Pop-up et petite voix inquiétante...
Lullalynne
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour,
Les fenêtres pop-up envahissent peu à peu mon ordinateur et j'aimerai beaucoup m'en débarrasser. Pourriez-vous m'indiquer la liste des logiciels à télécharger et regarder ensuite leurs rapports que je posterai ?
De plus, une petite voix étrange se fait parfois entendre. Je pensais au début qu'elle provenait d'un des pop-up, mais en réalité elle apparaît aussi lorsqu'aucune application n'est lancée et qu'aucune fenêtre de quoi que ce soit n'est ouverte. J'ai sérieusement besoin de votre aide...
Merci d'avance.
Les fenêtres pop-up envahissent peu à peu mon ordinateur et j'aimerai beaucoup m'en débarrasser. Pourriez-vous m'indiquer la liste des logiciels à télécharger et regarder ensuite leurs rapports que je posterai ?
De plus, une petite voix étrange se fait parfois entendre. Je pensais au début qu'elle provenait d'un des pop-up, mais en réalité elle apparaît aussi lorsqu'aucune application n'est lancée et qu'aucune fenêtre de quoi que ce soit n'est ouverte. J'ai sérieusement besoin de votre aide...
Merci d'avance.
A voir également:
- Pop-up et petite voix inquiétante...
- Pop up mcafee - Accueil - Piratage
- Pop corn time - Télécharger - TV & Vidéo
- Modifier sa voix en direct - Guide
- Serveur pop - Guide
- Allumer tv avec télécommande freebox pop ✓ - Forum Freebox
38 réponses
info.txt logfile of random's system information tool 1.06 2009-05-25 14:53:14
======Uninstall list======
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
3DMark05-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2DF7B278-D3B6-40A4-B25C-0E7149F439EA}\Setup.exe" -l0x9
Adobe Acrobat 5.0-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
ALZip-->"C:\Program Files\ESTsoft\ALZip\unins000.exe"
American Conquest - Divided Nation-->C:\Program Files\American Conquest - Divided Nation\Uninstall\uninstall.exe /C "/U:C:\Program Files\American Conquest - Divided Nation\Uninstall\uninstall.xml"
aMSN 0.97RC1-->C:\Program Files\aMSN\uninstall.exe
Apple Mobile Device Support-->MsiExec.exe /I{AFA20D47-69C3-4030-8DF8-D37466E70F13}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Assistant de connexion Windows Live-->MsiExec.exe /I{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
Athlon 64 Processor Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe" -l0x40c
Atlas mondial Microsoft Encarta 2000-->"C:\Program Files\Microsoft Encarta\Atlas mondial Microsoft Encarta 2000\evgunnst.exe" /uninstall
Atoutclic CM2-->C:\WINDOWS\unvise32.exe C:\Program Files\Atoutclic CM2\uninstal.log
Barre d'outils Outlook de Windows Live (Windows Live Toolbar)-->MsiExec.exe /X{6E15BEDF-7EB5-4010-998E-B430DB4EFE45}
Bilbo le Hobbit-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{023FFB0A-C5DB-4930-B3E4-D48266C21738}
BitDefender Internet Security 2009-->MsiExec.exe /X{CEB21884-8A5F-48C7-B707-6919FD890650}
Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{A425C250-A0E1-4D78-B1C1-A5CBC7385E7C}
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Canon Camera Support Core Library-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{26BDE7D8-93F0-4A07-AD47-1707DB417941} /l1036
Canon Camera Window for ZoomBrowser EX-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{B34BE30D-A759-4EC2-B58F-19FE2DEBF651}
Canon Internet Library for ZoomBrowser EX-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{2F81FBFC-9A37-431F-9050-14B55485DF5A}
Canon MovieEdit Task for ZoomBrowser EX-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{DE286975-ACF1-45B8-9EF7-34E162B2C817}
Canon PhotoRecord-->MsiExec.exe /X{0878E100-C0BB-41E8-B4C6-C486B61FDA7B}
Canon RAW Image Task for ZoomBrowser EX-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{68E7E8BD-2233-49BE-81D6-1A1FAF1B5196}
Canon RemoteCapture Task for ZoomBrowser EX-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{CF2C1A86-5A98-4862-A3AE-9992E3A6427D}
Canon Utilities PhotoStitch 3.1-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{EF4C7EB0-D71B-43A3-9552-8053DE4B0401}
Canon Utilities ZoomBrowser EX-->MsiExec.exe /X{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}
Clue-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Hasbro Interactive\Clue\Uninst.isu"
Complément Microsoft Word de Works Suite-->MsiExec.exe /I{0BE4B058-700D-11D3-B999-00C04F328D26}
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Coupe du Monde de la FIFA 2006 Demo-->C:\Program Files\EA SPORTS\Coupe du Monde de la FIFA 2006 Demo\EAUninstall.exe
DeepBurner v1.9.0.228-->"C:\Program Files\Astonsoft\DeepBurner\Uninstall.exe" "C:\Program Files\Astonsoft\DeepBurner\install.log" -u
Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{EFFCB0F1-CFEC-48D4-B793-EBFCAE852976}
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Dracula-->C:\Program Files\Dracula\Uninstal.exe
EA SPORTS online 2004-->C:\Program Files\EA SPORTS\EA SPORTS online\EASOUNInstaller.exe
EA.com Matchup-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2F173C40-563E-11D4-89C5-0010ADDAAC33}\setup.exe" -l0x0 Uninstall
EA.com Update-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9AB97F52-512B-43EF-AAEC-4825C17B32ED}\setup.exe" -l0x0 Uninstall
eMule-->"C:\Program Files\eMule v.049c\Uninstall.exe"
eMusic - 50 Free MP3 offer-->"C:\Program Files\Winamp\eMusic\Uninst-eMusic-promotion.exe"
EPSON Logiciel imprimante-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /r
EPSON PhotoQuicker3.5-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{65F5B7AF-3363-11D7-BB6B-00018021113F}\SETUP.EXE" -l0x40c uninst
EPSON PRINT Image Framer Tool2.1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{23B59ED4-C360-11D7-875B-0090CC005647}\SETUP.EXE" -l0x40c anything
EPSON Web-To-Page-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}\SETUP.EXE" -l0x40c -anything
ESC86 Guide de référence-->C:\Program Files\EPSON\TPMANUAL\ESC86\REF_G\DOCUNINS.EXE
ESC86 Guide des logiciels-->C:\Program Files\EPSON\TPMANUAL\ESC86\PQU_G\DOCUNINS.EXE
Every Toolbar - Toolbar-->regsvr32 /u /s "C:\PROGRA~1\EVERYT~1.1\everycom.dll"
Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{0CA6047C-D28B-4295-834A-07C52BA20C2D}
Far Cry-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{D6DBDC2A-E72C-4284-B6AD-6B3B61B4DABC} /l1036
FIFA 2002-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6C5A8BA1-8114-11D5-0090-B800902724B3}\setup.exe" -l0x40c Uninstall
First Step Guide-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{12872B4E-90F7-44E5-B1AA-D13AFEC8618B}\setup.exe" -l0x40c UNINSTALL
Free Mp3 Wma Converter V 1.8.0-->"C:\Program Files\Free Audio Pack\unins000.exe"
Gestionnaire Internet-->C:\PROGRA~1\Wanadoo\uninstall.exe
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_BDA1448D3D255554.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
ImageMixer EasyStepDVD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32C32B46-41C3-438F-94F6-55FE150D50D8}\setup.exe" -l0x40c UNINSTALL
Indeo® Software-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Ligos\Indeo\Uninst.isu" -c"C:\Program Files\Intel\Indeo\SavedSystemFiles\indounin.dll"
iTunes-->MsiExec.exe /I{5EFCBB42-36AB-4FF9-B90C-E78C7B9EE7B3}
J2SE Runtime Environment 5.0 Update 8-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150080}
Java 2 Runtime Environment, SE v1.4.0_03-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC1E4C93-C1E7-11D6-9D10-00010240CE95}\Setup.exe" Anytext
Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
Jeux Classiques-->MsiExec.exe /X{6107371A-6504-43D4-9B11-AB633B84F700}
K-Lite Codec Pack 4.3.4 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Lanceur du programme d'installation de Microsoft Works 2000 -->C:\Program Files\Microsoft Works Suite 2000\Setup\Launcher.exe D:\
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
LimeWire 4.12.6-->"C:\Program Files\LimeWire\uninstall.exe"
livebox-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17342E3B-0818-4A6F-BFF8-99476605ADD6}\Setup.exe" -l0x40c
LiveUpdate 3.2 (Symantec Corporation)-->"C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE" /U
LiveUpdate Notice (Symantec Corporation)-->MsiExec.exe /X{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}
Logiciel QuickCam de Logitech-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EF1B5DF7-8DF5-4D38-BFF0-FDC7B7847C00}\setup.exe" -l0x40c
Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\setup.exe" -l0x40c UNINSTALL
Logitech Gaming Software-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B9242864-2841-4ADE-86E0-8F90F91B04DD}\setup.exe" -l0x40c
Macromedia Flash Player-->MsiExec.exe /X{0456ebd7-5f67-4ab6-852e-63781e3f389c}
Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}
Messenger Plus! 3-->"C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /Remove
Messenger Plus! Live & Sponsor (CiD)-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft .NET Framework 3.0-->c:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0\setup.exe
Microsoft .NET Framework 3.0-->MsiExec.exe /X{15095BF3-A3D7-4DDF-B193-3A496881E003}
Microsoft AutoRoute Express Europe 2000-->C:\Program Files\Fichiers communs\Microsoft Shared\Geography\Setup\acmsetup.exe /T SEU7040C.stf
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft Money 2000 Standard-->C:\Program Files\Microsoft Money\setup\setup.exe
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Picture It! 2000-->MsiExec.exe /I{E78FC917-C21B-11D2-99FE-00105A98B681}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Word 2000-->MsiExec.exe /I{0017040C-78E1-11D2-B60F-006097C998E7}
Microsoft Works 2000-->MsiExec.exe /I{A3088CD2-612B-11D3-AF43-00C04F443448}
Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 9 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)-->"C:\WINDOWS\ie7updates\KB929969\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Moto Racer 3-->"C:\Program Files\MotoRacer3\unins000.exe"
Mozilla Firefox (2.0.0.20)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Thunderbird (2.0.0.21)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 6.0 Parser (KB925673)-->MsiExec.exe /I{FE9126DB-5F84-495A-BB46-3C724F1C2D08}
Music Manager-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5AFA4872-16B2-419E-ADCA-8E96E739115D}\setup.exe" -l0x40c
Navigateur Orange-->C:\PROGRA~1\Wanadoo\Shell.exe inst\uninst_FTBrowser.shl
NBA LIVE 2004-->C:\Program Files\EA SPORTS\NBA LIVE 2004\EAUninstall.exe
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Norton 360-->MsiExec.exe /I{63A6E9A9-A190-46D4-9430-2DB28654AFD8}
OneCare Advisor (Windows Live Toolbar)-->MsiExec.exe /X{6D7F8D4B-D1A4-402A-973E-31E90940E585}
Outil de connexion Wanadoo-->C:\PROGRA~1\Wanadoo\MessageDesinstallation.exe Wanadoo
Paris - Marseille Racing-->C:\Program Files\Davilex\Shared\UNINST32.EXE C:\PROGRA~1\Davilex\PARIS-~1\Install.Log
Philips Photo Manager 1.1-->"C:\Program Files\Philips\Philips PhotoFrame\unins000.exe"
PhotoFiltre Studio-->"C:\Program Files\PhotoFiltre Studio\Uninst.exe"
PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"
Picture Package-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1E2F8AE3-3437-44E6-BB75-E95751D6B83F}\setup.exe" -l0x40c UNINSTALL
PIF DESIGNER2.1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0A7124DF-F8A4-405B-904F-CFD3D3DFB5AE}\SETUP.EXE" -l0x40c anything
Pizzicato 3.2.1-->C:\WINDOWS\UnDeploy.exe "C:\Program Files\Pizzicato 3\Deploy.log"
Prince of Persia l'Ame du Guerrier-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EE5BC0BB-9EDA-423C-8276-48857B735D68}\Setup.exe" -l0x40c
Programme de gestion Camera de Logitech-->"C:\Program Files\Fichiers communs\Logitech\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT -l040c
Project IGI-->C:\WINDOWS\unvise32.exe C:\Program Files\Eidos Interactive\Project IGI\uninstal.log
QuickTime 3.0-->C:\WINDOWS\uninst.exe -f"C:\Program Files\QuickTime\DeIsL1.isu" -c"C:\WINDOWS\system32\QTUninst.dll
QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
rayman2-->C:\WINDOWS\UbiSoft\SetupUbi.exe -uninstall rayman2
Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" REMOVE
SAMSUNG CDMA Modem Driver Set-->C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
SAMSUNG Mobile USB Modem ^^-->C:\WINDOWS\system32\Samsung_USB_Drivers\4\SSVDUninstall.exe
SAMSUNG Mobile USB Modem 1.0 Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
SAMSUNG Mobile USB Modem Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
Samsung PC Studio 3 USB Driver Installer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe" -l0x40c -removeonly
Samsung PC Studio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -l0x40c -removeonly
ScanToWeb-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EBAE381B-60A6-4863-AA9F-FCAB755BC9E5}\SETUP.EXE" ADDREMOVEDLG
Scarface: The World is Yours-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\1150\INTEL3~1\IDriver.exe /M{27D7F575-4AA0-4C12-AA68-128E1C8979F7} /l1036
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Shareaza version 2.2.1.0-->"C:\Program Files\Shareaza\Uninstall\unins000.exe"
Sibelius Scorch (ActiveX Only)-->MsiExec.exe /I{C8E4455F-0F70-4DA2-A9F9-2D56C80E10AD}
Skype 3.0-->"C:\Program Files\Skype\Phone\unins000.exe"
Skype Plugin Manager-->MsiExec.exe /I{3D5E5C0A-5B36-4F98-99A7-287F7DBDCE03}
Sony DVD Handycam USB Driver 2-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A360821C-6B51-4EE4-A7E5-5E14B15004CD}\Setup.exe" UNINSTALL
Splinter Cell Pandora Tomorrow-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{084A9731-D05B-4ADA-B4A0-0ADD25FD7152}\Setup.exe" -l0x40c
SWAT3 Elite Edition-->C:\Sierra\SWAT3\UNWISE.EXE C:\Sierra\SWAT3\INSTALL.LOG
Tennis Masters Series-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\Microids\Tennis Masters Series\setup.exe"
The Simpsons Hit & Run(TM)-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F79AAB3A-B8B4-4AC7-94AB-1C4C076C6A89}\setup.exe" -l0x40c
Ulead Straight-to-Disc SDK-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8D2C1E44-7685-4D05-8342-B0DC6422FA47}\Setup.exe" -l0x9
Ultimate Game Pak-->C:\WINDOWS\iun506.exe C:\Program Files\Ultimate Game Pak\irunin.ini
UsbFix-->C:\UsbFix\Uninstal.exe
VeriSign i-Nav and Components-->C:\Program Files\VeriSign\NAVI\naviagent.exe uninstall=i-nav uimode=uninstall
Wanadoo Messager-->C:\PROGRA~1\WANADO~1\UNWISE.EXE C:\PROGRA~1\WANADO~1\INSTALL.LOG
WARM UP ! -->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Microïds\WARM UP !\Uninst.isu"
Winamp (remove only)-->"C:\Program Files\Winamp\UninstWA.exe"
Windows Communication Foundation-->MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Genuine Advantage v1.3.0254.0-->MsiExec.exe /I{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}
Windows Live Favorites pour Windows Live Toolbar-->MsiExec.exe /X{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation-->MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinFast PVR-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C882DE6B-1482-42D6-A7C2-A9F946EDBAF6}\setup.exe"
WinFast(R) Display Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F69FD33C-8815-46BF-9134-A643DE68F3C0}\setup.exe" -l0x40c -removeonly
WinFox Setup-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Leadtek Research Inc.\WinFox Setup\Uninst.isu" -c"C:\WINDOWS\system32\WinFox\WinFoxUT.dll"
World Championship Rugby-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{61FF2935-55C4-45B8-BFAC-994DF43046AE}\setup.exe" -l0x40c
World Racing 2-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{5EBAC9CB-97D7-44CD-A82D-4FCB37F582AC} /l1036
Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\unyt.exe
YP-U1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E4A0225B-A975-416C-8CF7-C1C025FD32D6}\Setup.exe" -l0x40c
ZTE ZXDSL852-->"C:\Program Files\ZTE Corporation\ZXDSL852\setup.exe" -u
======Security center information======
AV: BitDefender Antivirus
FW: BitDefender Firewall
======System event log======
Computer Name: MR-8D6C5A7809D9
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service WINFOXIO.
Record Number: 20746
Source Name: Service Control Manager
Time Written: 20090513110750.000000+120
Event Type: Informations
User: MR-8D6C5A7809D9\BOURRIQUET
Computer Name: MR-8D6C5A7809D9
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service bdfsfltr.
Record Number: 20745
Source Name: Service Control Manager
Time Written: 20090513110749.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: MR-8D6C5A7809D9
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Service de découvertes SSDP.
Record Number: 20744
Source Name: Service Control Manager
Time Written: 20090513110745.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: MR-8D6C5A7809D9
Event Code: 7036
Message: Le service Service COM de gravage de CD IMAPI est entré dans l'état : en cours d'exécution.
Record Number: 20743
Source Name: Service Control Manager
Time Written: 20090513110745.000000+120
Event Type: Informations
User:
Computer Name: MR-8D6C5A7809D9
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service WFIOCTL.
Record Number: 20742
Source Name: Service Control Manager
Time Written: 20090513110745.000000+120
Event Type: Informations
User: MR-8D6C5A7809D9\BOURRIQUET
=====Application event log=====
Computer Name: MR-8D6C5A7809D9
Event Code: 102
Message: msnmsgr (5176) \\.\C:\Documents and Settings\BOURRIQUET\Local Settings\Application Data\Microsoft\Messenger\audrey-angelynne@hotmail.fr\SharingMetadata\Working\database_9860_7633_6076_17E8\dfsr.db: Le moteur de base de données a démarré une nouvelle instance (0).
Record Number: 2218
Source Name: ESENT
Time Written: 20090226212240.000000+060
Event Type: Informations
User:
Computer Name: MR-8D6C5A7809D9
Event Code: 100
Message: msnmsgr (5176) Le moteur de base de données 5.01.2600.5512 est démarré.
Record Number: 2217
Source Name: ESENT
Time Written: 20090226212240.000000+060
Event Type: Informations
User:
Computer Name: MR-8D6C5A7809D9
Event Code: 101
Message: msnmsgr (5176) Le moteur de base de données est arrêté.
Record Number: 2216
Source Name: ESENT
Time Written: 20090226211108.000000+060
Event Type: Informations
User:
Computer Name: MR-8D6C5A7809D9
Event Code: 103
Message: msnmsgr (5176) \\.\C:\Documents and Settings\BOURRIQUET\Local Settings\Application Data\Microsoft\Messenger\guillaume-87@hotmail.fr\SharingMetadata\Working\database_9860_7633_6076_17E8\dfsr.db: Le moteur de base de données a arrêté une instance (0).
Record Number: 2215
Source Name: ESENT
Time Written: 20090226211108.000000+060
Event Type: Informations
User:
Computer Name: MR-8D6C5A7809D9
Event Code: 302
Message: msnmsgr (5176) \\.\C:\Documents and Settings\BOURRIQUET\Local Settings\Application Data\Microsoft\Messenger\guillaume-87@hotmail.fr\SharingMetadata\Working\database_9860_7633_6076_17E8\dfsr.db: Le moteur de base de données a exécuté la procédure de récupération avec succès.
