Infécté

Résolu
seph27 Messages postés 20 Statut Membre -  
 Utilisateur anonyme -
Bonjour,
ya t'il quelqu'un pour maider j'ai tout plein de virus que j'arrive pas a me débarrasser comme celui la BAT/REG.Zapchast ou encore autorun sur mes clé usb c'est au dessus de mes capacité help me!!!!
Configuration: Windows XP
Firefox 3.0.11

15 réponses

  1. seph27 Messages postés 20 Statut Membre
     
    ############################## [ UsbFix V3.029 | Cleaning ]

    # User : Seph (Administrateurs) # SEPHIROTH
    # Update on 05/06/09 by Chiquitine29, C_XX & Chimay8
    # WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html
    # Start at: 22:35:00 | 13/06/2009

    # AMD Athlon(tm) 64 Processor 3200+
    # Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
    # Internet Explorer 8.0.6001.18702
    # Windows Firewall Status : Disabled
    # AV : AntiVir Desktop 9.0.1.26 [ (!) Disabled | (!) Outdated ]

    # C:\ # Disque fixe local # 152,66 Go (69,52 Go free) # NTFS
    # D:\ # Disque CD-ROM
    # E:\ # Disque CD-ROM
    # F:\ # Disque fixe local # 114,48 Go (17,81 Go free) [Photos et Films] # NTFS
    # G:\ # Disque CD-ROM
    # H:\ # Disque amovible # 3,8 Go (3,8 Go free) [SEPH] # FAT32
    # I:\ # Disque amovible

    ############################## [ Processus actifs ]

    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\csrss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\logonui.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Google\Update\GoogleUpdate.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Avira\AntiVir Desktop\sched.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\WINDOWS\system32\CTsvcCDA.exe
    C:\Program Files\Google\Update\GoogleUpdate.exe
    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\MsPMSPSv.exe
    C:\WINDOWS\system32\wbem\wmiapsrv.exe
    C:\WINDOWS\system32\wbem\wmiprvse.exe
    C:\WINDOWS\system32\wbem\wmiprvse.exe

    ################## [ Fichiers # Dossiers infectieux ]

    Deleted ! C:\restore\S-1-5-21-1482476501-1644491937-682003330-1013\Desktop.ini
    Deleted ! "C:\restore\S-1-5-21-1482476501-1644491937-682003330-1013"
    H:\autorun.inf # -> fichier appelé : "H:\RECYCLER\S-1-6-21-2434476501-1644491937-600003330-1213\winsvcs32.exe" ( présent ! )
    Deleted ! -> H:\RECYCLER\S-1-6-21-2434476501-1644491937-600003330-1213\winsvcs32.exe
    Deleted ! H:\autorun.inf
    Deleted ! H:\restore\S-1-5-21-1482476501-1644491937-682003330-1013\Desktop.ini
    Deleted ! "H:\restore\S-1-5-21-1482476501-1644491937-682003330-1013"

    ################## [ Registre # Clés Run infectieuses ]

    Deleted ! HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices "DRam prosessor"

    ################## [ Registre # Mountpoints2 ]

    ################## [ Listing des fichiers présent ]

    [20/02/2009 17:34|--ahs----|960] - C:\5jljaw3o.sys
    [20/02/2009 17:34|--a------|0] - C:\AUTOEXEC.BAT
    [20/02/2009 17:29|-r-hs----|216] - C:\boot.ini
    [05/08/2004 14:00|-rahs----|4952] - C:\Bootfont.bin
    [20/02/2009 17:34|--a------|0] - C:\CONFIG.SYS
    [07/06/2009 19:51|--a------|172] - C:\curr_ver.tmp
    [06/02/2004 18:19|-ra------|16384] - C:\hpqimgrc.resources.dll
    [20/02/2009 17:34|-rahs----|0] - C:\IO.SYS
    [03/03/2009 21:36|--a------|90] - C:\LogiSetup.log
    [20/02/2009 17:34|-rahs----|0] - C:\MSDOS.SYS
    [22/08/2003 10:09|--a------|327724] - C:\nse149.tmp
    [05/08/2004 14:00|-rahs----|47564] - C:\NTDETECT.COM
    [20/02/2009 21:11|-rahs----|252240] - C:\ntldr
    [29/02/2004 17:44|--a------|52576] - C:\orange.bmp
    [?|?|?] - C:\pagefile.sys
    [13/06/2009 22:35|--a------|3720] - C:\UsbFix.txt

    ################## [ Vaccination ]

    # C:\autorun.inf ( # Not infected ) -> Folder created by UsbFix.
    # F:\autorun.inf ( # Not infected ) -> Folder created by UsbFix.
    # H:\autorun.inf ( # Not infected ) -> Folder created by UsbFix.

    ################## [ ! Fin du rapport # UsbFix V3.029 ! ]
    0
    1. Utilisateur anonyme
       
      Bonsoir

      Maintenant que UsbFix est passé poste un RSIT stp merci

      Télécharge Random's System Information Tool (RSIT) de random/random et enregistre l'exécutable sur ton Bureau.

      -> http://images.malwareremoval.com/random/RSIT.exe

      ! Déconnecte toi et ferme toutes tes applications en cours !

      Double-clique sur " RSIT.exe " pour le lancer .

      -> Une première fenêtre s'ouvre avec en titre : " Disclaimer of warranty " .

      * Devant l'option "List files/folders created ..." , tu choisis : 2 months

      * clique ensuite sur " Continue " pour lancer l'analyse ...


      -> laisse faire le scan et ne touche pas au PC ...


      Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront (probablement avec le bloc-note).

      Poste le contenu de " log.txt " (c'est celui qui apparait à l'écran), ainsi que de " info.txt " (que tu verras dans la barre des tâches), pour analyse et attends la suite ...

      Important : poste un rapport, puis l'autre dans la réponse suivante
      Si tu essaies de poster les deux en même temps, cela risque d'être trop long pour le forum


      ( Note : les rapports seront en outre sauvegardés dans ce dossier -> C:\rsit )

      Merci
      0
  2. seph27 Messages postés 20 Statut Membre
     
    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Seph at 2009-06-13 23:49:11
    Microsoft Windows XP Édition familiale Service Pack 3
    System drive C: has 71 GB (46%) free of 156 GB
    Total RAM: 1023 MB (61% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 23:49:25, on 13/06/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Avira\AntiVir Desktop\sched.exe
    C:\Program Files\Google\Update\GoogleUpdate.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\WINDOWS\system32\CTsvcCDA.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\MsPMSPSv.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
    C:\WINDOWS\system32\hphmon06.exe
    C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
    C:\WINDOWS\system32\LVCOMSX.EXE
    C:\Program Files\Logitech\Video\LogiTray.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\EasySearch\SiteVacuumClient.exe
    C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\WINDOWS\system32\HPZipm12.exe
    C:\WINDOWS\winsvcs32.exe
    C:\WINDOWS\system32\winsystem.exe
    C:\WINDOWS\system32\windir16.exe
    C:\WINDOWS\system32\wbem\wmiapsrv.exe
    C:\Program Files\Logitech\Video\FxSvr2.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
    C:\Documents and Settings\Seph\Bureau\RSIT.exe
    C:\Program Files\trend micro\Seph.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://actus.sfr.fr
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://actus.sfr.fr
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL
    R3 - URLSearchHook: recfree Toolbar - {15c93148-34fe-47e6-88e5-37607a3002f3} - C:\Program Files\recfree\tbrecf.dll
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: recfree Toolbar - {15c93148-34fe-47e6-88e5-37607a3002f3} - C:\Program Files\recfree\tbrecf.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
    O2 - BHO: Google Plus - {C8CD2017-F1E5-4F1A-B58A-EE0B1AF0D0D8} - C:\PROGRA~1\GOOGLE~1\15GOOG~1.DLL
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\2.bin\ASKTBAR.DLL
    O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\2.bin\ASKTBAR.DLL
    O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
    O3 - Toolbar: recfree Toolbar - {15c93148-34fe-47e6-88e5-37607a3002f3} - C:\Program Files\recfree\tbrecf.dll
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe /r
    O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
    O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
    O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb11.exe
    O4 - HKLM\..\Run: [HPHUPD06] C:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
    O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
    O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
    O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
    O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
    O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
    O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
    O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [Windows Manager System] winreger.exe
    O4 - HKLM\..\Run: [DRam prosessor] windir16.exe
    O4 - HKLM\..\Run: [winsvc32] winsvcs32.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Windows Prosessor] winsystem.exe
    O4 - HKLM\..\Run: [SiteVacuum] C:\Program Files\EasySearch\SiteVacuumClient.exe
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
    O4 - HKLM\..\RunServices: [Windows Manager System] winreger.exe
    O4 - HKLM\..\RunServices: [Windows Prosessor] winsystem.exe
    O4 - HKLM\..\RunServices: [DRam prosessor] windir16.exe
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
    O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
    O4 - HKCU\..\Run: [E09FXLRD_165037781] "C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" -m
    O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
    O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe" /tray
    O4 - HKCU\..\Run: [L08FXLRD_6992203] "C:\Program Files\Microsoft Etudes\Microsoft Encarta 2008 - Études DVD\EDICT.EXE" -m
    O4 - HKCU\..\Run: [RocketDock] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe"
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Startup: adidas OM Widget.lnk = C:\Program Files\adidas OM Widget\adidas OM Widget.exe
    O4 - Startup: Anti-Autorun-inf.lnk = C:\Program Files\Prg Chris\Anti-Autorun.inf\Anti-Autorun.inf.exe
    O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
    O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\digital imaging\bin\hpqthb08.exe
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\digital imaging\bin\hpqtra08.exe
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Tout télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
    O8 - Extra context menu item: Télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
    O8 - Extra context menu item: Télécharger toutes les vidéos avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
    O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
    O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll/206 (file missing)
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O18 - Protocol: bw+0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: offline-8876480 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
    O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
    O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
    O23 - Service: Service Google Update (gupdate1c9991a91702be3) (gupdate1c9991a91702be3) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    0
  3. seph27 Messages postés 20 Statut Membre
     
