Virus

Fermé

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009 - 3 juil. 2009 à 19:08
Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009 - 2 août 2009 à 12:21

Bonjour,
Pouvez-vous me dire d'après ces rapport si je suis infecté:

Voila les 2 rapports de rsit:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Anthony at 2009-07-03 11:12:29
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2
System drive C: has 68 GB (46%) free of 148 GB
Total RAM: 3066 MB (39% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:12:41, on 03/07/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
C:\Windows\System32\rundll32.exe
C:\Windows\PLFSetI.exe
C:\Program Files\Launch Manager\QtZgAcer.EXE
C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe
C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\OrangeHSS\Systray\SystrayApp.exe
C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Users\Anthony\AppData\Local\emkgqem.exe
C:\Program Files\Privoxy\privoxy.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Secunia\PSI\psi.exe
C:\Windows\ehome\ehmsas.exe
C:\Users\Anthony\AppData\Local\Temp\RtkBtMnt.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
C:\Program Files\Opera\opera.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\VideoLAN\VLC\vlc.exe
C:\Program Files\NCH Software\Prism\prism.exe
C:\Program Files\NCH Swift Sound\Switch\switch.exe
C:\Program Files\Acer\Empowering Technology\NotificationCenter\Framework.NotificationCenter.exe
C:\Windows\system32\conime.exe
C:\Windows\explorer.exe
C:\Users\Anthony\Desktop\RSIT.exe
C:\Users\Anthony\Desktop\RSIT.exe
C:\Program Files\trend micro\Anthony.exe
C:\Users\Anthony\AppData\Roaming\NCH Software\Components\aacdec2\aacdec2.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60341
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://gamespace.daemon-tools.cc/fra/home
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=2&o=vp32&d=1008&m=aspire_6930g
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60341
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60341
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60341
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60341
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = socks=
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = plimus.com,www.plimus.com,regnow.com,www.regnow.com,
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
O4 - HKLM\..\Run: [eAudio] "C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe"
O4 - HKLM\..\Run: [BkupTray] "C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [PLFSetI] C:\Windows\PLFSetI.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [ePower_DMC] C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [ZPdtWzdVitaKey MC3000] "C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe" show
O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe"
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [EPSON Stylus DX7400 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU "C:\Users\Anthony\AppData\Local\Temp\E_SD96E.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [emkgqem] "c:\users\anthony\appdata\local\emkgqem.exe" emkgqem
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Acer VCM.lnk = ?
O4 - Global Startup: Privoxy.lnk = C:\Program Files\Privoxy\privoxy.exe
O9 - Extra button: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra 'Tools' menuitem: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O16 - DPF: {C8AEB218-8B7A-4E15-AC17-0EE8D99B80EB} (GameTap Web Updater) - http://archives.gametap.com/static/cab_headless/GameTapWebUpdater.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O20 - Winlogon Notify: AWinNotifyVitaKey MC3000 - C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll
O20 - Winlogon Notify: spba - C:\Program Files\Common Files\SPBA\homefus2.dll
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: Google Desktop Manager 5.7.808.7150 (GoogleDesktopManager-080708-050100) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iGroupTec Service (IGBASVC) - Unknown owner - C:\Program Files\Acer\Acer Bio Protection\BASVC.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: RdnaoFlSvc - Unknown owner - C:\Program Files\rnamfler\naofsvc.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
End of file - 14899 bytes

======Scheduled tasks folder======

C:\Windows\tasks\AWC Startup.job

C:\Windows\tasks\GlaryInitialize.job

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-353345768-1449528821-785876582-1000.job

C:\Windows\tasks\User_Feed_Synchronization-{AF75C2AA-E72B-4008-A2E3-674E0DEC85BA}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

&Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll [2007-10-19 817936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]

AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-07-17 279944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]

Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]

Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - Acer eDataSecurity Management - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-05-14 142896]

{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-07-17 279944]

{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-04-23 937416]

{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll [2007-10-19 817936]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]

"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-07-20 182808]

"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-05-07 6139904]

"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-04-25 1049896]

"eDataSecurity Loader"=C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [2008-05-14 526896]

"eAudio"=C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [2008-05-30 544768]

"BkupTray"=C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe [2008-04-25 28672]

"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-07-18 13543968]

"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-07-18 92704]

"PLFSetI"=C:\Windows\PLFSetI.exe [2007-10-23 200704]

"LManager"=C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE [2008-06-04 817672]

"ePower_DMC"=C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [2008-08-01 405504]

"ZPdtWzdVitaKey MC3000"=C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe [2008-10-22 3676160]

"ArcadeDeluxeAgent"=C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [2008-07-24 147456]

"CLMLServer"=C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe [2008-07-24 167936]

"WarReg_PopUp"=C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe [2008-01-29 303104]

"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-11-26 24064]

"SystrayORAHSS"=C:\Program Files\OrangeHSS\Systray\SystrayApp.exe [2006-12-12 90112]

"PlayMovie"=C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe [2008-07-18 167936]

"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-04-03 148888]

"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]

"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]

"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]

"Skytel"=C:\Windows\Skytel.exe [2007-11-20 1826816]

"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696]

"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-05-30 292136]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]

"EPSON Stylus DX7400 Series"=C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE [2007-04-12 182272]

"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]

"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]

"emkgqem"=c:\users\anthony\appdata\local\emkgqem.exe [2009-06-28 258048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]

C:\Program Files\Electronic Arts\EADM\Core.exe [2009-04-29 3338240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InvisibleIPMap]

[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IPPrivacy]

[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Anthony^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MaxTV.lnk]