Record Number: 2214
Source Name: ESENT
Time Written: 20090226140032.000000+060
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ESTsoft\ALZip\;C:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 0, AuthenticAMD
"PROCESSOR_REVISION"=2f00
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"VeriSign"=C:\Program Files\VeriSign
"VRSN"=C:\Program Files\VeriSign
"VeriSignTemp"=C:\Program Files\VeriSign\Temp
"VRSNTemp"=C:\Program Files\VeriSign\Temp
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip
-----------------EOF-----------------
======Uninstall list======
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
3DMark05-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2DF7B278-D3B6-40A4-B25C-0E7149F439EA}\Setup.exe" -l0x9
Adobe Acrobat 5.0-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
ALZip-->"C:\Program Files\ESTsoft\ALZip\unins000.exe"
American Conquest - Divided Nation-->C:\Program Files\American Conquest - Divided Nation\Uninstall\uninstall.exe /C "/U:C:\Program Files\American Conquest - Divided Nation\Uninstall\uninstall.xml"
aMSN 0.97RC1-->C:\Program Files\aMSN\uninstall.exe
Apple Mobile Device Support-->MsiExec.exe /I{AFA20D47-69C3-4030-8DF8-D37466E70F13}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Assistant de connexion Windows Live-->MsiExec.exe /I{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
Athlon 64 Processor Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe" -l0x40c
Atlas mondial Microsoft Encarta 2000-->"C:\Program Files\Microsoft Encarta\Atlas mondial Microsoft Encarta 2000\evgunnst.exe" /uninstall
Atoutclic CM2-->C:\WINDOWS\unvise32.exe C:\Program Files\Atoutclic CM2\uninstal.log
Barre d'outils Outlook de Windows Live (Windows Live Toolbar)-->MsiExec.exe /X{6E15BEDF-7EB5-4010-998E-B430DB4EFE45}
Bilbo le Hobbit-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{023FFB0A-C5DB-4930-B3E4-D48266C21738}
BitDefender Internet Security 2009-->MsiExec.exe /X{CEB21884-8A5F-48C7-B707-6919FD890650}
Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{A425C250-A0E1-4D78-B1C1-A5CBC7385E7C}
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Canon Camera Support Core Library-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{26BDE7D8-93F0-4A07-AD47-1707DB417941} /l1036
Canon Camera Window for ZoomBrowser EX-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{B34BE30D-A759-4EC2-B58F-19FE2DEBF651}
Canon Internet Library for ZoomBrowser EX-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{2F81FBFC-9A37-431F-9050-14B55485DF5A}
Canon MovieEdit Task for ZoomBrowser EX-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{DE286975-ACF1-45B8-9EF7-34E162B2C817}
Canon PhotoRecord-->MsiExec.exe /X{0878E100-C0BB-41E8-B4C6-C486B61FDA7B}
Canon RAW Image Task for ZoomBrowser EX-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{68E7E8BD-2233-49BE-81D6-1A1FAF1B5196}
Canon RemoteCapture Task for ZoomBrowser EX-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{CF2C1A86-5A98-4862-A3AE-9992E3A6427D}
Canon Utilities PhotoStitch 3.1-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{EF4C7EB0-D71B-43A3-9552-8053DE4B0401}
Canon Utilities ZoomBrowser EX-->MsiExec.exe /X{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}
Clue-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Hasbro Interactive\Clue\Uninst.isu"
Complément Microsoft Word de Works Suite-->MsiExec.exe /I{0BE4B058-700D-11D3-B999-00C04F328D26}
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Coupe du Monde de la FIFA 2006 Demo-->C:\Program Files\EA SPORTS\Coupe du Monde de la FIFA 2006 Demo\EAUninstall.exe
DeepBurner v1.9.0.228-->"C:\Program Files\Astonsoft\DeepBurner\Uninstall.exe" "C:\Program Files\Astonsoft\DeepBurner\install.log" -u
Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{EFFCB0F1-CFEC-48D4-B793-EBFCAE852976}
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Dracula-->C:\Program Files\Dracula\Uninstal.exe
EA SPORTS online 2004-->C:\Program Files\EA SPORTS\EA SPORTS online\EASOUNInstaller.exe
EA.com Matchup-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2F173C40-563E-11D4-89C5-0010ADDAAC33}\setup.exe" -l0x0 Uninstall
EA.com Update-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9AB97F52-512B-43EF-AAEC-4825C17B32ED}\setup.exe" -l0x0 Uninstall
eMule-->"C:\Program Files\eMule v.049c\Uninstall.exe"
eMusic - 50 Free MP3 offer-->"C:\Program Files\Winamp\eMusic\Uninst-eMusic-promotion.exe"
EPSON Logiciel imprimante-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /r
EPSON PhotoQuicker3.5-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{65F5B7AF-3363-11D7-BB6B-00018021113F}\SETUP.EXE" -l0x40c uninst
EPSON PRINT Image Framer Tool2.1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{23B59ED4-C360-11D7-875B-0090CC005647}\SETUP.EXE" -l0x40c anything
EPSON Web-To-Page-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}\SETUP.EXE" -l0x40c -anything
ESC86 Guide de référence-->C:\Program Files\EPSON\TPMANUAL\ESC86\REF_G\DOCUNINS.EXE
ESC86 Guide des logiciels-->C:\Program Files\EPSON\TPMANUAL\ESC86\PQU_G\DOCUNINS.EXE
Every Toolbar - Toolbar-->regsvr32 /u /s "C:\PROGRA~1\EVERYT~1.1\everycom.dll"
Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{0CA6047C-D28B-4295-834A-07C52BA20C2D}
Far Cry-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{D6DBDC2A-E72C-4284-B6AD-6B3B61B4DABC} /l1036
FIFA 2002-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6C5A8BA1-8114-11D5-0090-B800902724B3}\setup.exe" -l0x40c Uninstall
First Step Guide-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{12872B4E-90F7-44E5-B1AA-D13AFEC8618B}\setup.exe" -l0x40c UNINSTALL
Free Mp3 Wma Converter V 1.8.0-->"C:\Program Files\Free Audio Pack\unins000.exe"
Gestionnaire Internet-->C:\PROGRA~1\Wanadoo\uninstall.exe
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_BDA1448D3D255554.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
ImageMixer EasyStepDVD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32C32B46-41C3-438F-94F6-55FE150D50D8}\setup.exe" -l0x40c UNINSTALL
Indeo® Software-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Ligos\Indeo\Uninst.isu" -c"C:\Program Files\Intel\Indeo\SavedSystemFiles\indounin.dll"
iTunes-->MsiExec.exe /I{5EFCBB42-36AB-4FF9-B90C-E78C7B9EE7B3}
J2SE Runtime Environment 5.0 Update 8-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150080}
Java 2 Runtime Environment, SE v1.4.0_03-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC1E4C93-C1E7-11D6-9D10-00010240CE95}\Setup.exe" Anytext
Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
Jeux Classiques-->MsiExec.exe /X{6107371A-6504-43D4-9B11-AB633B84F700}
K-Lite Codec Pack 4.3.4 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Lanceur du programme d'installation de Microsoft Works 2000 -->C:\Program Files\Microsoft Works Suite 2000\Setup\Launcher.exe D:\
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
LimeWire 4.12.6-->"C:\Program Files\LimeWire\uninstall.exe"
livebox-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17342E3B-0818-4A6F-BFF8-99476605ADD6}\Setup.exe" -l0x40c
LiveUpdate 3.2 (Symantec Corporation)-->"C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE" /U
LiveUpdate Notice (Symantec Corporation)-->MsiExec.exe /X{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}
Logiciel QuickCam de Logitech-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EF1B5DF7-8DF5-4D38-BFF0-FDC7B7847C00}\setup.exe" -l0x40c
Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\setup.exe" -l0x40c UNINSTALL
Logitech Gaming Software-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B9242864-2841-4ADE-86E0-8F90F91B04DD}\setup.exe" -l0x40c
Macromedia Flash Player-->MsiExec.exe /X{0456ebd7-5f67-4ab6-852e-63781e3f389c}
Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}
Messenger Plus! 3-->"C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /Remove
Messenger Plus! Live & Sponsor (CiD)-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft .NET Framework 3.0-->c:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0\setup.exe
Microsoft .NET Framework 3.0-->MsiExec.exe /X{15095BF3-A3D7-4DDF-B193-3A496881E003}
Microsoft AutoRoute Express Europe 2000-->C:\Program Files\Fichiers communs\Microsoft Shared\Geography\Setup\acmsetup.exe /T SEU7040C.stf
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft Money 2000 Standard-->C:\Program Files\Microsoft Money\setup\setup.exe
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Picture It! 2000-->MsiExec.exe /I{E78FC917-C21B-11D2-99FE-00105A98B681}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Word 2000-->MsiExec.exe /I{0017040C-78E1-11D2-B60F-006097C998E7}
Microsoft Works 2000-->MsiExec.exe /I{A3088CD2-612B-11D3-AF43-00C04F443448}
Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 9 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)-->"C:\WINDOWS\ie7updates\KB929969\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Moto Racer 3-->"C:\Program Files\MotoRacer3\unins000.exe"
Mozilla Firefox (2.0.0.20)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Thunderbird (2.0.0.21)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 6.0 Parser (KB925673)-->MsiExec.exe /I{FE9126DB-5F84-495A-BB46-3C724F1C2D08}
Music Manager-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5AFA4872-16B2-419E-ADCA-8E96E739115D}\setup.exe" -l0x40c
Navigateur Orange-->C:\PROGRA~1\Wanadoo\Shell.exe inst\uninst_FTBrowser.shl
NBA LIVE 2004-->C:\Program Files\EA SPORTS\NBA LIVE 2004\EAUninstall.exe
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Norton 360-->MsiExec.exe /I{63A6E9A9-A190-46D4-9430-2DB28654AFD8}
OneCare Advisor (Windows Live Toolbar)-->MsiExec.exe /X{6D7F8D4B-D1A4-402A-973E-31E90940E585}
Outil de connexion Wanadoo-->C:\PROGRA~1\Wanadoo\MessageDesinstallation.exe Wanadoo
Paris - Marseille Racing-->C:\Program Files\Davilex\Shared\UNINST32.EXE C:\PROGRA~1\Davilex\PARIS-~1\Install.Log
Philips Photo Manager 1.1-->"C:\Program Files\Philips\Philips PhotoFrame\unins000.exe"
PhotoFiltre Studio-->"C:\Program Files\PhotoFiltre Studio\Uninst.exe"
PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"
Picture Package-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1E2F8AE3-3437-44E6-BB75-E95751D6B83F}\setup.exe" -l0x40c UNINSTALL
PIF DESIGNER2.1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0A7124DF-F8A4-405B-904F-CFD3D3DFB5AE}\SETUP.EXE" -l0x40c anything
Pizzicato 3.2.1-->C:\WINDOWS\UnDeploy.exe "C:\Program Files\Pizzicato 3\Deploy.log"
Prince of Persia l'Ame du Guerrier-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EE5BC0BB-9EDA-423C-8276-48857B735D68}\Setup.exe" -l0x40c
Programme de gestion Camera de Logitech-->"C:\Program Files\Fichiers communs\Logitech\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT -l040c
Project IGI-->C:\WINDOWS\unvise32.exe C:\Program Files\Eidos Interactive\Project IGI\uninstal.log
QuickTime 3.0-->C:\WINDOWS\uninst.exe -f"C:\Program Files\QuickTime\DeIsL1.isu" -c"C:\WINDOWS\system32\QTUninst.dll
QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
rayman2-->C:\WINDOWS\UbiSoft\SetupUbi.exe -uninstall rayman2
Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" REMOVE
SAMSUNG CDMA Modem Driver Set-->C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
SAMSUNG Mobile USB Modem ^^-->C:\WINDOWS\system32\Samsung_USB_Drivers\4\SSVDUninstall.exe
SAMSUNG Mobile USB Modem 1.0 Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
SAMSUNG Mobile USB Modem Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
Samsung PC Studio 3 USB Driver Installer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe" -l0x40c -removeonly
Samsung PC Studio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -l0x40c -removeonly
ScanToWeb-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EBAE381B-60A6-4863-AA9F-FCAB755BC9E5}\SETUP.EXE" ADDREMOVEDLG
Scarface: The World is Yours-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\1150\INTEL3~1\IDriver.exe /M{27D7F575-4AA0-4C12-AA68-128E1C8979F7} /l1036
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Shareaza version 2.2.1.0-->"C:\Program Files\Shareaza\Uninstall\unins000.exe"
Sibelius Scorch (ActiveX Only)-->MsiExec.exe /I{C8E4455F-0F70-4DA2-A9F9-2D56C80E10AD}
Skype 3.0-->"C:\Program Files\Skype\Phone\unins000.exe"
Skype Plugin Manager-->MsiExec.exe /I{3D5E5C0A-5B36-4F98-99A7-287F7DBDCE03}
Sony DVD Handycam USB Driver 2-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A360821C-6B51-4EE4-A7E5-5E14B15004CD}\Setup.exe" UNINSTALL
Splinter Cell Pandora Tomorrow-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{084A9731-D05B-4ADA-B4A0-0ADD25FD7152}\Setup.exe" -l0x40c
SWAT3 Elite Edition-->C:\Sierra\SWAT3\UNWISE.EXE C:\Sierra\SWAT3\INSTALL.LOG
Tennis Masters Series-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\Microids\Tennis Masters Series\setup.exe"
The Simpsons Hit & Run(TM)-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F79AAB3A-B8B4-4AC7-94AB-1C4C076C6A89}\setup.exe" -l0x40c
Ulead Straight-to-Disc SDK-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8D2C1E44-7685-4D05-8342-B0DC6422FA47}\Setup.exe" -l0x9
Ultimate Game Pak-->C:\WINDOWS\iun506.exe C:\Program Files\Ultimate Game Pak\irunin.ini
UsbFix-->C:\UsbFix\Uninstal.exe
VeriSign i-Nav and Components-->C:\Program Files\VeriSign\NAVI\naviagent.exe uninstall=i-nav uimode=uninstall
Wanadoo Messager-->C:\PROGRA~1\WANADO~1\UNWISE.EXE C:\PROGRA~1\WANADO~1\INSTALL.LOG
WARM UP ! -->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Microïds\WARM UP !\Uninst.isu"
Winamp (remove only)-->"C:\Program Files\Winamp\UninstWA.exe"
Windows Communication Foundation-->MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Genuine Advantage v1.3.0254.0-->MsiExec.exe /I{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}
Windows Live Favorites pour Windows Live Toolbar-->MsiExec.exe /X{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation-->MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinFast PVR-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C882DE6B-1482-42D6-A7C2-A9F946EDBAF6}\setup.exe"
WinFast(R) Display Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F69FD33C-8815-46BF-9134-A643DE68F3C0}\setup.exe" -l0x40c -removeonly
WinFox Setup-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Leadtek Research Inc.\WinFox Setup\Uninst.isu" -c"C:\WINDOWS\system32\WinFox\WinFoxUT.dll"
World Championship Rugby-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{61FF2935-55C4-45B8-BFAC-994DF43046AE}\setup.exe" -l0x40c
World Racing 2-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{5EBAC9CB-97D7-44CD-A82D-4FCB37F582AC} /l1036
Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\unyt.exe
YP-U1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E4A0225B-A975-416C-8CF7-C1C025FD32D6}\Setup.exe" -l0x40c
ZTE ZXDSL852-->"C:\Program Files\ZTE Corporation\ZXDSL852\setup.exe" -u
======Security center information======
AV: BitDefender Antivirus
FW: BitDefender Firewall
======System event log======
Computer Name: MR-8D6C5A7809D9
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service WINFOXIO.
Record Number: 20746
Source Name: Service Control Manager
Time Written: 20090513110750.000000+120
Event Type: Informations
User: MR-8D6C5A7809D9\BOURRIQUET
Computer Name: MR-8D6C5A7809D9
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service bdfsfltr.
Record Number: 20745
Source Name: Service Control Manager
Time Written: 20090513110749.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: MR-8D6C5A7809D9
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Service de découvertes SSDP.
Record Number: 20744
Source Name: Service Control Manager
Time Written: 20090513110745.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: MR-8D6C5A7809D9
Event Code: 7036
Message: Le service Service COM de gravage de CD IMAPI est entré dans l'état : en cours d'exécution.
Record Number: 20743
Source Name: Service Control Manager
Time Written: 20090513110745.000000+120
Event Type: Informations
User:
Computer Name: MR-8D6C5A7809D9
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service WFIOCTL.
Record Number: 20742
Source Name: Service Control Manager
Time Written: 20090513110745.000000+120
Event Type: Informations
User: MR-8D6C5A7809D9\BOURRIQUET
=====Application event log=====
Computer Name: MR-8D6C5A7809D9
Event Code: 102
Message: msnmsgr (5176) \\.\C:\Documents and Settings\BOURRIQUET\Local Settings\Application Data\Microsoft\Messenger\audrey-angelynne@hotmail.fr\SharingMetadata\Working\database_9860_7633_6076_17E8\dfsr.db: Le moteur de base de données a démarré une nouvelle instance (0).
Record Number: 2218
Source Name: ESENT
Time Written: 20090226212240.000000+060
Event Type: Informations
User:
Computer Name: MR-8D6C5A7809D9
Event Code: 100
Message: msnmsgr (5176) Le moteur de base de données 5.01.2600.5512 est démarré.
Record Number: 2217
Source Name: ESENT
Time Written: 20090226212240.000000+060
Event Type: Informations
User:
Computer Name: MR-8D6C5A7809D9
Event Code: 101
Message: msnmsgr (5176) Le moteur de base de données est arrêté.
Record Number: 2216
Source Name: ESENT
Time Written: 20090226211108.000000+060
Event Type: Informations
User:
Computer Name: MR-8D6C5A7809D9
Event Code: 103
Message: msnmsgr (5176) \\.\C:\Documents and Settings\BOURRIQUET\Local Settings\Application Data\Microsoft\Messenger\guillaume-87@hotmail.fr\SharingMetadata\Working\database_9860_7633_6076_17E8\dfsr.db: Le moteur de base de données a arrêté une instance (0).
Record Number: 2215
Source Name: ESENT
Time Written: 20090226211108.000000+060
Event Type: Informations
User:
Computer Name: MR-8D6C5A7809D9
Event Code: 302
Message: msnmsgr (5176) \\.\C:\Documents and Settings\BOURRIQUET\Local Settings\Application Data\Microsoft\Messenger\guillaume-87@hotmail.fr\SharingMetadata\Working\database_9860_7633_6076_17E8\dfsr.db: Le moteur de base de données a exécuté la procédure de récupération avec succès.
Record Number: 2214
Source Name: ESENT
Time Written: 20090226140032.000000+060
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ESTsoft\ALZip\;C:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 0, AuthenticAMD
"PROCESSOR_REVISION"=2f00
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"VeriSign"=C:\Program Files\VeriSign
"VRSN"=C:\Program Files\VeriSign
"VeriSignTemp"=C:\Program Files\VeriSign\Temp
"VRSNTemp"=C:\Program Files\VeriSign\Temp
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip
-----------------EOF-----------------
tu télécharge LOP S&D sur ton Bureau.
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
J'avais déjà essayé d'installer Lop S&D il y a quelques mois. Et aujourd'hui même résultat : l'installation est impossible. Et si je double-clique sur l'icone, la fenêtre bleue s'ouvre mais rien n'apparaît à part le curseur.
Ah, je n'ai rien dit. Il a consenti a fonctionné en mode sans échec cette fois :
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3000+ )
BIOS : Award Modular BIOS v6.00PG
USER : BOURRIQUET ( Administrator )
BOOT : Fail-safe boot
Antivirus : BitDefender Antivirus 12.0 (Activated)
Firewall : BitDefender Firewall 12.0 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:152 Go (Free:58 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB) - FAT32 - Total:3848 Mo (Free:0 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 25/05/2009|15:26 )
--------------------\\ Listing des dossiers dans APPLIC~1
[16/09/2005|18:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[25/05/2009|09:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[09/07/2008|12:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[25/05/2009|09:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[25/05/2009|09:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[07/09/2008|10:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[17/03/2009|11:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ESTsoft
[02/03/2008|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Genimo
[13/02/2009|14:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[03/03/2006|20:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[30/06/2008|10:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[15/08/2007|14:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[21/02/2009|20:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[09/07/2008|12:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
[24/02/2008|14:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
[28/09/2005|19:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OD2
[11/10/2006|15:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Okay Less Mpeg Internet
[27/01/2008|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[11/09/2007|18:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PopCap
[23/11/2005|11:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\POPWWPROFILES
[19/12/2007|22:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[07/02/2007|00:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[07/09/2008|10:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[25/01/2008|19:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[25/09/2005|11:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[25/09/2005|19:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[16/09/2005|14:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/09/2007|18:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[28/02/2008|21:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[18/01/2006|13:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[09/01/2008|17:40] C:\DOCUME~1\BOURRI~1\APPLIC~1\Adobe
[24/02/2008|22:57] C:\DOCUME~1\BOURRI~1\APPLIC~1\AdobeUM
[25/05/2009|10:33] C:\DOCUME~1\BOURRI~1\APPLIC~1\Apple Computer
[11/10/2006|15:32] C:\DOCUME~1\BOURRI~1\APPLIC~1\Balm sign support
[07/09/2008|10:24] C:\DOCUME~1\BOURRI~1\APPLIC~1\BitDefender
[22/02/2009|01:40] C:\DOCUME~1\BOURRI~1\APPLIC~1\DeepBurner
[17/03/2009|11:52] C:\DOCUME~1\BOURRI~1\APPLIC~1\ESTsoft
[25/03/2007|12:06] C:\DOCUME~1\BOURRI~1\APPLIC~1\Google
[28/09/2005|12:42] C:\DOCUME~1\BOURRI~1\APPLIC~1\Help
[16/09/2005|19:55] C:\DOCUME~1\BOURRI~1\APPLIC~1\Identities
[25/09/2005|16:01] C:\DOCUME~1\BOURRI~1\APPLIC~1\InterTrust
[28/09/2005|19:15] C:\DOCUME~1\BOURRI~1\APPLIC~1\Macromedia
[22/12/2008|16:48] C:\DOCUME~1\BOURRI~1\APPLIC~1\Media Player Classic
[05/08/2008|14:31] C:\DOCUME~1\BOURRI~1\APPLIC~1\Microsoft
[25/09/2005|13:09] C:\DOCUME~1\BOURRI~1\APPLIC~1\Microsoft Web Folders
[29/08/2008|15:42] C:\DOCUME~1\BOURRI~1\APPLIC~1\Mozilla
[30/09/2005|19:45] C:\DOCUME~1\BOURRI~1\APPLIC~1\MSNInstaller
[24/02/2008|14:55] C:\DOCUME~1\BOURRI~1\APPLIC~1\Oberon Games
[28/09/2005|19:26] C:\DOCUME~1\BOURRI~1\APPLIC~1\OD2
[15/07/2006|15:15] C:\DOCUME~1\BOURRI~1\APPLIC~1\PC Tools
[23/02/2008|18:49] C:\DOCUME~1\BOURRI~1\APPLIC~1\PlayFirst
[15/09/2007|11:31] C:\DOCUME~1\BOURRI~1\APPLIC~1\Samsung
[03/04/2006|20:37] C:\DOCUME~1\BOURRI~1\APPLIC~1\Shareaza
[10/02/2008|23:38] C:\DOCUME~1\BOURRI~1\APPLIC~1\Sibelius Software
[09/09/2008|22:19] C:\DOCUME~1\BOURRI~1\APPLIC~1\Skype
[21/09/2006|19:44] C:\DOCUME~1\BOURRI~1\APPLIC~1\Sun
[07/10/2007|23:11] C:\DOCUME~1\BOURRI~1\APPLIC~1\Symantec
[15/08/2007|14:47] C:\DOCUME~1\BOURRI~1\APPLIC~1\Talkback
[15/01/2006|19:12] C:\DOCUME~1\BOURRI~1\APPLIC~1\The Hobbit
[29/08/2008|15:42] C:\DOCUME~1\BOURRI~1\APPLIC~1\Thunderbird
[16/09/2005|18:18] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[16/09/2005|18:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[08/10/2006|11:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec
[16/09/2005|18:18] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[05/10/2005|20:55] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[25/05/2009 09:36][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[25/05/2009 15:00][--ah-----] C:\WINDOWS\tasks\{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job
[25/05/2009 15:19][--ah-----] C:\WINDOWS\tasks\{783AF354-B514-42d6-970E-3E8BF0A5279C}.job
[25/05/2009 14:34][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[25/05/2009 15:24][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ MsgPlus SPONSOR INSTALLED !
