Qiseq.exe inconnu sur google

voila mon rapport pour : Suppression Adwares connus
Est-ce normal ke je n'est plus aucun icone ni dans le bureau ni dans le menu démarer et plus rien du tt dans (tout les programmes) ??

------- LOGFILE OF AD-REMOVER 1.1.3.6 | ONLY XP/VISTA -------

Updated by C_XX on 05/05/2009 at 21:20
Contact: AdRemover.contact@gmail.com
Website: http://pagesperso-orange.fr/NosTools/ad_remover.html

**** LIMITED TO ****

Known Adwares

********************

Start at: 15:54:05, 08/05/2009 | Boot mode: Normal Boot
Option: CLEAN | Executed from: C:\Program Files\Ad-remover\Ad-remover.bat
Operating System: Microsoft® Windows XP™ Service Pack 2 (version 5.1.2600)
Computer Name: SPEEDCOK
Current User: Ï$p?edCokÏ - Administrator
Drive(s):
- C:\ (File System: NTFS)
- D:\ (File System: NTFS)

(!) ---- IE start pages/Tabs reset

============ Known Adwares Deleted ============

.
HKLM\Software\Conduit
HKCR\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
.
C:\Program Files\Conduit
C:\Documents and Settings\Ï$p?edCokÏ\Application Data\Mozilla\Firefox\Profiles\bv6vwzqn.default\EBSuggestHistory
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\

(!) ---- Temp files deleted.
(!) ---- Recycle bin emptied in all drives.


************* /!\ FILE(S)/FOLDER(S) NOT DELETED /!\ *************

"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"

Second run ...

/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"


+-----------------| Added Scan :

---- Internet Explorer Version 6.0.2900.2180 ----

[HKEY_CURRENT_USER\..\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

[HKEY_USERS\S-1-5-21-1935655697-746137067-725345543-1003\..\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/

[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]

Tabs: hxxp://ieframe.dll/tabswelcome.htm

=========== Suspicious ==========


+---------------------------------------------------------------------------+

Alor voila mon 1er raport : (info)

info.txt logfile of random's system information tool 1.06 2009-05-08 16:42:06

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Ad-remover-->C:\Program Files\Ad-remover\Uninstall ADR.exe
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
ASIO4ALL-->C:\Program Files\ASIO4ALLv2 (Fl studio 8)\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x0
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
Burnout(TM) Paradise The Ultimate Box-->MsiExec.exe /X{9A996B6A-846E-4A89-B9C4-17546B7BE49F}
Catalyst Control Center - Branding-->MsiExec.exe /I{D3B1C799-CB73-42DE-BA0F-2344793A095C}
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Counter-Strike: Source-->MsiExec.exe /I{9580813D-94B1-4C28-9426-A441E2BB29A5}
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Fallout 3-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{974C4B12-4D02-4879-85E0-61C95CC63E9E}\setup.exe" -l0x40c -removeonly
Far Cry 2-->"C:\Program Files\InstallShield Installation Information\{F2835483-37F2-4123-B4FE-0E77D58447F2}\setup.exe" -runfromtemp -l0x040c -removeonly
Favorit-->"c:\documents and settings\¤$p€edcok¤\local settings\application data\qiseq.exe" -uninstall
FL Studio 8-->C:\Program Files\Image-Line\FL Studio 8\uninstall.exe
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
IMBooster-->"C:\Documents and Settings\All Users\Application Data\{3AB7D18B-6873-453C-A0C7-D330283EDE14}\IMBoosterSetup.exe" REMOVE=TRUE MODIFY=FALSE
IMBooster-->C:\Documents and Settings\All Users\Application Data\{3AB7D18B-6873-453C-A0C7-D330283EDE14}\IMBoosterSetup.exe
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
Labtec WebCam-->MsiExec.exe /X{995BF1A7-30E5-49E5-A0E4-AD3213D9E330}
Live-Player-->C:\Program Files\Live-Player\uninst.exe
Logitech Audio Echo Cancellation Component-->MsiExec.exe /X{BEF726DD-4037-4214-8C6A-E625C02D2870}
Logitech Video Enumerator-->MsiExec.exe /X{EA516024-D84D-41F1-814F-83175A6188F2}
Marvell Miniport Driver-->MsiExec.exe /X{C950420B-4182-49EA-850A-A6A2ABF06C6B}
Mega Manager-->C:\Program Files\InstallShield Installation Information\{3B6E3FC6-274C-4B6C-BC85-5C3B15DE18E2}\setup.exe -runfromtemp -l0x0009 -removeonly
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0-->c:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0\setup.exe
Microsoft .NET Framework 3.0-->MsiExec.exe /X{15095BF3-A3D7-4DDF-B193-3A496881E003}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mozilla Firefox (3.0.10)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MVision-->MsiExec.exe /I{35725FBC-A136-4A46-9F29-091759D9BB93}
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Programme de gestion Camera de Labtec®-->"C:\Program Files\Fichiers communs\Labtec\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT
PunkBuster Services-->C:\WINDOWS\system32\pbsvc.exe -u
Realtek High Definition Audio Driver-->RtlUpd.exe -r -m
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Steam(TM)-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
The Simpsons Hit & Run(TM)-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F79AAB3A-B8B4-4AC7-94AB-1C4C076C6A89}\setup.exe" -l0x40c
Toxic Biohazard-->C:\Program Files\Image-Line\Toxic Biohazard\uninstall.exe
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
VideoLAN VLC media player 0.8.6i-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Winamp-->"C:\Program Files\Winamp\UninstWA.exe"
Windows Communication Foundation-->MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live OneCare safety scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation-->MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}