[]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

Acer VCM.lnk - C:\Program Files\Acer\Acer VCM\AcerVCM.exe

Privoxy.lnk - C:\Program Files\Privoxy\privoxy.exe

C:\Users\Anthony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

OneNote 2007 - Capture d'écran et lancement.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AWinNotifyVitaKey MC3000]

C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll [2008-10-22 3197952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\spba]

C:\Program Files\Common Files\SPBA\homefus2.dll [2008-03-25 567560]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]

"notification packages"=scecli

C:\Program Files\Acer\Acer Bio Protection\PwdFilter

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"FilterAdministratorToken"=1

"EnableUIADesktopToggle"=0

"DisableCAD"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\Program Files\Free Music Zilla\FMZilla.exe"="C:\Program Files\Free Music Zilla\FMZilla.exe:*:Enabled:FMZilla"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2009-07-03 11:05:19 ----D---- C:\rsit

2009-06-28 14:41:06 ----D---- C:\Users\Anthony\AppData\Roaming\live-player

2009-06-28 14:40:57 ----D---- C:\Program Files\Live-Player

2009-06-27 20:25:42 ----D---- C:\Windows\system32\temp

2009-06-27 19:43:01 ----D---- C:\Program Files\Burn4Free

2009-06-27 19:37:07 ----D---- C:\ProgramData\DAEMON Tools Lite

2009-06-27 19:36:49 ----D---- C:\Program Files\DAEMON Tools Toolbar

2009-06-27 19:36:43 ----D---- C:\Program Files\DAEMON Tools Lite

2009-06-27 13:09:57 ----D---- C:\Users\Anthony\AppData\Roaming\DAEMON Tools Lite

2009-06-27 13:07:04 ----A---- C:\Windows\JCMKR32.INI

2009-06-27 13:06:53 ----D---- C:\ProgramData\LightScribe

2009-06-27 11:31:06 ----D---- C:\Program Files\Secunia

2009-06-21 13:04:15 ----D---- C:\Program Files\AskBarDis

2009-06-10 07:21:35 ----A---- C:\Windows\system32\localspl.dll

2009-06-10 07:21:34 ----A---- C:\Windows\system32\mshtml.dll

2009-06-10 07:21:33 ----A---- C:\Windows\system32\wininet.dll

2009-06-10 07:21:33 ----A---- C:\Windows\system32\urlmon.dll

2009-06-10 07:21:33 ----A---- C:\Windows\system32\iertutil.dll

2009-06-10 07:21:33 ----A---- C:\Windows\system32\ieframe.dll

2009-06-10 07:21:33 ----A---- C:\Windows\system32\iedkcs32.dll

2009-06-10 07:21:32 ----A---- C:\Windows\system32\jsproxy.dll

2009-06-10 07:21:32 ----A---- C:\Windows\system32\ieui.dll

2009-06-10 07:21:32 ----A---- C:\Windows\system32\iesetup.dll

2009-06-10 07:21:32 ----A---- C:\Windows\system32\iernonce.dll

2009-06-10 07:21:32 ----A---- C:\Windows\system32\ie4uinit.exe

2009-06-10 07:21:31 ----A---- C:\Windows\system32\rpcrt4.dll

2009-06-05 17:05:11 ----D---- C:\Users\Anthony\AppData\Roaming\Apple Computer

2009-06-05 17:04:47 ----A---- C:\Windows\system32\GEARAspi.dll

2009-06-05 17:04:35 ----D---- C:\Program Files\iPod

2009-06-05 17:04:32 ----D---- C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}

2009-06-05 17:04:32 ----D---- C:\Program Files\iTunes

2009-06-05 17:03:43 ----D---- C:\Program Files\QuickTime

2009-06-05 17:03:42 ----D---- C:\ProgramData\Apple Computer

2009-06-05 17:03:24 ----D---- C:\Program Files\Apple Software Update

2009-06-05 17:02:10 ----D---- C:\Program Files\Common Files\Apple

2009-06-04 20:44:31 ----D---- C:\Program Files\dvda-author-08.12

2009-06-04 20:31:36 ----D---- C:\Program Files\dvda-author-09.03

======List of files/folders modified in the last 1 months======

2009-07-03 11:12:40 ----D---- C:\Windows\Temp

2009-07-03 11:12:31 ----D---- C:\Program Files\Trend Micro

2009-07-03 10:52:31 ----SHD---- C:\System Volume Information

2009-07-03 10:47:25 ----A---- C:\Users\Anthony\AppData\Roaming\acervcmtmp.ini

2009-07-02 20:35:25 ----D---- C:\Windows

2009-07-02 20:35:09 ----SHD---- C:\Users\Anthony\AppData\Roaming\.#

2009-07-02 16:50:28 ----D---- C:\Users\Anthony\AppData\Roaming\Azureus

2009-07-02 15:50:20 ----D---- C:\Users\Anthony\AppData\Roaming\NCH Swift Sound

2009-07-02 15:50:20 ----D---- C:\Program Files\NCH Swift Sound

2009-07-02 15:46:16 ----D---- C:\Windows\System32

2009-07-02 15:46:16 ----D---- C:\Windows\inf

2009-07-02 15:46:16 ----A---- C:\Windows\system32\PerfStringBackup.INI

2009-07-02 15:03:35 ----D---- C:\Windows\Microsoft.NET

2009-07-02 15:03:25 ----SHD---- C:\Windows\Installer

2009-07-02 15:00:07 ----D---- C:\Windows\Prefetch

2009-06-30 07:18:53 ----D---- C:\Program Files\Yahoo!