    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    C:\WINDOWS\tasks\Google Software Updater.job
    C:\WINDOWS\tasks\GoogleUpdateTaskMachine.job
    C:\WINDOWS\tasks\HP Usg Daily.job
    C:\WINDOWS\tasks\WebReg 20090607222701.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2009-02-27 61816]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{15c93148-34fe-47e6-88e5-37607a3002f3}]
    recfree Toolbar - C:\Program Files\recfree\tbrecf.dll [2008-09-15 1784856]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
    RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-03-08 312928]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
    BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll [2009-03-02 636216]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
    Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CB65201-89C4-402c-BA80-02D8C59F9B1D}]
    Ask Search Assistant BHO - C:\Program Files\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL [2009-04-15 57344]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-03-24 668656]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C8CD2017-F1E5-4F1A-B58A-EE0B1AF0D0D8}]
    Google Plus - C:\PROGRA~1\GOOGLE~1\15GOOG~1.DLL [2009-06-07 106496]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-09 35840]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
    Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-09 73728]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE063DB1-4EC0-403e-8DD8-394C54984B2C}]
    Ask Toolbar BHO - C:\Program Files\AskTBar\bar\2.bin\ASKTBAR.DLL [2009-04-15 245760]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
    {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - Ask Toolbar - C:\Program Files\AskTBar\bar\2.bin\ASKTBAR.DLL [2009-04-15 245760]
    {32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2008-12-10 929224]
    {15c93148-34fe-47e6-88e5-37607a3002f3} - recfree Toolbar - C:\Program Files\recfree\tbrecf.dll [2008-09-15 1784856]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-04-28 7573504]
    "nwiz"=nwiz.exe /install []
    "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-04-28 86016]
    "CTSysVol"=C:\Program Files\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe [2003-09-17 57344]
    "UpdReg"=C:\WINDOWS\UpdReg.EXE [2000-05-11 90112]
    "Logitech Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2005-05-20 28160]
    "NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe []
    "HPDJ Taskbar Utility"=C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb11.exe [2004-04-06 172032]
    "HPHUPD06"=C:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe [2004-06-07 49152]
    "HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2004-02-12 49152]
    "HP Component Manager"=C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [2004-05-12 241664]
    "HPHmon06"=C:\WINDOWS\system32\hphmon06.exe [2004-06-07 659456]
    "OpwareSE2"=C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe [2003-05-08 49152]
    "LVCOMSX"=C:\WINDOWS\system32\LVCOMSX.EXE [2004-10-08 221184]
    "LogitechVideoRepair"=C:\Program Files\Logitech\Video\ISStart.exe [2004-10-08 458752]
    "LogitechVideoTray"=C:\Program Files\Logitech\Video\LogiTray.exe [2004-10-08 217088]
    "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-03-08 198160]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-09 148888]
    "AppleSyncNotifier"=C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2009-05-13 177472]
    "NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2006-01-12 155648]
    "Windows Manager System"=winreger.exe []
    "DRam prosessor"=C:\WINDOWS\system32\windir16.exe [2008-04-14 217124]
    "winsvc32"=C:\WINDOWS\winsvcs32.exe [2009-06-05 122916]
    "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696]
    "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-05-30 292136]
    "Windows Prosessor"=C:\WINDOWS\system32\winsystem.exe [2008-04-14 462884]
    "SiteVacuum"=C:\Program Files\EasySearch\SiteVacuumClient.exe [2009-06-07 471117]
    "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "LDM"=C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2009-02-20 32768]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
    "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
    "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe ASO-616B5711-6DAE-4795-A05F-39A1E5104020 []
    "DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-12-29 687560]
    "E09FXLRD_165037781"=C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE -m []
    "LogitechSoftwareUpdate"=C:\Program Files\Logitech\Video\ManifestEngine.exe [2004-10-08 196608]
    "BitComet"=C:\Program Files\BitComet\BitComet.exe [2009-03-09 2564408]
    "L08FXLRD_6992203"=C:\Program Files\Microsoft Etudes\Microsoft Encarta 2008 - Études DVD\EDICT.EXE [2007-06-12 351000]
    "RocketDock"=C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe [2007-03-19 630784]

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    Démarrage rapide du logiciel HP Image Zone.lnk - C:\Program Files\HP\digital imaging\bin\hpqthb08.exe
    HP Digital Imaging Monitor.lnk - C:\Program Files\HP\digital imaging\bin\hpqtra08.exe
    Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe

    C:\Documents and Settings\Seph\Menu Démarrer\Programmes\Démarrage
    adidas OM Widget.lnk - C:\Program Files\adidas OM Widget\adidas OM Widget.exe
    Anti-Autorun-inf.lnk - C:\Program Files\Prg Chris\Anti-Autorun.inf\Anti-Autorun.inf.exe
    RocketDock.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=145
    "NofolderOptions"=0
    "NoFind"=0
    "NoRun"=0
    "NoDrives"=0
    "NoDriveAutoRun"=FFFFFFFF
    "HonorAutoRunSetting"=1

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=
    "NoFolderOptions"=
    "NoDriveAutoRun"=
    "NoDriveTypeAutoRun"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\WINDOWS\system32\usmt\migwiz.exe"="C:\WINDOWS\system32\usmt\migwiz.exe:*:Enabled:Assistant Transfert de fichiers et de paramètres"
    "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Disabled:Logitech Desktop Messenger"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
    "C:\Program Files\Fichiers communs\Nero\Nero Web\SetupX.exe"="C:\Program Files\Fichiers communs\Nero\Nero Web\SetupX.exe:*:Enabled:Nero ControlCenter"
    "C:\Documents and Settings\Seph\Local Settings\Temp\OnlineUpdate8\SetupXu.exe"="C:\Documents and Settings\Seph\Local Settings\Temp\OnlineUpdate8\SetupXu.exe:*:Enabled:Nero ControlCenter"
    "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
    "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
    "C:\Program Files\BitComet\BitComet.exe"="C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client"
    "C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
    "C:\Program Files\BitComet\plugin_emule\plugin_eMule.exe"="C:\Program Files\BitComet\plugin_emule\plugin_eMule.exe:*:Enabled:eMule plugin host for BitComet"
    "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
    "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
    "C:\WINDOWS\system32\winsystem.exe"="C:\WINDOWS\system32\winsystem.exe:*:Enabled:Bytes Adder"
    "C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Internet Security 2009\English\setup.exe"="C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Internet Security 2009\English\setup.exe:*:Enabled:Kaspersky Internet Security 2009 Setup"
    "C:\WINDOWS\Prefetch\FACT.EXE-362107A5.pf"="C:\WINDOWS\Prefetch\FACT.EXE-362107A5.pf:*:Enabled:FACT.EXE-362107A5.pf"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