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"SponsorInstalled"=dword:00000000
--------------------\\ Listing des dossiers dans C:\Program Files
[16/10/2005|10:23] C:\Program Files\Acclaim Entertainment
[09/07/2008|12:23] C:\Program Files\Adobe
[15/07/2006|17:05] C:\Program Files\Adverts
[16/09/2005|19:58] C:\Program Files\AMD
[06/03/2007|11:44] C:\Program Files\American Conquest - Divided Nation
[29/09/2007|14:53] C:\Program Files\aMSN
[25/05/2009|09:35] C:\Program Files\Apple Software Update
[21/02/2009|20:27] C:\Program Files\Astonsoft
[30/08/2007|18:11] C:\Program Files\Atoutclic CM2
[16/09/2005|19:59] C:\Program Files\AvRack
[20/05/2006|11:07] C:\Program Files\Balm sign support
[07/09/2008|10:24] C:\Program Files\BitDefender
[20/04/2008|18:26] C:\Program Files\BitTorrent Fastest Tool
[25/05/2009|09:38] C:\Program Files\Bonjour
[06/01/2006|19:06] C:\Program Files\Canon
[06/04/2008|18:17] C:\Program Files\Comcast Play Games
[16/09/2005|18:16] C:\Program Files\ComPlus Applications
[01/05/2008|19:28] C:\Program Files\Davilex
[25/02/2007|20:12] C:\Program Files\Dictionnaire
[26/12/2005|12:08] C:\Program Files\directx
[15/08/2007|14:47] C:\Program Files\DivX
[09/10/2007|18:55] C:\Program Files\Dracula
[18/06/2006|10:18] C:\Program Files\EA SPORTS
[16/10/2005|10:21] C:\Program Files\EACOM
[20/11/2007|17:02] C:\Program Files\Eidos Interactive
[15/03/2009|14:34] C:\Program Files\eMule v.049c
[25/09/2005|11:28] C:\Program Files\EPSON
[17/03/2009|11:51] C:\Program Files\ESTsoft
[27/02/2009|11:22] C:\Program Files\Every Toolbar 1.1
[25/05/2009|09:35] C:\Program Files\Fichiers communs
[11/02/2009|16:57] C:\Program Files\Free Audio Pack
[16/09/2005|18:02] C:\Program Files\Futuremark
[18/01/2008|22:33] C:\Program Files\GamesBar
[13/02/2009|14:41] C:\Program Files\Google
[11/02/2007|23:36] C:\Program Files\Graal
[14/12/2005|20:16] C:\Program Files\Hasbro Interactive
[14/09/2007|21:37] C:\Program Files\InstallShield Installation Information
[25/09/2005|11:48] C:\Program Files\Intel
[16/04/2009|22:23] C:\Program Files\Internet Explorer
[25/05/2009|09:40] C:\Program Files\iPod
[25/05/2009|09:41] C:\Program Files\iTunes
[12/05/2009|16:59] C:\Program Files\Java
[26/11/2006|16:00] C:\Program Files\Jeux classiques
[19/12/2008|13:09] C:\Program Files\K-Lite Codec Pack
[25/09/2005|19:42] C:\Program Files\Leadtek Research Inc
[09/06/2006|12:32] C:\Program Files\Ligos
[26/11/2006|16:00] C:\Program Files\LimeWire
[26/12/2005|19:44] C:\Program Files\Logitech
[27/11/2008|17:50] C:\Program Files\Messenger
[28/12/2007|21:18] C:\Program Files\Messenger Plus! Live
[14/09/2007|19:56] C:\Program Files\MessengerPlus! 3
[26/12/2005|12:04] C:\Program Files\Microids
[25/09/2005|11:46] C:\Program Files\Micro‹ds
[25/09/2005|13:15] C:\Program Files\Microsoft AutoRoute Express Europe 2000
[15/09/2007|11:15] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[25/09/2005|13:11] C:\Program Files\Microsoft Encarta
[25/09/2005|13:09] C:\Program Files\microsoft frontpage
[25/09/2005|13:08] C:\Program Files\Microsoft Money
[25/09/2005|13:09] C:\Program Files\Microsoft Office
[25/10/2005|18:11] C:\Program Files\Microsoft Picture It!
[26/11/2006|16:00] C:\Program Files\Microsoft Works
[25/09/2005|13:04] C:\Program Files\Microsoft Works Suite 2000
[30/01/2007|17:51] C:\Program Files\MotoRacer3
[27/11/2008|17:46] C:\Program Files\Movie Maker
[25/05/2009|13:24] C:\Program Files\Mozilla Firefox
[25/05/2009|15:08] C:\Program Files\Mozilla Thunderbird
[21/02/2009|20:24] C:\Program Files\MSBuild
[25/09/2005|11:44] C:\Program Files\MSN
[16/09/2005|18:15] C:\Program Files\MSN Gaming Zone
[27/04/2009|19:02] C:\Program Files\MSN Messenger
[16/11/2006|00:28] C:\Program Files\MSXML 4.0
[28/09/2005|19:25] C:\Program Files\Music Manager
[21/02/2009|20:28] C:\Program Files\Nero
[27/11/2008|17:44] C:\Program Files\NetMeeting
[07/09/2008|10:19] C:\Program Files\Norton 360
[10/10/2006|18:56] C:\Program Files\Norton AntiVirus
[09/07/2008|12:47] C:\Program Files\NOS
[16/09/2005|18:15] C:\Program Files\Online Services
[18/01/2008|22:33] C:\Program Files\orange
[27/11/2008|17:43] C:\Program Files\Outlook Express
[31/08/2008|15:41] C:\Program Files\Philips
[21/05/2006|12:53] C:\Program Files\PhotoFiltre
[08/05/2006|13:37] C:\Program Files\PIXELA
[15/02/2007|23:19] C:\Program Files\Pizzicato 3
[26/12/2005|13:40] C:\Program Files\Playlogic
[25/05/2009|09:37] C:\Program Files\QuickTime
[25/12/2006|20:33] C:\Program Files\Radical Games
[16/09/2005|19:59] C:\Program Files\Realtek Sound Manager
[21/02/2009|20:19] C:\Program Files\Reference Assemblies
[19/07/2007|16:34] C:\Program Files\SAGEM
[14/09/2007|21:36] C:\Program Files\Samsung
[15/10/2006|09:11] C:\Program Files\Securitoo
[16/09/2005|18:17] C:\Program Files\Services en ligne
[03/04/2006|20:37] C:\Program Files\Shareaza
[29/04/2007|14:35] C:\Program Files\Sibelius Software
[28/09/2005|11:55] C:\Program Files\Sierra
[07/02/2007|00:15] C:\Program Files\Skype
[08/05/2006|13:34] C:\Program Files\Sony Corporation
[14/10/2006|14:21] C:\Program Files\SpySpotter3
[07/09/2008|10:19] C:\Program Files\Symantec
[25/05/2009|14:53] C:\Program Files\trend micro
[26/12/2006|16:40] C:\Program Files\Ubisoft
[25/09/2005|19:46] C:\Program Files\Ulead Systems
[18/05/2008|18:05] C:\Program Files\Ultimate Game Pak
[16/09/2005|19:55] C:\Program Files\Uninstall Information
[11/09/2006|19:02] C:\Program Files\VeriSign
[05/02/2006|15:20] C:\Program Files\Vivendi Universal Games
[25/05/2009|15:23] C:\Program Files\Wanadoo
[28/09/2005|12:32] C:\Program Files\Wanadoo Messager
[09/05/2007|21:08] C:\Program Files\Winamp
[28/02/2008|21:20] C:\Program Files\Windows Live
[30/11/2007|22:44] C:\Program Files\Windows Live Favorites
[30/11/2007|22:44] C:\Program Files\Windows Live Toolbar
[13/03/2009|15:27] C:\Program Files\Windows Media Connect 2
[13/03/2009|15:26] C:\Program Files\Windows Media Player
[27/11/2008|17:43] C:\Program Files\Windows NT
[16/09/2005|18:17] C:\Program Files\WindowsUpdate
[25/09/2005|19:45] C:\Program Files\WinFast
[16/09/2005|18:19] C:\Program Files\xerox
[18/01/2006|13:10] C:\Program Files\Yahoo!
[28/09/2005|12:33] C:\Program Files\ZTE Corporation
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[09/07/2008|12:24] C:\Program Files\Fichiers communs\Adobe
[25/05/2009|09:40] C:\Program Files\Fichiers communs\Apple
[07/09/2008|10:24] C:\Program Files\Fichiers communs\BitDefender
[25/09/2005|13:09] C:\Program Files\Fichiers communs\Designer
[25/09/2005|11:26] C:\Program Files\Fichiers communs\EPSON
[28/09/2005|11:54] C:\Program Files\Fichiers communs\InstallShield
[17/09/2006|21:26] C:\Program Files\Fichiers communs\Java
[26/12/2005|19:45] C:\Program Files\Fichiers communs\Logitech
[08/03/2009|12:00] C:\Program Files\Fichiers communs\Microsoft Shared
[16/09/2005|18:16] C:\Program Files\Fichiers communs\MSSoap
[08/05/2006|13:34] C:\Program Files\Fichiers communs\muvee Technologies
[21/02/2009|20:28] C:\Program Files\Fichiers communs\Nero
[06/04/2008|18:17] C:\Program Files\Fichiers communs\Oberon Media
[16/09/2005|19:59] C:\Program Files\Fichiers communs\ODBC
[16/09/2005|18:16] C:\Program Files\Fichiers communs\Services
[07/02/2007|00:15] C:\Program Files\Fichiers communs\Skype
[16/09/2005|19:59] C:\Program Files\Fichiers communs\SpeechEngines
[07/09/2008|10:21] C:\Program Files\Fichiers communs\Symantec Shared
[27/11/2008|17:43] C:\Program Files\Fichiers communs\System
[25/09/2005|19:46] C:\Program Files\Fichiers communs\Ulead Systems
[28/02/2008|21:21] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[13/10/2005|19:03] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 14 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\Program Files\Adverts
C:\Program Files\BitTorrent Fastest Tool
C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe
C:\Program Files\BitTorrent Fastest Tool\BitP.exe
C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@advertstream[1].txt
C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@adultfriendfinder[1].txt
C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@advertising[2].txt
C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@adopt.euroclick[1].txt
C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@2xmoinscher[2].txt
C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@www.2xmoinscher[1].txt
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-25 15:27:30
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 2440
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-1229835f-2f7e0d77.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-1229835f-2f7e0d77.idx
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a75-1eb4fb8e.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a75-1eb4fb8e.idx
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a7e-3261be7c.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a7e-3261be7c.idx
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-d5f21de-2bd10380.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-d5f21de-2bd10380.idx
C:\DOCUME~1\BOURRI~1\Mes documents\Ma musique\MUSIQUES\Musiques Engag‚es\Left%C3%B6ver%20Crack_gang%20Control[1].rbs
C:\DOCUME~1\BOURRI~1\Mes documents\Ma musique\MUSIQUES\Rock, M‚tal, Hard Rock, Punk, Grunge\The Spinto Band\Nice and Nicely Done\06 - Crack the Whip - Spinto Band [the].mp3
C:\DOCUME~1\BOURRI~1\Mes documents\Mes fichiers re‡us\audrey-angelynne3906132596\Historique\lacrack20003052669766.xml
[F:9055][D:282]-> C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp
[F:1489][D:0]-> C:\DOCUME~1\BOURRI~1\Cookies
[F:3056][D:359]-> C:\DOCUME~1\BOURRI~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 25/05/2009|15:31 - Option : [1]
--------------------\\ Fin du rapport a 15:31:30
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3000+ )
BIOS : Award Modular BIOS v6.00PG
USER : BOURRIQUET ( Administrator )
BOOT : Fail-safe boot
Antivirus : BitDefender Antivirus 12.0 (Activated)
Firewall : BitDefender Firewall 12.0 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:152 Go (Free:58 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB) - FAT32 - Total:3848 Mo (Free:0 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 25/05/2009|15:26 )
--------------------\\ Listing des dossiers dans APPLIC~1
[16/09/2005|18:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[25/05/2009|09:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[09/07/2008|12:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[25/05/2009|09:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[25/05/2009|09:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[07/09/2008|10:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[17/03/2009|11:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ESTsoft
[02/03/2008|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Genimo
[13/02/2009|14:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[03/03/2006|20:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[30/06/2008|10:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[15/08/2007|14:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[21/02/2009|20:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[09/07/2008|12:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
[24/02/2008|14:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
[28/09/2005|19:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OD2
[11/10/2006|15:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Okay Less Mpeg Internet
[27/01/2008|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[11/09/2007|18:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PopCap
[23/11/2005|11:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\POPWWPROFILES
[19/12/2007|22:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[07/02/2007|00:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[07/09/2008|10:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[25/01/2008|19:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[25/09/2005|11:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[25/09/2005|19:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[16/09/2005|14:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/09/2007|18:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[28/02/2008|21:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[18/01/2006|13:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[09/01/2008|17:40] C:\DOCUME~1\BOURRI~1\APPLIC~1\Adobe
[24/02/2008|22:57] C:\DOCUME~1\BOURRI~1\APPLIC~1\AdobeUM
[25/05/2009|10:33] C:\DOCUME~1\BOURRI~1\APPLIC~1\Apple Computer
[11/10/2006|15:32] C:\DOCUME~1\BOURRI~1\APPLIC~1\Balm sign support
[07/09/2008|10:24] C:\DOCUME~1\BOURRI~1\APPLIC~1\BitDefender
[22/02/2009|01:40] C:\DOCUME~1\BOURRI~1\APPLIC~1\DeepBurner
[17/03/2009|11:52] C:\DOCUME~1\BOURRI~1\APPLIC~1\ESTsoft
[25/03/2007|12:06] C:\DOCUME~1\BOURRI~1\APPLIC~1\Google
[28/09/2005|12:42] C:\DOCUME~1\BOURRI~1\APPLIC~1\Help
[16/09/2005|19:55] C:\DOCUME~1\BOURRI~1\APPLIC~1\Identities
[25/09/2005|16:01] C:\DOCUME~1\BOURRI~1\APPLIC~1\InterTrust
[28/09/2005|19:15] C:\DOCUME~1\BOURRI~1\APPLIC~1\Macromedia
[22/12/2008|16:48] C:\DOCUME~1\BOURRI~1\APPLIC~1\Media Player Classic
[05/08/2008|14:31] C:\DOCUME~1\BOURRI~1\APPLIC~1\Microsoft
[25/09/2005|13:09] C:\DOCUME~1\BOURRI~1\APPLIC~1\Microsoft Web Folders
[29/08/2008|15:42] C:\DOCUME~1\BOURRI~1\APPLIC~1\Mozilla
[30/09/2005|19:45] C:\DOCUME~1\BOURRI~1\APPLIC~1\MSNInstaller
[24/02/2008|14:55] C:\DOCUME~1\BOURRI~1\APPLIC~1\Oberon Games
[28/09/2005|19:26] C:\DOCUME~1\BOURRI~1\APPLIC~1\OD2
[15/07/2006|15:15] C:\DOCUME~1\BOURRI~1\APPLIC~1\PC Tools
[23/02/2008|18:49] C:\DOCUME~1\BOURRI~1\APPLIC~1\PlayFirst
[15/09/2007|11:31] C:\DOCUME~1\BOURRI~1\APPLIC~1\Samsung
[03/04/2006|20:37] C:\DOCUME~1\BOURRI~1\APPLIC~1\Shareaza
[10/02/2008|23:38] C:\DOCUME~1\BOURRI~1\APPLIC~1\Sibelius Software
[09/09/2008|22:19] C:\DOCUME~1\BOURRI~1\APPLIC~1\Skype
[21/09/2006|19:44] C:\DOCUME~1\BOURRI~1\APPLIC~1\Sun
[07/10/2007|23:11] C:\DOCUME~1\BOURRI~1\APPLIC~1\Symantec
[15/08/2007|14:47] C:\DOCUME~1\BOURRI~1\APPLIC~1\Talkback
[15/01/2006|19:12] C:\DOCUME~1\BOURRI~1\APPLIC~1\The Hobbit
[29/08/2008|15:42] C:\DOCUME~1\BOURRI~1\APPLIC~1\Thunderbird
[16/09/2005|18:18] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[16/09/2005|18:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[08/10/2006|11:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec
[16/09/2005|18:18] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[05/10/2005|20:55] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[25/05/2009 09:36][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[25/05/2009 15:00][--ah-----] C:\WINDOWS\tasks\{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job
[25/05/2009 15:19][--ah-----] C:\WINDOWS\tasks\{783AF354-B514-42d6-970E-3E8BF0A5279C}.job
[25/05/2009 14:34][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[25/05/2009 15:24][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ MsgPlus SPONSOR INSTALLED !
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"SponsorInstalled"=dword:00000000
--------------------\\ Listing des dossiers dans C:\Program Files
[16/10/2005|10:23] C:\Program Files\Acclaim Entertainment
[09/07/2008|12:23] C:\Program Files\Adobe
[15/07/2006|17:05] C:\Program Files\Adverts
[16/09/2005|19:58] C:\Program Files\AMD
[06/03/2007|11:44] C:\Program Files\American Conquest - Divided Nation
[29/09/2007|14:53] C:\Program Files\aMSN
[25/05/2009|09:35] C:\Program Files\Apple Software Update
[21/02/2009|20:27] C:\Program Files\Astonsoft
[30/08/2007|18:11] C:\Program Files\Atoutclic CM2
[16/09/2005|19:59] C:\Program Files\AvRack
[20/05/2006|11:07] C:\Program Files\Balm sign support
[07/09/2008|10:24] C:\Program Files\BitDefender
[20/04/2008|18:26] C:\Program Files\BitTorrent Fastest Tool
[25/05/2009|09:38] C:\Program Files\Bonjour
[06/01/2006|19:06] C:\Program Files\Canon
[06/04/2008|18:17] C:\Program Files\Comcast Play Games
[16/09/2005|18:16] C:\Program Files\ComPlus Applications
[01/05/2008|19:28] C:\Program Files\Davilex
[25/02/2007|20:12] C:\Program Files\Dictionnaire
[26/12/2005|12:08] C:\Program Files\directx
[15/08/2007|14:47] C:\Program Files\DivX
[09/10/2007|18:55] C:\Program Files\Dracula
[18/06/2006|10:18] C:\Program Files\EA SPORTS
[16/10/2005|10:21] C:\Program Files\EACOM
[20/11/2007|17:02] C:\Program Files\Eidos Interactive
[15/03/2009|14:34] C:\Program Files\eMule v.049c
[25/09/2005|11:28] C:\Program Files\EPSON
[17/03/2009|11:51] C:\Program Files\ESTsoft
[27/02/2009|11:22] C:\Program Files\Every Toolbar 1.1
[25/05/2009|09:35] C:\Program Files\Fichiers communs
[11/02/2009|16:57] C:\Program Files\Free Audio Pack
[16/09/2005|18:02] C:\Program Files\Futuremark
[18/01/2008|22:33] C:\Program Files\GamesBar
[13/02/2009|14:41] C:\Program Files\Google
[11/02/2007|23:36] C:\Program Files\Graal
[14/12/2005|20:16] C:\Program Files\Hasbro Interactive
[14/09/2007|21:37] C:\Program Files\InstallShield Installation Information
[25/09/2005|11:48] C:\Program Files\Intel
[16/04/2009|22:23] C:\Program Files\Internet Explorer
[25/05/2009|09:40] C:\Program Files\iPod
[25/05/2009|09:41] C:\Program Files\iTunes
[12/05/2009|16:59] C:\Program Files\Java
[26/11/2006|16:00] C:\Program Files\Jeux classiques
[19/12/2008|13:09] C:\Program Files\K-Lite Codec Pack
[25/09/2005|19:42] C:\Program Files\Leadtek Research Inc
[09/06/2006|12:32] C:\Program Files\Ligos
[26/11/2006|16:00] C:\Program Files\LimeWire
[26/12/2005|19:44] C:\Program Files\Logitech
[27/11/2008|17:50] C:\Program Files\Messenger
[28/12/2007|21:18] C:\Program Files\Messenger Plus! Live
[14/09/2007|19:56] C:\Program Files\MessengerPlus! 3
[26/12/2005|12:04] C:\Program Files\Microids
[25/09/2005|11:46] C:\Program Files\Micro‹ds
[25/09/2005|13:15] C:\Program Files\Microsoft AutoRoute Express Europe 2000
[15/09/2007|11:15] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[25/09/2005|13:11] C:\Program Files\Microsoft Encarta
[25/09/2005|13:09] C:\Program Files\microsoft frontpage
[25/09/2005|13:08] C:\Program Files\Microsoft Money
[25/09/2005|13:09] C:\Program Files\Microsoft Office
[25/10/2005|18:11] C:\Program Files\Microsoft Picture It!
