-14 01:06:40 ----A---- C:\Windows\system32\nvgamesr.dll
2009-02-14 01:06:38 ----A---- C:\Windows\system32\nvgames.dll
2009-02-14 01:06:38 ----A---- C:\Windows\system32\nvdispsr.dll
2009-02-14 01:06:38 ----A---- C:\Windows\system32\nvdisps.dll
2009-02-14 01:06:37 ----A---- C:\Windows\system32\nvcuvid.dll
2009-02-14 01:06:37 ----A---- C:\Windows\system32\nvcuda.dll
2009-02-14 01:06:35 ----A---- C:\Windows\system32\nvcod140.dll
2009-02-14 01:06:35 ----A---- C:\Windows\system32\nvcod.dll
2009-02-14 00:02:37 ----A---- C:\Windows\system32\EncDec.dll
2009-02-14 00:02:33 ----A---- C:\Windows\system32\psisdecd.dll
2009-02-12 16:36:23 ----D---- C:\ProgramData\Electronic Arts
2009-02-11 22:16:27 ----A---- C:\Windows\system32\mshtml.dll
2009-02-11 22:16:25 ----A---- C:\Windows\system32\ieframe.dll
2009-02-11 22:16:24 ----A---- C:\Windows\system32\wininet.dll
2009-02-11 22:16:24 ----A---- C:\Windows\system32\urlmon.dll
2009-02-11 22:16:23 ----A---- C:\Windows\system32\mstime.dll
2009-02-11 22:16:23 ----A---- C:\Windows\system32\msfeeds.dll
2009-02-11 22:16:23 ----A---- C:\Windows\system32\jsproxy.dll
2009-02-11 22:16:23 ----A---- C:\Windows\system32\iertutil.dll
2009-02-11 02:35:47 ----D---- C:\ProgramData\WindowsSearch
2009-02-11 00:35:05 ----D---- C:\Users\christopher\AppData\Roaming\Atari
2009-02-10 23:19:15 ----D---- C:\Users\christopher\AppData\Roaming\ubi.com
2009-02-10 23:19:15 ----A---- C:\Windows\patchw32.dll
2009-02-10 23:19:04 ----D---- C:\Program Files\Common Files\PocketSoft
2009-02-10 23:19:01 ----D---- C:\Program Files\ubi.com
2009-02-10 23:16:13 ----A---- C:\Windows\system32\msxml.dll
2009-02-10 22:58:23 ----D---- C:\Users\christopher\AppData\Roaming\DWGeditor
2009-02-10 22:57:39 ----D---- C:\Program Files\DWGeditor
2009-02-10 22:43:02 ----D---- C:\Program Files\AGEIA Technologies
2009-02-10 22:42:59 ----D---- C:\ProgramData\SolidWorks
2009-02-10 22:37:36 ----D---- C:\Program Files\Common Files\SolidWorks Shared
2009-02-10 22:37:36 ----A---- C:\Windows\eDrawingOfficeAutomator.INI
2009-02-10 22:37:10 ----D---- C:\Program Files\Common Files\eDrawings2008
2009-02-10 15:57:03 ----D---- C:\Program Files\EA GAMES
2009-02-10 15:33:36 ----D---- C:\Program Files\Common Files\Gestionnaire d'installation SolidWorks
2009-02-10 15:29:56 ----D---- C:\Windows\SolidWorks
2009-02-10 15:29:50 ----D---- C:\Users\christopher\AppData\Roaming\IM
2009-02-07 18:51:19 ----D---- C:\ProgramData\PC Drivers Headquarters
2009-02-07 18:47:20 ----D---- C:\Program Files\PC Drivers HeadQuarters
2009-02-04 21:00:47 ----D---- C:\Program Files\Sierra
2009-02-03 22:27:14 ----D---- C:\Program Files\MSECache
2009-02-01 21:22:44 ----D---- C:\Program Files\gPotato.eu
2009-01-31 13:02:59 ----D---- C:\Users\christopher\AppData\Roaming\IMVU
2009-01-31 13:02:44 ----D---- C:\Users\christopher\AppData\Roaming\IMVUClient
2009-01-29 13:25:00 ----D---- C:\Windows\system32\logs
2009-01-29 13:24:47 ----D---- C:\Users\christopher\AppData\Roaming\BitDefender
2009-01-29 13:24:45 ----D---- C:\Program Files\Common Files\MSSoap
2009-01-29 13:24:04 ----D---- C:\ProgramData\BitDefender
2009-01-29 13:24:04 ----D---- C:\Program Files\BitDefender