    ======List of files/folders created in the last 2 months======

    2009-06-13 23:49:12 ----D---- C:\Program Files\trend micro
    2009-06-13 23:49:11 ----D---- C:\rsit
    2009-06-13 22:35:56 ----RASHD---- C:\autorun.inf
    2009-06-13 22:34:43 ----A---- C:\UsbFix.txt
    2009-06-13 19:11:33 ----A---- C:\WINDOWS\cool.exe
    2009-06-09 10:15:31 ----D---- C:\Program Files\Avira
    2009-06-09 10:15:31 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
    2009-06-09 09:53:49 ----A---- C:\WINDOWS\ntbtlog.txt
    2009-06-07 20:27:35 ----D---- C:\UsbFix
    2009-06-07 20:11:08 ----D---- C:\Program Files\Prg Chris
    2009-06-07 19:51:24 ----A---- C:\curr_ver.tmp
    2009-06-07 17:40:56 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
    2009-06-07 17:20:03 ----D---- C:\Program Files\GooglePlusVideos
    2009-06-07 17:19:43 ----D---- C:\Program Files\recfree
    2009-06-07 17:19:43 ----D---- C:\Program Files\Conduit
    2009-06-07 17:19:39 ----D---- C:\Program Files\EasySearch
    2009-06-07 16:42:24 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec
    2009-06-07 16:41:41 ----D---- C:\Program Files\Fichiers communs\Symantec Shared
    2009-06-06 22:13:42 ----D---- C:\Program Files\iPod
    2009-06-06 22:13:35 ----D---- C:\Program Files\iTunes
    2009-06-06 22:11:07 ----D---- C:\Program Files\QuickTime
    2009-06-05 18:44:27 ----RSHD---- C:\RESTORE
    2009-06-05 17:23:02 ----RSH---- C:\WINDOWS\winsvcs32.exe
    2009-06-05 17:23:00 ----A---- C:\WINDOWS\KyLe.exe
    2009-06-05 15:41:16 ----A---- C:\WINDOWS\Ryan.exe
    2009-05-27 13:47:01 ----D---- C:\WINDOWS\ie8updates
    2009-05-27 13:44:39 ----HDC---- C:\WINDOWS\ie8
    2009-05-13 14:41:56 ----D---- C:\Documents and Settings\Seph\Application Data\vghd
    2009-05-08 19:57:47 ----D---- C:\Program Files\TVersity
    2009-05-08 12:30:55 ----D---- C:\Program Files\Fichiers communs\DivX Shared
    2009-04-30 03:01:45 ----HDC---- C:\WINDOWS\$NtUninstallKB961503$
    2009-04-19 18:04:37 ----D---- C:\Documents and Settings\Seph\Application Data\com.adidas.widget.8DD3787205A936F604775F360BF9EE211D39EC38.1
    2009-04-19 18:04:32 ----D---- C:\Program Files\adidas OM Widget
    2009-04-19 18:04:29 ----D---- C:\Program Files\Fichiers communs\Adobe AIR
    2009-04-18 16:03:28 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
    2009-04-18 15:57:45 ----D---- C:\Program Files\Ask Search Assistant
    2009-04-17 21:07:19 ----N---- C:\WINDOWS\system32\spmsg2.dll
    2009-04-17 21:07:18 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
    2009-04-17 21:01:03 ----D---- C:\WINDOWS\system32\XPSViewer
    2009-04-17 21:00:56 ----D---- C:\WINDOWS\system32\en-US
    2009-04-17 21:00:50 ----D---- C:\Program Files\Reference Assemblies
    2009-04-17 21:00:11 ----N---- C:\WINDOWS\system32\xpssvcs.dll
    2009-04-17 21:00:11 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
    2009-04-17 21:00:11 ----N---- C:\WINDOWS\system32\prntvpt.dll
    2009-04-17 21:00:10 ----D---- C:\7819682f3535a681e8
    2009-04-17 19:44:48 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
    2009-04-17 19:44:41 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
    2009-04-17 19:41:24 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
    2009-04-17 19:41:12 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
    2009-04-17 19:40:19 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
    2009-04-17 19:40:05 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
    2009-04-15 15:26:12 ----N---- C:\WINDOWS\system32\TwnLib4.dll
    2009-04-15 15:26:12 ----A---- C:\WINDOWS\system32\TwnLib20.dll
    2009-04-15 15:26:11 ----N---- C:\WINDOWS\system32\ImagXRA7.dll
    2009-04-15 15:26:11 ----N---- C:\WINDOWS\system32\ImagXR7.dll
    2009-04-15 15:26:11 ----N---- C:\WINDOWS\system32\ImagXpr7.dll
    2009-04-15 15:26:11 ----N---- C:\WINDOWS\system32\ImagX7.dll
    2009-04-15 15:26:11 ----A---- C:\WINDOWS\system32\NeroCheck.exe
    2009-04-15 15:26:10 ----D---- C:\Program Files\Fichiers communs\Ahead
    2009-04-15 15:26:09 ----D---- C:\Program Files\Ahead
    2009-04-15 07:54:39 ----D---- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
    2009-04-15 07:48:11 ----D---- C:\Program Files\Safari

    ======List of files/folders modified in the last 2 months======

    2009-06-13 23:49:12 ----D---- C:\Program Files
    2009-06-13 23:49:06 ----D---- C:\WINDOWS\Prefetch
    2009-06-13 23:47:38 ----D---- C:\Program Files\BitComet
    2009-06-13 23:09:20 ----D---- C:\Program Files\Mozilla Firefox
    2009-06-13 22:58:49 ----D---- C:\WINDOWS\Temp
    2009-06-13 22:58:41 ----D---- C:\WINDOWS
    2009-06-13 22:57:53 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-06-13 22:57:26 ----SD---- C:\WINDOWS\Tasks
    2009-06-13 22:56:15 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-06-13 22:36:45 ----SHD---- C:\RECYCLER
    2009-06-13 22:18:16 ----D---- C:\Documents and Settings\All Users\Application Data\Google Updater
    2009-06-13 19:23:04 ----D---- C:\Downloads
    2009-06-13 07:28:16 ----A---- C:\WINDOWS\NeroDigital.ini
    2009-06-10 12:20:40 ----D---- C:\WINDOWS\system32
    2009-06-09 10:15:56 ----HD---- C:\WINDOWS\inf
    2009-06-09 10:15:56 ----D---- C:\WINDOWS\system32\drivers
    2009-06-09 10:12:20 ----D---- C:\Documents and Settings
    2009-06-09 09:57:21 ----SHD---- C:\WINDOWS\Installer
    2009-06-09 09:57:20 ----HD---- C:\Config.Msi
    2009-06-09 09:57:20 ----D---- C:\WINDOWS\WinSxS
    2009-06-09 09:46:16 ----A---- C:\Documents and Settings\Seph\Application Data\QuickZip45.ini
    2009-06-08 06:58:39 ----D---- C:\WINDOWS\Config
    2009-06-07 21:55:15 ----D---- C:\Program Files\eMule
    2009-06-07 17:04:52 ----D---- C:\Program Files\Fichiers communs
    2009-06-06 22:13:40 ----D---- C:\Program Files\Fichiers communs\Apple
    2009-06-06 22:09:36 ----DC---- C:\WINDOWS\system32\DRVSTORE
    2009-05-27 13:49:04 ----D---- C:\WINDOWS\system32\fr-fr
    2009-05-27 13:49:03 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-05-27 13:49:03 ----D---- C:\WINDOWS\Media
    2009-05-27 13:49:03 ----D---- C:\WINDOWS\Help
    2009-05-27 13:49:03 ----D---- C:\Program Files\Internet Explorer
    2009-05-27 13:46:47 ----HD---- C:\WINDOWS\$hf_mig$
    2009-05-27 13:46:42 ----A---- C:\WINDOWS\imsins.BAK
    2009-05-18 02:34:31 ----D---- C:\Program Files\Google
    2009-05-13 12:40:42 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
    2009-05-13 12:40:36 ----RSD---- C:\WINDOWS\assembly
    2009-05-11 13:10:18 ----D---- C:\WINDOWS\system32\Restore
    2009-05-10 19:48:00 ----D---- C:\Program Files\AskTBar
    2009-05-09 20:52:59 ----SD---- C:\Documents and Settings\Seph\Application Data\Microsoft
    2009-05-08 12:32:52 ----D---- C:\Program Files\DivX
    2009-05-07 09:16:29 ----A---- C:\WINDOWS\system32\MRT.exe
    2009-05-03 16:33:34 ----D---- C:\Documents and Settings\Seph\Application Data\Canon
    2009-04-25 06:59:08 ----D---- C:\Program Files\MpcStar
    2009-04-23 23:50:54 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-04-20 10:27:25 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
    2009-04-19 18:04:34 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-04-19 18:04:11 ----D---- C:\Documents and Settings\Seph\Application Data\Adobe
    2009-04-18 16:04:52 ----D---- C:\WINDOWS\system32\CatRoot
    2009-04-18 15:57:43 ----D---- C:\Program Files\Messenger Plus! Live
    2009-04-17 21:39:22 ----D---- C:\WINDOWS\Microsoft.NET
    2009-04-17 21:04:27 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-04-17 21:00:58 ----D---- C:\Program Files\MSBuild
    2009-04-17 21:00:55 ----RSD---- C:\WINDOWS\Fonts
    2009-04-17 21:00:29 ----D---- C:\WINDOWS\system32\spool
    2009-04-17 20:20:46 ----D---- C:\WINDOWS\system32\wbem
    2009-04-17 20:20:46 ----D---- C:\WINDOWS\AppPatch
    2009-04-17 19:43:57 ----D---- C:\WINDOWS\ie7updates
    2009-04-15 15:13:22 ----D---- C:\Program Files\Fichiers communs\Nero
    2009-04-15 15:13:20 ----D---- C:\Documents and Settings\All Users\Application Data\Nero
    2009-04-15 15:10:43 ----A---- C:\WINDOWS\system32\MsiExec.exe.log
    2009-04-15 13:12:24 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 AmdK8;Pilote de processeur AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-05-10 43520]
    R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
    R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
    R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
    R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-02-13 28376]
    R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-03-24 55640]
    R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-02-06 55152]
    R2 irda;Protocole IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
    R2 PfModNT;PfModNT; \??\C:\WINDOWS\system32\drivers\PfModNT.sys []
    R3 CamDrL;Logitech QuickCam Pro 3000(CamDrl); C:\WINDOWS\system32\DRIVERS\Camdrl.sys [2004-10-08 326656]
    R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys [2003-09-22 130192]
    R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400]
    R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
    R3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2004-03-18 51088]
    R3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2004-03-18 16496]
    R3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2004-03-18 21744]
    R3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
    R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2005-05-20 13056]
    R3 LHidKe;Logitech SetPoint HID Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidKE.Sys [2005-05-20 25600]
    R3 LMouKE;Logitech SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2005-05-20 68352]
    R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys [2004-10-08 22016]
    R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
    R3 ms_mpu401;Pilote UART MIDI MPU-401 Microsoft; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-18 2944]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-04-28 3663040]
    R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\DRIVERS\ctoss2k.sys [2003-09-22 178672]
    R3 P17;Sound Blaster Live! 24-bit; C:\WINDOWS\system32\drivers\P17.sys [2004-06-04 840960]
    R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
    R3 ULI5261XP;ULi M526X Ethernet NT Driver; C:\WINDOWS\system32\DRIVERS\ULILAN51.SYS [2005-03-22 28672]
    R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
    R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
    R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
    R3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
    R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    S3 ad7yupsv;ad7yupsv; C:\WINDOWS\system32\drivers\ad7yupsv.sys []
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
    S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
    S3 L8042mou;Logitech SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2005-05-20 54528]
    S3 MSICPL;MSICPL; \??\E:\install4\MSICPL.sys []
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
    S3 NTACCESS;NTACCESS; \??\E:\NTACCESS.sys []
    S3 SetupNTGLM7X;SetupNTGLM7X; \??\E:\NTGLM7X.sys []
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
    S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-04-01 108289]
    R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-03-02 185089]
    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-05-29 144712]
    R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
    R2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\system32\CTsvcCDA.exe [1999-12-13 44032]
    R2 Irmon;Moniteur infrarouge; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-09 152984]
    R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-04-28 143426]
    R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
    R2 WMDM PMSP Service;WMDM PMSP Service; C:\WINDOWS\system32\MsPMSPSv.exe [2000-06-26 53520]
    R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-05-30 541992]
    R3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-03-18 65536]
    S2 CLTNetCnService;Symantec Lic NetConnect service; C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe /h ccCommon []
    S2 gupdate1c9991a91702be3;Service Google Update (gupdate1c9991a91702be3); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-27 133104]
    S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-24 183280]
    S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
    S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
    S3 fsssvc;Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
    S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
    S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