2009-06-30 07:18:52 ----D---- C:\Program Files\Recuva

2009-06-28 14:40:57 ----D---- C:\Program Files

2009-06-27 19:37:07 ----D---- C:\ProgramData

2009-06-27 13:10:13 ----D---- C:\Windows\system32\drivers

2009-06-27 12:08:28 ----D---- C:\Users\Anthony\AppData\Roaming\Spyware Terminator

2009-06-27 12:08:28 ----D---- C:\Program Files\Spyware Terminator

2009-06-26 07:14:50 ----D---- C:\Windows\winsxs

2009-06-26 07:14:50 ----D---- C:\Program Files\Internet Explorer

2009-06-25 19:54:10 ----D---- C:\Windows\system32\catroot

2009-06-22 18:09:09 ----D---- C:\Windows\system32\catroot2

2009-06-22 17:48:18 ----SHD---- C:\Boot

2009-06-22 17:48:18 ----D---- C:\Windows\system32\config

2009-06-21 18:18:31 ----D---- C:\Program Files\Steam

2009-06-21 18:17:58 ----D---- C:\Program Files\Common Files\Steam

2009-06-21 17:46:11 ----D---- C:\ProgramData\NVIDIA

2009-06-21 13:04:15 ----D---- C:\Users\Anthony\AppData\Roaming\Mozilla

2009-06-21 13:04:07 ----D---- C:\Windows\Tasks

2009-06-21 13:04:06 ----D---- C:\Program Files\Glary Utilities

2009-06-21 12:50:39 ----D---- C:\Users\Anthony\AppData\Roaming\GlarySoft

2009-06-21 11:48:48 ----D---- C:\Program Files\JkDefrag

2009-06-20 11:54:19 ----D---- C:\Windows\system32\LogFiles

2009-06-17 20:44:26 ----D---- C:\Program Files\Acer GameZone

2009-06-17 07:30:19 ----D---- C:\Windows\ehome

2009-06-17 07:27:46 ----D---- C:\Program Files\Zilla Anonymous Surfer

2009-06-17 07:26:24 ----D---- C:\ProgramData\Microsoft Help

2009-06-15 20:04:10 ----D---- C:\Program Files\a-squared Free

2009-06-13 22:19:06 ----D---- C:\Windows\Debug

2009-06-13 22:14:12 ----D---- C:\Users\Anthony\AppData\Roaming\vlc

2009-06-13 22:05:37 ----D---- C:\Program Files\IP Privacy

2009-06-13 21:53:11 ----D---- C:\Program Files\Invisible IP Map

2009-06-13 21:51:07 ----A---- C:\Windows\wininit.ini

2009-06-13 21:47:53 ----D---- C:\Program Files\adslTV

2009-06-13 21:19:49 ----A---- C:\Windows\system32\PCProxy.ini

2009-06-11 19:07:10 ----D---- C:\Windows\system32\migration

2009-06-11 18:27:51 ----D---- C:\Program Files\Microsoft Works

2009-06-05 17:04:47 ----DC---- C:\Windows\system32\DRVSTORE

2009-06-05 17:03:27 ----D---- C:\Windows\system32\Tasks

2009-06-05 17:02:10 ----D---- C:\Program Files\Common Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [2009-02-13 11608]

R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2009-03-30 96104]

R1 SbFw;SbFw; C:\Windows\system32\drivers\SbFw.sys [2008-10-31 270888]

R1 sbhips;Sunbelt HIPS Driver; C:\Windows\system32\drivers\sbhips.sys [2008-06-21 66600]

R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\Windows\system32\drivers\sp_rsdrv2.sys [2009-04-29 142592]

R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2009-02-13 28376]

R1 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys [2009-03-29 5632]

R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; \??\C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl [2008-07-18 61424]

R2 int15;int15; \??\C:\Windows\system32\drivers\int15.sys [2007-01-26 69632]

R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]

R2 NTIPPKernel;NTIPPKernel; \??\C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys [2008-01-16 122368]

R2 PSDNServ;PSDNServ; C:\Windows\system32\DRIVERS\PSDNServ.sys [2008-05-14 16944]

R2 psdvdisk;PSDVdisk; C:\Windows\system32\DRIVERS\PSDVdisk.sys [2008-05-14 60464]

R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2007-10-19 8704]

R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]

R3 DKbFltr;Dritek Keyboard Filter Driver; C:\Windows\system32\DRIVERS\DKbFltr.sys [2006-11-02 21264]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400]

R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2008-03-26 980992]

R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2008-03-26 207872]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-05-07 2134424]

R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E60x86.sys [2008-12-16 48128]

R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-11-17 3668480]

R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-01-30 14848]

R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2008-06-25 44064]

R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-07-18 7545824]

R3 PSI;PSI; C:\Windows\system32\DRIVERS\psi_mf.sys [2009-06-17 12648]

R3 RTSTOR;Realtek USB 2.0 Card Reader; C:\Windows\system32\drivers\RTSTOR.SYS [2009-03-26 64000]

R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport; C:\Windows\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]

R3 StillCam;Pilote d'appareil photo numérique série; C:\Windows\system32\DRIVERS\serscan.sys [2008-01-21 9216]

R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-04-25 199472]

R3 TcUsb;TC USB Kernel Driver; C:\Windows\System32\Drivers\tcusb.sys [2008-04-28 50576]

R3 usbvideo;Périphérique vidéo USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]

R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2008-03-26 661504]

R3 winbondcir;Winbond IR Transceiver; C:\Windows\system32\DRIVERS\winbondcir.sys [2007-03-28 43008]

R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]

S3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2008-05-19 912384]

S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]

S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]

S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2008-01-21 200704]

S3 KMWDFILTER;HIDUASDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys [2008-10-09 17408]

S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]

S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]

S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]

S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]

S3 PCAMp50;PCAMp50 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCAMp50.sys [2006-11-28 28224]