2009-01-29 13:22:27 ----D---- C:\Windows\system32\URTTEMP
2009-01-29 13:20:32 ----D---- C:\Program Files\Common Files\BitDefender
2009-01-29 01:46:55 ----D---- C:\Users\christopher\AppData\Roaming\SPAMfighter
2009-01-29 01:46:04 ----D---- C:\Program Files\Common Files\Application
2009-01-29 01:45:54 ----D---- C:\Program Files\SPAMfighter
2009-01-27 21:20:20 ----D---- C:\Program Files\Common Files\Adobe AIR
2009-01-27 21:08:18 ----D---- C:\Program Files\GooglePlusVideos
2009-01-27 21:05:24 ----D---- C:\Program Files\Conduit
2009-01-27 21:05:23 ----D---- C:\Program Files\recfree
2009-01-27 21:05:17 ----D---- C:\Program Files\EasySearch
2009-01-27 20:55:52 ----D---- C:\MoTemp
2009-01-26 22:54:28 ----D---- C:\Program Files\7-Zip
2009-01-25 03:01:12 ----A---- C:\Windows\system32\decdll.dll
2009-01-24 14:24:17 ----A---- C:\Windows\system32\PnkBstrB.exe
2009-01-24 14:24:10 ----A---- C:\Windows\system32\PnkBstrA.exe
2009-01-24 02:39:43 ----D---- C:\PunkBuster
2009-01-21 23:28:23 ----D---- C:\Downloads
2009-01-17 23:49:56 ----D---- C:\NVIDIA
2009-01-17 23:45:49 ----D---- C:\Program Files\ma-config.com
2009-01-17 23:35:54 ----D---- C:\ProgramData\Microsoft Corporation
2009-01-17 23:35:35 ----D---- C:\Program Files\Microsoft Windows Vista Upgrade Advisor
2009-01-17 01:41:50 ----D---- C:\Users\christopher\AppData\Roaming\Qtracker
2009-01-17 01:39:45 ----D---- C:\Program Files\Qtracker
2009-01-15 23:05:46 ----D---- C:\Users\christopher\AppData\Roaming\Free Download Manager
2009-01-15 23:05:41 ----D---- C:\Program Files\Free Download Manager
2009-01-15 21:09:00 ----A---- C:\Windows\system32\d3dx10_40.dll
2009-01-15 21:09:00 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2009-01-15 21:08:59 ----A---- C:\Windows\system32\XAudio2_3.dll
2009-01-15 21:08:59 ----A---- C:\Windows\system32\XAudio2_2.dll
2009-01-15 21:08:59 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2009-01-15 21:08:59 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2009-01-15 21:08:59 ----A---- C:\Windows\system32\xactengine3_3.dll
2009-01-15 21:08:59 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2009-01-15 21:08:59 ----A---- C:\Windows\system32\D3DX9_40.dll
2009-01-15 21:08:58 ----A---- C:\Windows\system32\XAudio2_1.dll
2009-01-15 21:08:58 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2009-01-15 21:08:58 ----A---- C:\Windows\system32\xactengine3_2.dll
2009-01-15 21:08:58 ----A---- C:\Windows\system32\D3DX9_39.dll
2009-01-15 21:08:58 ----A---- C:\Windows\system32\d3dx10_39.dll
2009-01-15 21:08:58 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2009-01-15 21:08:57 ----A---- C:\Windows\system32\XAudio2_0.dll
2009-01-15 21:08:57 ----A---- C:\Windows\system32\xactengine3_1.dll
2009-01-15 21:08:57 ----A---- C:\Windows\system32\xactengine3_0.dll
2009-01-15 21:08:57 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2009-01-15 21:08:57 ----A---- C:\Windows\system32\D3DX9_38.dll
2009-01-15 21:08:57 ----A---- C:\Windows\system32\d3dx10_38.dll
2009-01-15 21:08:57 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2009-01-15 21:08:56 ----A---- C:\Windows\system32\xactengine2_10.dll