    -----------------EOF-----------------
    0
  4. seph27 Messages postés 20 Statut Membre
     
    info.txt logfile of random's system information tool 1.06 2009-06-13 23:49:27

    ======Uninstall list======

    -->"C:\Program Files\Creative\SB Live! 24-bit\Program\Ctzapxx.EXE" /U /S /L:FRN
    -->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    -->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1888DAFD-C634-4BC4-865C-3455E24F6177}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1888DAFD-C634-4BC4-865C-3455E24F6177}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{44DC86A0-248D-11D6-9BAF-0090271AF8A4}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{44DC86A0-248D-11D6-9BAF-0090271AF8A4}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5210ED6D-52A9-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5210ED6D-52A9-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5CDC05F7-83E4-4611-AD3C-A6EB2100332A}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5CDC05F7-83E4-4611-AD3C-A6EB2100332A}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5CDDF96A-BC34-4D72-9ABA-E1FFF0C39977}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{67AEFC4C-69E4-11D7-85F4-00E018013273}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{67AEFC4C-69E4-11D7-85F4-00E018013273}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7201B853-5833-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7201B853-5833-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7A900EAB-DA37-4554-AF19-9C337476D05D}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7A900EAB-DA37-4554-AF19-9C337476D05D}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{869D88A5-BD6C-4E39-8536-D95259EAD7E8}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{869D88A5-BD6C-4E39-8536-D95259EAD7E8}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{881A74B3-3D17-4842-B9AF-0761C6E6C4B5}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{881A74B3-3D17-4842-B9AF-0761C6E6C4B5}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A1185190-514F-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A1185190-514F-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B5BAAFAE-3561-463D-8E3F-91761A57ADB8}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B5BAAFAE-3561-463D-8E3F-91761A57ADB8}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C6866B7D-ACFD-4C49-B77B-3B2F8CF54B96}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C6866B7D-ACFD-4C49-B77B-3B2F8CF54B96}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DEBD7BF3-5856-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DEBD7BF3-5856-11D6-A285-00A0CC51B2FE}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EE6699B3-E5AD-4E59-8F2B-207DF630670C}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EE6699B3-E5AD-4E59-8F2B-207DF630670C}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F865C2FE-25E7-11D6-9BAF-0090271AF8A4}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F865C2FE-25E7-11D6-9BAF-0090271AF8A4}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB2292C6-1F0A-11D7-AB2D-0090271A23A2}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB2292C6-1F0A-11D7-AB2D-0090271A23A2}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FC0DD8AE-3DC0-11D7-AB2D-0090271A23A2}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FC0DD8AE-3DC0-11D7-AB2D-0090271A23A2}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD549B7B-3532-4160-80D4-3E3DD39A9AE5}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD549B7B-3532-4160-80D4-3E3DD39A9AE5}\setup.exe" -l0x40c /remove
    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    AC3Filter (remove only)-->C:\Program Files\AC3Filter\uninstall.exe
    adidas OM Widget-->MsiExec.exe /X{FDC6911C-ADA3-C396-0BC8-65B9C11FCBD1}
    Adobe Acrobat 5.0-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
    Adobe AIR-->C:\Program Files\Fichiers communs\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
    Adobe AIR-->MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
    Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Reader 9.1 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
    Adobe Shockwave Player 11-->C:\WINDOWS\system32\adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
    Apple Mobile Device Support-->MsiExec.exe /I{659B48CD-0608-4ED5-94C0-0B6C87114F10}
    Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
    ArcSoft PhotoStudio 5.5-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{230CCBE9-14B0-4008-97AF-30C10F99E42C}\setup.exe" -l0x40c
    Ask Toolbar-->rundll32 C:\PROGRA~1\AskTBar\bar\2.bin\AskTBar.dll,O
    Ask.com Search Assistant 1.0.1-->C:\Program Files\Ask Search Assistant\uninst.exe
    Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
    Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
    BitComet 1.10-->C:\Program Files\BitComet\uninst.exe
    Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
    CanoScan Toolbox 4.5-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{143FB15C-0C48-41E3-9C30-F56FB69BF3D7}\setup.exe" -l0x40c anything
    Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
    CometBird (3.0.7)-->C:\Program Files\CometBird\uninstall\helper.exe
    Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
    Creative MediaSource-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{56F3E1FF-54FE-4384-A153-6CCABA097814}\SETUP.EXE" -l0x40c /remove
    DAEMON Tools Toolbar-->C:\Program Files\DAEMON Tools Toolbar\uninst.exe
    Direct Show Ogg Vorbis Filter (remove only)-->"C:\WINDOWS\system32\OggDSuninst.exe"
    DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
    DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
    DivX Plus DirectShow Filters-->C:\Program Files\DivX\DivXDSFiltersUninstall.exe /DSFILTERS
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    eMule-->"C:\Program Files\eMule\Uninstall.exe"
    Galerie de photos Windows Live-->MsiExec.exe /X{44E54A81-9D91-4AA1-9417-80AFF134F5FF}
    Google Chrome-->"C:\Program Files\Google\Chrome\Application\2.0.172.31\Installer\setup.exe" --uninstall --system-level
    Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
    Google Earth-->MsiExec.exe /X{CC016F21-3970-11DE-B878-005056806466}
    HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
    Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
    HP Image Zone 4.0-->C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
    HP Software Update-->MsiExec.exe /X{457791C5-D702-4143-A7B2-2744BE9573F2}
    Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
    Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
    iTunes-->MsiExec.exe /I{CC5702D7-86E2-45A8-99D7-E8B976ADCC56}
    Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216012FF}
    Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
    Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Logiciel QuickCam de Logitech-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}\setup.exe" -l0x40c
    Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\SETUP.exe" -l0x40c UNINSTALL -removeonly
    Logitech Print Service-->C:\PROGRA~1\Logitech\PRINTS~1\UNWISE.EXE C:\PROGRA~1\Logitech\PRINTS~1\INSTALL.LOG
    Logitech SetPoint-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe" -l0x40c -removeonly
    Manual CanoScan LiDE 35-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6AA4C799-BF98-4573-9C83-0C8E4EA46D14}\setup.exe" -l0x40c
    Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
    Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
    Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
    Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{72AD53CC-CCC0-3757-8480-9EE176866A7C}
    Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
    Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{0BD83598-C2EF-3343-847B-7D2E84599128}
    Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
    Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
    Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
    Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
    Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
    Microsoft Encarta 2008 - Études-->MsiExec.exe /I{08181881-FCA5-44A7-B863-D66037A16AAF}
    Microsoft Encarta Maths-->MsiExec.exe /I{07183840-959A-4B0D-8825-2C533F0DDB19}
    Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
    Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
    Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
    Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
    Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
    Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB}
    Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
    Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
    Microsoft Office Professional Plus 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
    Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
    Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
    Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
    Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
    Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
    Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
    Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
    Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
    Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
    Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
    Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
    Microsoft Search Enhancement Pack-->MsiExec.exe /X{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
    Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
    Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
    Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
    Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
    Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
    Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
    Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
    Mise à jour pour Windows Internet Explorer 8 (KB971180)-->"C:\WINDOWS\ie8updates\KB971180-IE8\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB961503)-->"C:\WINDOWS\$NtUninstallKB961503$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
    MobileMe Control Panel-->MsiExec.exe /I{DDBB28C8-B2AA-45A1-8DCE-059A798509FB}
    Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
    Mozilla Firefox (3.0.11)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    MpcStar 3.5-->C:\Program Files\MpcStar\uninst.exe
    MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    MSXML 6.0 Parser-->MsiExec.exe /I{AEB9948B-4FF2-47C9-990E-47014492A0FE}
    Nero 6 Enterprise Edition-->C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
    neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
    Neuf - Kit de connexion-->C:\Program Files\Neuf\Kit\uninstall.exe
    NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
    OmniPage SE 2.0-->MsiExec.exe /I{79D5997E-BF79-48BB-8B41-9BE59C15C2D7}
    Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
    Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
    Pack Vista Inspirat 2 1.0-->C:\WINDOWS\BricoPacks\Vista Inspirat 2\Remove.exe
    Package de pilotes Windows - Advanced Micro Devices (AmdK8) Processor (04/28/2006 1.3.1.0)-->C:\PROGRA~1\DIFX\7B44739871F4D539FA473F57A832EA4B6A59EF06\DPInst.exe /d /u C:\WINDOWS\system32\DRVSTORE\amdk8_4C9003F79A472E408F11C51BDF222156676824AF\amdk8.inf
    Photosmart 320,370,7400,8100,8400 Series (fra)-->C:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\setup\hpzscr01.exe -datfile hphscr01.dat
    Programme de gestion Camera de Logitech®-->"C:\Program Files\Fichiers communs\Logitech\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT
    Quick Zip 4.60.019-->"C:\Program Files\QuickZip4\unins000.exe"
    QuickTime-->MsiExec.exe /I{C78EAC6F-7A73-452E-8134-DBB2165C5A68}
    RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
    recfree Toolbar-->C:\PROGRA~1\recfree\UNWISE.EXE C:\PROGRA~1\recfree\INSTALL.LOG
    Safari-->MsiExec.exe /I{9C48DCA4-00C2-449C-88D8-B1EE1692B44F}
    Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85}
    Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
    Security Update for 2007 Microsoft Office System (KB960003)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {F04F8702-18D0-458D-921E-146FB7CD38CF}
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Security Update for Microsoft Office Excel 2007 (KB959997)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {9EAC3AEC-5C81-4856-A05B-DE9DC236D740}
    Security Update for Microsoft Office PowerPoint 2007 (KB957789)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D}
    Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85}
    Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
    Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC}
    Security Update for Microsoft Office Word 2007 (KB956358)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2E64517C}
    Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
    Sound Blaster Live! 24-bit-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{734BB64A-5A3D-4624-867D-6358B7068496}\SETUP.EXE" -l0x40c
    ULi AGP Driver -->C:\WINDOWS\system32\UnAGP.EXE RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0DD0650C-5113-4FEE-BDDA-AC0B76FD0BD1}\Setup.exe" -uninst
    ULi LAN Driver-->C:\WINDOWS\system32\UnLAN.EXE RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{143BE018-D8F8-4014-8CB6-AF63F5799D21}\Setup.exe" -uninst
    Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
    Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756}
    Update for Outlook 2007 Junk Email Filter (kb968503)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {5DD98950-4D10-4B79-8BF6-59726705207D}
    UsbFix-->C:\UsbFix\Uninstal.exe
    VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}
    VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027}
    VirtuaGirl HD-->C:\Documents and Settings\Seph\Menu Démarrer\Programmes\VirtuaGirl HD\uninstall.lnk
    vlnet1.com - SiteVacuum-->C:\Program Files\EasySearch\uninst.exe
    Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
    Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
    Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
    Windows Live Contrôle parental-->MsiExec.exe /X{D6A2DDE3-9D7C-412C-932A-756580D29919}
    Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
    Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
    Windows Live Sync-->MsiExec.exe /X{9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E}
    Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
    Windows Live Writer-->MsiExec.exe /X{2231CE39-B963-4B9D-823A-F412ECA637B1}
    Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
    Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
    Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
    XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"