======Security center information======

AV: avast! antivirus 4.8.1227 [VPS 090507-0] (disabled)

======System event log======

Computer Name: SPEEDCOK
Event Code: 6011
Message: Le nom NetBIOS et le nom de l'hôte DNS de cet ordinateur ont été modifiés de MACHINENAME vers SPEEDCOK.

Record Number: 5
Source Name: EventLog
Time Written: 20090427191301.000000+120
Event Type: Informations
User:

Computer Name: MACHINENAME
Event Code: 2
Message: Pendant la validation de \Device\Serial0 en tant que port série, une FIFO a été détectée. La FIFO sera utilisée.

Record Number: 4
Source Name: Serial
Time Written: 20090427210250.000000+120
Event Type: Informations
User:

Computer Name: MACHINENAME
Event Code: 2
Message: Pendant la validation de \Device\Serial1 en tant que port série, une FIFO a été détectée. La FIFO sera utilisée.

Record Number: 3
Source Name: Serial
Time Written: 20090427210250.000000+120
Event Type: Informations
User:

Computer Name: MACHINENAME
Event Code: 6005
Message: Le service d'Enregistrement d'événement a démarré.

Record Number: 2
Source Name: EventLog
Time Written: 20090427210229.000000+120
Event Type: Informations
User:

Computer Name: MACHINENAME
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 2 Multiprocessor Free.

Record Number: 1
Source Name: EventLog
Time Written: 20090427210229.000000+120
Event Type: Informations
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 107 Stepping 1, AuthenticAMD
"PROCESSOR_REVISION"=6b01
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------

Et voila le 2eme rapport (log):

Logfile of random's system information tool 1.06 (written by random/random)
Run by ¤$p€edCok¤ at 2009-05-08 16:41:44
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 207 GB (89%) free of 234 GB
Total RAM: 3327 MB (81% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:42:05, on 08/05/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TuneUp Utilities 2009\MemOptimizer.exe
C:\documents and settings\¤$p€edcok¤\local settings\application data\qiseq.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Mail\wlmail.exe
C:\Documents and Settings\¤$p€edCok¤\Bureau\RSIT.exe
C:\Program Files\trend micro\¤$p€edCok¤.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Iminent.LinkToContent - {A6E9BAAF-53CD-4575-967B-2AF710A7D21F} - C:\Program Files\Iminent\IMBooster\Iminent.LinkToContent.dll
O2 - BHO: Mega Manager IE Click Monitor - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [TuneUp MemOptimizer] "C:\Program Files\TuneUp Utilities 2009\MemOptimizer.exe" autostart
O4 - HKCU\..\Run: [qiseq] "c:\documents and settings\¤$p€edcok¤\local settings\application data\qiseq.exe" qiseq
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: *.chat-land.org
O17 - HKLM\System\CCS\Services\Tcpip\..\{04D5174F-3D48-4E35-96F7-369F5BBB5B36}: NameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{04D5174F-3D48-4E35-96F7-369F5BBB5B36}: NameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{04D5174F-3D48-4E35-96F7-369F5BBB5B36}: NameServer = 192.168.1.1
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LVSrvLauncher - Labtec Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe

voila mon rapport


------- LOGFILE OF AD-REMOVER 1.1.3.6 | ONLY XP/VISTA -------

Updated by C_XX on 05/05/2009 at 21:20
Contact: AdRemover.contact@gmail.com
Website: http://pagesperso-orange.fr/NosTools/ad_remover.html

**** LIMITED TO ****

Known Adwares

********************

Start at: 15:54:05, 08/05/2009 | Boot mode: Normal Boot
Option: CLEAN | Executed from: C:\Program Files\Ad-remover\Ad-remover.bat
Operating System: Microsoft® Windows XP™ Service Pack 2 (version 5.1.2600)
Computer Name: SPEEDCOK
Current User: Ï$p?edCokÏ - Administrator
Drive(s):
- C:\ (File System: NTFS)
- D:\ (File System: NTFS)

(!) ---- IE start pages/Tabs reset

============ Known Adwares Deleted ============

.
HKLM\Software\Conduit
HKCR\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
.
C:\Program Files\Conduit
C:\Documents and Settings\Ï$p?edCokÏ\Application Data\Mozilla\Firefox\Profiles\bv6vwzqn.default\EBSuggestHistory
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\
/!\ NOT DELETED - C:\DOCUME~1\

(!) ---- Temp files deleted.
(!) ---- Recycle bin emptied in all drives.


************* /!\ FILE(S)/FOLDER(S) NOT DELETED /!\ *************

"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"
"C:\DOCUME~1\"

Second run ...

/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"
/!\ RESIST ! - "C:\DOCUME~1\"


+-----------------| Added Scan :

---- Internet Explorer Version 6.0.2900.2180 ----

[HKEY_CURRENT_USER\..\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

[HKEY_USERS\S-1-5-21-1935655697-746137067-725345543-1003\..\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/

[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]

Tabs: hxxp://ieframe.dll/tabswelcome.htm

=========== Suspicious ==========


+---------------------------------------------------------------------------+

pardon toptibal j'avais pas vu que c'était fait, car il avait posté aussi le rapport dans un autre topic

speedcobra je passe juste pour dire qu'il faut poster les rapports dans l'ordre après les procédures

Voila Mon Rapport ! J'ai pu voir dans le précédent rapport que qiseq.exe avez été trouver non ?
Mon PC est il a présent a jour ?

Navipromo Removal version 3.7.6 started on 08/05/2009 at 17:27:08,01

Fix running from C:\Program Files\navilog1

Updated on 14.03.2009 at 18h00 by IL-MAFIOSO

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 5000+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : ¤$p€edCok¤ ( Administrator )
BOOT : Normal boot

Antivirus : avast! antivirus 4.8.1227 [VPS 090507-0] 4.8.1227 (Not Activated)


C:\ (Local Disk) - NTFS - Total:228 Go (Free:202 Go)
D:\ (Local Disk) - NTFS - Total:227 Go (Free:119 Go)
E:\ (CD or DVD)


Automatic removal
with Catchme and GNS results


Cleanning stage done on Reboot


*** fsbl1.txt not found ***
(Check that Catchme found nothing in Search Mode)


*** Deleting with Backups GenericNaviSearch results ***

* Deletion in "C:\WINDOWS\System32" *


* Deletion in "C:\Documents and Settings\¤$p?edCok¤\locals~1\applic~1" *


* Deletion in "C:\DOCUME~1\$PEDCO~1\locals~1\applic~1" *


*** Deleting folders in "C:\WINDOWS" ***


*** Deleting folders in "C:\Program Files" ***

...\Live-Player ...deleting...
...\Live-Player deleted !