2009-01-15 21:08:56 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2009-01-15 21:08:56 ----A---- C:\Windows\system32\D3DX9_37.dll
2009-01-15 21:08:56 ----A---- C:\Windows\system32\d3dx10_37.dll
2009-01-15 21:08:56 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2009-01-15 21:08:55 ----A---- C:\Windows\system32\xactengine2_9.dll
2009-01-15 21:08:55 ----A---- C:\Windows\system32\d3dx9_36.dll
2009-01-15 21:08:55 ----A---- C:\Windows\system32\d3dx10_36.dll
2009-01-15 21:08:55 ----A---- C:\Windows\system32\d3dx10_35.dll
2009-01-15 21:08:55 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2009-01-15 21:08:55 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2009-01-15 21:08:54 ----A---- C:\Windows\system32\xactengine2_8.dll
2009-01-15 21:08:54 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2009-01-15 21:08:54 ----A---- C:\Windows\system32\d3dx9_35.dll
2009-01-15 21:08:53 ----A---- C:\Windows\system32\xinput1_3.dll
2009-01-15 21:08:53 ----A---- C:\Windows\system32\d3dx9_34.dll
2009-01-15 21:08:53 ----A---- C:\Windows\system32\d3dx10_34.dll
2009-01-15 21:08:53 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2009-01-15 21:08:51 ----A---- C:\Windows\system32\xactengine2_7.dll
2009-01-15 21:08:51 ----A---- C:\Windows\system32\d3dx9_33.dll
2009-01-15 21:08:51 ----A---- C:\Windows\system32\d3dx10_33.dll
2009-01-15 21:08:51 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2009-01-15 21:08:50 ----A---- C:\Windows\system32\xactengine2_6.dll
2009-01-15 21:08:50 ----A---- C:\Windows\system32\xactengine2_5.dll
2009-01-15 21:08:50 ----A---- C:\Windows\system32\xactengine2_4.dll
2009-01-15 21:08:50 ----A---- C:\Windows\system32\x3daudio1_1.dll
2009-01-15 21:08:50 ----A---- C:\Windows\system32\d3dx9_31.dll
2009-01-15 21:08:50 ----A---- C:\Windows\system32\d3dx10.dll
2009-01-15 20:29:24 ----D---- C:\Windows\system32\directx
2009-01-15 19:51:48 ----N---- C:\Windows\system32\vxblock.dll
2009-01-15 19:51:48 ----N---- C:\Windows\system32\pxwave.dll
2009-01-15 19:51:48 ----N---- C:\Windows\system32\pxsfs.dll
2009-01-15 19:51:48 ----N---- C:\Windows\system32\pxmas.dll
2009-01-15 19:51:48 ----N---- C:\Windows\system32\pxhpinst.exe
2009-01-15 19:51:48 ----N---- C:\Windows\system32\pxdrv.dll
2009-01-15 19:51:48 ----N---- C:\Windows\system32\pxafs.dll
2009-01-15 19:51:48 ----N---- C:\Windows\system32\px.dll
2009-01-13 21:47:21 ----D---- C:\Program Files\World of Warcraft
2009-01-13 21:47:21 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
2009-01-13 21:38:00 ----D---- C:\Users\christopher\AppData\Roaming\DAEMON Tools Pro
2009-01-13 21:38:00 ----D---- C:\Users\christopher\AppData\Roaming\DAEMON Tools
2009-01-13 21:37:19 ----D---- C:\ProgramData\DAEMON Tools Lite
2009-01-13 21:37:14 ----D---- C:\Program Files\DAEMON Tools Lite
2009-01-13 21:33:47 ----D---- C:\Users\christopher\AppData\Roaming\DAEMON Tools Lite
2009-01-13 20:58:38 ----D---- C:\Program Files\Common Files\Macrovision Shared
2009-01-12 22:45:34 ----D---- C:\Users\christopher\AppData\Roaming\Broad Intelligence
2009-01-11 22:11:28 ----D---- C:\Users\christopher\AppData\Roaming\MoviesApp
2009-01-11 22:11:26 ----D---- C:\Program Files\SATVOD