    ======Security center information======

    AV: AntiVir Desktop (disabled) (outdated)

    ======System event log======

    Computer Name: SEPHIROTH
    Event Code: 7035
    Message: Un contrôle Démarrer a correctement été envoyé au service Gestionnaire de connexions d'accès distant.

    Record Number: 4922
    Source Name: Service Control Manager
    Time Written: 20090501191842.000000+120
    Event Type: Informations
    User: AUTORITE NT\SYSTEM

    Computer Name: SEPHIROTH
    Event Code: 7036
    Message: Le service Téléphonie est entré dans l'état : en cours d'exécution.

    Record Number: 4921
    Source Name: Service Control Manager
    Time Written: 20090501191842.000000+120
    Event Type: Informations
    User:

    Computer Name: SEPHIROTH
    Event Code: 7036
    Message: Le service avast! Web Scanner est entré dans l'état : en cours d'exécution.

    Record Number: 4920
    Source Name: Service Control Manager
    Time Written: 20090501191840.000000+120
    Event Type: Informations
    User:

    Computer Name: SEPHIROTH
    Event Code: 7035
    Message: Un contrôle Démarrer a correctement été envoyé au service Service de transfert intelligent en arrière-plan.

    Record Number: 4919
    Source Name: Service Control Manager
    Time Written: 20090501191840.000000+120
    Event Type: Informations
    User: AUTORITE NT\SYSTEM

    Computer Name: SEPHIROTH
    Event Code: 7036
    Message: Le service avast! Mail Scanner est entré dans l'état : en cours d'exécution.

    Record Number: 4918
    Source Name: Service Control Manager
    Time Written: 20090501191840.000000+120
    Event Type: Informations
    User:

    =====Application event log=====

    Computer Name: SEPHIROTH
    Event Code: 0
    Message:
    Record Number: 1168
    Source Name: gusvc
    Time Written: 20090411134700.000000+120
    Event Type: Informations
    User:

    Computer Name: SEPHIROTH
    Event Code: 0
    Message:
    Record Number: 1167
    Source Name: gusvc
    Time Written: 20090411134600.000000+120
    Event Type: Informations
    User:

    Computer Name: SEPHIROTH
    Event Code: 0
    Message:
    Record Number: 1166
    Source Name: gusvc
    Time Written: 20090410210011.000000+120
    Event Type: Informations
    User:

    Computer Name: SEPHIROTH
    Event Code: 0
    Message:
    Record Number: 1165
    Source Name: gusvc
    Time Written: 20090410205900.000000+120
    Event Type: Informations
    User:

    Computer Name: SEPHIROTH
    Event Code: 0
    Message:
    Record Number: 1164
    Source Name: gusvc
    Time Written: 20090410143500.000000+120
    Event Type: Informations
    User:

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Fichiers communs\DivX Shared\;C:\Program Files\QuickTime\QTSystem\
    "windir"=%SystemRoot%
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_LEVEL"=15
    "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 2, AuthenticAMD
    "PROCESSOR_REVISION"=2f02
    "NUMBER_OF_PROCESSORS"=1
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
    "QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

    -----------------EOF-----------------
    0
    1. Utilisateur anonyme
       
      Re

      Repostes le fichier log il manque un bout merci
      0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. seph27 Messages postés 20 Statut Membre
     
    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Seph at 2009-06-13 23:49:11
    Microsoft Windows XP Édition familiale Service Pack 3
    System drive C: has 71 GB (46%) free of 156 GB
    Total RAM: 1023 MB (61% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 23:49:25, on 13/06/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Avira\AntiVir Desktop\sched.exe
    C:\Program Files\Google\Update\GoogleUpdate.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\WINDOWS\system32\CTsvcCDA.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\MsPMSPSv.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
    C:\WINDOWS\system32\hphmon06.exe
    C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
    C:\WINDOWS\system32\LVCOMSX.EXE
    C:\Program Files\Logitech\Video\LogiTray.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\EasySearch\SiteVacuumClient.exe
    C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\WINDOWS\system32\HPZipm12.exe
    C:\WINDOWS\winsvcs32.exe
    C:\WINDOWS\system32\winsystem.exe
    C:\WINDOWS\system32\windir16.exe
    C:\WINDOWS\system32\wbem\wmiapsrv.exe
    C:\Program Files\Logitech\Video\FxSvr2.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
    C:\Documents and Settings\Seph\Bureau\RSIT.exe
    C:\Program Files\trend micro\Seph.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://actus.sfr.fr
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://actus.sfr.fr
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL
    R3 - URLSearchHook: recfree Toolbar - {15c93148-34fe-47e6-88e5-37607a3002f3} - C:\Program Files\recfree\tbrecf.dll
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: recfree Toolbar - {15c93148-34fe-47e6-88e5-37607a3002f3} - C:\Program Files\recfree\tbrecf.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
    O2 - BHO: Google Plus - {C8CD2017-F1E5-4F1A-B58A-EE0B1AF0D0D8} - C:\PROGRA~1\GOOGLE~1\15GOOG~1.DLL
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\2.bin\ASKTBAR.DLL
    O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\2.bin\ASKTBAR.DLL
    O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
    O3 - Toolbar: recfree Toolbar - {15c93148-34fe-47e6-88e5-37607a3002f3} - C:\Program Files\recfree\tbrecf.dll
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe /r
    O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
    O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
    O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb11.exe
    O4 - HKLM\..\Run: [HPHUPD06] C:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
    O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
    O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
    O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
    O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
    O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
    O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
    O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [Windows Manager System] winreger.exe
    O4 - HKLM\..\Run: [DRam prosessor] windir16.exe
    O4 - HKLM\..\Run: [winsvc32] winsvcs32.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Windows Prosessor] winsystem.exe
    O4 - HKLM\..\Run: [SiteVacuum] C:\Program Files\EasySearch\SiteVacuumClient.exe
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
    O4 - HKLM\..\RunServices: [Windows Manager System] winreger.exe
    O4 - HKLM\..\RunServices: [Windows Prosessor] winsystem.exe
    O4 - HKLM\..\RunServices: [DRam prosessor] windir16.exe
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
    O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
    O4 - HKCU\..\Run: [E09FXLRD_165037781] "C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" -m
    O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
    O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe" /tray
    O4 - HKCU\..\Run: [L08FXLRD_6992203] "C:\Program Files\Microsoft Etudes\Microsoft Encarta 2008 - Études DVD\EDICT.EXE" -m
    O4 - HKCU\..\Run: [RocketDock] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe"
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Startup: adidas OM Widget.lnk = C:\Program Files\adidas OM Widget\adidas OM Widget.exe
    O4 - Startup: Anti-Autorun-inf.lnk = C:\Program Files\Prg Chris\Anti-Autorun.inf\Anti-Autorun.inf.exe
    O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
    O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\digital imaging\bin\hpqthb08.exe
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\digital imaging\bin\hpqtra08.exe
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Tout télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
    O8 - Extra context menu item: Télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
    O8 - Extra context menu item: Télécharger toutes les vidéos avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
    O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
    O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll/206 (file missing)
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O18 - Protocol: bw+0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: offline-8876480 - {BD1F8F57-1350-4F6D-A589-FF5C2D51DD33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
    O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
    O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
    O23 - Service: Service Google Update (gupdate1c9991a91702be3) (gupdate1c9991a91702be3) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    0
    1. Utilisateur anonyme
       
      Re

      Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.
      https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2

      Lors du scan coupe ta connection internet.