[26/11/2006|16:00] C:\Program Files\Microsoft Works
[25/09/2005|13:04] C:\Program Files\Microsoft Works Suite 2000
[30/01/2007|17:51] C:\Program Files\MotoRacer3
[27/11/2008|17:46] C:\Program Files\Movie Maker
[25/05/2009|13:24] C:\Program Files\Mozilla Firefox
[25/05/2009|15:08] C:\Program Files\Mozilla Thunderbird
[21/02/2009|20:24] C:\Program Files\MSBuild
[25/09/2005|11:44] C:\Program Files\MSN
[16/09/2005|18:15] C:\Program Files\MSN Gaming Zone
[27/04/2009|19:02] C:\Program Files\MSN Messenger
[16/11/2006|00:28] C:\Program Files\MSXML 4.0
[28/09/2005|19:25] C:\Program Files\Music Manager
[21/02/2009|20:28] C:\Program Files\Nero
[27/11/2008|17:44] C:\Program Files\NetMeeting
[07/09/2008|10:19] C:\Program Files\Norton 360
[10/10/2006|18:56] C:\Program Files\Norton AntiVirus
[09/07/2008|12:47] C:\Program Files\NOS
[16/09/2005|18:15] C:\Program Files\Online Services
[18/01/2008|22:33] C:\Program Files\orange
[27/11/2008|17:43] C:\Program Files\Outlook Express
[31/08/2008|15:41] C:\Program Files\Philips
[21/05/2006|12:53] C:\Program Files\PhotoFiltre
[08/05/2006|13:37] C:\Program Files\PIXELA
[15/02/2007|23:19] C:\Program Files\Pizzicato 3
[26/12/2005|13:40] C:\Program Files\Playlogic
[25/05/2009|09:37] C:\Program Files\QuickTime
[25/12/2006|20:33] C:\Program Files\Radical Games
[16/09/2005|19:59] C:\Program Files\Realtek Sound Manager
[21/02/2009|20:19] C:\Program Files\Reference Assemblies
[19/07/2007|16:34] C:\Program Files\SAGEM
[14/09/2007|21:36] C:\Program Files\Samsung
[15/10/2006|09:11] C:\Program Files\Securitoo
[16/09/2005|18:17] C:\Program Files\Services en ligne
[03/04/2006|20:37] C:\Program Files\Shareaza
[29/04/2007|14:35] C:\Program Files\Sibelius Software
[28/09/2005|11:55] C:\Program Files\Sierra
[07/02/2007|00:15] C:\Program Files\Skype
[08/05/2006|13:34] C:\Program Files\Sony Corporation
[14/10/2006|14:21] C:\Program Files\SpySpotter3
[07/09/2008|10:19] C:\Program Files\Symantec
[25/05/2009|14:53] C:\Program Files\trend micro
[26/12/2006|16:40] C:\Program Files\Ubisoft
[25/09/2005|19:46] C:\Program Files\Ulead Systems
[18/05/2008|18:05] C:\Program Files\Ultimate Game Pak
[16/09/2005|19:55] C:\Program Files\Uninstall Information
[11/09/2006|19:02] C:\Program Files\VeriSign
[05/02/2006|15:20] C:\Program Files\Vivendi Universal Games
[25/05/2009|15:23] C:\Program Files\Wanadoo
[28/09/2005|12:32] C:\Program Files\Wanadoo Messager
[09/05/2007|21:08] C:\Program Files\Winamp
[28/02/2008|21:20] C:\Program Files\Windows Live
[30/11/2007|22:44] C:\Program Files\Windows Live Favorites
[30/11/2007|22:44] C:\Program Files\Windows Live Toolbar
[13/03/2009|15:27] C:\Program Files\Windows Media Connect 2
[13/03/2009|15:26] C:\Program Files\Windows Media Player
[27/11/2008|17:43] C:\Program Files\Windows NT
[16/09/2005|18:17] C:\Program Files\WindowsUpdate
[25/09/2005|19:45] C:\Program Files\WinFast
[16/09/2005|18:19] C:\Program Files\xerox
[18/01/2006|13:10] C:\Program Files\Yahoo!
[28/09/2005|12:33] C:\Program Files\ZTE Corporation
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[09/07/2008|12:24] C:\Program Files\Fichiers communs\Adobe
[25/05/2009|09:40] C:\Program Files\Fichiers communs\Apple
[07/09/2008|10:24] C:\Program Files\Fichiers communs\BitDefender
[25/09/2005|13:09] C:\Program Files\Fichiers communs\Designer
[25/09/2005|11:26] C:\Program Files\Fichiers communs\EPSON
[28/09/2005|11:54] C:\Program Files\Fichiers communs\InstallShield
[17/09/2006|21:26] C:\Program Files\Fichiers communs\Java
[26/12/2005|19:45] C:\Program Files\Fichiers communs\Logitech
[08/03/2009|12:00] C:\Program Files\Fichiers communs\Microsoft Shared
[16/09/2005|18:16] C:\Program Files\Fichiers communs\MSSoap
[08/05/2006|13:34] C:\Program Files\Fichiers communs\muvee Technologies
[21/02/2009|20:28] C:\Program Files\Fichiers communs\Nero
[06/04/2008|18:17] C:\Program Files\Fichiers communs\Oberon Media
[16/09/2005|19:59] C:\Program Files\Fichiers communs\ODBC
[16/09/2005|18:16] C:\Program Files\Fichiers communs\Services
[07/02/2007|00:15] C:\Program Files\Fichiers communs\Skype
[16/09/2005|19:59] C:\Program Files\Fichiers communs\SpeechEngines
[07/09/2008|10:21] C:\Program Files\Fichiers communs\Symantec Shared
[27/11/2008|17:43] C:\Program Files\Fichiers communs\System
[25/09/2005|19:46] C:\Program Files\Fichiers communs\Ulead Systems
[28/02/2008|21:21] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[13/10/2005|19:03] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 14 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\Program Files\Adverts
C:\Program Files\BitTorrent Fastest Tool
C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe
C:\Program Files\BitTorrent Fastest Tool\BitP.exe
C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@advertstream[1].txt
C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@adultfriendfinder[1].txt
C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@advertising[2].txt
C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@adopt.euroclick[1].txt
C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@2xmoinscher[2].txt
C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@www.2xmoinscher[1].txt
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-25 15:27:30
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 2440
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-1229835f-2f7e0d77.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-1229835f-2f7e0d77.idx
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a75-1eb4fb8e.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a75-1eb4fb8e.idx
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a7e-3261be7c.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a7e-3261be7c.idx
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-d5f21de-2bd10380.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-d5f21de-2bd10380.idx
C:\DOCUME~1\BOURRI~1\Mes documents\Ma musique\MUSIQUES\Musiques Engag‚es\Left%C3%B6ver%20Crack_gang%20Control[1].rbs
C:\DOCUME~1\BOURRI~1\Mes documents\Ma musique\MUSIQUES\Rock, M‚tal, Hard Rock, Punk, Grunge\The Spinto Band\Nice and Nicely Done\06 - Crack the Whip - Spinto Band [the].mp3
C:\DOCUME~1\BOURRI~1\Mes documents\Mes fichiers re‡us\audrey-angelynne3906132596\Historique\lacrack20003052669766.xml
[F:9055][D:282]-> C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp
[F:1489][D:0]-> C:\DOCUME~1\BOURRI~1\Cookies
[F:3056][D:359]-> C:\DOCUME~1\BOURRI~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 25/05/2009|15:31 - Option : [1]
--------------------\\ Fin du rapport a 15:31:30
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
réouvre hijackthis
fais scan only
coches ces lignes sur leur gauche:
O16 - DPF: {2D2BEE6E-3C9A-4D58-B9EC-458EDB28D0F6} - https://www.afternic.com/domains/drivecleaner.com
tu les coches et tu clic sur "fix checked"
et tu fermes le programme.
ensuite :
Clique sur le menu Demarrer /Panneau de configuration/Options des dossiers/ puis dans l'onglet Affichage
- Coche Afficher les fichiers et dossiers cachés
- Décoche Masquer les extensions des fichiers dont le type est connu
- Décoche Masquer les fichiers protégés du système d'exploitation (recommandé)
clique sur Appliquer, puis OK.
N'oublie pas de recacher à nouveau les fichiers cachés et protégés du système d'exploitation en fin de désinfection, c'est important
Fais analyser le(s) fichier(s) suivants sur Virustotal :
Virus Total
* Clique sur Parcourir en haut, choisis Poste de travail et cherche ces fichiers :
C:\WINDOWS\system32\DRIVERS\SaiH0109.sys
* Clique maintenant sur Envoyer le fichier. et laisse travailler tant que "Situation actuelle : en cours d'analyse" est affiché.
* Il est possible que le fichier soit mis en file d'attente en raison d'un grand nombre de demandes d'analyses. En ce cas, il te faudra patienter sans actualiser la page.
* Lorsque l'analyse est terminée ("Situation actuelle: terminé"), clique sur Formaté
* Une nouvelle fenêtre de ton navigateur va apparaître
* Clique alors sur les deux fleches
* Fais un clic droit sur la page, et choisis Sélectionner tout, puis copier
* Enfin colle le résultat dans ta prochaine réponse.
ensuite :
---> Désactive ton antivirus le temps de la manipulation car OTMoveIt3 est détecté comme une infection à tort.
---> Télécharge OTMoveIt3 (OldTimer) sur ton Bureau :
---> Double-clique sur OTMoveIt3.exe afin de le lancer.
---> Copie (Ctrl+C) le texte suivant ci-dessous :
:processes
explorer.exe
:services
ipfw_helper
ip_fw
hSONYPVh
:files
C:\WINDOWS\mse.exe
C:\WINDOWS\msc.exe
C:\WINDOWS\msb.exe
C:\WINDOWS\msa.exe
C:\WINDOWS\msd.exe
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\3238.exe
C:\WINDOWS\system32\3764.exe
C:\WINDOWS\tasks\{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job
C:\WINDOWS\tasks\{783AF354-B514-42d6-970E-3E8BF0A5279C}.job
C:\WINDOWS\system32\msxml71.dll
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk
C:\WINDOWS\system32\DRIVERS\ip_fw.sys
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\hSONYPVh.sys
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{500BCA15-57A7-4eaf-8143-8C619470B13D}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{A20A76AD-7A29-4756-87FE-70C334CB40C0}"=-
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=-
"NVRaidService"=-
"nwiz"=-
"WinFast2KLoadDefault"=-
"LVCOMSX"=-
"Adobe Reader Speed Launcher"=-
"Auto Run Software for Photo Frame"=-
"Symantec PIF AlertEng"=-
"QuickTime Task"=-
"iTunesHelper"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LDM"=-
"LogitechSoftwareUpdate"=-
"Shareaza"=-
"swg"=-
"MsnMsgr"=-
"Cognac"=-
"ColdWare"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
:commands
[purity]
[emptytemp]
[start explorer]
[reboot]
---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.
---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
fais scan only
coches ces lignes sur leur gauche:
O16 - DPF: {2D2BEE6E-3C9A-4D58-B9EC-458EDB28D0F6} - https://www.afternic.com/domains/drivecleaner.com
tu les coches et tu clic sur "fix checked"
et tu fermes le programme.
ensuite :
Clique sur le menu Demarrer /Panneau de configuration/Options des dossiers/ puis dans l'onglet Affichage
- Coche Afficher les fichiers et dossiers cachés
- Décoche Masquer les extensions des fichiers dont le type est connu
- Décoche Masquer les fichiers protégés du système d'exploitation (recommandé)
clique sur Appliquer, puis OK.
N'oublie pas de recacher à nouveau les fichiers cachés et protégés du système d'exploitation en fin de désinfection, c'est important
Fais analyser le(s) fichier(s) suivants sur Virustotal :
Virus Total
* Clique sur Parcourir en haut, choisis Poste de travail et cherche ces fichiers :
C:\WINDOWS\system32\DRIVERS\SaiH0109.sys
* Clique maintenant sur Envoyer le fichier. et laisse travailler tant que "Situation actuelle : en cours d'analyse" est affiché.
* Il est possible que le fichier soit mis en file d'attente en raison d'un grand nombre de demandes d'analyses. En ce cas, il te faudra patienter sans actualiser la page.
* Lorsque l'analyse est terminée ("Situation actuelle: terminé"), clique sur Formaté
* Une nouvelle fenêtre de ton navigateur va apparaître
* Clique alors sur les deux fleches
* Fais un clic droit sur la page, et choisis Sélectionner tout, puis copier
* Enfin colle le résultat dans ta prochaine réponse.
ensuite :
---> Désactive ton antivirus le temps de la manipulation car OTMoveIt3 est détecté comme une infection à tort.
---> Télécharge OTMoveIt3 (OldTimer) sur ton Bureau :
---> Double-clique sur OTMoveIt3.exe afin de le lancer.
---> Copie (Ctrl+C) le texte suivant ci-dessous :
:processes
explorer.exe
:services
ipfw_helper
ip_fw
hSONYPVh
:files
C:\WINDOWS\mse.exe
C:\WINDOWS\msc.exe
C:\WINDOWS\msb.exe
C:\WINDOWS\msa.exe
C:\WINDOWS\msd.exe
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\3238.exe
C:\WINDOWS\system32\3764.exe
C:\WINDOWS\tasks\{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job
C:\WINDOWS\tasks\{783AF354-B514-42d6-970E-3E8BF0A5279C}.job
C:\WINDOWS\system32\msxml71.dll
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk
C:\WINDOWS\system32\DRIVERS\ip_fw.sys
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\hSONYPVh.sys
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{500BCA15-57A7-4eaf-8143-8C619470B13D}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{A20A76AD-7A29-4756-87FE-70C334CB40C0}"=-
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=-
"NVRaidService"=-
"nwiz"=-
"WinFast2KLoadDefault"=-
"LVCOMSX"=-
"Adobe Reader Speed Launcher"=-
"Auto Run Software for Photo Frame"=-
"Symantec PIF AlertEng"=-
"QuickTime Task"=-
"iTunesHelper"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LDM"=-
"LogitechSoftwareUpdate"=-
"Shareaza"=-
"swg"=-
"MsnMsgr"=-
"Cognac"=-
"ColdWare"=-
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
:commands
[purity]
[emptytemp]
[start explorer]
[reboot]
---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.