2009-01-11 22:10:50 ----A---- C:\Windows\system32\javaws.exe
2009-01-11 22:10:50 ----A---- C:\Windows\system32\javaw.exe
2009-01-11 22:10:50 ----A---- C:\Windows\system32\java.exe
2009-01-11 22:10:50 ----A---- C:\Windows\system32\deploytk.dll
2009-01-11 18:23:23 ----A---- C:\Windows\system32\mpg4c32.dll
2009-01-11 02:48:21 ----D---- C:\Users\christopher\AppData\Roaming\dvdcss
2009-01-11 00:59:32 ----D---- C:\Users\christopher\AppData\Roaming\OpenOffice.org
2009-01-11 00:57:20 ----D---- C:\Program Files\JRE
2009-01-11 00:57:16 ----D---- C:\Program Files\OpenOffice.org 3
2009-01-11 00:56:15 ----D---- C:\Program Files\Java
2009-01-11 00:56:13 ----D---- C:\Program Files\Common Files\Java
2009-01-10 16:12:28 ----A---- C:\Windows\system32\TuneUpDefragService.exe
2009-01-08 21:06:20 ----D---- C:\Program Files\CCleaner
2009-01-08 00:43:35 ----D---- C:\autorun.inf
2009-01-07 23:41:26 ----D---- C:\Users\christopher\AppData\Roaming\Malwarebytes
2009-01-07 23:41:22 ----D---- C:\ProgramData\Malwarebytes
2009-01-07 23:41:22 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-01-07 23:34:26 ----D---- C:\Program Files\Trend Micro
2009-01-07 23:13:12 ----D---- C:\killbagle
2009-01-07 23:12:25 ----A---- C:\Windows\zip.exe
2009-01-07 23:12:25 ----A---- C:\Windows\VFIND.exe
2009-01-07 23:12:25 ----A---- C:\Windows\SWXCACLS.exe
2009-01-07 23:12:25 ----A---- C:\Windows\SWSC.exe
2009-01-07 23:12:25 ----A---- C:\Windows\SWREG.exe
2009-01-07 23:12:25 ----A---- C:\Windows\NIRCMD.exe
2009-01-07 23:12:25 ----A---- C:\Windows\grep.exe
2009-01-07 23:12:25 ----A---- C:\Windows\fdsv.exe
2009-01-07 23:12:22 ----D---- C:\Windows\ERDNT
2009-01-07 16:19:36 ----D---- C:\Users\christopher\AppData\Roaming\SlipStream
2009-01-07 16:19:19 ----A---- C:\Windows\system32\SLIPRT.DLL
2009-01-07 13:41:11 ----D---- C:\Program Files\Alwil Software
2009-01-06 00:11:45 ----A---- C:\Users\christopher\AppData\Roaming\rsvp.exe
2009-01-04 19:08:33 ----A---- C:\Windows\cisvc.exe
2009-01-04 18:01:26 ----D---- C:\Windows\Minidump
2009-01-04 15:37:00 ----D---- C:\ProgramData\WebcamMax
2009-01-04 15:36:44 ----D---- C:\Users\christopher\AppData\Roaming\Webcammax
2009-01-04 15:30:23 ----D---- C:\Program Files\WebcamMax
2009-01-02 21:56:38 ----HD---- C:\Program Files\GLF5.tmp
2009-01-02 03:57:29 ----D---- C:\Program Files\inKline Global
2009-01-02 00:50:37 ----D---- C:\Program Files\Windows Live Safety Center
2009-01-01 22:26:33 ----D---- C:\Program Files\Robust.ws
2008-12-30 18:53:30 ----D---- C:\Program Files\PhotoFiltre Studio
2008-12-29 20:53:59 ----D---- C:\Program Files\Common Files\Logitech
2008-12-29 13:14:16 ----D---- C:\Program Files\Common Files\Designer
2008-12-29 13:11:51 ----D---- C:\Program Files\Microsoft Office
2008-12-29 12:06:29 ----A---- C:\Windows\ODBC.INI
2008-12-29 12:06:24 ----A---- C:\Windows\vbaddin.ini
2008-12-29 12:05:37 ----D---- C:\Program Files\Microsoft Visual Studio
2008-12-29 12:04:57 ----D---- C:\Program Files\Microsoft FrontPage
2008-12-29 12:03:40 ----D---- C:\Users\christopher\AppData\Roaming\Microsoft Web Folders
2008-12-29 03:02:48 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2