      * Lance l'installation du programme en exécutant le fichier téléchargé.
      * Double-clique maintenant sur le raccourci de Toolbar-S&D.
      * Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
      * Choisis maintenant l'option 1. Patiente jusqu'à la fin de la recherche.
      * Poste le rapport généré. (C:\TB.txt)
      0
  7. seph27 Messages postés 20 Statut Membre
     
    ok je le fai de suite
    0
    1. Utilisateur anonyme
       
      re

      Je patiente ;-)
      0
  8. seph27 Messages postés 20 Statut Membre
     
    merci voila
    -----------\\ ToolBar S&D 1.2.8 XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
    X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3200+ )
    BIOS : Default System BIOS
    USER : Seph ( Administrator )
    BOOT : Normal boot
    Antivirus : AntiVir Desktop 9.0.1.26 (Not Activated)
    C:\ (Local Disk) - NTFS - Total:152 Go (Free:69 Go)
    D:\ (CD or DVD)
    E:\ (CD or DVD)
    F:\ (Local Disk) - NTFS - Total:114 Go (Free:17 Go)
    G:\ (CD or DVD)
    I:\ (USB)

    "C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
    Option : [1] ( 14/06/2009| 0:14 )

    -----------\\ Recherche de Fichiers / Dossiers ...

    C:\Program Files\AskTBar
    C:\Program Files\AskTBar\bar
    C:\Program Files\AskTBar\PopSwatr
    C:\Program Files\AskTBar\SrchAstt
    C:\Program Files\AskTBar\bar\2.bin
    C:\Program Files\AskTBar\bar\Cache
    C:\Program Files\AskTBar\bar\History
    C:\Program Files\AskTBar\bar\Settings
    C:\Program Files\AskTBar\bar\2.bin\A5POPSWT.DLL
    C:\Program Files\AskTBar\bar\2.bin\ASKTBAR.DLL
    C:\Program Files\AskTBar\bar\Cache\006BF890
    C:\Program Files\AskTBar\bar\Cache\006BFF66
    C:\Program Files\AskTBar\bar\Cache\006C0542.bin
    C:\Program Files\AskTBar\bar\Cache\006C0A53.bin
    C:\Program Files\AskTBar\bar\Cache\006C0EF6.bin
    C:\Program Files\AskTBar\bar\Cache\006C14D2.bin
    C:\Program Files\AskTBar\bar\Cache\files.ini
    C:\Program Files\AskTBar\bar\History\search2
    C:\Program Files\AskTBar\bar\Settings\prevcfg2.htm
    C:\Program Files\AskTBar\PopSwatr\History
    C:\Program Files\AskTBar\PopSwatr\History\allowed
    C:\Program Files\AskTBar\PopSwatr\History\notallow
    C:\Program Files\AskTBar\SrchAstt\2.bin
    C:\Program Files\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL
    C:\Program Files\DAEMON Tools Toolbar
    C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
    C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT
    C:\Program Files\DAEMON Tools Toolbar\Resources
    C:\Program Files\DAEMON Tools Toolbar\uninst.exe
    C:\Program Files\DAEMON Tools Toolbar\_DTLite.xml
    C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT\chrome
    C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT\chrome.manifest
    C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT\components
    C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT\install.rdf
    C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT\chrome\dttoolbar.jar
    C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT\components\DTToolbarFF.dll
    C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT\components\DTToolbarFF.xpt
    C:\Program Files\DAEMON Tools Toolbar\Resources\about.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\AboutWindow.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\AddRadioStation.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\as.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\as.png
    C:\Program Files\DAEMON Tools Toolbar\Resources\astro.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\az.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\b1.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\b1.png
    C:\Program Files\DAEMON Tools Toolbar\Resources\BurnImage.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\buy.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond000.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond001.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond003.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond004.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond005.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond006.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond007.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond008.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond009.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond010.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond011.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond019.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond020.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond021.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond022.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond023.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond024.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond025.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond026.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond037.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond038.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond039.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond040.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond041.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond046.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond048.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond050.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond051.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond052.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond053.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond054.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond055.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond056.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond057.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond058.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond059.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond060.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond061.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond062.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond063.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond064.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond065.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond066.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond067.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond068.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond069.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond075.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond076.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond077.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond078.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond079.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond080.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond084.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond085.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond086.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond087.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond088.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond089.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond090.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond091.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond092.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond093.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond094.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond095.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond108.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond109.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond110.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond111.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond112.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond113.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond120.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond121.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond122.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond126.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond127.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond128.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond129.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond130.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond131.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond132.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond133.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond134.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond135.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond136.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond137.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond138.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond140.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond141.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond142.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond143.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond148.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond149.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond152.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond154.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond155.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond156.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\cond157.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\Config.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\d.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\d2.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\daemon.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\ds.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\dsearch.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\dt.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\DTPro.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\Dwnl.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\emulation.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\features.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\GameCentrix.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\gd.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\genre.xml
    C:\Program Files\DAEMON Tools Toolbar\Resources\globe.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\GrabImage.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\hb.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\hb.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\help.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\ip.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\lang.xml
    C:\Program Files\DAEMON Tools Toolbar\Resources\lingvo.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\m.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\mail.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\mailc.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\mailc_disable.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\mailc_down.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\mailc_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\mailc_under.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\mail_disable.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\mail_down.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\mail_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\mail_under.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\MenuRadioConfig.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\MenuRadioStation.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\MenuRSCur.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\MenuTr.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\next.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\next_down.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\next_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\next_under.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\none.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\none_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\noW.gif
    C:\Program Files\DAEMON Tools Toolbar\Resources\op.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\play.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\play.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\play_down.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\play_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\play_under.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\pragma.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\prev.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\prev_down.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\prev_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\prev_under.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\prod.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\Radio.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioBg.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioBg.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioBgMask.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioDisp.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioDisp_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioDown.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioDown.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioDown_down.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioDown_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioDown_under.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioE.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioG.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioL.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioLDotMask.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioLeft.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioLeftMask.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioLM.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioN.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioR.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioR.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioRM.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioRU.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioVolume.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioVolume_down.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioVolume_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioVolume_under.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\RadioW.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\refresh.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\refresh_down.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\refresh_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\refresh_under.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\Rss.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\Rss1.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\rssClose.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\rssL.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\rssOpen.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\size.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\size_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\skins.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\spt.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\stop.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\stop.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\stop_down.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\stop_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\stop_under.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\style.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\SupportRequest.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\time.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\TitleIcon.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\toolbar.xml
    C:\Program Files\DAEMON Tools Toolbar\Resources\trans.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\Trash.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\Trash_disable.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\Trash_down.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\Trash_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\Trash_under.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\u.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\vol.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\vol.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\vol_back.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\vol_dott.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\vol_dott_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\vol_down.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\vol_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\vol_under.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\wb.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\wBtClose.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\wBtClose_down.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\wBtClose_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\wBtClose_under.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\wBtText.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\wBtText_down.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\wBtText_m.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\wBtText_under.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\Weather_m42.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\Weather_m43.bmp
    C:\Program Files\DAEMON Tools Toolbar\Resources\wi.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\wi0.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\wi1.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\wi10.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\wi11.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\wi12.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\wi13.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\wi2.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\wi3.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\wi4.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\wi5.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\wi6.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\wi7.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\wi8.ico
    C:\Program Files\DAEMON Tools Toolbar\Resources\wi9.ico

    -----------\\ Extensions

    (Seph) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
    (Seph) - {5e594888-3e8e-47da-b2c6-b0b545112f84} => saveimageinfolder
    (Seph) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar
    (Seph) - {81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} => imacros
    (Seph) - {CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B} => cooliris
    (Seph) - {EF522540-89F5-46b9-B6FE-1829E2B572C6} => googlepreview
    (Seph) - {f592709f-ff4a-4862-b659-4afabda56312} => mininova
    (Seph) - {FBF6D7FB-F305-4445-BB3D-FEF66579A033} => multibmtoolbar

    -----------\\ [..\Internet Explorer\Main]

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
    "Search Page"="https://actus.sfr.fr"
    "Search Bar"="https://actus.sfr.fr"
    "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
    "Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
    "Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
    "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
    "Start Page"="https://www.msn.com/fr-fr"

    --------------------\\ Recherche d'autres infections

    --------------------\\ Cracks & Keygens ..