S3 PCASp50;PCASp50 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCASp50.sys [2006-11-28 27072]

S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys []

S3 SBRE;SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys []

S3 SRS_SSCFilter;SRS Labs Audio Sandbox (WDM); C:\Windows\system32\drivers\srs_sscfilter_i386.sys [2007-07-26 39808]

S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2005-08-17 58352]

S3 sscdmdfl;SAMSUNG CDMA Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2005-08-17 8272]

S3 sscdmdm;SAMSUNG CDMA Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2005-08-17 93872]

S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]

S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-21 39936]

S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]

S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]

S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 a2free;a-squared Free Service; C:\Program Files\a-squared Free\a2service.exe [2009-02-25 425080]

R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-04-01 108289]

R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-03-02 185089]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-05-29 144712]

R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]

R2 BUNAgentSvc;NTI Backup Now 5 Agent Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [2008-03-03 16384]

R2 CLHNService;CLHNService; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [2008-01-16 81504]

R2 eDataSecurity Service;eDataSecurity Service; C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [2008-05-14 500784]

R2 ETService;Empowering Technology Service; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [2008-06-02 24576]

R2 EvtEng;Intel® PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2008-10-16 860160]

R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [2006-12-12 57344]

R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-07-20 354840]

R2 IGBASVC;iGroupTec Service; C:\Program Files\Acer\Acer Bio Protection\BASVC.exe [2008-10-22 3602432]

R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]

R2 MobilityService;MobilityService; C:\Acer\Mobility Center\MobilityService.exe [2007-12-06 110592]

R2 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-04-25 45056]

R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-04-25 131072]

R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-07-18 196608]

R2 RdnaoFlSvc;RdnaoFlSvc; C:\Program Files\rnamfler\naofsvc.exe [2006-04-01 55296]

R2 RegSrvc;Intel® PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2008-10-16 466944]

R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\Cyberlink\Shared files\RichVideo.exe [2007-01-09 272024]

R2 RS_Service;Raw Socket Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [2008-01-10 233472]

R2 SbPF.Launcher;SbPF.Launcher; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [2008-10-31 95528]

R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]

R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2009-04-29 487424]

R2 SPF4;Sunbelt Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [2008-10-31 1365288]

R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2007-10-19 386560]

R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-05-30 541992]

S3 getPlus(R) Helper;getPlus(R) Helper; C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [2009-03-03 33176]

S3 GoogleDesktopManager-080708-050100;Google Desktop Manager 5.7.808.7150; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-11-26 24064]

S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]

S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2009-06-21 316664]

-----------------EOF-----------------

Le deuxième:

info.txt logfile of random's system information tool 1.06 2009-07-03 11:05:49

======Uninstall list======

-->C:\PROGRA~1\Yahoo!\Common\unyt.exe

-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER

-->C:\Program Files\OrangeHSS\Uninstall\Bas_Debit_CustoUpdate\Shell.exe MainUninstall.shl

-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A450831D-25F6-4F42-9662-D000B25E0D82}\Setup.exe" -uninstall

-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AA4BF92B-2AAF-11DA-9D78-000129760D75}\Setup.exe" -uninstall

Acer Arcade Deluxe-->"C:\Program Files\InstallShield Installation Information\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\Setup.exe" /z-uninstall

Acer Arcade Deluxe-->"C:\Program Files\InstallShield Installation Information\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\Setup.exe" /z-uninstall

Acer Bio Protection

AAU 6.0.00.17-->"C:\Program Files\Acer\Acer Bio Protection\uninstall.exe"

Acer Crystal Eye Webcam 2.0.8-->C:\Program Files\InstallShield Installation Information\{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}\setup.exe -runfromtemp -l0x040c -removeonly

Acer eAudio Management-->"C:\Program Files\InstallShield Installation Information\{57265292-228A-41FA-9AEC-4620CBCC2739}\Setup.exe" -uninstall

Acer eDataSecurity Management-->C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSnstHelper.exe -Operation UNINSTALL

Acer Empowering Technology-->"C:\Program Files\InstallShield Installation Information\{8F1B6239-FEA0-450A-A950-B05276CE177C}\setup.exe" -runfromtemp -l0x040c -removeonly

Acer ePower Management-->"C:\Program Files\InstallShield Installation Information\{58E5844B-7CE2-413D-83D1-99294BF6C74F}\setup.exe" -runfromtemp -l0x040c -removeonly

Acer eRecovery Management-->"C:\Program Files\InstallShield Installation Information\{7F811A54-5A09-4579-90E1-C93498E230D9}\setup.exe" -runfromtemp -l0x040c -removeonly

Acer eSettings Management-->"C:\Program Files\InstallShield Installation Information\{13D85C14-2B85-419F-AC41-C7F21E68B25D}\setup.exe" -runfromtemp -l0x040c -removeonly

Acer GameZone Console 2.0.1.1-->"C:\Program Files\Acer GameZone\GameConsole\unins000.exe"

Acer GridVista-->C:\Windows\GVUni.exe GridV.UNI

Acer Mobility Center Plug-In-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{11316260-6666-467B-AC34-183FCB5D4335}\setup.exe" -l0x40c -removeonly

Acer ScreenSaver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}\setup.exe" -l0x9 -removeonly

Acer VCM-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}\setup.exe" -l0x40c -removeonly

Activation Assistant for the 2007 Microsoft Office suites-->"C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}\Microsoft Office Activation Assistant.exe" REMOVE=TRUE MODIFY=FALSE

Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe

Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe

Adobe Reader 9.1.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}

Adobe Shockwave Player 11.5-->"C:\Windows\system32\Adobe\Shockwave 11\uninstaller.exe"

Advanced SystemCare 3-->"C:\Program Files\IObit\Advanced SystemCare 3\unins000.exe"