Err :510

2009-02-28 21:24:45 ----D---- C:\Windows\Prefetch
2009-02-28 21:24:41 ----D---- C:\Windows\Temp
2009-02-28 20:55:23 ----D---- C:\Windows\System32
2009-02-28 20:55:23 ----D---- C:\Windows\inf
2009-02-28 20:55:23 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-02-28 20:51:34 ----D---- C:\Windows
2009-02-28 20:48:58 ----HD---- C:\Program Files\Temp
2009-02-28 20:48:04 ----D---- C:\Windows\system32\drivers
2009-02-28 20:48:00 ----D---- C:\Windows\system32\catroot
2009-02-28 20:47:52 ----SHD---- C:\System Volume Information
2009-02-28 20:47:26 ----A---- C:\Windows\DIFxAPI.dll
2009-02-28 20:47:21 ----HD---- C:\Program Files\InstallShield Installation Information
2009-02-28 20:47:21 ----D---- C:\Program Files
2009-02-28 15:44:10 ----SHD---- C:\Windows\Installer
2009-02-28 15:43:06 ----RSD---- C:\Windows\assembly
2009-02-28 15:24:18 ----D---- C:\Windows\Debug
2009-02-28 15:18:44 ----D---- C:\Program Files\Common Files\microsoft shared
2009-02-28 14:12:31 ----D---- C:\Windows\system32\Tasks
2009-02-28 03:00:22 ----D---- C:\Windows\Microsoft.NET
2009-02-28 02:33:44 ----D---- C:\ProgramData
2009-02-28 02:20:10 ----D---- C:\Program Files\MessengerDiscovery
2009-02-28 01:24:44 ----D---- C:\Program Files\Messenger Plus! Live
2009-02-28 01:10:04 ----D---- C:\Program Files\Windows Live
2009-02-28 01:06:59 ----D---- C:\Windows\system32\catroot2
2009-02-28 01:06:00 ----D---- C:\ProgramData\WLInstaller
2009-02-28 00:40:25 ----D---- C:\Windows\winsxs
2009-02-26 23:50:32 ----D---- C:\Users\christopher\AppData\Roaming\Apple Computer
2009-02-25 20:40:57 ----D---- C:\ProgramData\NVIDIA
2009-02-25 20:37:35 ----D---- C:\Program Files\Windows Media Player
2009-02-25 08:10:04 ----D---- C:\Windows\system32\spool
2009-02-24 23:50:38 ----D---- C:\Windows\Tasks
2009-02-24 19:20:41 ----D---- C:\ProgramData\Spybot - Search & Destroy
2009-02-24 19:12:51 ----D---- C:\Program Files\Mozilla Firefox
2009-02-24 19:05:50 ----A---- C:\Windows\system.ini
2009-02-24 19:04:23 ----D---- C:\Windows\AppPatch
2009-02-24 19:04:22 ----D---- C:\Program Files\Common Files
2009-02-24 19:03:51 ----SD---- C:\Users\christopher\AppData\Roaming\Microsoft
2009-02-24 18:57:57 ----D---- C:\Windows\system32\fr-FR
2009-02-23 23:42:16 ----SHD---- C:\Boot
2009-02-23 23:42:16 ----D---- C:\Windows\system32\config
2009-02-23 20:20:45 ----D---- C:\ProgramData\McAfee