---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
Fichier SaiH0109.sys reçu le 2009.05.25 14:48:39 (UTC)Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.05.25 -
AhnLab-V3 5.0.0.2 2009.05.25 -
AntiVir 7.9.0.168 2009.05.25 -
Antiy-AVL 2.0.3.1 2009.05.25 -
Authentium 5.1.2.4 2009.05.25 -
Avast 4.8.1335.0 2009.05.24 -
AVG 8.5.0.339 2009.05.25 -
BitDefender 7.2 2009.05.25 -
CAT-QuickHeal 10.00 2009.05.25 -
ClamAV 0.94.1 2009.05.25 -
Comodo 1199 2009.05.25 -
DrWeb 5.0.0.12182 2009.05.25 -
eSafe 7.0.17.0 2009.05.24 -
eTrust-Vet 31.6.6521 2009.05.25 -
F-Prot 4.4.4.56 2009.05.25 -
F-Secure 8.0.14470.0 2009.05.25 -
Fortinet 3.117.0.0 2009.05.25 -
GData 19 2009.05.25 -
Ikarus T3.1.1.49.0 2009.05.25 -
K7AntiVirus 7.10.741 2009.05.21 -
Kaspersky 7.0.0.125 2009.05.25 -
McAfee 5625 2009.05.24 -
McAfee+Artemis 5625 2009.05.24 -
McAfee-GW-Edition 6.7.6 2009.05.25 -
Microsoft 1.4701 2009.05.25 -
NOD32 4101 2009.05.25 -
Norman 6.01.05 2009.05.25 -
nProtect 2009.1.8.0 2009.05.25 -
Panda 10.0.0.14 2009.05.24 -
PCTools 4.4.2.0 2009.05.21 -
Prevx 3.0 2009.05.25 -
Rising 21.31.04.00 2009.05.25 -
Sophos 4.42.0 2009.05.25 -
Sunbelt 3.2.1858.2 2009.05.24 -
Symantec 1.4.4.12 2009.05.25 -
TheHacker 6.3.4.3.331 2009.05.25 -
TrendMicro 8.950.0.1092 2009.05.25 -
VBA32 3.12.10.5 2009.05.25 -
ViRobot 2009.5.25.1751 2009.05.25 -
VirusBuster 4.6.5.0 2009.05.24 -
Information additionnelle
File size: 55936 bytes
MD5...: 276cf8ab40b630c88ae5c78718030ca2
SHA1..: 8fae6736e9a49863ea5bc53d204d1ac57cafe73e
SHA256: b7b56a156fb357bf038dbe90724c71376d546a9345e6a7a3a22115674dabbf1d
ssdeep: 768:9T48199akUbwXylpbXR1VpkaXLI8zewXXB4mPSZDXKu+S9UgpdbRk6:11HaA<BR>epbXzjXPzVNPiGXS9NpdRk6<BR>
PEiD..: -
TrID..: File type identification<BR>Win16/32 Executable Delphi generic (25.4%)<BR>Clipper DOS Executable (24.8%)<BR>Generic Win/DOS Executable (24.6%)<BR>DOS Executable Generic (24.6%)<BR>VXD Driver (0.3%)
PEInfo: PE Structure information<BR><BR>( base data )<BR>entrypointaddress.: 0x5080<BR>timedatestamp.....: 0x401521a3 (Mon Jan 26 14:18:11 2004)<BR>machinetype.......: 0x14c (I386)<BR><BR>( 7 sections )<BR>name viradd virsiz rawdsiz ntrpy md5<BR>.text 0x480 0x620a 0x6280 6.51 2d6adc130ed925107eaef5fc3b5b628a<BR>.rdata 0x6700 0x5b1 0x600 4.88 a919863b5288b1dfe7ccf8befe88a927<BR>.data 0x6d00 0x1c8 0x200 1.51 ac2401f841ed7ff137de5054d895fafb<BR>PAGE 0x6f00 0x52c0 0x5300 6.40 9a0c2bcec69d08ec265bd729f003b30e<BR>INIT 0xc200 0xb28 0xb80 5.44 0925e1070ae20c593a5005a98ee0a1a0<BR>.rsrc 0xcd80 0x3a8 0x400 3.08 c58264c955af8e2eb1d482000dabaa92<BR>.reloc 0xd180 0x88c 0x900 5.80 c83915df8cb39d233c53ebcbfd53b3cf<BR><BR>( 3 imports ) <BR>> NTOSKRNL.EXE: ObfDereferenceObject, RtlInitUnicodeString, KeSetEvent, KeWaitForSingleObject, IoBuildDeviceIoControlRequest, InterlockedDecrement, InterlockedIncrement, ExQueueWorkItem, wcscat, wcscpy, wcslen, KeInitializeSpinLock, MmMapLockedPagesSpecifyCache, isupper, isdigit, isxdigit, isspace, swprintf, IofCallDriver, KeDelayExecutionThread, KeClearEvent, KeInitializeTimerEx, IoFreeIrp, ExNotifyCallback, KeSetTimerEx, wcsrchr, RtlCompareMemory, KeReleaseMutex, strrchr, RtlTimeToTimeFields, KeQuerySystemTime, wcscmp, KeInitializeMutex, IoUnregisterPlugPlayNotification, RtlUnwind, IofCompleteRequest, ZwClose, ExCreateCallback, IoCreateDevice, IoAttachDeviceToDeviceStack, IoDetachDevice, IoDeleteDevice, KeInitializeEvent, IoRegisterPlugPlayNotification, wcsncpy, RtlFreeUnicodeString, IoGetDeviceObjectPointer, RtlCopyUnicodeString, IoIsWdmVersionAvailable, IoReleaseCancelSpinLock, IoAcquireCancelSpinLock, RtlUnicodeStringToAnsiString, PoSetPowerState, IoInvalidateDeviceState, IoSetDeviceInterfaceState, InterlockedExchange, IoRegisterDeviceInterface, PoStartNextPowerIrp, PoRegisterDeviceForIdleDetection, PoCallDriver, ZwQueryValueKey, IoOpenDeviceRegistryKey, PoRequestPowerIrp, ZwSetValueKey, DbgPrint, IoCancelIrp, IoAllocateIrp, ExInterlockedPopEntrySList, ExInterlockedPushEntrySList, ExInitializeNPagedLookasideList, ExDeleteNPagedLookasideList, ExfInterlockedInsertTailList, ZwOpenKey, ZwCreateKey, memmove, ZwEnumerateKey, RtlAppendUnicodeToString, RtlAppendUnicodeStringToString, IoGetDeviceProperty, KefAcquireSpinLockAtDpcLevel, ExFreePool, KefReleaseSpinLockFromDpcLevel, ExAllocatePoolWithTag<BR>> HAL.DLL: KfLowerIrql, KeGetCurrentIrql, ExReleaseFastMutex, ExAcquireFastMutex, KfRaiseIrql, KfAcquireSpinLock, KfReleaseSpinLock<BR>> HIDPARSE.SYS: HidP_GetSpecificValueCaps, HidP_GetUsages, HidP_SetUsages, HidP_GetCaps, HidP_UnsetUsages, HidP_GetUsageValue, HidP_SetUsageValue, HidP_GetSpecificButtonCaps, HidP_MaxUsageListLength<BR><BR>( 0 exports ) <BR>
PDFiD.: -
RDS...: NSRL Reference Data Set<BR>-
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.05.25 -
AhnLab-V3 5.0.0.2 2009.05.25 -
AntiVir 7.9.0.168 2009.05.25 -
Antiy-AVL 2.0.3.1 2009.05.25 -
Authentium 5.1.2.4 2009.05.25 -
Avast 4.8.1335.0 2009.05.24 -
AVG 8.5.0.339 2009.05.25 -
BitDefender 7.2 2009.05.25 -
CAT-QuickHeal 10.00 2009.05.25 -
ClamAV 0.94.1 2009.05.25 -
Comodo 1199 2009.05.25 -
DrWeb 5.0.0.12182 2009.05.25 -
eSafe 7.0.17.0 2009.05.24 -
eTrust-Vet 31.6.6521 2009.05.25 -
F-Prot 4.4.4.56 2009.05.25 -
F-Secure 8.0.14470.0 2009.05.25 -
Fortinet 3.117.0.0 2009.05.25 -
GData 19 2009.05.25 -
Ikarus T3.1.1.49.0 2009.05.25 -
K7AntiVirus 7.10.741 2009.05.21 -
Kaspersky 7.0.0.125 2009.05.25 -
McAfee 5625 2009.05.24 -
McAfee+Artemis 5625 2009.05.24 -
McAfee-GW-Edition 6.7.6 2009.05.25 -
Microsoft 1.4701 2009.05.25 -
NOD32 4101 2009.05.25 -
Norman 6.01.05 2009.05.25 -
nProtect 2009.1.8.0 2009.05.25 -
Panda 10.0.0.14 2009.05.24 -
PCTools 4.4.2.0 2009.05.21 -
Prevx 3.0 2009.05.25 -
Rising 21.31.04.00 2009.05.25 -
Sophos 4.42.0 2009.05.25 -
Sunbelt 3.2.1858.2 2009.05.24 -
Symantec 1.4.4.12 2009.05.25 -
TheHacker 6.3.4.3.331 2009.05.25 -
TrendMicro 8.950.0.1092 2009.05.25 -
VBA32 3.12.10.5 2009.05.25 -
ViRobot 2009.5.25.1751 2009.05.25 -
VirusBuster 4.6.5.0 2009.05.24 -
Information additionnelle
File size: 55936 bytes
MD5...: 276cf8ab40b630c88ae5c78718030ca2
SHA1..: 8fae6736e9a49863ea5bc53d204d1ac57cafe73e
SHA256: b7b56a156fb357bf038dbe90724c71376d546a9345e6a7a3a22115674dabbf1d
ssdeep: 768:9T48199akUbwXylpbXR1VpkaXLI8zewXXB4mPSZDXKu+S9UgpdbRk6:11HaA<BR>epbXzjXPzVNPiGXS9NpdRk6<BR>
PEiD..: -
TrID..: File type identification<BR>Win16/32 Executable Delphi generic (25.4%)<BR>Clipper DOS Executable (24.8%)<BR>Generic Win/DOS Executable (24.6%)<BR>DOS Executable Generic (24.6%)<BR>VXD Driver (0.3%)
PEInfo: PE Structure information<BR><BR>( base data )<BR>entrypointaddress.: 0x5080<BR>timedatestamp.....: 0x401521a3 (Mon Jan 26 14:18:11 2004)<BR>machinetype.......: 0x14c (I386)<BR><BR>( 7 sections )<BR>name viradd virsiz rawdsiz ntrpy md5<BR>.text 0x480 0x620a 0x6280 6.51 2d6adc130ed925107eaef5fc3b5b628a<BR>.rdata 0x6700 0x5b1 0x600 4.88 a919863b5288b1dfe7ccf8befe88a927<BR>.data 0x6d00 0x1c8 0x200 1.51 ac2401f841ed7ff137de5054d895fafb<BR>PAGE 0x6f00 0x52c0 0x5300 6.40 9a0c2bcec69d08ec265bd729f003b30e<BR>INIT 0xc200 0xb28 0xb80 5.44 0925e1070ae20c593a5005a98ee0a1a0<BR>.rsrc 0xcd80 0x3a8 0x400 3.08 c58264c955af8e2eb1d482000dabaa92<BR>.reloc 0xd180 0x88c 0x900 5.80 c83915df8cb39d233c53ebcbfd53b3cf<BR><BR>( 3 imports ) <BR>> NTOSKRNL.EXE: ObfDereferenceObject, RtlInitUnicodeString, KeSetEvent, KeWaitForSingleObject, IoBuildDeviceIoControlRequest, InterlockedDecrement, InterlockedIncrement, ExQueueWorkItem, wcscat, wcscpy, wcslen, KeInitializeSpinLock, MmMapLockedPagesSpecifyCache, isupper, isdigit, isxdigit, isspace, swprintf, IofCallDriver, KeDelayExecutionThread, KeClearEvent, KeInitializeTimerEx, IoFreeIrp, ExNotifyCallback, KeSetTimerEx, wcsrchr, RtlCompareMemory, KeReleaseMutex, strrchr, RtlTimeToTimeFields, KeQuerySystemTime, wcscmp, KeInitializeMutex, IoUnregisterPlugPlayNotification, RtlUnwind, IofCompleteRequest, ZwClose, ExCreateCallback, IoCreateDevice, IoAttachDeviceToDeviceStack, IoDetachDevice, IoDeleteDevice, KeInitializeEvent, IoRegisterPlugPlayNotification, wcsncpy, RtlFreeUnicodeString, IoGetDeviceObjectPointer, RtlCopyUnicodeString, IoIsWdmVersionAvailable, IoReleaseCancelSpinLock, IoAcquireCancelSpinLock, RtlUnicodeStringToAnsiString, PoSetPowerState, IoInvalidateDeviceState, IoSetDeviceInterfaceState, InterlockedExchange, IoRegisterDeviceInterface, PoStartNextPowerIrp, PoRegisterDeviceForIdleDetection, PoCallDriver, ZwQueryValueKey, IoOpenDeviceRegistryKey, PoRequestPowerIrp, ZwSetValueKey, DbgPrint, IoCancelIrp, IoAllocateIrp, ExInterlockedPopEntrySList, ExInterlockedPushEntrySList, ExInitializeNPagedLookasideList, ExDeleteNPagedLookasideList, ExfInterlockedInsertTailList, ZwOpenKey, ZwCreateKey, memmove, ZwEnumerateKey, RtlAppendUnicodeToString, RtlAppendUnicodeStringToString, IoGetDeviceProperty, KefAcquireSpinLockAtDpcLevel, ExFreePool, KefReleaseSpinLockFromDpcLevel, ExAllocatePoolWithTag<BR>> HAL.DLL: KfLowerIrql, KeGetCurrentIrql, ExReleaseFastMutex, ExAcquireFastMutex, KfRaiseIrql, KfAcquireSpinLock, KfReleaseSpinLock<BR>> HIDPARSE.SYS: HidP_GetSpecificValueCaps, HidP_GetUsages, HidP_SetUsages, HidP_GetCaps, HidP_UnsetUsages, HidP_GetUsageValue, HidP_SetUsageValue, HidP_GetSpecificButtonCaps, HidP_MaxUsageListLength<BR><BR>( 0 exports ) <BR>
PDFiD.: -
RDS...: NSRL Reference Data Set<BR>-
a-squared 4.0.0.101 2009.05.25 -
AhnLab-V3 5.0.0.2 2009.05.25 -
AntiVir 7.9.0.168 2009.05.25 -
Antiy-AVL 2.0.3.1 2009.05.25 -
Authentium 5.1.2.4 2009.05.25 -
Avast 4.8.1335.0 2009.05.24 -
AVG 8.5.0.339 2009.05.25 -
BitDefender 7.2 2009.05.25 -
CAT-QuickHeal 10.00 2009.05.25 -
ClamAV 0.94.1 2009.05.25 -
Comodo 1199 2009.05.25 -
DrWeb 5.0.0.12182 2009.05.25 -
eSafe 7.0.17.0 2009.05.24 -
eTrust-Vet 31.6.6521 2009.05.25 -
F-Prot 4.4.4.56 2009.05.25 -
F-Secure 8.0.14470.0 2009.05.25 -
Fortinet 3.117.0.0 2009.05.25 -
GData 19 2009.05.25 -
Ikarus T3.1.1.49.0 2009.05.25 -
K7AntiVirus 7.10.741 2009.05.21 -
Kaspersky 7.0.0.125 2009.05.25 -
McAfee 5625 2009.05.24 -
McAfee+Artemis 5625 2009.05.24 -
McAfee-GW-Edition 6.7.6 2009.05.25 -
Microsoft 1.4701 2009.05.25 -
NOD32 4101 2009.05.25 -
Norman 6.01.05 2009.05.25 -
nProtect 2009.1.8.0 2009.05.25 -
Panda 10.0.0.14 2009.05.24 -
PCTools 4.4.2.0 2009.05.21 -
Prevx 3.0 2009.05.25 -
Rising 21.31.04.00 2009.05.25 -
Sophos 4.42.0 2009.05.25 -
Sunbelt 3.2.1858.2 2009.05.24 -
Symantec 1.4.4.12 2009.05.25 -
TheHacker 6.3.4.3.331 2009.05.25 -
TrendMicro 8.950.0.1092 2009.05.25 -
VBA32 3.12.10.5 2009.05.25 -
ViRobot 2009.5.25.1751 2009.05.25 -
VirusBuster 4.6.5.0 2009.05.24 -
Information additionnelle
File size: 55936 bytes
MD5...: 276cf8ab40b630c88ae5c78718030ca2
SHA1..: 8fae6736e9a49863ea5bc53d204d1ac57cafe73e
SHA256: b7b56a156fb357bf038dbe90724c71376d546a9345e6a7a3a22115674dabbf1d
ssdeep: 768:9T48199akUbwXylpbXR1VpkaXLI8zewXXB4mPSZDXKu+S9UgpdbRk6:11HaA<BR>epbXzjXPzVNPiGXS9NpdRk6<BR>
PEiD..: -
TrID..: File type identification<BR>Win16/32 Executable Delphi generic (25.4%)<BR>Clipper DOS Executable (24.8%)<BR>Generic Win/DOS Executable (24.6%)<BR>DOS Executable Generic (24.6%)<BR>VXD Driver (0.3%)
PEInfo: PE Structure information<BR><BR>( base data )<BR>entrypointaddress.: 0x5080<BR>timedatestamp.....: 0x401521a3 (Mon Jan 26 14:18:11 2004)<BR>machinetype.......: 0x14c (I386)<BR><BR>( 7 sections )<BR>name viradd virsiz rawdsiz ntrpy md5<BR>.text 0x480 0x620a 0x6280 6.51 2d6adc130ed925107eaef5fc3b5b628a<BR>.rdata 0x6700 0x5b1 0x600 4.88 a919863b5288b1dfe7ccf8befe88a927<BR>.data 0x6d00 0x1c8 0x200 1.51 ac2401f841ed7ff137de5054d895fafb<BR>PAGE 0x6f00 0x52c0 0x5300 6.40 9a0c2bcec69d08ec265bd729f003b30e<BR>INIT 0xc200 0xb28 0xb80 5.44 0925e1070ae20c593a5005a98ee0a1a0<BR>.rsrc 0xcd80 0x3a8 0x400 3.08 c58264c955af8e2eb1d482000dabaa92<BR>.reloc 0xd180 0x88c 0x900 5.80 c83915df8cb39d233c53ebcbfd53b3cf<BR><BR>( 3 imports ) <BR>> NTOSKRNL.EXE: ObfDereferenceObject, RtlInitUnicodeString, KeSetEvent, KeWaitForSingleObject, IoBuildDeviceIoControlRequest, InterlockedDecrement, InterlockedIncrement, ExQueueWorkItem, wcscat, wcscpy, wcslen, KeInitializeSpinLock, MmMapLockedPagesSpecifyCache, isupper, isdigit, isxdigit, isspace, swprintf, IofCallDriver, KeDelayExecutionThread, KeClearEvent, KeInitializeTimerEx, IoFreeIrp, ExNotifyCallback, KeSetTimerEx, wcsrchr, RtlCompareMemory, KeReleaseMutex, strrchr, RtlTimeToTimeFields, KeQuerySystemTime, wcscmp, KeInitializeMutex, IoUnregisterPlugPlayNotification, RtlUnwind, IofCompleteRequest, ZwClose, ExCreateCallback, IoCreateDevice, IoAttachDeviceToDeviceStack, IoDetachDevice, IoDeleteDevice, KeInitializeEvent, IoRegisterPlugPlayNotification, wcsncpy, RtlFreeUnicodeString, IoGetDeviceObjectPointer, RtlCopyUnicodeString, IoIsWdmVersionAvailable, IoReleaseCancelSpinLock, IoAcquireCancelSpinLock, RtlUnicodeStringToAnsiString, PoSetPowerState, IoInvalidateDeviceState, IoSetDeviceInterfaceState, InterlockedExchange, IoRegisterDeviceInterface, PoStartNextPowerIrp, PoRegisterDeviceForIdleDetection, PoCallDriver, ZwQueryValueKey, IoOpenDeviceRegistryKey, PoRequestPowerIrp, ZwSetValueKey, DbgPrint, IoCancelIrp, IoAllocateIrp, ExInterlockedPopEntrySList, ExInterlockedPushEntrySList, ExInitializeNPagedLookasideList, ExDeleteNPagedLookasideList, ExfInterlockedInsertTailList, ZwOpenKey, ZwCreateKey, memmove, ZwEnumerateKey, RtlAppendUnicodeToString, RtlAppendUnicodeStringToString, IoGetDeviceProperty, KefAcquireSpinLockAtDpcLevel, ExFreePool, KefReleaseSpinLockFromDpcLevel, ExAllocatePoolWithTag<BR>> HAL.DLL: KfLowerIrql, KeGetCurrentIrql, ExReleaseFastMutex, ExAcquireFastMutex, KfRaiseIrql, KfAcquireSpinLock, KfReleaseSpinLock<BR>> HIDPARSE.SYS: HidP_GetSpecificValueCaps, HidP_GetUsages, HidP_SetUsages, HidP_GetCaps, HidP_UnsetUsages, HidP_GetUsageValue, HidP_SetUsageValue, HidP_GetSpecificButtonCaps, HidP_MaxUsageListLength<BR><BR>( 0 exports ) <BR>
PDFiD.: -
RDS...: NSRL Reference Data Set<BR>-
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.05.25 -
AhnLab-V3 5.0.0.2 2009.05.25 -
AntiVir 7.9.0.168 2009.05.25 -
Antiy-AVL 2.0.3.1 2009.05.25 -
Authentium 5.1.2.4 2009.05.25 -
Avast 4.8.1335.0 2009.05.24 -
AVG 8.5.0.339 2009.05.25 -
BitDefender 7.2 2009.05.25 -
CAT-QuickHeal 10.00 2009.05.25 -
ClamAV 0.94.1 2009.05.25 -
Comodo 1199 2009.05.25 -
DrWeb 5.0.0.12182 2009.05.25 -
eSafe 7.0.17.0 2009.05.24 -
eTrust-Vet 31.6.6521 2009.05.25 -
F-Prot 4.4.4.56 2009.05.25 -
F-Secure 8.0.14470.0 2009.05.25 -
Fortinet 3.117.0.0 2009.05.25 -
GData 19 2009.05.25 -
Ikarus T3.1.1.49.0 2009.05.25 -
K7AntiVirus 7.10.741 2009.05.21 -
Kaspersky 7.0.0.125 2009.05.25 -
McAfee 5625 2009.05.24 -
McAfee+Artemis 5625 2009.05.24 -
McAfee-GW-Edition 6.7.6 2009.05.25 -
Microsoft 1.4701 2009.05.25 -
NOD32 4101 2009.05.25 -
Norman 6.01.05 2009.05.25 -
nProtect 2009.1.8.0 2009.05.25 -
Panda 10.0.0.14 2009.05.24 -
PCTools 4.4.2.0 2009.05.21 -
Prevx 3.0 2009.05.25 -
Rising 21.31.04.00 2009.05.25 -
Sophos 4.42.0 2009.05.25 -
Sunbelt 3.2.1858.2 2009.05.24 -
Symantec 1.4.4.12 2009.05.25 -
TheHacker 6.3.4.3.331 2009.05.25 -
TrendMicro 8.950.0.1092 2009.05.25 -
VBA32 3.12.10.5 2009.05.25 -
ViRobot 2009.5.25.1751 2009.05.25 -
VirusBuster 4.6.5.0 2009.05.24 -
Information additionnelle
File size: 55936 bytes
MD5...: 276cf8ab40b630c88ae5c78718030ca2
SHA1..: 8fae6736e9a49863ea5bc53d204d1ac57cafe73e
SHA256: b7b56a156fb357bf038dbe90724c71376d546a9345e6a7a3a22115674dabbf1d
ssdeep: 768:9T48199akUbwXylpbXR1VpkaXLI8zewXXB4mPSZDXKu+S9UgpdbRk6:11HaA<BR>epbXzjXPzVNPiGXS9NpdRk6<BR>
PEiD..: -
TrID..: File type identification<BR>Win16/32 Executable Delphi generic (25.4%)<BR>Clipper DOS Executable (24.8%)<BR>Generic Win/DOS Executable (24.6%)<BR>DOS Executable Generic (24.6%)<BR>VXD Driver (0.3%)
PEInfo: PE Structure information<BR><BR>( base data )<BR>entrypointaddress.: 0x5080<BR>timedatestamp.....: 0x401521a3 (Mon Jan 26 14:18:11 2004)<BR>machinetype.......: 0x14c (I386)<BR><BR>( 7 sections )<BR>name viradd virsiz rawdsiz ntrpy md5<BR>.text 0x480 0x620a 0x6280 6.51 2d6adc130ed925107eaef5fc3b5b628a<BR>.rdata 0x6700 0x5b1 0x600 4.88 a919863b5288b1dfe7ccf8befe88a927<BR>.data 0x6d00 0x1c8 0x200 1.51 ac2401f841ed7ff137de5054d895fafb<BR>PAGE 0x6f00 0x52c0 0x5300 6.40 9a0c2bcec69d08ec265bd729f003b30e<BR>INIT 0xc200 0xb28 0xb80 5.44 0925e1070ae20c593a5005a98ee0a1a0<BR>.rsrc 0xcd80 0x3a8 0x400 3.08 c58264c955af8e2eb1d482000dabaa92<BR>.reloc 0xd180 0x88c 0x900 5.80 c83915df8cb39d233c53ebcbfd53b3cf<BR><BR>( 3 imports ) <BR>> NTOSKRNL.EXE: ObfDereferenceObject, RtlInitUnicodeString, KeSetEvent, KeWaitForSingleObject, IoBuildDeviceIoControlRequest, InterlockedDecrement, InterlockedIncrement, ExQueueWorkItem, wcscat, wcscpy, wcslen, KeInitializeSpinLock, MmMapLockedPagesSpecifyCache, isupper, isdigit, isxdigit, isspace, swprintf, IofCallDriver, KeDelayExecutionThread, KeClearEvent, KeInitializeTimerEx, IoFreeIrp, ExNotifyCallback, KeSetTimerEx, wcsrchr, RtlCompareMemory, KeReleaseMutex, strrchr, RtlTimeToTimeFields, KeQuerySystemTime, wcscmp, KeInitializeMutex, IoUnregisterPlugPlayNotification, RtlUnwind, IofCompleteRequest, ZwClose, ExCreateCallback, IoCreateDevice, IoAttachDeviceToDeviceStack, IoDetachDevice, IoDeleteDevice, KeInitializeEvent, IoRegisterPlugPlayNotification, wcsncpy, RtlFreeUnicodeString, IoGetDeviceObjectPointer, RtlCopyUnicodeString, IoIsWdmVersionAvailable, IoReleaseCancelSpinLock, IoAcquireCancelSpinLock, RtlUnicodeStringToAnsiString, PoSetPowerState, IoInvalidateDeviceState, IoSetDeviceInterfaceState, InterlockedExchange, IoRegisterDeviceInterface, PoStartNextPowerIrp, PoRegisterDeviceForIdleDetection, PoCallDriver, ZwQueryValueKey, IoOpenDeviceRegistryKey, PoRequestPowerIrp, ZwSetValueKey, DbgPrint, IoCancelIrp, IoAllocateIrp, ExInterlockedPopEntrySList, ExInterlockedPushEntrySList, ExInitializeNPagedLookasideList, ExDeleteNPagedLookasideList, ExfInterlockedInsertTailList, ZwOpenKey, ZwCreateKey, memmove, ZwEnumerateKey, RtlAppendUnicodeToString, RtlAppendUnicodeStringToString, IoGetDeviceProperty, KefAcquireSpinLockAtDpcLevel, ExFreePool, KefReleaseSpinLockFromDpcLevel, ExAllocatePoolWithTag<BR>> HAL.DLL: KfLowerIrql, KeGetCurrentIrql, ExReleaseFastMutex, ExAcquireFastMutex, KfRaiseIrql, KfAcquireSpinLock, KfReleaseSpinLock<BR>> HIDPARSE.SYS: HidP_GetSpecificValueCaps, HidP_GetUsages, HidP_SetUsages, HidP_GetCaps, HidP_UnsetUsages, HidP_GetUsageValue, HidP_SetUsageValue, HidP_GetSpecificButtonCaps, HidP_MaxUsageListLength<BR><BR>( 0 exports ) <BR>
PDFiD.: -
RDS...: NSRL Reference Data Set<BR>-
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== SERVICES/DRIVERS ==========
Service\Driver ipfw_helper not found.