ALZip-->"C:\Program Files\ESTsoft\ALZip\unins000.exe"

Apple Mobile Device Support-->MsiExec.exe /I{659B48CD-0608-4ED5-94C0-0B6C87114F10}

Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}

Ask Toolbar-->"C:\Program Files\AskBarDis\unins000.exe"

Ask.com Search Assistant 1.0.1-->C:\Program Files\Ask Search Assistant\uninst.exe

a-squared Free 4.0-->"C:\Program Files\a-squared Free\unins000.exe"

Assistant de connexion Windows Live-->MsiExec.exe /I{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}

Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver-->"C:\Program Files\InstallShield Installation Information\{3108C217-BE83-42E4-AE9E-A56A2A92E549}\setup.exe" -runfromtemp -l0x040c -removeonly

AusLogics Registry Defrag-->"C:\Program Files\Auslogics\AusLogics Registry Defrag\unins000.exe"

Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE

Bibliothèques GTK+ 2.14.7 rev a (supprimer uniquement)-->C:\Program Files\Common Files\GTK\2.0\uninst.exe

Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}

Burn4Free CD and DVD-->"C:\Program Files\Burn4Free\uninstall.exe"

Camera RAW Plug-In for EPSON Creativity Suite-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{93EA9C3E-BDFD-4309-A605-9B5BBC0CCEFD}\SETUP.EXE" -l0x40c UNINST

CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"

Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}

Counter-Strike: Source-->MsiExec.exe /I{9580813D-94B1-4C28-9426-A441E2BB29A5}

CyberLink PowerDirector-->"C:\Program Files\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\setup.exe" /z-uninstall

CyberLink PowerDirector-->"C:\Program Files\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\setup.exe" /z-uninstall

DAEMON Tools Toolbar-->C:\Program Files\DAEMON Tools Toolbar\uninst.exe

Defraggler (remove only)-->"C:\Program Files\Defraggler\uninst.exe"

DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC

DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER

DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER

DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN

Drive Rescue 1.9-->"C:\Program Files\Drive Rescue\unins000.exe"

dvda-author (uninstall only)-->"C:\Program Files\dvda-author-08.12\uninstall.exe"

dvda-author (uninstall only)-->"C:\Program Files\dvda-author-09.03\uninstall.exe"

EA Download Manager-->C:\Program Files\Electronic Arts\EADM\Uninstall.exe

EPSON Logiciel imprimante-->C:\Windows\system32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R

eSobi v2-->C:\Program Files\InstallShield Installation Information\{15D967B5-A4BE-42AE-9E84-64CD062B25AA}\setup.exe -runfromtemp -l0x040c

Favorit-->c:\users\anthony\appdata\local\emkgqem.bat

Free Music Zilla-->"C:\Program Files\Free Music Zilla\unins000.exe"

getPlus(R) for Adobe-->"C:\Program Files\NOS\bin\getPlus_HelperSvc.exe" /UninstallGet1

Glary Utilities 2.13.0.689-->"C:\Program Files\Glary Utilities\unins000.exe"

Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall

Half-Life 2: Lost Coast-->"C:\Program Files\Steam\steam.exe" steam://uninstall/340

HDAUDIO Soft Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_HDA_HSF\UIU32m.exe -U -IAcrZUn32z.INF

HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""

Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe

Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}

Intel® Matrix Storage Manager-->C:\Program Files\Intel\Intel Matrix Storage Manager\Uninstall\imsmudlg.exe -uninstall

iTunes-->MsiExec.exe /I{CC5702D7-86E2-45A8-99D7-E8B976ADCC56}

Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}

JkDefrag 3.36-->"C:\Program Files\JkDefrag\unins000.exe"

Launch Manager-->C:\Windows\UnInst32.exe QtZgAcer.UNI

Live-Player-->C:\Program Files\Live-Player\uninst.exe

Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"

Malwarebytes' RogueRemover-->"C:\Program Files\RogueRemover FREE\unins000.exe"

Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"

Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}

Microsoft .NET Framework 3.5 SP1-->C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe

Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00BA-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {91120000-0030-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}

Microsoft Office Enterprise 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISER /dll OSETUP.DLL

Microsoft Office Enterprise 2007-->MsiExec.exe /X{91120000-0030-0000-0000-0000000FF1CE}

Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}

Microsoft Office Groove MUI (French) 2007-->MsiExec.exe /X{90120000-00BA-040C-0000-0000000FF1CE}

Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL

Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}

Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}

Microsoft Office OneNote MUI (French) 2007-->MsiExec.exe /X{90120000-00A1-040C-0000-0000000FF1CE}

Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}

Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}

Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}

Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}

Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}

Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}

Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}

Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}

Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8FAA964C5}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8FAA964C5}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}

Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}

Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}

Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1

A voir également:

Virus
Youtu.be virus - Accueil - Guide virus
Svchost.exe virus - Guide
Virus mcafee - Accueil - Piratage
Faux message virus ordinateur - Accueil - Arnaque
Faux message virus iphone ✓ - Forum Virus

22 réponses

Réponse 1 / 22

Trying2 Messages postés 7096 Date d'inscription dimanche 13 juillet 2008 Statut Contributeur sécurité Dernière intervention 15 octobre 2015 234
3 juil. 2009 à 19:15

Hello,

Oui effectivement.

Désactive le contrôle des comptes utilisateurs avant utilisation de ces outils:

* Va dans "Démarrer" puis Panneau de configuration.
* Double Clique sur l'icône Comptes d'utilisateurs et sur "Activer ou désactiver le contrôle des comptes d'utilisateurs".
* Décoche la case "Utiliser le contrôle des comptes d'utilisateurs pour vous aider à protéger votre ordinateur".
* Valide par OK et redémarre .