2009-02-22 20:03:02 ----D---- C:\Program Files\Free Video Converter
2009-02-22 02:32:29 ----D---- C:\Windows\ModemLogs
2009-02-20 16:22:41 ----D---- C:\ProgramData\Microsoft
2009-02-19 01:33:03 ----D---- C:\Program Files\Microsoft Games
2009-02-16 12:50:13 ----D---- C:\Users\christopher\AppData\Roaming\Adobe
2009-02-15 09:34:27 ----D---- C:\Users\christopher\AppData\Roaming\SPORE
2009-02-14 23:39:06 ----D---- C:\Windows\Logs
2009-02-14 00:04:04 ----D---- C:\Windows\ehome
2009-02-12 03:01:39 ----D---- C:\ProgramData\Microsoft Help
2009-02-12 03:00:51 ----D---- C:\Program Files\Windows Mail
2009-02-11 22:37:19 ----D---- C:\Users\christopher\AppData\Roaming\SolidWorks
2009-02-10 22:45:35 ----RSD---- C:\Windows\Fonts
2009-02-10 22:43:05 ----HD---- C:\Windows\system32\GroupPolicy
2009-02-10 09:46:44 ----SD---- C:\Windows\Downloaded Program Files
2009-02-07 16:37:00 ----D---- C:\Users\christopher\AppData\Roaming\Skype
2009-02-07 16:36:42 ----D---- C:\Users\christopher\AppData\Roaming\skypePM
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvvsvc.exe
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvsvcr.dll
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvsvc.dll
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvd3dum.dll
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvcpluir.dll
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvcplui.exe
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvcpl.dll
2009-02-06 18:46:00 ----A---- C:\Windows\system32\nvapi.dll
2009-02-04 00:21:12 ----A---- C:\Windows\system32\mrt.exe
2009-02-01 19:41:34 ----D---- C:\Program Files\TuneUp Utilities 2009
2009-01-31 21:22:06 ----D---- C:\Program Files\Adobe
2009-01-31 21:22:04 ----D---- C:\Program Files\Common Files\Adobe
2009-01-31 02:45:46 ----D---- C:\Program Files\Common Files\PX Storage Engine
2009-01-30 03:04:09 ----D---- C:\Windows\Registration
2009-01-30 03:03:15 ----D---- C:\Program Files\Internet Explorer
2009-01-27 23:28:27 ----D---- C:\ProgramData\Adobe
2009-01-24 14:24:10 ----D---- C:\Windows\system32\LogFiles
2009-01-14 21:47:49 ----D---- C:\ProgramData\Messenger Plus!
2009-01-11 01:27:55 ----D---- C:\Windows\ShellNew
2009-01-07 23:45:02 ----D---- C:\Windows\system
2009-01-07 23:17:31 ----D---- C:\Windows\system32\NDF
2009-01-07 22:41:41 ----D---- C:\Windows\system32\WDI
2009-01-07 14:00:03 ----D---- C:\Program Files\RocketDock