*** Deleting folders in "C:\Documents and Settings\All Users\menudm~1\progra~1" ***


*** Deleting folders in "C:\Documents and Settings\All Users\menudm~1" ***


*** Deleting folders in "c:\docume~1\alluse~1\applic~1" ***


*** Deleting folders in "C:\Documents and Settings\¤$p?edCok¤\applic~1" ***


*** Deleting folders in "C:\DOCUME~1\$PEDCO~1\applic~1" ***


*** Deleting folders in "C:\Documents and Settings\¤$p?edCok¤\locals~1\applic~1" ***


*** Deleting folders in "C:\DOCUME~1\$PEDCO~1\locals~1\applic~1" ***


*** Deleting folders in "C:\Documents and Settings\¤$p?edCok¤\menudm~1\progra~1" ***


*** Deleting folders in "C:\DOCUME~1\$PEDCO~1\menudm~1\progra~1" ***



*** Deleting files ***

C:\WINDOWS\LIVE-PLAYER_SETUP.EXE-248D5CAE.pf deleted !
C:\WINDOWS\LIVE-PLAYER.EXE-21A6817A.pf deleted !

*** Deleting temporary files ***

Cleaning of C:\WINDOWS\Temp done !
Cleaning of C:\Documents and Settings\Ï$p?edCokÏ\locals~1\Temp done !

*** Complementary Search ***
(Search specific files)

1)Deletion with backups new Instant Access files:

2)Heuristic search and deletion with backups :


* In "C:\WINDOWS\system32" *


C:\WINDOWS\prefetch\qiseq*.pf found !
Copy C:\WINDOWS\prefetch\qiseq*.pf done !
C:\WINDOWS\prefetch\qiseq*.pf deleted !


* In "C:\Documents and Settings\¤$p?edCok¤\locals~1\applic~1" *


qiseq.exe found !
Copy qiseq.exe done !
qiseq.exe deleted !

qiseq.dat found !
Copy qiseq.dat done !
qiseq.dat deleted !

qiseq_navps.dat found !
Copy qiseq_navps.dat done !
qiseq_navps.dat deleted !


* In "C:\DOCUME~1\$PEDCO~1\locals~1\applic~1" *



*** Copy Registry to Safebackup folder ***

Backing up Registry done !

*** Cleaning Registry ***

Registry cleaned


*** Certificates ***

Egroup Certificate not found !
Electronic-Group Certificate not found !
Montorgueil Certificate not found !
OOO-Favorit Certificate not found !
Sunny-Day-Design-Ltd Certificate not found !

*** Search others known folders and files ***



*** Cleaning stage complete on 08/05/2009 at 17:29:27,75 ***

Pardon, je pensais que tu en avais déjà fait un mais c'était un RSIT

Refais RSIT et poste seulement le log.txt.

Oupss !! DSL j'avait po vu que ce fichier appartené a java Quick Starter autan pour moi
Je vous remercie bcp ! serieu vous assurer !!! a biento !

c'est gentil ! merci bcp aurevoir

rebonjour dsl mais depuis ke qiseq.exe n'existe plus ben mtn c le pilote graphique qui c'est désistaller et pui impossible de le reinstaller voila mon probleme:
-je lance mon pilote.execute, je choisi le chemin de destination, suivant
_ A peine l'installation démarrer un message d'erreur apparait:

error opening file for writing:

c:\ATI\SUPPORT\8-12_xp32_dd_ccc-wdm_enu_72271\driver\setup.exe

click abort to stop the installation,
retry to try again, or
ignore to skip this file

Pourriez vous m'aider svp ?

Voila ma config:

AMD Athlon 64x2 5000+ 2.6ghz
Ati Radeon HD 2600 pro 512mo
3Go de RAM
windows XP SP2
Mozilla Firefox