Service\Driver ipfw_helper not found.
Service\Driver ipfw_helper not found.
Service\Driver ip_fw deleted successfully.
Service\Driver ipfw_helper not found.
Service\Driver hSONYPVh deleted successfully.
========== FILES ==========
C:\WINDOWS\mse.exe moved successfully.
C:\WINDOWS\msc.exe moved successfully.
C:\WINDOWS\msb.exe moved successfully.
C:\WINDOWS\msa.exe moved successfully.
C:\WINDOWS\msd.exe moved successfully.
File move failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\3238.exe scheduled to be moved on reboot.
C:\WINDOWS\system32\3764.exe moved successfully.
C:\WINDOWS\tasks\{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job moved successfully.
C:\WINDOWS\tasks\{783AF354-B514-42d6-970E-3E8BF0A5279C}.job moved successfully.
C:\WINDOWS\system32\msxml71.dll unregistered successfully.
C:\WINDOWS\system32\msxml71.dll moved successfully.
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk moved successfully.
File/Folder C:\WINDOWS\system32\DRIVERS\ip_fw.sys not found.
File/Folder C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\hSONYPVh.sys not found.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{500BCA15-57A7-4eaf-8143-8C619470B13D}\\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{A20A76AD-7A29-4756-87FE-70C334CB40C0} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A20A76AD-7A29-4756-87FE-70C334CB40C0}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SoundMan deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NVRaidService deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\nwiz deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\WinFast2KLoadDefault deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\LVCOMSX deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Auto Run Software for Photo Frame deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Symantec PIF AlertEng deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\LDM deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\LogitechSoftwareUpdate deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Shareaza deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\swg deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\MsnMsgr deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Cognac deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ColdWare deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}\\ deleted successfully.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\History\History.IE5\MSHist012009052520090526\index.dat scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\XW4OQOPJ\inside[1].htm scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\NZAL4YSK\66XKCA28O1CSCAHOL87OCA19UTIWCAV5YRKRCASGXOCXCAQOM366CAKC2JJKCAYTAF07CA81TYWZCACEPK83CA0V78XECAOP46STCAUZ65JQCAV79302CAHRPSXJCAED1NJ0CA8Y02CNCACLF74LCANCJU6YCA5MFBS0.htm scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\9RXJUU84\ads[8].htm scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\9RXJUU84\compacto[1].htm scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\8IRR3O2S\ads.htm scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\8IRR3O2S\affich-12599409-pop-up-et-petite-voix-inquietante[1].htm scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\8IRR3O2S\b7b56a156fb357bf038dbe90724c71376d546a9345e6a7a3a22115674dabbf1d-1243262919[1].htm scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Cookies\index.dat scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\3238.exe scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\~DF4A2C.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Internet Explorer cache folder emptied.
User's Temporary Internet Files folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Network Service Temp folder emptied.
File delete failed. C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Network Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_160.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully
OTMoveIt3 by OldTimer - Version 1.0.11.0 log created on 05252009_165418
Files moved on Reboot...
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\3238.exe moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\XW4OQOPJ\inside[1].htm moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\NZAL4YSK\66XKCA28O1CSCAHOL87OCA19UTIWCAV5YRKRCASGXOCXCAQOM366CAKC2JJKCAYTAF07CA81TYWZCACEPK83CA0V78XECAOP46STCAUZ65JQCAV79302CAHRPSXJCAED1NJ0CA8Y02CNCACLF74LCANCJU6YCA5MFBS0.htm moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\9RXJUU84\ads[8].htm moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\9RXJUU84\compacto[1].htm moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\8IRR3O2S\ads.htm moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\8IRR3O2S\affich-12599409-pop-up-et-petite-voix-inquietante[1].htm moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\8IRR3O2S\b7b56a156fb357bf038dbe90724c71376d546a9345e6a7a3a22115674dabbf1d-1243262919[1].htm moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\~DF4A2C.tmp moved successfully.
File C:\WINDOWS\temp\Perflib_Perfdata_160.dat not found!
Process explorer.exe killed successfully.
========== SERVICES/DRIVERS ==========
Service\Driver ipfw_helper not found.
Service\Driver ipfw_helper not found.
Service\Driver ipfw_helper not found.
Service\Driver ip_fw deleted successfully.
Service\Driver ipfw_helper not found.
Service\Driver hSONYPVh deleted successfully.
========== FILES ==========
C:\WINDOWS\mse.exe moved successfully.
C:\WINDOWS\msc.exe moved successfully.
C:\WINDOWS\msb.exe moved successfully.
C:\WINDOWS\msa.exe moved successfully.
C:\WINDOWS\msd.exe moved successfully.
File move failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\3238.exe scheduled to be moved on reboot.
C:\WINDOWS\system32\3764.exe moved successfully.
C:\WINDOWS\tasks\{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job moved successfully.
C:\WINDOWS\tasks\{783AF354-B514-42d6-970E-3E8BF0A5279C}.job moved successfully.
C:\WINDOWS\system32\msxml71.dll unregistered successfully.
C:\WINDOWS\system32\msxml71.dll moved successfully.
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk moved successfully.
File/Folder C:\WINDOWS\system32\DRIVERS\ip_fw.sys not found.
File/Folder C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\hSONYPVh.sys not found.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{500BCA15-57A7-4eaf-8143-8C619470B13D}\\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{A20A76AD-7A29-4756-87FE-70C334CB40C0} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A20A76AD-7A29-4756-87FE-70C334CB40C0}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SoundMan deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NVRaidService deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\nwiz deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\WinFast2KLoadDefault deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\LVCOMSX deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Auto Run Software for Photo Frame deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Symantec PIF AlertEng deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\LDM deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\LogitechSoftwareUpdate deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Shareaza deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\swg deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\MsnMsgr deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Cognac deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ColdWare deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}\\ deleted successfully.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\History\History.IE5\MSHist012009052520090526\index.dat scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\XW4OQOPJ\inside[1].htm scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\NZAL4YSK\66XKCA28O1CSCAHOL87OCA19UTIWCAV5YRKRCASGXOCXCAQOM366CAKC2JJKCAYTAF07CA81TYWZCACEPK83CA0V78XECAOP46STCAUZ65JQCAV79302CAHRPSXJCAED1NJ0CA8Y02CNCACLF74LCANCJU6YCA5MFBS0.htm scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\9RXJUU84\ads[8].htm scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\9RXJUU84\compacto[1].htm scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\8IRR3O2S\ads.htm scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\8IRR3O2S\affich-12599409-pop-up-et-petite-voix-inquietante[1].htm scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\8IRR3O2S\b7b56a156fb357bf038dbe90724c71376d546a9345e6a7a3a22115674dabbf1d-1243262919[1].htm scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Cookies\index.dat scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\3238.exe scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\~DF4A2C.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Internet Explorer cache folder emptied.
User's Temporary Internet Files folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Network Service Temp folder emptied.
File delete failed. C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Network Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_160.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully
OTMoveIt3 by OldTimer - Version 1.0.11.0 log created on 05252009_165418
Files moved on Reboot...
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\3238.exe moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\XW4OQOPJ\inside[1].htm moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\NZAL4YSK\66XKCA28O1CSCAHOL87OCA19UTIWCAV5YRKRCASGXOCXCAQOM366CAKC2JJKCAYTAF07CA81TYWZCACEPK83CA0V78XECAOP46STCAUZ65JQCAV79302CAHRPSXJCAED1NJ0CA8Y02CNCACLF74LCANCJU6YCA5MFBS0.htm moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\9RXJUU84\ads[8].htm moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\9RXJUU84\compacto[1].htm moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\8IRR3O2S\ads.htm moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\8IRR3O2S\affich-12599409-pop-up-et-petite-voix-inquietante[1].htm moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\8IRR3O2S\b7b56a156fb357bf038dbe90724c71376d546a9345e6a7a3a22115674dabbf1d-1243262919[1].htm moved successfully.
C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp\~DF4A2C.tmp moved successfully.
File C:\WINDOWS\temp\Perflib_Perfdata_160.dat not found!
Logfile of random's system information tool 1.06 (written by random/random)
Run by BOURRIQUET at 2009-05-25 19:53:37
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 66 GB (42%) free of 156 GB
Total RAM: 1023 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:53:48, on 25/05/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0R2.EXE
C:\WINDOWS\system32\WF2K.EXE
C:\Program Files\WinFast\WFTVFM\WFWIZ.exe
C:\Program Files\ZTE Corporation\ZXDSL852\CnxDslTb.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\lvcomsx.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Philips\Philips PhotoFrame\PhotoManager.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\VeriSign\NAVI\naviagent.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Wanadoo\Watch.exe
C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Documents and Settings\BOURRIQUET\Bureau\rsit.exe
C:\Program Files\Trend Micro\HijackThis\BOURRIQUET.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.broadcom.com/support/security-center
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: i-Nav IDN SearchHook - {CE000994-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Reactivator Class - {AC2E8306-D24E-4082-8669-7781499F4E03} - C:\PROGRA~1\EVERYT~1.1\everycom.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: i-Nav IDN Resolver - {CE000992-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: (no name) - {A20A76AD-7A29-4756-87FE-70C334CB40C0} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [EPSON Stylus C86 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0R2.EXE /P23 "EPSON Stylus C86 Series" /O6 "USB001" /M "Stylus C86"
O4 - HKLM\..\Run: [WinFoxV2] C:\WINDOWS\system32\WF2K.EXE Initial
O4 - HKLM\..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFTVFM\WFWIZ.exe
O4 - HKLM\..\Run: [CnxDslTaskBar] "C:\Program Files\ZTE Corporation\ZXDSL852\CnxDslTb.exe" "ZTE Corporation\ZXDSL852"
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [YeppStudioAgent] C:\Program Files\Samsung\Samsung Media Studio\SamsungMediaStudioAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [BitDefender Security Center] "C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe" /init
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\Money Express.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe EspaceWanadoo.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Auto Run Software for Photo Frame] "C:\Program Files\Philips\Philips PhotoFrame\PhotoManager.exe" /autorun
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Picture Package Menu.lnk = C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ?
O8 - Extra context menu item: &Every Toolbar Search - res://C:\PROGRA~1\EVERYT~1.1\everycom.dll/GoRSDN.dll.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: Aide i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing)
O9 - Extra 'Tools' menuitem: Aide i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing)
O9 - Extra button: (no name) - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
O9 - Extra 'Tools' menuitem: Options i-Nav - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {011F473E-0880-43D4-99F3-F490A84128AE} (GenimoWebGames Control) - http://jeuxenligne.orange.fr/orange2.0/games/channel--110167437/lc--fr/room--8e806481-bf9c-4ef7-98ad-5066b6369c46/online/ButterflyEscape/GenimoWebGamesControl.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {49E67060-2C0D-415E-94C7-52A49F73B2F1} (CPlayFirstPiratePoppersControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/PiratePoppers.1.0.0.39.cab
O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/ClientInstall/9.20.0002/OCI/setup.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {5392B545-31A5-4724-BEF3-4FED1D56FDAC} (CPlayFirstDinerDash2_frControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/DinerDash2_fr.1.0.0.70.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://jeuxvideo.wanadoo.fr/components/Metaboli.ocx
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} (ScorchPlugin Class) - http://www.sibelius.com/download/software/win/ActiveXPlugin.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {BAE1D8DF-0B35-47E3-A1E7-EEB3FF2ECD19} (CPlayFirstddfotgControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/ddfotg.1.0.0.37.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/DinerDash.1.0.0.98.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/popcaploader_v6.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O16 - DPF: {FC4CAF5F-91BD-4DD9-ADC1-F3C737E37BC4} (CPlayFirstSweetopiaControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/Sweetopia.1.0.0.46.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2131A3D3-62F9-4459-B812-FF46499A6A3A}: NameServer = 80.10.246.2,8.10.246.129
O17 - HKLM\System\CCS\Services\Tcpip\..\{A67A685F-2AD7-490B-9091-569274B742E3}: NameServer = 80.10.246.2,8.10.246.129
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: ipfw_helper (ipfw) - Unknown owner - C:\WINDOWS\system32\3764.exe (file missing)
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: VeriSign Updater (navi) - VeriSign, Inc. - C:\Program Files\VeriSign\NAVI\naviagent.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
Run by BOURRIQUET at 2009-05-25 19:53:37
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 66 GB (42%) free of 156 GB
Total RAM: 1023 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:53:48, on 25/05/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0R2.EXE
C:\WINDOWS\system32\WF2K.EXE
C:\Program Files\WinFast\WFTVFM\WFWIZ.exe
C:\Program Files\ZTE Corporation\ZXDSL852\CnxDslTb.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\lvcomsx.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Philips\Philips PhotoFrame\PhotoManager.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\VeriSign\NAVI\naviagent.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Wanadoo\Watch.exe
C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Documents and Settings\BOURRIQUET\Bureau\rsit.exe
C:\Program Files\Trend Micro\HijackThis\BOURRIQUET.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.broadcom.com/support/security-center
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: i-Nav IDN SearchHook - {CE000994-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Reactivator Class - {AC2E8306-D24E-4082-8669-7781499F4E03} - C:\PROGRA~1\EVERYT~1.1\everycom.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: i-Nav IDN Resolver - {CE000992-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: (no name) - {A20A76AD-7A29-4756-87FE-70C334CB40C0} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [EPSON Stylus C86 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0R2.EXE /P23 "EPSON Stylus C86 Series" /O6 "USB001" /M "Stylus C86"
O4 - HKLM\..\Run: [WinFoxV2] C:\WINDOWS\system32\WF2K.EXE Initial
O4 - HKLM\..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFTVFM\WFWIZ.exe
O4 - HKLM\..\Run: [CnxDslTaskBar] "C:\Program Files\ZTE Corporation\ZXDSL852\CnxDslTb.exe" "ZTE Corporation\ZXDSL852"
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [YeppStudioAgent] C:\Program Files\Samsung\Samsung Media Studio\SamsungMediaStudioAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [BitDefender Security Center] "C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe" /init
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\Money Express.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe EspaceWanadoo.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Auto Run Software for Photo Frame] "C:\Program Files\Philips\Philips PhotoFrame\PhotoManager.exe" /autorun
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Picture Package Menu.lnk = C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ?
O8 - Extra context menu item: &Every Toolbar Search - res://C:\PROGRA~1\EVERYT~1.1\everycom.dll/GoRSDN.dll.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: Aide i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing)
O9 - Extra 'Tools' menuitem: Aide i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing)
O9 - Extra button: (no name) - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
O9 - Extra 'Tools' menuitem: Options i-Nav - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {011F473E-0880-43D4-99F3-F490A84128AE} (GenimoWebGames Control) - http://jeuxenligne.orange.fr/orange2.0/games/channel--110167437/lc--fr/room--8e806481-bf9c-4ef7-98ad-5066b6369c46/online/ButterflyEscape/GenimoWebGamesControl.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {49E67060-2C0D-415E-94C7-52A49F73B2F1} (CPlayFirstPiratePoppersControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/PiratePoppers.1.0.0.39.cab
O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/ClientInstall/9.20.0002/OCI/setup.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {5392B545-31A5-4724-BEF3-4FED1D56FDAC} (CPlayFirstDinerDash2_frControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/DinerDash2_fr.1.0.0.70.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://jeuxvideo.wanadoo.fr/components/Metaboli.ocx
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} (ScorchPlugin Class) - http://www.sibelius.com/download/software/win/ActiveXPlugin.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {BAE1D8DF-0B35-47E3-A1E7-EEB3FF2ECD19} (CPlayFirstddfotgControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/ddfotg.1.0.0.37.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/DinerDash.1.0.0.98.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/popcaploader_v6.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O16 - DPF: {FC4CAF5F-91BD-4DD9-ADC1-F3C737E37BC4} (CPlayFirstSweetopiaControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/Sweetopia.1.0.0.46.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2131A3D3-62F9-4459-B812-FF46499A6A3A}: NameServer = 80.10.246.2,8.10.246.129
O17 - HKLM\System\CCS\Services\Tcpip\..\{A67A685F-2AD7-490B-9091-569274B742E3}: NameServer = 80.10.246.2,8.10.246.129
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: ipfw_helper (ipfw) - Unknown owner - C:\WINDOWS\system32\3764.exe (file missing)
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: VeriSign Updater (navi) - VeriSign, Inc. - C:\Program Files\VeriSign\NAVI\naviagent.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option "Suppression + Hosts"
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
* Séléctionne la langue souhaitée , puis choisis l'option "Suppression + Hosts"
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3000+ )
BIOS : Award Modular BIOS v6.00PG
USER : BOURRIQUET ( Administrator )
BOOT : Fail-safe boot
Antivirus : BitDefender Antivirus 12.0 (Activated)
Firewall : BitDefender Firewall 12.0 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:152 Go (Free:64 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 25/05/2009|20:37 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe
Supprime! - C:\Program Files\BitTorrent Fastest Tool\BitP.exe
Supprime! - C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
Supprime! - C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@advertstream[1].txt
Supprime! - C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@adultfriendfinder[1].txt
Supprime! - C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@advertising[2].txt
Supprime! - C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@adopt.euroclick[1].txt
Supprime! - C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@www.2xmoinscher[1].txt
Supprime! - C:\Program Files\Adverts
Supprime! - C:\Program Files\BitTorrent Fastest Tool
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[16/09/2005|18:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[25/05/2009|09:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[09/07/2008|12:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[25/05/2009|09:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[25/05/2009|09:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[07/09/2008|10:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[17/03/2009|11:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ESTsoft
[02/03/2008|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Genimo
[13/02/2009|14:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[03/03/2006|20:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[30/06/2008|10:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[15/08/2007|14:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[21/02/2009|20:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[09/07/2008|12:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
[24/02/2008|14:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
[28/09/2005|19:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OD2
[11/10/2006|15:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Okay Less Mpeg Internet
[27/01/2008|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[11/09/2007|18:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PopCap
[23/11/2005|11:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\POPWWPROFILES
[19/12/2007|22:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[07/02/2007|00:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[07/09/2008|10:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[25/01/2008|19:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[25/09/2005|11:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[25/09/2005|19:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[16/09/2005|14:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/09/2007|18:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[28/02/2008|21:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[18/01/2006|13:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[09/01/2008|17:40] C:\DOCUME~1\BOURRI~1\APPLIC~1\Adobe
[24/02/2008|22:57] C:\DOCUME~1\BOURRI~1\APPLIC~1\AdobeUM
[25/05/2009|10:33] C:\DOCUME~1\BOURRI~1\APPLIC~1\Apple Computer
[11/10/2006|15:32] C:\DOCUME~1\BOURRI~1\APPLIC~1\Balm sign support
[07/09/2008|10:24] C:\DOCUME~1\BOURRI~1\APPLIC~1\BitDefender
[22/02/2009|01:40] C:\DOCUME~1\BOURRI~1\APPLIC~1\DeepBurner
[17/03/2009|11:52] C:\DOCUME~1\BOURRI~1\APPLIC~1\ESTsoft
[25/03/2007|12:06] C:\DOCUME~1\BOURRI~1\APPLIC~1\Google
[28/09/2005|12:42] C:\DOCUME~1\BOURRI~1\APPLIC~1\Help
[16/09/2005|19:55] C:\DOCUME~1\BOURRI~1\APPLIC~1\Identities
[25/09/2005|16:01] C:\DOCUME~1\BOURRI~1\APPLIC~1\InterTrust
[28/09/2005|19:15] C:\DOCUME~1\BOURRI~1\APPLIC~1\Macromedia
[22/12/2008|16:48] C:\DOCUME~1\BOURRI~1\APPLIC~1\Media Player Classic
[05/08/2008|14:31] C:\DOCUME~1\BOURRI~1\APPLIC~1\Microsoft
[25/09/2005|13:09] C:\DOCUME~1\BOURRI~1\APPLIC~1\Microsoft Web Folders
[29/08/2008|15:42] C:\DOCUME~1\BOURRI~1\APPLIC~1\Mozilla
[30/09/2005|19:45] C:\DOCUME~1\BOURRI~1\APPLIC~1\MSNInstaller
[24/02/2008|14:55] C:\DOCUME~1\BOURRI~1\APPLIC~1\Oberon Games
[28/09/2005|19:26] C:\DOCUME~1\BOURRI~1\APPLIC~1\OD2
[15/07/2006|15:15] C:\DOCUME~1\BOURRI~1\APPLIC~1\PC Tools
[23/02/2008|18:49] C:\DOCUME~1\BOURRI~1\APPLIC~1\PlayFirst
[15/09/2007|11:31] C:\DOCUME~1\BOURRI~1\APPLIC~1\Samsung
[03/04/2006|20:37] C:\DOCUME~1\BOURRI~1\APPLIC~1\Shareaza
[10/02/2008|23:38] C:\DOCUME~1\BOURRI~1\APPLIC~1\Sibelius Software
[09/09/2008|22:19] C:\DOCUME~1\BOURRI~1\APPLIC~1\Skype
[21/09/2006|19:44] C:\DOCUME~1\BOURRI~1\APPLIC~1\Sun
[07/10/2007|23:11] C:\DOCUME~1\BOURRI~1\APPLIC~1\Symantec
[15/08/2007|14:47] C:\DOCUME~1\BOURRI~1\APPLIC~1\Talkback
[15/01/2006|19:12] C:\DOCUME~1\BOURRI~1\APPLIC~1\The Hobbit
[29/08/2008|15:42] C:\DOCUME~1\BOURRI~1\APPLIC~1\Thunderbird
[16/09/2005|18:18] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[16/09/2005|18:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[08/10/2006|11:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec
[16/09/2005|18:18] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[05/10/2005|20:55] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[25/05/2009 09:36][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[25/05/2009 20:34][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[25/05/2009 20:35][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ MsgPlus SPONSOR INSTALLED !