Réponse 58 / 104

christorock Messages postés 558 Date d'inscription mercredi 1 octobre 2008 Statut Membre Dernière intervention 25 mai 2013 10
28 févr. 2009 à 21:26

2008-12-29 13:14:38 ----A---- C:\Windows\win.ini
2008-12-29 12:06:25 ----D---- C:\Windows\Help
2008-12-29 12:05:30 ----RSD---- C:\Windows\Media
2008-12-29 12:05:14 ----D---- C:\Program Files\Common Files\System
2008-12-29 12:04:31 ----D---- C:\Windows\MSAgent
2008-12-29 09:55:03 ----D---- C:\ProgramData\Logishrd

Err :510

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2009-02-05 23152]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2009-02-05 114768]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2009-02-05 51376]
R1 ElRawDisk;ElRawDisk; \??\C:\Windows\system32\drivers\elrawdsk.sys [2008-09-03 12800]
R1 FileDisk;FileDisk; C:\Windows\system32\drivers\FileDisk.sys [2008-04-17 9341]
R1 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys [2009-01-09 5632]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2009-02-05 51792]
R2 CamthWDM;WebcamMax, WDM Video Capture; C:\Windows\system32\DRIVERS\CamthWDM.sys [2008-12-18 1051136]
R2 int15;int15; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys [2007-07-03 15392]
R2 PSDNServ;PSDNServ; C:\Windows\system32\DRIVERS\PSDNServ.sys [2008-03-04 16944]
R2 psdvdisk;PSDVdisk; C:\Windows\system32\DRIVERS\PSDVdisk.sys [2008-03-04 60464]
R2 tvicport;tvicport; \??\C:\Windows\system32\drivers\tvicport.sys [2007-11-06 14544]
R2 zntport;zntport; \??\C:\Windows\system32\drivers\zntport.sys [2007-11-06 6080]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-02-18 2323680]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\Windows\system32\DRIVERS\LVPr2Mon.sys [2008-07-26 25624]
R3 LVRS;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs.sys [2008-07-26 627864]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBSta.sys [2008-07-26 41752]
R3 LVUVC;Logitech QuickCam S5500(UVC); C:\Windows\system32\DRIVERS\lvuvc.sys [2008-07-26 4658584]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2009-02-11 15504]
R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-03-21 6144]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2007-11-18 1040544]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-02-06 7764704]
R3 usbaudio;Pilote USB audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2008-01-21 73088]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S1 MPFP;MPFP; C:\Windows\System32\Drivers\Mpfp.sys []
S2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys []
S3 a8xe7hlm;a8xe7hlm; C:\Windows\system32\drivers\a8xe7hlm.sys []
S3 an9wimzl;an9wimzl; C:\Windows\system32\drivers\an9wimzl.sys []
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder\SysInfo.sys []
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [2009-01-24 14336]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 NVHDA;Service for NVIDIA HDMI Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2007-07-16 30752]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ss_bus.sys [2007-05-02 83592]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\Windows\system32\DRIVERS\ss_mdfl.sys [2007-05-02 15112]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\Windows\system32\DRIVERS\ss_mdm.sys [2007-05-02 109704]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2007-07-03 80552]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2007-07-03 11944]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2007-07-03 106792]
S3 usbvideo;Périphérique vidéo USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-21 39936]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iastor.sys [2006-06-13 247808]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-21 11264]

Err :510

R2 Acer HomeMedia Connect Service;Acer HomeMedia Connect Service; C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe [2008-01-25 269448]
R2 AcerMemUsageCheckService;ePerformance Service; C:\Acer\Empowering Technology\ePerformance\MemCheck.exe [2007-10-17 28672]
R2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7; C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-09-16 169312]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 eDataSecurity Service;eDataSecurity Service; C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [2008-03-04 500784]
R2 eRecoveryService;eRecovery Service; C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe [2007-09-10 57344]
R2 eSettingsService;eSettings Service; C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe [2007-12-19 24576]
R2 ioloFileInfoList;iolo FileInfoList Service; C:\Program Files\iolo\common\lib\ioloServiceManager.exe [2008-09-24 596840]
R2 ioloSystemService;iolo System Service; C:\Program Files\iolo\common\lib\ioloServiceManager.exe [2008-09-24 596840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
R2 LVCOMSer;LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe [2008-07-26 186904]
R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2008-07-26 150040]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2009-02-11 179856]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-02-06 207392]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2009-01-24 66872]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2006-07-19 262247]
R2 SPAMfighter Update Service;SPAMfighter Update Service; C:\Program Files\SPAMfighter\sfus.exe [2009-01-16 184968]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
S2 McNASvc;McAfee Network Agent; c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe []
S2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\McAfee\MSK\MskSrver.exe []
S3 aspnet_state;Service d'état ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-27 34312]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-01-13 655624]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-11-20 536872]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-01-24 216232]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [2009-02-10 79360]
S3 TuneUp.Defrag;@%SystemRoot%\System32\TuneUpDefragService.exe,-1; C:\Windows\System32\TuneUpDefragService.exe [2009-01-10 362240]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 usprserv;User Privilege Service; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]

-----------------EOF-----------------

Réponse 59 / 104

loloetseb Messages postés 5508 Date d'inscription dimanche 14 décembre 2008 Statut Membre Dernière intervention 22 avril 2012 174
28 févr. 2009 à 21:29

1/Supprimer les fichiers temporaires et reparer le registre

2/
===================== CCLEANER ========================
Pour le petit coup de polish.
• Appliquer la procédure ci-dessous.
• l'outil pourra être conservé pour faire le ménage de temps en temps en appliquant la même procédure.