    C:\DOCUME~1\Seph\Bureau\Eminem - Relapse (2009)-MDCTeam\18-Crack A Bottle (Feat. Dr. Dre & 50 Cent.mp3
    C:\DOCUME~1\Seph\Recent\.Norton Internet Security 2009 (ESP-ITA-ENG-GER-FRA)+ Guide to crack.lnk
    C:\DOCUME~1\Seph\Recent\18-Crack A Bottle (Feat. Dr. Dre & 50 Cent.lnk
    C:\DOCUME~1\Seph\Recent\Avast Antivirus Pro Edition 4.8 Keygen.lnk
    C:\DOCUME~1\Seph\Recent\Avast AntiVirus PRO Edition 4.8.1169 + Keygen - TomO.lnk
    C:\DOCUME~1\Seph\Recent\Avast.Antivirus.Pro.v4.7.892.FR.Incl-Keygen.lnk
    C:\DOCUME~1\Seph\Recent\Avast.Antivirus.Pro.v4.8.1169.FR.Incl-Keygen.lnk
    C:\DOCUME~1\Seph\Recent\Avast.Antivirus.Pro.v4.8.1296.FR.Incl-Keygen.[eMule-DivX.com].lnk
    C:\DOCUME~1\Seph\Recent\Avast.Antivirus.Pro.v4.8.1335.FR.Incl-Keygen.[eMule-DivX.com].lnk
    C:\DOCUME~1\Seph\Recent\Kaspersky Internet Security & AntiVirus Anti-Virus 2009 v8.0.0.357 crack + serial + Keygen.lnk
    C:\DOCUME~1\Seph\Recent\Nero Burning ROM 6.6.1.15a keygen.lnk
    C:\DOCUME~1\Seph\Recent\Norton AntiVirus 2008 16.0.0.5 KeyGen Crack.rar.lnk
    C:\DOCUME~1\Seph\Recent\Symantec.Norton.Antivirus.2007.Full.version.+.Keygen.lnk

    1 - "C:\ToolBar SD\TB_1.txt" - 14/06/2009| 0:14 - Option : [1]

    -----------\\ Fin du rapport a 0:14:50,78
    0
    1. Utilisateur anonyme
       
      Re

      *Relance ToolBar S&D
      * Choisis maintenant l'option 2.
      * Poste le rapport généré.
      0
  9. seph27 Messages postés 20 Statut Membre
     
    ok ok
    0
  10. seph27 Messages postés 20 Statut Membre
     
    -----------\\ ToolBar S&D 1.2.8 XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
    X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3200+ )
    BIOS : Default System BIOS
    USER : Seph ( Administrator )
    BOOT : Normal boot
    Antivirus : AntiVir Desktop 9.0.1.26 (Not Activated)
    C:\ (Local Disk) - NTFS - Total:152 Go (Free:69 Go)
    D:\ (CD or DVD)
    E:\ (CD or DVD)
    F:\ (Local Disk) - NTFS - Total:114 Go (Free:17 Go)
    G:\ (CD or DVD)
    I:\ (USB)

    "C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
    Option : [2] ( 14/06/2009| 0:20 )

    -----------\\ SUPPRESSION

    Echec ! - C:\Program Files\AskTBar\bar
    Supprime! - C:\Program Files\AskTBar\PopSwatr
    Echec ! - C:\Program Files\AskTBar\SrchAstt
    Echec ! - C:\Program Files\AskTBar\bar\2.bin
    Echec ! - C:\Program Files\AskTBar\bar\2.bin\ASKTBAR.DLL
    Echec ! - C:\Program Files\AskTBar\SrchAstt\2.bin
    Echec ! - C:\Program Files\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL
    Supprime! - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
    Supprime! - C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT
    Supprime! - C:\Program Files\DAEMON Tools Toolbar\Resources
    Supprime! - C:\Program Files\DAEMON Tools Toolbar\uninst.exe
    Supprime! - C:\Program Files\DAEMON Tools Toolbar\_DTLite.xml
    Echec ! - C:\Program Files\AskTBar
    Supprime! - C:\Program Files\DAEMON Tools Toolbar

    -----------\\ DEUXIEME PASSAGE

    Echec ! - C:\Program Files\AskTBar\bar
    Echec ! - C:\Program Files\AskTBar\SrchAstt
    Echec ! - C:\Program Files\AskTBar\bar\2.bin
    Echec ! - C:\Program Files\AskTBar\bar\2.bin\ASKTBAR.DLL
    Echec ! - C:\Program Files\AskTBar\SrchAstt\2.bin
    Echec ! - C:\Program Files\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL
    Echec ! - C:\Program Files\AskTBar

    -----------\\ Recherche de Fichiers / Dossiers ...

    C:\Program Files\AskTBar
    C:\Program Files\AskTBar\bar
    C:\Program Files\AskTBar\SrchAstt
    C:\Program Files\AskTBar\bar\2.bin
    C:\Program Files\AskTBar\bar\2.bin\ASKTBAR.DLL
    C:\Program Files\AskTBar\SrchAstt\2.bin
    C:\Program Files\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL

    -----------\\ Extensions

    (Seph) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
    (Seph) - {5e594888-3e8e-47da-b2c6-b0b545112f84} => saveimageinfolder
    (Seph) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar
    (Seph) - {81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} => imacros
    (Seph) - {CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B} => cooliris
    (Seph) - {EF522540-89F5-46b9-B6FE-1829E2B572C6} => googlepreview
    (Seph) - {f592709f-ff4a-4862-b659-4afabda56312} => mininova
    (Seph) - {FBF6D7FB-F305-4445-BB3D-FEF66579A033} => multibmtoolbar

    -----------\\ [..\Internet Explorer\Main]

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
    "Search Page"="https://actus.sfr.fr"
    "Search Bar"="https://actus.sfr.fr"
    "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
    "Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
    "Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
    "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
    "Start Page"="https://www.msn.com/fr-fr/"

    --------------------\\ Recherche d'autres infections

    --------------------\\ Cracks & Keygens ..

    C:\DOCUME~1\Seph\Bureau\Eminem - Relapse (2009)-MDCTeam\18-Crack A Bottle (Feat. Dr. Dre & 50 Cent.mp3
    C:\DOCUME~1\Seph\Recent\.Norton Internet Security 2009 (ESP-ITA-ENG-GER-FRA)+ Guide to crack.lnk
    C:\DOCUME~1\Seph\Recent\18-Crack A Bottle (Feat. Dr. Dre & 50 Cent.lnk
    C:\DOCUME~1\Seph\Recent\Avast Antivirus Pro Edition 4.8 Keygen.lnk
    C:\DOCUME~1\Seph\Recent\Avast AntiVirus PRO Edition 4.8.1169 + Keygen - TomO.lnk
    C:\DOCUME~1\Seph\Recent\Avast.Antivirus.Pro.v4.7.892.FR.Incl-Keygen.lnk
    C:\DOCUME~1\Seph\Recent\Avast.Antivirus.Pro.v4.8.1169.FR.Incl-Keygen.lnk
    C:\DOCUME~1\Seph\Recent\Avast.Antivirus.Pro.v4.8.1296.FR.Incl-Keygen.[eMule-DivX.com].lnk
    C:\DOCUME~1\Seph\Recent\Avast.Antivirus.Pro.v4.8.1335.FR.Incl-Keygen.[eMule-DivX.com].lnk
    C:\DOCUME~1\Seph\Recent\Kaspersky Internet Security & AntiVirus Anti-Virus 2009 v8.0.0.357 crack + serial + Keygen.lnk
    C:\DOCUME~1\Seph\Recent\Nero Burning ROM 6.6.1.15a keygen.lnk
    C:\DOCUME~1\Seph\Recent\Norton AntiVirus 2008 16.0.0.5 KeyGen Crack.rar.lnk
    C:\DOCUME~1\Seph\Recent\Symantec.Norton.Antivirus.2007.Full.version.+.Keygen.lnk

    1 - "C:\ToolBar SD\TB_1.txt" - 14/06/2009| 0:14 - Option : [1]
    2 - "C:\ToolBar SD\TB_2.txt" - 14/06/2009| 0:20 - Option : [2]

    -----------\\ Fin du rapport a 0:20:54,57
    0
    1. Utilisateur anonyme
       
      Re

      Télécharges OTMoveIt3 (de Old_Timer) sur ton Bureau.

      http://www.geekstogo.com/forum/files/file/402-otm-oldtimers-move-it/

      ! Déconnectes toi et fermes toute tes applications en cours !

      Double cliques sur "OTMoveIt" pour ouvrir le programme.
      Puis copies ce qui se trouve en gras ci-dessous:


      :Processes
      explorer.exe

      :Services

      :Reg
      [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
      "Windows Manager System"=-
      [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
      "DRam prosessor"=-
      [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]
      "Windows Manager System"=-
      [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]
      "DRam prosessor"=-



      :files
      C:\WINDOWS\system32\winsystem.exe
      c:\program files\asktbar


      :Commands
      [purity]
      [emptytemp]
      [start explorer]
      [Reboot]

      et colles le dans le cadre de gauche de OTMoveIt3 :
      Paste Instructions for Items to be Moved.
      (ne touche à rien d'autre !)

      -> cliques sur MoveIt! pour lancer la suppression.
      -> laisses travailler l'outil ...

      (Note : ton bureau va disparaître puis réapparaître, c'est normal.)

      -> Une fois finis, un petite fenêtre s'ouvre : cliques sur " Yes " .

      Ton PC va redémarrer de lui même ...