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"SponsorInstalled"=dword:00000000
--------------------\\ Listing des dossiers dans C:\Program Files
[16/10/2005|10:23] C:\Program Files\Acclaim Entertainment
[09/07/2008|12:23] C:\Program Files\Adobe
[16/09/2005|19:58] C:\Program Files\AMD
[06/03/2007|11:44] C:\Program Files\American Conquest - Divided Nation
[29/09/2007|14:53] C:\Program Files\aMSN
[25/05/2009|09:35] C:\Program Files\Apple Software Update
[21/02/2009|20:27] C:\Program Files\Astonsoft
[30/08/2007|18:11] C:\Program Files\Atoutclic CM2
[16/09/2005|19:59] C:\Program Files\AvRack
[20/05/2006|11:07] C:\Program Files\Balm sign support
[07/09/2008|10:24] C:\Program Files\BitDefender
[25/05/2009|09:38] C:\Program Files\Bonjour
[06/01/2006|19:06] C:\Program Files\Canon
[06/04/2008|18:17] C:\Program Files\Comcast Play Games
[16/09/2005|18:16] C:\Program Files\ComPlus Applications
[01/05/2008|19:28] C:\Program Files\Davilex
[25/02/2007|20:12] C:\Program Files\Dictionnaire
[26/12/2005|12:08] C:\Program Files\directx
[15/08/2007|14:47] C:\Program Files\DivX
[09/10/2007|18:55] C:\Program Files\Dracula
[18/06/2006|10:18] C:\Program Files\EA SPORTS
[16/10/2005|10:21] C:\Program Files\EACOM
[20/11/2007|17:02] C:\Program Files\Eidos Interactive
[15/03/2009|14:34] C:\Program Files\eMule v.049c
[25/09/2005|11:28] C:\Program Files\EPSON
[17/03/2009|11:51] C:\Program Files\ESTsoft
[27/02/2009|11:22] C:\Program Files\Every Toolbar 1.1
[25/05/2009|09:35] C:\Program Files\Fichiers communs
[11/02/2009|16:57] C:\Program Files\Free Audio Pack
[16/09/2005|18:02] C:\Program Files\Futuremark
[18/01/2008|22:33] C:\Program Files\GamesBar
[13/02/2009|14:41] C:\Program Files\Google
[11/02/2007|23:36] C:\Program Files\Graal
[14/12/2005|20:16] C:\Program Files\Hasbro Interactive
[14/09/2007|21:37] C:\Program Files\InstallShield Installation Information
[25/09/2005|11:48] C:\Program Files\Intel
[16/04/2009|22:23] C:\Program Files\Internet Explorer
[25/05/2009|09:40] C:\Program Files\iPod
[25/05/2009|09:41] C:\Program Files\iTunes
[12/05/2009|16:59] C:\Program Files\Java
[26/11/2006|16:00] C:\Program Files\Jeux classiques
[19/12/2008|13:09] C:\Program Files\K-Lite Codec Pack
[25/09/2005|19:42] C:\Program Files\Leadtek Research Inc
[09/06/2006|12:32] C:\Program Files\Ligos
[26/11/2006|16:00] C:\Program Files\LimeWire
[26/12/2005|19:44] C:\Program Files\Logitech
[27/11/2008|17:50] C:\Program Files\Messenger
[28/12/2007|21:18] C:\Program Files\Messenger Plus! Live
[14/09/2007|19:56] C:\Program Files\MessengerPlus! 3
[26/12/2005|12:04] C:\Program Files\Microids
[25/09/2005|11:46] C:\Program Files\Micro‹ds
[25/09/2005|13:15] C:\Program Files\Microsoft AutoRoute Express Europe 2000
[15/09/2007|11:15] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[25/09/2005|13:11] C:\Program Files\Microsoft Encarta
[25/09/2005|13:09] C:\Program Files\microsoft frontpage
[25/09/2005|13:08] C:\Program Files\Microsoft Money
[25/09/2005|13:09] C:\Program Files\Microsoft Office
[25/10/2005|18:11] C:\Program Files\Microsoft Picture It!
[26/11/2006|16:00] C:\Program Files\Microsoft Works
[25/09/2005|13:04] C:\Program Files\Microsoft Works Suite 2000
[30/01/2007|17:51] C:\Program Files\MotoRacer3
[27/11/2008|17:46] C:\Program Files\Movie Maker
[25/05/2009|13:24] C:\Program Files\Mozilla Firefox
[25/05/2009|20:34] C:\Program Files\Mozilla Thunderbird
[21/02/2009|20:24] C:\Program Files\MSBuild
[25/09/2005|11:44] C:\Program Files\MSN
[16/09/2005|18:15] C:\Program Files\MSN Gaming Zone
[27/04/2009|19:02] C:\Program Files\MSN Messenger
[16/11/2006|00:28] C:\Program Files\MSXML 4.0
[28/09/2005|19:25] C:\Program Files\Music Manager
[21/02/2009|20:28] C:\Program Files\Nero
[27/11/2008|17:44] C:\Program Files\NetMeeting
[07/09/2008|10:19] C:\Program Files\Norton 360
[10/10/2006|18:56] C:\Program Files\Norton AntiVirus
[09/07/2008|12:47] C:\Program Files\NOS
[16/09/2005|18:15] C:\Program Files\Online Services
[18/01/2008|22:33] C:\Program Files\orange
[27/11/2008|17:43] C:\Program Files\Outlook Express
[31/08/2008|15:41] C:\Program Files\Philips
[21/05/2006|12:53] C:\Program Files\PhotoFiltre
[08/05/2006|13:37] C:\Program Files\PIXELA
[15/02/2007|23:19] C:\Program Files\Pizzicato 3
[26/12/2005|13:40] C:\Program Files\Playlogic
[25/05/2009|09:37] C:\Program Files\QuickTime
[25/12/2006|20:33] C:\Program Files\Radical Games
[16/09/2005|19:59] C:\Program Files\Realtek Sound Manager
[21/02/2009|20:19] C:\Program Files\Reference Assemblies
[19/07/2007|16:34] C:\Program Files\SAGEM
[14/09/2007|21:36] C:\Program Files\Samsung
[15/10/2006|09:11] C:\Program Files\Securitoo
[16/09/2005|18:17] C:\Program Files\Services en ligne
[03/04/2006|20:37] C:\Program Files\Shareaza
[29/04/2007|14:35] C:\Program Files\Sibelius Software
[28/09/2005|11:55] C:\Program Files\Sierra
[07/02/2007|00:15] C:\Program Files\Skype
[08/05/2006|13:34] C:\Program Files\Sony Corporation
[14/10/2006|14:21] C:\Program Files\SpySpotter3
[07/09/2008|10:19] C:\Program Files\Symantec
[25/05/2009|16:38] C:\Program Files\trend micro
[26/12/2006|16:40] C:\Program Files\Ubisoft
[25/09/2005|19:46] C:\Program Files\Ulead Systems
[18/05/2008|18:05] C:\Program Files\Ultimate Game Pak
[16/09/2005|19:55] C:\Program Files\Uninstall Information
[11/09/2006|19:02] C:\Program Files\VeriSign
[05/02/2006|15:20] C:\Program Files\Vivendi Universal Games
[25/05/2009|20:28] C:\Program Files\Wanadoo
[28/09/2005|12:32] C:\Program Files\Wanadoo Messager
[09/05/2007|21:08] C:\Program Files\Winamp
[28/02/2008|21:20] C:\Program Files\Windows Live
[30/11/2007|22:44] C:\Program Files\Windows Live Favorites
[30/11/2007|22:44] C:\Program Files\Windows Live Toolbar
[13/03/2009|15:27] C:\Program Files\Windows Media Connect 2
[13/03/2009|15:26] C:\Program Files\Windows Media Player
[27/11/2008|17:43] C:\Program Files\Windows NT
[16/09/2005|18:17] C:\Program Files\WindowsUpdate
[25/09/2005|19:45] C:\Program Files\WinFast
[16/09/2005|18:19] C:\Program Files\xerox
[18/01/2006|13:10] C:\Program Files\Yahoo!
[28/09/2005|12:33] C:\Program Files\ZTE Corporation
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[09/07/2008|12:24] C:\Program Files\Fichiers communs\Adobe
[25/05/2009|09:40] C:\Program Files\Fichiers communs\Apple
[07/09/2008|10:24] C:\Program Files\Fichiers communs\BitDefender
[25/09/2005|13:09] C:\Program Files\Fichiers communs\Designer
[25/09/2005|11:26] C:\Program Files\Fichiers communs\EPSON
[28/09/2005|11:54] C:\Program Files\Fichiers communs\InstallShield
[17/09/2006|21:26] C:\Program Files\Fichiers communs\Java
[26/12/2005|19:45] C:\Program Files\Fichiers communs\Logitech
[08/03/2009|12:00] C:\Program Files\Fichiers communs\Microsoft Shared
[16/09/2005|18:16] C:\Program Files\Fichiers communs\MSSoap
[08/05/2006|13:34] C:\Program Files\Fichiers communs\muvee Technologies
[21/02/2009|20:28] C:\Program Files\Fichiers communs\Nero
[06/04/2008|18:17] C:\Program Files\Fichiers communs\Oberon Media
[16/09/2005|19:59] C:\Program Files\Fichiers communs\ODBC
[16/09/2005|18:16] C:\Program Files\Fichiers communs\Services
[07/02/2007|00:15] C:\Program Files\Fichiers communs\Skype
[16/09/2005|19:59] C:\Program Files\Fichiers communs\SpeechEngines
[07/09/2008|10:21] C:\Program Files\Fichiers communs\Symantec Shared
[27/11/2008|17:43] C:\Program Files\Fichiers communs\System
[25/09/2005|19:46] C:\Program Files\Fichiers communs\Ulead Systems
[28/02/2008|21:21] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[13/10/2005|19:03] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 14 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-25 20:38:40
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 2440
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-1229835f-2f7e0d77.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-1229835f-2f7e0d77.idx
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a75-1eb4fb8e.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a75-1eb4fb8e.idx
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a7e-3261be7c.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a7e-3261be7c.idx
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-d5f21de-2bd10380.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-d5f21de-2bd10380.idx
C:\DOCUME~1\BOURRI~1\Mes documents\Ma musique\MUSIQUES\Musiques Engag‚es\Left%C3%B6ver%20Crack_gang%20Control[1].rbs
C:\DOCUME~1\BOURRI~1\Mes documents\Ma musique\MUSIQUES\Rock, M‚tal, Hard Rock, Punk, Grunge\The Spinto Band\Nice and Nicely Done\06 - Crack the Whip - Spinto Band [the].mp3
C:\DOCUME~1\BOURRI~1\Mes documents\Mes fichiers re‡us\audrey-angelynne3906132596\Historique\lacrack20003052669766.xml
[F:30][D:14]-> C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp
[F:1489][D:0]-> C:\DOCUME~1\BOURRI~1\Cookies
[F:488][D:5]-> C:\DOCUME~1\BOURRI~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 25/05/2009|15:31 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 25/05/2009|20:41 - Option : [2]
--------------------\\ Fin du rapport a 20:41:51
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3000+ )
BIOS : Award Modular BIOS v6.00PG
USER : BOURRIQUET ( Administrator )
BOOT : Fail-safe boot
Antivirus : BitDefender Antivirus 12.0 (Activated)
Firewall : BitDefender Firewall 12.0 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:152 Go (Free:64 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 25/05/2009|20:37 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe
Supprime! - C:\Program Files\BitTorrent Fastest Tool\BitP.exe
Supprime! - C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
Supprime! - C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@advertstream[1].txt
Supprime! - C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@adultfriendfinder[1].txt
Supprime! - C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@advertising[2].txt
Supprime! - C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@adopt.euroclick[1].txt
Supprime! - C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\BOURRI~1\Cookies\bourriquet@www.2xmoinscher[1].txt
Supprime! - C:\Program Files\Adverts
Supprime! - C:\Program Files\BitTorrent Fastest Tool
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[16/09/2005|18:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[25/05/2009|09:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[09/07/2008|12:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[25/05/2009|09:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[25/05/2009|09:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[07/09/2008|10:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[17/03/2009|11:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ESTsoft
[02/03/2008|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Genimo
[13/02/2009|14:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[03/03/2006|20:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[30/06/2008|10:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[15/08/2007|14:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[21/02/2009|20:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[09/07/2008|12:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
[24/02/2008|14:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
[28/09/2005|19:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OD2
[11/10/2006|15:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Okay Less Mpeg Internet
[27/01/2008|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[11/09/2007|18:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PopCap
[23/11/2005|11:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\POPWWPROFILES
[19/12/2007|22:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[07/02/2007|00:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[07/09/2008|10:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[25/01/2008|19:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[25/09/2005|11:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[25/09/2005|19:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[16/09/2005|14:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/09/2007|18:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[28/02/2008|21:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[18/01/2006|13:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[09/01/2008|17:40] C:\DOCUME~1\BOURRI~1\APPLIC~1\Adobe
[24/02/2008|22:57] C:\DOCUME~1\BOURRI~1\APPLIC~1\AdobeUM
[25/05/2009|10:33] C:\DOCUME~1\BOURRI~1\APPLIC~1\Apple Computer
[11/10/2006|15:32] C:\DOCUME~1\BOURRI~1\APPLIC~1\Balm sign support
[07/09/2008|10:24] C:\DOCUME~1\BOURRI~1\APPLIC~1\BitDefender
[22/02/2009|01:40] C:\DOCUME~1\BOURRI~1\APPLIC~1\DeepBurner
[17/03/2009|11:52] C:\DOCUME~1\BOURRI~1\APPLIC~1\ESTsoft
[25/03/2007|12:06] C:\DOCUME~1\BOURRI~1\APPLIC~1\Google
[28/09/2005|12:42] C:\DOCUME~1\BOURRI~1\APPLIC~1\Help
[16/09/2005|19:55] C:\DOCUME~1\BOURRI~1\APPLIC~1\Identities
[25/09/2005|16:01] C:\DOCUME~1\BOURRI~1\APPLIC~1\InterTrust
[28/09/2005|19:15] C:\DOCUME~1\BOURRI~1\APPLIC~1\Macromedia
[22/12/2008|16:48] C:\DOCUME~1\BOURRI~1\APPLIC~1\Media Player Classic
[05/08/2008|14:31] C:\DOCUME~1\BOURRI~1\APPLIC~1\Microsoft
[25/09/2005|13:09] C:\DOCUME~1\BOURRI~1\APPLIC~1\Microsoft Web Folders
[29/08/2008|15:42] C:\DOCUME~1\BOURRI~1\APPLIC~1\Mozilla
[30/09/2005|19:45] C:\DOCUME~1\BOURRI~1\APPLIC~1\MSNInstaller
[24/02/2008|14:55] C:\DOCUME~1\BOURRI~1\APPLIC~1\Oberon Games
[28/09/2005|19:26] C:\DOCUME~1\BOURRI~1\APPLIC~1\OD2
[15/07/2006|15:15] C:\DOCUME~1\BOURRI~1\APPLIC~1\PC Tools
[23/02/2008|18:49] C:\DOCUME~1\BOURRI~1\APPLIC~1\PlayFirst
[15/09/2007|11:31] C:\DOCUME~1\BOURRI~1\APPLIC~1\Samsung
[03/04/2006|20:37] C:\DOCUME~1\BOURRI~1\APPLIC~1\Shareaza
[10/02/2008|23:38] C:\DOCUME~1\BOURRI~1\APPLIC~1\Sibelius Software
[09/09/2008|22:19] C:\DOCUME~1\BOURRI~1\APPLIC~1\Skype
[21/09/2006|19:44] C:\DOCUME~1\BOURRI~1\APPLIC~1\Sun
[07/10/2007|23:11] C:\DOCUME~1\BOURRI~1\APPLIC~1\Symantec
[15/08/2007|14:47] C:\DOCUME~1\BOURRI~1\APPLIC~1\Talkback
[15/01/2006|19:12] C:\DOCUME~1\BOURRI~1\APPLIC~1\The Hobbit
[29/08/2008|15:42] C:\DOCUME~1\BOURRI~1\APPLIC~1\Thunderbird
[16/09/2005|18:18] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[16/09/2005|18:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[08/10/2006|11:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec
[16/09/2005|18:18] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[05/10/2005|20:55] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[25/05/2009 09:36][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[25/05/2009 20:34][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[25/05/2009 20:35][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ MsgPlus SPONSOR INSTALLED !