• Télécharger CCLeaner et l'installer sur le bureau en refusant l'installation de la barre Yahoo.

http://www.commentcamarche.net/telecharger/telecharger 168 ccleaner

• Fermer toutes les applications
• Lancer CCLeaner
S'il n'est pas en Français cliquer sur Options, Setting, Language et sélectionner Français
• cocher dans le menu Nettoyeur - onglet Windows :
Internet Explorer: Fichiers Internet Temporaires, Cookies
• Système: Vider la Poubelle, Fichiers Temporaires, Presse-papiers
• Avancé: Vieilles données du Prefetch
• Décocher dans le menu Options - sous-menu Avancé :
Effacer uniquement les fichiers, du dossier temp de Windows, plus vieux que 48 heures
• Cocher dans le menu Nettoyeur - onglet Applications : Internet: Sun Java
• Cocher , si cela est possible, dans le menu Nettoyeur - onglet Applications :
Firefox/Mozilla: Cache Internet, Cookies
• Click sur Analyse
• Click sur le bouton Lancer le nettoyage dans le menu Nettoyeur.
• Click sur Registre
• Sélectionner tout
• Click sur Chercher des erreurs (En bas)

Une fois le scan terminé sélectionner tout
• Click sur Réparer les erreurs sélectionnées

3/Repostes un rapport Rsit (supprimes les anciens rapports avant de relancer le scan)

Réponse 60 / 104

christorock Messages postés 558 Date d'inscription mercredi 1 octobre 2008 Statut Membre Dernière intervention 25 mai 2013 10
28 févr. 2009 à 21:45

Logfile of random's system information tool 1.05 (written by random/random)
Run by christopher at 2009-02-28 21:42:52
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 23 GB (15%) free of 148 GB
Total RAM: 2815 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:42:58, on 28/02/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Acer\Empowering Technology\SysMonitor.exe
C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Windows\System32\nvraidservice.exe
C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Registry Mechanic\RMTray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
F:\RocketDock\RocketDock.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\msiexec.exe
C:\Windows\system32\MsiExec.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\christopher\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\christopher\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\christopher\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\christopher\Documents\Downloads\RSIT (3).exe
C:\Program Files\Trend Micro\christopher.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.mini20.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: recfree Toolbar - {15c93148-34fe-47e6-88e5-37607a3002f3} - C:\Program Files\recfree\tbrec1.dll
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: eCATRegistrar Class - {02336F51-24CA-4422-AB63-18841ADF35E6} - (no file)
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: recfree Toolbar - {15c93148-34fe-47e6-88e5-37607a3002f3} - C:\Program Files\recfree\tbrec1.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
O2 - BHO: Google Plus - {C8CD2017-F1E5-4F1A-B58A-EE0B1AF0D0D8} - C:\PROGRA~1\GOOGLE~1\2GOOGL~1.DLL
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: ONSPEED - {4BC3AC04-3E56-411D-B465-4FEA06654611} - (no file)
O3 - Toolbar: recfree Toolbar - {15c93148-34fe-47e6-88e5-37607a3002f3} - C:\Program Files\recfree\tbrec1.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
O4 - HKLM\..\Run: [PCMMediaSharing] C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O4 - HKLM\..\Run: [NVRaidService] C:\Windows\system32\nvraidservice.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [iolo Startup] "C:\Program Files\iolo\Common\Lib\ioloLManager.exe"
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKCU\..\Run: [RegistryMechanic] C:\Program Files\Registry Mechanic\RMTray.exe /H
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Startup: Registration Lock On
O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Ajouter à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\christopher\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iolo FileInfoList Service (ioloFileInfoList) - Unknown owner - C:\Program Files\iolo\common\lib\ioloServiceManager.exe
O23 - Service: iolo System Service (ioloSystemService) - Unknown owner - C:\Program Files\iolo\common\lib\ioloServiceManager.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: McAfee Services (mcmscsvc) - Malwarebytes Corporation - (no file)
O23 - Service: McAfee Network Agent (McNASvc) - Unknown owner - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe (file missing)
O23 - Service: McAfee Proxy Service (McProxy) - Unknown owner - (no file)
O23 - Service: McAfee Real-time Scanner (McShield) - Unknown owner - (no file)
O23 - Service: McAfee SystemGuards (McSysmon) - Unknown owner - (no file)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - Unknown owner - C:\Program Files\McAfee\MSK\MskSrver.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - C:\Program Files\SPAMfighter\sfus.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Windows\System32\TuneUpDefragService.exe

J'ai été infecter !!!

104 réponses

Discussions similaires