      -->Postes le contenu du rapport qui se trouve dans le dossier "C:\_OTMoveIt\MovedFiles"
      0
  11. seph27 Messages postés 20 Statut Membre
     
    ========== PROCESSES ==========
    Process explorer.exe killed successfully.
    ========== SERVICES/DRIVERS ==========
    ========== REGISTRY ==========
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Windows Manager System deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DRam prosessor deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices\\Windows Manager System deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices\\DRam prosessor deleted successfully.
    ========== FILES ==========
    C:\WINDOWS\system32\winsystem.exe moved successfully.
    c:\program files\AskTBar\SrchAstt\2.bin moved successfully.
    c:\program files\AskTBar\SrchAstt moved successfully.
    c:\program files\AskTBar\bar\2.bin moved successfully.
    c:\program files\AskTBar\bar moved successfully.
    c:\program files\AskTBar moved successfully.
    ========== COMMANDS ==========
    File delete failed. C:\DOCUME~1\Seph\LOCALS~1\Temp\IadHide5.dll scheduled to be deleted on reboot.
    File delete failed. C:\DOCUME~1\Seph\LOCALS~1\Temp\~DFC782.tmp scheduled to be deleted on reboot.
    User's Temp folder emptied.
    User's Internet Explorer cache folder emptied.
    File delete failed. C:\Documents and Settings\Seph\Local Settings\Temporary Internet Files\Content.IE5\6DQBB5IH\PollingNotifications[1].aspx scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\Seph\Local Settings\Temporary Internet Files\Content.IE5\6DQBB5IH\UpdateClientHartbit[1].aspx scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\Seph\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    User's Temporary Internet Files folder emptied.
    Local Service Temp folder emptied.
    File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    Local Service Temporary Internet Files folder emptied.
    Network Service Temp folder emptied.
    File delete failed. C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    Network Service Temporary Internet Files folder emptied.
    File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_224.dat scheduled to be deleted on reboot.
    Windows Temp folder emptied.
    Java cache emptied.
    FireFox cache emptied.
    Temp folders emptied.
    Explorer started successfully

    OTM by OldTimer - Version 2.1.0.1 log created on 06142009_002730

    Files moved on Reboot...
    DllUnregisterServer procedure not found in C:\DOCUME~1\Seph\LOCALS~1\Temp\IadHide5.dll
    C:\DOCUME~1\Seph\LOCALS~1\Temp\IadHide5.dll NOT unregistered.
    C:\DOCUME~1\Seph\LOCALS~1\Temp\IadHide5.dll moved successfully.
    File C:\DOCUME~1\Seph\LOCALS~1\Temp\~DFC782.tmp not found!
    C:\Documents and Settings\Seph\Local Settings\Temporary Internet Files\Content.IE5\6DQBB5IH\PollingNotifications[1].aspx moved successfully.
    C:\Documents and Settings\Seph\Local Settings\Temporary Internet Files\Content.IE5\6DQBB5IH\UpdateClientHartbit[1].aspx moved successfully.
    File C:\WINDOWS\temp\Perflib_Perfdata_224.dat not found!

    Registry entries deleted on Reboot...
    0
    1. Utilisateur anonyme
       
      Re

      Un petit nettoyage avec ceci(utilitaire à conserver et à passer une fois par semaine)

      Télécharge Malwarebytes anti malware ici
      http://www.malwarebytes.org/mbam.php

      * Installe le (choisis bien "français" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

      (NB : S'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : https://www.malekal.com/tutorial-aboutbuster/

      * Potasse le tuto pour te familiariser avec le prg :

      https://forum.pcastuces.com/sujet.asp?f=31&s=3

      (cela dis, il est très simple d’utilisation).

      relance malwarebytes en suivant scrupuleusement ces consignes :

      ! Déconnecte toi et ferme toutes applications en cours !

      * Lance Malwarebyte's .

      Fais un examen dit "Complet" .

      --> Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
      --> à la fin tu cliques sur "résultat" .
      --> Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

      Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !


      Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)
      0
  12. seph27 Messages postés 20 Statut Membre
     
    ok a tou de suite
    0
  13. seph27 Messages postés 20 Statut Membre
     
    dsl du retard :x
    voila
    Malwarebytes' Anti-Malware 1.37
    Version de la base de données: 2273
    Windows 5.1.2600 Service Pack 3

    14/06/2009 01:33:44
    mbam-log-2009-06-14 (01-33-44).txt

    Type de recherche: Examen complet (C:\|F:\|)
    Eléments examinés: 150385
    Temps écoulé: 46 minute(s), 10 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 1
    Clé(s) du Registre infectée(s): 12
    Valeur(s) du Registre infectée(s): 2
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 3

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    C:\Program Files\GooglePlusVideos\15.GooglePlusVideos.dll (Hijack.Search) -> Delete on reboot.

    Clé(s) du Registre infectée(s):
    HKEY_CLASSES_ROOT\googleplusvideos.bhobridge (Hijack.Search) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\{1e3cfdfe-79c8-4225-81b9-20fc99da6972} (Hijack.Search) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\{c8cd2017-f1e5-4f1a-b58a-ee0b1af0d0d8} (Hijack.Search) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c8cd2017-f1e5-4f1a-b58a-ee0b1af0d0d8} (Hijack.Search) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c8cd2017-f1e5-4f1a-b58a-ee0b1af0d0d8} (Hijack.Search) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\TypeLib\{a5b0779f-0a3e-482e-bb31-b7b871599f60} (Hijack.Search) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\Interface\{5106ed5c-7245-4f5a-abca-67b0c15333d2} (Hijack.Search) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\Interface\{99e0eee5-14c5-46d3-878b-7da2663e1a92} (Hijack.Search) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\Interface\{aef427e4-b0d8-4457-b437-c72f0921fe39} (Hijack.Search) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\Interface\{ec26f9c5-812f-4cec-90e2-343e85564ddd} (Hijack.Search) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\googleplusvideos.bhobridge.1 (Hijack.Search) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{28abc5c0-4fcb-33cf-aax5-35gx1c642122} (Backdoor.IRCBot) -> Quarantined and deleted successfully.

    Valeur(s) du Registre infectée(s):
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\OLE\DRam prosessor (Trojan.Agent) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\winsvc32 (Backdoor.Bot) -> Quarantined and deleted successfully.

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    C:\Program Files\GooglePlusVideos\15.GooglePlusVideos.dll (Hijack.Search) -> Delete on reboot.
    C:\WINDOWS\Config\csrss.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\winsvcs32.exe (Backdoor.Bot) -> Delete on reboot.
    0
  14. seph27 Messages postés 20 Statut Membre
     
    pour les virus autorun.inf il seront supprimé vu ke jen ai encor un sur une clé
    0
  15. seph27 Messages postés 20 Statut Membre
     
    jai plu de virus merci mille fois cetai cooul :)
    0
    1. Utilisateur anonyme
       
      Bonjour

      1)Cette clé Usb sur laquelle est présent l'autorun , était elle branchée lors du passage de
      l'outil UsbFix?

      2)Il reste a nettoyer avec ceci:
      C - Ccleaner :

      https://filehippo.com/download_ccleaner/

      .enregistres le sur le bureau
      .double-cliques sur le fichier pour lancer l'installation
      .sur la fenêtre de l'installation langage bien choisir français et OK
      .cliques sur suivant
      .lis la licence et j'accepte
      .cliques sur suivant
      .la tu ne gardes de coché que mettre un raccourci sur le bureau et puis contrôler automatiquement les mises à jour de Ccleaner
      .cliques sur installer
      .cliques sur fermer
      .double-cliques sur l'icône de Ccleaner pour l'ouvrir
      .une fois ouvert tu cliques sur option et puis avancé
      .tu décoches effacer uniquement les fichiers, du dossier temp de windows plus vieux que 48 heures
      .cliques sur nettoyeur
      .cliques sur windows et dans la colonne avancé
      .coches la première case vieilles données du perfetch que celle-la ce qui te donnes la case vielles données du perfetch et la case avancé qui c'est coché automatiquement mais que celle-la
      .cliques sur analyse une fois l'analyse terminé
      .cliques sur lancer le nettoyage et sur la demande de confirmation OK il vas falloir que tu le refasses une autre fois une fois fini vérifies en appuyant de nouveau sur analyse pour être sur qu'il n'y est plus rien
      .cliques maintenant sur registre et puis sur rechercher les erreurs
      .laisses tout cochées et cliques sur réparer les erreurs sélectionnées
      .il te demande de sauvegarder OUI
      .tu lui donnes un nom pour pouvoir la retrouver et enregistre
      .cliques sur corriger toutes les erreurs sélectionnées et sur la demande de confirmation OK
      .il supprime et fermer tu vérifies en relançant rechercher les erreurs
      .tu retournes dans option et tu recoches la case effacer uniquement les fichiers, du dossier temp de windows plus vieux que 48 heures et sur nettoyeur, windows sous avancé tu décoches la première case vieilles données du perfetch
      .tu peux fermer Ccleaner.

      Tuto : https://jesses.pagesperso-orange.fr/Docs/Logiciels/CCleaner.htm

      3)Pour désinstaller les outils de désinfection inutiles maintenant

      Télécharge OTCleanIt sur ton Bureau: http://www.geekstogo.com/forum/files/file/403-otc-oldtimers-clean-it/

      Lance OTCleanIt avec un double-clic (sous Vista, lance-le en cliquant droit sur OTCleanIt.exe et en sélectionnant "exécuter en tant qu'administrateur")

      Appuie sur le bouton "CleanUp!"

      A la question "begin cleanup process?", réponds "YES"

      A la fin de l'opération, si OTCleanIt demande de redémarrer ("Do you want to reboot now?"), ferme ce que tu es en train de faire (internet, documents divers...) et clique sur "YES":

      Au redémarrage, OTCleanIt aura supprimé les outils de désinfection, et se sera même autodétruit!

      4)Purge la restauration comme ceci :
      http://service1.symantec.com/support/inter/tsgeninfointl.Nsf/fr_docid/20020830101856924

      Cela supprime toutes traces des diverses infections ;et permettra une éventuelle restauration sans infections




      0
  16. lamarie27 Messages postés 15 Statut Membre
     
    Guillaume5188 bonjour peut tu m'aider pour le meme genre de virus stp merci d'avance
    0
    1. Utilisateur anonyme
       
      Re

      Ouvre ton propre post
      En haut à droite"Poser votre question"

      @+
      0