Fais tout ceci dans l'ordre, et colle un seul rapport dans chaque réponse stp:

1/
Télécharge Navilog1 (de IL-MAFIOSO) et enregistre-le sur le Bureau.

Double-clique sur Navilog1.exe pour de lancer l'installation.
Si l'installation ne se lance pas automatiquement, double-clique sur Navilog présent sur le Bureau.
Appuie sur f et la touche Entrée pour valider.
Appuie sur une touche de ton clavier à chaque fois qu'on te le demande, jusqu'au menu des options.
Choisis l'option 1 et appuie et la touche Entrée pour valider.
Attend jusqu'à ce que s'affiche le message : " Analyse terminée le "
le Bloc-notes contenant le rapport devrait s'afficher, fais un copier/coller du contenu de ce rapport dans ta prochaine réponse.
Si le rapport ne s'affiche pas, tu le trouveras ici: C:\fixnavi.txt

2/
Télécharge Toolbar-S&D (Merci eric 71) sur ton Bureau:
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2

Lance l'installation du programme en double cliquant sur le fichier téléchargé.
Double-clique sur le raccourci de Toolbar-S&D.
Choisi la langue souhaitée en tapant la lettre "F" puis en validant avec la touche Entrée.
Choisi maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
Poste un copier/coller du rapport généré.

3/

• Télécharge Ad-remover sur ton bureau :

http://sd-1.archive-host.com/membres/up/16506160323759868/AD-R.exe

! Déconnecte toi et ferme toutes applications en cours !

• Double clique sur "Ad-R.exe" pour lancer l'installation et laisse les paramètres d'installation par défaut .

• Double-clique sur le raccourci Ad-remover qui est sur ton bureau pour lancer l'outil .
• Au menu principal choisis l'option "S" et tape sur [entrée] .

• Laisse travailler l'outil et ne touche à rien ...

--> Poste le rapport qui apparait à la fin , sur le forum ...

( Le rapport est sauvegardé sous C:\Ad-report-scan.log )

Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.

4/
Télécharge Malwarebytes' Anti-Malware (MBAM)

* Double clique sur le fichier téléchargé pour lancer le processus d'installation.
* Dans l'onglet "Mise à jour", clique sur le bouton "Recherche de mise à jour": si le pare-feu demande l'autorisation à MBAM de se connecter, accepte.
* Une fois la mise à jour terminée, rends-toi dans l'onglet "Recherche".
* Sélectionne "Exécuter un examen rapide"
* Clique sur "Rechercher"
* L'analyse démarre, le scan est relativement long, c'est normal.
* A la fin de l'analyse, un message s'affiche :

"L'examen s'est terminé normalement. "

Clique sur "Afficher les résultats" pour afficher tous les objets trouvés.

Clique sur "Ok" pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.

* Ferme tes navigateurs. (Internet Explorer/ Firefox...)
* Si des malwares ont été détectés, clique sur Afficher les résultats.
Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
* MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport et poste-le dans ta prochaine réponse.

Je repasse plus tard, j'attends tes 4 rapports. @+

Si quelqu'un souhaite suivre...

Réponse 2 / 22

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009
3 juil. 2009 à 19:40

ok merci je fais ce que tu mas dis

Réponse 3 / 22

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009
3 juil. 2009 à 20:32

voici le rapport navilog:
Fix Navipromo version 4.0.0 commencé le 03/07/2009 à 19:49:37,55

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 19.06.2009 à 20h00 par IL-MAFIOSO

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6002 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T5800 @ 2.00GHz )
BIOS : ZK2 v0.3204 3B04
USER : Anthony ( Not Administrator ! )
BOOT : Normal boot

Firewall : Sunbelt Personal Firewall 4.6.1861 T (Activated)

C:\ (Local Disk) - NTFS - Total:144 Go (Free:64 Go)
D:\ (Local Disk) - NTFS - Total:140 Go (Free:130 Go)
F:\ (CD or DVD)

Recherche exécutée en mode normal

Nettoyage exécuté au redémarrage de l'ordinateur

C:\Program Files\Live-Player supprimé !
c:\progra~2\micros~1\windows\startm~1\programs\Live-Player supprimé !
C:\Users\Anthony\AppData\Roaming\Live-Player supprimé !
c:\users\public\desktop\Live-Player.lnk supprimé !

Nettoyage contenu C:\Windows\Temp effectué !
Nettoyage contenu C:\Users\Anthony\AppData\Local\Temp effectué !

*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok

*** Scan terminé le 03/07/2009 à 20:30:31,27 ***

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009
4 juil. 2009 à 09:23

désolé mais toolbar S&D ne marche pas

Réponse 4 / 22

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009
3 juil. 2009 à 23:02

Rapport ad remover:

.
======= RAPPORT D'AD-REMOVER 1.1.4.5_O | UNIQUEMENT XP/VISTA/SEVEN =======
.
Mit à jour par C_XX le 24/06/2009 à 7:10 PM
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 20:39:27, 03/07/2009 | Mode Normal | Option: SCAN
Exécuté de: C:\Program Files\Ad-remover\
Système d'exploitation: Microsoft® Windows Vista™ Home Premium Service Pack 2 v6.0.6002
Nom du PC: PC-DE-ANTHONY | Utilisateur actuel: Anthony
.
Administrateur: Administrateur *Desactive*
Administrateur: Anthony
N'est pas administrateur: Invité
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.
.
HKCR\CLSID\{201f27d4-3704-41d6-89c1-aa35e39143ed}
HKCR\CLSID\{9afb8248-617f-460d-9366-d71cdeda3179}
HKLM\Software\Classes\CLSID\{201f27d4-3704-41d6-89c1-aa35e39143ed}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
HKCR\CLSID\{0702a2b6-13aa-4090-9e01-bcdc85dd933f}
HKLM\Software\Classes\CLSID\{0702a2b6-13aa-4090-9e01-bcdc85dd933f}
HKCR\CLSID\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
HKLM\Software\Classes\CLSID\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
HKCR\CLSID\{b0de3308-5d5a-470d-81b9-634fc078393b}
HKLM\Software\Classes\CLSID\{b0de3308-5d5a-470d-81b9-634fc078393b}
.
C:\Program Files\AskBarDis
C:\Program Files\Ask Search Assistant
.
============== Scan additionnel ==============
.
.
.