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"SponsorInstalled"=dword:00000000
--------------------\\ Listing des dossiers dans C:\Program Files
[16/10/2005|10:23] C:\Program Files\Acclaim Entertainment
[09/07/2008|12:23] C:\Program Files\Adobe
[16/09/2005|19:58] C:\Program Files\AMD
[06/03/2007|11:44] C:\Program Files\American Conquest - Divided Nation
[29/09/2007|14:53] C:\Program Files\aMSN
[25/05/2009|09:35] C:\Program Files\Apple Software Update
[21/02/2009|20:27] C:\Program Files\Astonsoft
[30/08/2007|18:11] C:\Program Files\Atoutclic CM2
[16/09/2005|19:59] C:\Program Files\AvRack
[20/05/2006|11:07] C:\Program Files\Balm sign support
[07/09/2008|10:24] C:\Program Files\BitDefender
[25/05/2009|09:38] C:\Program Files\Bonjour
[06/01/2006|19:06] C:\Program Files\Canon
[06/04/2008|18:17] C:\Program Files\Comcast Play Games
[16/09/2005|18:16] C:\Program Files\ComPlus Applications
[01/05/2008|19:28] C:\Program Files\Davilex
[25/02/2007|20:12] C:\Program Files\Dictionnaire
[26/12/2005|12:08] C:\Program Files\directx
[15/08/2007|14:47] C:\Program Files\DivX
[09/10/2007|18:55] C:\Program Files\Dracula
[18/06/2006|10:18] C:\Program Files\EA SPORTS
[16/10/2005|10:21] C:\Program Files\EACOM
[20/11/2007|17:02] C:\Program Files\Eidos Interactive
[15/03/2009|14:34] C:\Program Files\eMule v.049c
[25/09/2005|11:28] C:\Program Files\EPSON
[17/03/2009|11:51] C:\Program Files\ESTsoft
[27/02/2009|11:22] C:\Program Files\Every Toolbar 1.1
[25/05/2009|09:35] C:\Program Files\Fichiers communs
[11/02/2009|16:57] C:\Program Files\Free Audio Pack
[16/09/2005|18:02] C:\Program Files\Futuremark
[18/01/2008|22:33] C:\Program Files\GamesBar
[13/02/2009|14:41] C:\Program Files\Google
[11/02/2007|23:36] C:\Program Files\Graal
[14/12/2005|20:16] C:\Program Files\Hasbro Interactive
[14/09/2007|21:37] C:\Program Files\InstallShield Installation Information
[25/09/2005|11:48] C:\Program Files\Intel
[16/04/2009|22:23] C:\Program Files\Internet Explorer
[25/05/2009|09:40] C:\Program Files\iPod
[25/05/2009|09:41] C:\Program Files\iTunes
[12/05/2009|16:59] C:\Program Files\Java
[26/11/2006|16:00] C:\Program Files\Jeux classiques
[19/12/2008|13:09] C:\Program Files\K-Lite Codec Pack
[25/09/2005|19:42] C:\Program Files\Leadtek Research Inc
[09/06/2006|12:32] C:\Program Files\Ligos
[26/11/2006|16:00] C:\Program Files\LimeWire
[26/12/2005|19:44] C:\Program Files\Logitech
[27/11/2008|17:50] C:\Program Files\Messenger
[28/12/2007|21:18] C:\Program Files\Messenger Plus! Live
[14/09/2007|19:56] C:\Program Files\MessengerPlus! 3
[26/12/2005|12:04] C:\Program Files\Microids
[25/09/2005|11:46] C:\Program Files\Micro‹ds
[25/09/2005|13:15] C:\Program Files\Microsoft AutoRoute Express Europe 2000
[15/09/2007|11:15] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[25/09/2005|13:11] C:\Program Files\Microsoft Encarta
[25/09/2005|13:09] C:\Program Files\microsoft frontpage
[25/09/2005|13:08] C:\Program Files\Microsoft Money
[25/09/2005|13:09] C:\Program Files\Microsoft Office
[25/10/2005|18:11] C:\Program Files\Microsoft Picture It!
[26/11/2006|16:00] C:\Program Files\Microsoft Works
[25/09/2005|13:04] C:\Program Files\Microsoft Works Suite 2000
[30/01/2007|17:51] C:\Program Files\MotoRacer3
[27/11/2008|17:46] C:\Program Files\Movie Maker
[25/05/2009|13:24] C:\Program Files\Mozilla Firefox
[25/05/2009|20:34] C:\Program Files\Mozilla Thunderbird
[21/02/2009|20:24] C:\Program Files\MSBuild
[25/09/2005|11:44] C:\Program Files\MSN
[16/09/2005|18:15] C:\Program Files\MSN Gaming Zone
[27/04/2009|19:02] C:\Program Files\MSN Messenger
[16/11/2006|00:28] C:\Program Files\MSXML 4.0
[28/09/2005|19:25] C:\Program Files\Music Manager
[21/02/2009|20:28] C:\Program Files\Nero
[27/11/2008|17:44] C:\Program Files\NetMeeting
[07/09/2008|10:19] C:\Program Files\Norton 360
[10/10/2006|18:56] C:\Program Files\Norton AntiVirus
[09/07/2008|12:47] C:\Program Files\NOS
[16/09/2005|18:15] C:\Program Files\Online Services
[18/01/2008|22:33] C:\Program Files\orange
[27/11/2008|17:43] C:\Program Files\Outlook Express
[31/08/2008|15:41] C:\Program Files\Philips
[21/05/2006|12:53] C:\Program Files\PhotoFiltre
[08/05/2006|13:37] C:\Program Files\PIXELA
[15/02/2007|23:19] C:\Program Files\Pizzicato 3
[26/12/2005|13:40] C:\Program Files\Playlogic
[25/05/2009|09:37] C:\Program Files\QuickTime
[25/12/2006|20:33] C:\Program Files\Radical Games
[16/09/2005|19:59] C:\Program Files\Realtek Sound Manager
[21/02/2009|20:19] C:\Program Files\Reference Assemblies
[19/07/2007|16:34] C:\Program Files\SAGEM
[14/09/2007|21:36] C:\Program Files\Samsung
[15/10/2006|09:11] C:\Program Files\Securitoo
[16/09/2005|18:17] C:\Program Files\Services en ligne
[03/04/2006|20:37] C:\Program Files\Shareaza
[29/04/2007|14:35] C:\Program Files\Sibelius Software
[28/09/2005|11:55] C:\Program Files\Sierra
[07/02/2007|00:15] C:\Program Files\Skype
[08/05/2006|13:34] C:\Program Files\Sony Corporation
[14/10/2006|14:21] C:\Program Files\SpySpotter3
[07/09/2008|10:19] C:\Program Files\Symantec
[25/05/2009|16:38] C:\Program Files\trend micro
[26/12/2006|16:40] C:\Program Files\Ubisoft
[25/09/2005|19:46] C:\Program Files\Ulead Systems
[18/05/2008|18:05] C:\Program Files\Ultimate Game Pak
[16/09/2005|19:55] C:\Program Files\Uninstall Information
[11/09/2006|19:02] C:\Program Files\VeriSign
[05/02/2006|15:20] C:\Program Files\Vivendi Universal Games
[25/05/2009|20:28] C:\Program Files\Wanadoo
[28/09/2005|12:32] C:\Program Files\Wanadoo Messager
[09/05/2007|21:08] C:\Program Files\Winamp
[28/02/2008|21:20] C:\Program Files\Windows Live
[30/11/2007|22:44] C:\Program Files\Windows Live Favorites
[30/11/2007|22:44] C:\Program Files\Windows Live Toolbar
[13/03/2009|15:27] C:\Program Files\Windows Media Connect 2
[13/03/2009|15:26] C:\Program Files\Windows Media Player
[27/11/2008|17:43] C:\Program Files\Windows NT
[16/09/2005|18:17] C:\Program Files\WindowsUpdate
[25/09/2005|19:45] C:\Program Files\WinFast
[16/09/2005|18:19] C:\Program Files\xerox
[18/01/2006|13:10] C:\Program Files\Yahoo!
[28/09/2005|12:33] C:\Program Files\ZTE Corporation
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[09/07/2008|12:24] C:\Program Files\Fichiers communs\Adobe
[25/05/2009|09:40] C:\Program Files\Fichiers communs\Apple
[07/09/2008|10:24] C:\Program Files\Fichiers communs\BitDefender
[25/09/2005|13:09] C:\Program Files\Fichiers communs\Designer
[25/09/2005|11:26] C:\Program Files\Fichiers communs\EPSON
[28/09/2005|11:54] C:\Program Files\Fichiers communs\InstallShield
[17/09/2006|21:26] C:\Program Files\Fichiers communs\Java
[26/12/2005|19:45] C:\Program Files\Fichiers communs\Logitech
[08/03/2009|12:00] C:\Program Files\Fichiers communs\Microsoft Shared
[16/09/2005|18:16] C:\Program Files\Fichiers communs\MSSoap
[08/05/2006|13:34] C:\Program Files\Fichiers communs\muvee Technologies
[21/02/2009|20:28] C:\Program Files\Fichiers communs\Nero
[06/04/2008|18:17] C:\Program Files\Fichiers communs\Oberon Media
[16/09/2005|19:59] C:\Program Files\Fichiers communs\ODBC
[16/09/2005|18:16] C:\Program Files\Fichiers communs\Services
[07/02/2007|00:15] C:\Program Files\Fichiers communs\Skype
[16/09/2005|19:59] C:\Program Files\Fichiers communs\SpeechEngines
[07/09/2008|10:21] C:\Program Files\Fichiers communs\Symantec Shared
[27/11/2008|17:43] C:\Program Files\Fichiers communs\System
[25/09/2005|19:46] C:\Program Files\Fichiers communs\Ulead Systems
[28/02/2008|21:21] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[13/10/2005|19:03] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 14 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-25 20:38:40
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 2440
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-1229835f-2f7e0d77.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-1229835f-2f7e0d77.idx
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a75-1eb4fb8e.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a75-1eb4fb8e.idx
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a7e-3261be7c.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-c3a8a7e-3261be7c.idx
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-d5f21de-2bd10380.au
C:\DOCUME~1\BOURRI~1\.jpi_cache\file\1.0\crack.au-d5f21de-2bd10380.idx
C:\DOCUME~1\BOURRI~1\Mes documents\Ma musique\MUSIQUES\Musiques Engag‚es\Left%C3%B6ver%20Crack_gang%20Control[1].rbs
C:\DOCUME~1\BOURRI~1\Mes documents\Ma musique\MUSIQUES\Rock, M‚tal, Hard Rock, Punk, Grunge\The Spinto Band\Nice and Nicely Done\06 - Crack the Whip - Spinto Band [the].mp3
C:\DOCUME~1\BOURRI~1\Mes documents\Mes fichiers re‡us\audrey-angelynne3906132596\Historique\lacrack20003052669766.xml
[F:30][D:14]-> C:\DOCUME~1\BOURRI~1\LOCALS~1\Temp
[F:1489][D:0]-> C:\DOCUME~1\BOURRI~1\Cookies
[F:488][D:5]-> C:\DOCUME~1\BOURRI~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 25/05/2009|15:31 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 25/05/2009|20:41 - Option : [2]
--------------------\\ Fin du rapport a 20:41:51
tu as des restes de Norton
Désinstaller Produis Symantec :
Désinstalle via Ajout/Suppression de Programmes (si présents) :
* Symantec
* Norton
* LiveUpdate..
Télécharge et exécute le Norton Removal Tool.
Ce produit va désinstaller la majorité des traces des produits Symantec.
ensuite :
réouvre hijackthis
fais scan only
coches ces lignes sur leur gauche:
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Reactivator Class - {AC2E8306-D24E-4082-8669-7781499F4E03} - C:\PROGRA~1\EVERYT~1.1\everycom.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: (no name) - {A20A76AD-7A29-4756-87FE-70C334CB40C0} - (no file)
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O8 - Extra context menu item: &Every Toolbar Search - res://C:\PROGRA~1\EVERYT~1.1\everycom.dll/GoRSDN.dll.htm
O9 - Extra button: Aide i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing)
O9 - Extra 'Tools' menuitem: Aide i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing)
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {49E67060-2C0D-415E-94C7-52A49F73B2F1} (CPlayFirstPiratePoppersControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/PiratePoppers.1.0.0.39.cab
O16 - DPF: {5392B545-31A5-4724-BEF3-4FED1D56FDAC} (CPlayFirstDinerDash2_frControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/DinerDash2_fr.1.0.0.70.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/popcaploader_v6.cab
O23 - Service: ipfw_helper (ipfw) - Unknown owner - C:\WINDOWS\system32\3764.exe (file missing)
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
tu les coches et tu clic sur "fix checked"
et tu fermes le programme.
Désinstaller Produis Symantec :
Désinstalle via Ajout/Suppression de Programmes (si présents) :
* Symantec
* Norton
* LiveUpdate..
Télécharge et exécute le Norton Removal Tool.
Ce produit va désinstaller la majorité des traces des produits Symantec.
ensuite :
réouvre hijackthis
fais scan only
coches ces lignes sur leur gauche:
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Reactivator Class - {AC2E8306-D24E-4082-8669-7781499F4E03} - C:\PROGRA~1\EVERYT~1.1\everycom.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: (no name) - {A20A76AD-7A29-4756-87FE-70C334CB40C0} - (no file)
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O8 - Extra context menu item: &Every Toolbar Search - res://C:\PROGRA~1\EVERYT~1.1\everycom.dll/GoRSDN.dll.htm
O9 - Extra button: Aide i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing)
O9 - Extra 'Tools' menuitem: Aide i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing)
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {49E67060-2C0D-415E-94C7-52A49F73B2F1} (CPlayFirstPiratePoppersControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/PiratePoppers.1.0.0.39.cab
O16 - DPF: {5392B545-31A5-4724-BEF3-4FED1D56FDAC} (CPlayFirstDinerDash2_frControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/DinerDash2_fr.1.0.0.70.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/popcaploader_v6.cab
O23 - Service: ipfw_helper (ipfw) - Unknown owner - C:\WINDOWS\system32\3764.exe (file missing)
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
tu les coches et tu clic sur "fix checked"
et tu fermes le programme.
J'ai tout supprimé, sauf les 4 derniers de ta liste puisque j'avais désinstallé LiveUpdate auparavant.
desinstalle LOP S&D
supprimes => c:\rsit
redemarres et renvoies rsit stp
toujours ton souci du départ ?
supprimes => c:\rsit
redemarres et renvoies rsit stp
toujours ton souci du départ ?
Logfile of random's system information tool 1.06 (written by random/random)
Run by BOURRIQUET at 2009-05-25 21:53:12
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 66 GB (42%) free of 156 GB
Total RAM: 1023 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:53:20, on 25/05/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0R2.EXE
C:\WINDOWS\system32\WF2K.EXE
C:\Program Files\WinFast\WFTVFM\WFWIZ.exe
C:\Program Files\ZTE Corporation\ZXDSL852\CnxDslTb.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\WINDOWS\system32\lvcomsx.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Philips\Philips PhotoFrame\PhotoManager.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\VeriSign\NAVI\naviagent.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Wanadoo\Watch.exe
C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe
C:\Documents and Settings\BOURRIQUET\Bureau\rsit.exe
C:\Program Files\trend micro\HijackThis\BOURRIQUET.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: i-Nav IDN SearchHook - {CE000994-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: i-Nav IDN Resolver - {CE000992-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [EPSON Stylus C86 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0R2.EXE /P23 "EPSON Stylus C86 Series" /O6 "USB001" /M "Stylus C86"
O4 - HKLM\..\Run: [WinFoxV2] C:\WINDOWS\system32\WF2K.EXE Initial
O4 - HKLM\..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFTVFM\WFWIZ.exe
O4 - HKLM\..\Run: [CnxDslTaskBar] "C:\Program Files\ZTE Corporation\ZXDSL852\CnxDslTb.exe" "ZTE Corporation\ZXDSL852"
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [YeppStudioAgent] C:\Program Files\Samsung\Samsung Media Studio\SamsungMediaStudioAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [BitDefender Security Center] "C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe" /init
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\Money Express.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe EspaceWanadoo.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Auto Run Software for Photo Frame] "C:\Program Files\Philips\Philips PhotoFrame\PhotoManager.exe" /autorun
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Picture Package Menu.lnk = C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O9 - Extra button: (no name) - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
O9 - Extra 'Tools' menuitem: Options i-Nav - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {011F473E-0880-43D4-99F3-F490A84128AE} (GenimoWebGames Control) - http://jeuxenligne.orange.fr/...
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/ClientInstall/9.20.0002/OCI/setup.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://jeuxvideo.wanadoo.fr/components/Metaboli.ocx
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} (ScorchPlugin Class) - http://www.sibelius.com/download/software/win/ActiveXPlugin.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {BAE1D8DF-0B35-47E3-A1E7-EEB3FF2ECD19} (CPlayFirstddfotgControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/ddfotg.1.0.0.37.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/DinerDash.1.0.0.98.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O16 - DPF: {FC4CAF5F-91BD-4DD9-ADC1-F3C737E37BC4} (CPlayFirstSweetopiaControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/Sweetopia.1.0.0.46.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2131A3D3-62F9-4459-B812-FF46499A6A3A}: NameServer = 80.10.246.2,8.10.246.129
O17 - HKLM\System\CCS\Services\Tcpip\..\{A67A685F-2AD7-490B-9091-569274B742E3}: NameServer = 80.10.246.2,8.10.246.129
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: ipfw_helper (ipfw) - Unknown owner - C:\WINDOWS\system32\3764.exe (file missing)
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: VeriSign Updater (navi) - VeriSign, Inc. - C:\Program Files\VeriSign\NAVI\naviagent.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
Run by BOURRIQUET at 2009-05-25 21:53:12
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 66 GB (42%) free of 156 GB
Total RAM: 1023 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:53:20, on 25/05/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0R2.EXE
C:\WINDOWS\system32\WF2K.EXE
C:\Program Files\WinFast\WFTVFM\WFWIZ.exe
C:\Program Files\ZTE Corporation\ZXDSL852\CnxDslTb.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\WINDOWS\system32\lvcomsx.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Philips\Philips PhotoFrame\PhotoManager.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\VeriSign\NAVI\naviagent.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Wanadoo\Watch.exe
C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe
C:\Documents and Settings\BOURRIQUET\Bureau\rsit.exe
C:\Program Files\trend micro\HijackThis\BOURRIQUET.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: i-Nav IDN SearchHook - {CE000994-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: i-Nav IDN Resolver - {CE000992-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [EPSON Stylus C86 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0R2.EXE /P23 "EPSON Stylus C86 Series" /O6 "USB001" /M "Stylus C86"
O4 - HKLM\..\Run: [WinFoxV2] C:\WINDOWS\system32\WF2K.EXE Initial
O4 - HKLM\..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFTVFM\WFWIZ.exe
O4 - HKLM\..\Run: [CnxDslTaskBar] "C:\Program Files\ZTE Corporation\ZXDSL852\CnxDslTb.exe" "ZTE Corporation\ZXDSL852"
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [YeppStudioAgent] C:\Program Files\Samsung\Samsung Media Studio\SamsungMediaStudioAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [BitDefender Security Center] "C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe" /init
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\Money Express.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe EspaceWanadoo.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Auto Run Software for Photo Frame] "C:\Program Files\Philips\Philips PhotoFrame\PhotoManager.exe" /autorun
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Picture Package Menu.lnk = C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O9 - Extra button: (no name) - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
O9 - Extra 'Tools' menuitem: Options i-Nav - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {011F473E-0880-43D4-99F3-F490A84128AE} (GenimoWebGames Control) - http://jeuxenligne.orange.fr/...
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/ClientInstall/9.20.0002/OCI/setup.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - http://jeuxvideo.wanadoo.fr/components/Metaboli.ocx
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} (ScorchPlugin Class) - http://www.sibelius.com/download/software/win/ActiveXPlugin.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {BAE1D8DF-0B35-47E3-A1E7-EEB3FF2ECD19} (CPlayFirstddfotgControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/ddfotg.1.0.0.37.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/DinerDash.1.0.0.98.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O16 - DPF: {FC4CAF5F-91BD-4DD9-ADC1-F3C737E37BC4} (CPlayFirstSweetopiaControl Object) - file:///C:/Documents%20and%20Settings/BOURRIQUET/Local%20Settings/Application%20Data/Oberon%20Media/Oberon%20Games%20Host/Sweetopia.1.0.0.46.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2131A3D3-62F9-4459-B812-FF46499A6A3A}: NameServer = 80.10.246.2,8.10.246.129
O17 - HKLM\System\CCS\Services\Tcpip\..\{A67A685F-2AD7-490B-9091-569274B742E3}: NameServer = 80.10.246.2,8.10.246.129
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. https://www.bitdefender.fr/ - C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: ipfw_helper (ipfw) - Unknown owner - C:\WINDOWS\system32\3764.exe (file missing)
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: VeriSign Updater (navi) - VeriSign, Inc. - C:\Program Files\VeriSign\NAVI\naviagent.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
Plus de fenêtres pop-up depuis un petit moment...
Par contre, dans (C:) sont apparus des dossiers et des fichiers (.sqm ou .sys, par exemple) à moitié transparents. Il y en a un aussi sur le bureau. Qu'est-ce c'est ?
NB : Est-ce que le rapport "info.txt" apparaît ? Je l'ai posté mais je ne vois pourtant que le log.
Par contre, dans (C:) sont apparus des dossiers et des fichiers (.sqm ou .sys, par exemple) à moitié transparents. Il y en a un aussi sur le bureau. Qu'est-ce c'est ?
NB : Est-ce que le rapport "info.txt" apparaît ? Je l'ai posté mais je ne vois pourtant que le log.
---> Désactive ton antivirus le temps de la manipulation car OTMoveIt3 est détecté comme une infection à tort.
Redemarres en mode sans echec
---> Double-clique sur OTMoveIt3.exe afin de le lancer.
---> Copie (Ctrl+C) le texte suivant ci-dessous :
:processes
explorer.exe
:services
ipfw
:files
C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
:commands
[purity]
[emptytemp]
[start explorer]
[reboot]
---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.
---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
Redemarres en mode sans echec
---> Double-clique sur OTMoveIt3.exe afin de le lancer.
---> Copie (Ctrl+C) le texte suivant ci-dessous :
:processes
explorer.exe
:services
ipfw
:files
C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
:commands
[purity]
[emptytemp]
[start explorer]
[reboot]
---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.
---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