* Internet Explorer Version 8.0.6001.18783 *

[HKEY_CURRENT_USER\..\Internet Explorer\Main]

Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Search bar: hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60341
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://www.daemon-search.com/startpage
Start Page: hxxp://fr.msn.com/?ocid=iehp

[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]

Default_Page_URL: hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=2&o=vp32&d=1008&m=aspire_6930g
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
SearchAssistant: hxxp://www.crawler.com/search/ie.aspx?tb_id=60341
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: hxxp://www.google.com

[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]

Tabs: res://ieframe.dll/tabswelcome.htm

.
============== Processus Caches/Bloque ==============
.
PID: 1172 [LOCKED] audiodg.exe
.

============== Suspect (Cracks, Serials ... ) ==============

.
C:\Users\Anthony\.housecall6.6\patch.exe
C:\Users\Anthony\AppData\Roaming\Azureus\torrents\ConvertXtodvd 3.2.4.82 (Pre Cracked Load n Go).torrent
C:\Users\Anthony\AppData\Roaming\Azureus\torrents\ConvertXtoDVD_3_v3_1_3_40_incl_Crack_.torrent
C:\Users\Anthony\AppData\Roaming\Azureus\torrents\Prism_Video_Converter_with_keygen.torrent
C:\Users\Anthony\Documents\Azureus Downloads\ConvertXtodvd 3.2.4.82 (Pre Cracked Load n Go)\setup NTSC ConvertXtoDVD.exe
C:\Users\Anthony\Documents\Azureus Downloads\ConvertXtodvd 3.2.4.82 (Pre Cracked Load n Go)\setup PAL ConvertXtoDVD.exe
C:\Users\Anthony\Documents\Azureus Downloads\Prism Video Converter\Keygen.exe
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\sldappu.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part01.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part02.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part03.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part04.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part05.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part06.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part07.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part08.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part09.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part10.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part11.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part12.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part13.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part14.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part15.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part16.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part17.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part18.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part19.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part20.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part21.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part22.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part23.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part24.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part25.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part26.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part27.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part28.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part29.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part30.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part31.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part32.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part33.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part34.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part35.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part36.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part37.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part38.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part39.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part40.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part41.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part42.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part43.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part44.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part45.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part46.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part47.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part48.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part49.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part50.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part51.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part52.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part53.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part54.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part55.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part56.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part57.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part58.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part59.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part60.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part61.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part62.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part63.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part64.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part65.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part66.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part67.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part68.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part69.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part70.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part71.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part72.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part73.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part74.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part75.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part76.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part77.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part78.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part79.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part80.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part81.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part82.rar
C:\Users\Anthony\Documents\Azureus Downloads\Switch Sound File Converter Plus 1.5\Keygen.exe
C:\Users\Anthony\Documents\need for speed\cl‚ usb\Need.For.Speed.Undercover.Crack.and.Keygen.Only-RELOADED\reloaded.nfo
C:\Users\Anthony\Documents\need for speed\cl‚ usb\Need.For.Speed.Undercover.Crack.and.Keygen.Only-RELOADED\Crack\Keygen.exe
C:\Users\Public\Desktop\TrendMicro_TIS_17.10_en-US_32-bit\Setup\Patch\32bit\223\TISPthTl.exe
.
===================================
.
15832 Octet(s) - C:\Ad-Report-SCAN.log
.
4 Fichier(s) - C:\Users\Anthony\AppData\Local\Temp
0 Fichier(s) - C:\Windows\Temp
.
1 Fichier(s) - C:\Program Files\Ad-remover\BACKUP
0 Fichier(s) - C:\Program Files\Ad-remover\QUARANTINE
.
Fin à: 22:50:26 | 03/07/2009
.
============== E.O.F ==============
.

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 5 / 22

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009
4 juil. 2009 à 09:29

voici le rapport malwarbytes

Malwarebytes' Anti-Malware 1.38
Version de la base de données: 2371
Windows 6.0.6002 Service Pack 2

04/07/2009 09:27:19
mbam-log-2009-07-04 (09-27-19).txt

Type de recherche: Examen rapide
Eléments examinés: 94346
Temps écoulé: 4 minute(s), 8 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

Réponse 6 / 22

Trying2 Messages postés 7096 Date d'inscription dimanche 13 juillet 2008 Statut Contributeur sécurité Dernière intervention 15 octobre 2015 234
4 juil. 2009 à 20:15

1/

Concernant Toolbar SD:

Vérifie que tu as bien fait ceci:

Désactive le contrôle des comptes utilisateurs avant utilisation de ces outils:

* Va dans "Démarrer" puis Panneau de configuration.
* Double Clique sur l'icône Comptes d'utilisateurs et sur "Activer ou désactiver le contrôle des comptes d'utilisateurs".
* Décoche la case "Utiliser le contrôle des comptes d'utilisateurs pour vous aider à protéger votre ordinateur".
* Valide par OK et redémarre .

Ensuite:
Lance l'installation du programme en en faisant un clic droit sur le fichier téléchargé et en sélectionnant "exécuter en tant qu'administrateur".
Fais un clic droit et en sélectionnant "exécuter en tant qu'administrateur". sur le raccourci de Toolbar-S&D.
Choisi la langue souhaitée en tapant la lettre "F" puis en validant avec la touche Entrée.
Choisi maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
Poste un copier/coller du rapport généré.

2/
• Relance Ad-remover,
• Au menu principal choisis l'option "L" et tape sur [entrée] .

• Laisse travailler l'outil et ne touche à rien ...

--> Poste le rapport qui apparait à la fin , sur le forum ...

( Le rapport est sauvegardé sous C:\Ad-report-clean.log )

3/

Concernant Navilog1.

Ce que je comptais te faire supprimer ne l'a pas été:

Redémarre ton pc.

Après le lancement du BIOS, tapote plusieurs fois sur la touche F8 (ou F5) et attend le menu des options avancées de démarrage.

Sélectionne le démarrage en mode sans échec à l'aide des flèches et valide par entrée.

Ton affichage sera différent de d'habitude, c'est normal.
Ensuite:

*Double-clique sur le raccourci "Navilog1".

*Au menu principal, choisi l'option 2 et valide avec la touche entrée.
Tape ensuite : emkgqem
Retape le si demandé et valide par "o" et la touche entrée.

Poste moi le rapport ensuite.

@+

Réponse 7 / 22

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009
4 juil. 2009 à 22:03

pour toolbar S&D il ne marche pas, a la fin il ya un message rapide qui s'affiche mais je n'est pas trop le temps de lire: cela di plus ou moins, le système ne trouve pas le nom....

Trying2 Messages postés 7096 Date d'inscription dimanche 13 juillet 2008 Statut Contributeur sécurité Dernière intervention 15 octobre 2015 234
5 juil. 2009 à 00:27

As tu essayé de le retélécharger?

Réponse 8 / 22

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009
5 juil. 2009 à 11:55

oui je l'ai déja retélécharger, mais je m'en suis déja servi une fois auparavant et il aviat marcher. Je ne comprend pas

Réponse 9 / 22

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009
5 juil. 2009 à 12:19

Voici le rapport ad-remover:

.
======= RAPPORT D'AD-REMOVER 1.1.4.5_O | UNIQUEMENT XP/VISTA/SEVEN =======
.
Mit à jour par C_XX le 24/06/2009 à 7:10 PM
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 22:31:33, 04/07/2009 | Mode Normal | Option: CLEAN
Exécuté de: C:\Program Files\Ad-remover\
Système d'exploitation: Microsoft® Windows Vista™ Home Premium Service Pack 2 v6.0.6002
Nom du PC: PC-DE-ANTHONY | Utilisateur actuel: Anthony
.
Administrateur: Administrateur *Desactive*
Administrateur: Anthony
N'est pas administrateur: Invité
.
============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
.
.
HKCR\CLSID\{b0de3308-5d5a-470d-81b9-634fc078393b}
.
C:\Program Files\AskBarDis\bar
C:\Program Files\AskBarDis\unins000.dat
C:\Program Files\AskBarDis\unins000.exe
C:\Program Files\AskBarDis\bar\bin
C:\Program Files\AskBarDis\bar\Settings
C:\Program Files\AskBarDis\bar\bin\askBar.dll
C:\Program Files\AskBarDis\bar\bin\askPopStp.dll
C:\Program Files\AskBarDis\bar\bin\psvince.dll
C:\Program Files\AskBarDis\bar\Settings\config.dat
C:\Program Files\AskBarDis\bar\Settings\config.dat.bak
C:\Program Files\AskBarDis
C:\Program Files\Ask Search Assistant\ask.ico
C:\Program Files\Ask Search Assistant\AskSearchAsst.ini
C:\Program Files\Ask Search Assistant\Install.asa.log
C:\Program Files\Ask Search Assistant\uninst.exe
C:\Program Files\Ask Search Assistant

(!) -- Fichiers temporaires supprimés.

.
============== Scan additionnel ==============
.
.
.

* Internet Explorer Version 8.0.6001.18783 *

[HKEY_CURRENT_USER\..\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Start Page: hxxp://fr.msn.com/?ocid=iehp

[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchAssistant: hxxp://www.crawler.com/search/ie.aspx?tb_id=60341
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/

[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]

Tabs: res://ieframe.dll/tabswelcome.htm

.
============== Processus Caches/Bloque ==============
.
PID: 1208 [LOCKED] audiodg.exe
.

============== Suspect (Cracks, Serials ... ) ==============

.
C:\Users\Anthony\.housecall6.6\patch.exe
C:\Users\Anthony\AppData\Roaming\Azureus\torrents\ConvertXtodvd 3.2.4.82 (Pre Cracked Load n Go).torrent
C:\Users\Anthony\AppData\Roaming\Azureus\torrents\ConvertXtoDVD_3_v3_1_3_40_incl_Crack_.torrent
C:\Users\Anthony\AppData\Roaming\Azureus\torrents\Prism_Video_Converter_with_keygen.torrent
C:\Users\Anthony\Documents\Azureus Downloads\ConvertXtodvd 3.2.4.82 (Pre Cracked Load n Go)\setup NTSC ConvertXtoDVD.exe
C:\Users\Anthony\Documents\Azureus Downloads\ConvertXtodvd 3.2.4.82 (Pre Cracked Load n Go)\setup PAL ConvertXtoDVD.exe
C:\Users\Anthony\Documents\Azureus Downloads\Prism Video Converter\Keygen.exe
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\sldappu.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part01.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part02.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part03.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part04.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part05.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part06.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part07.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part08.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part09.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part10.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part11.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part12.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part13.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part14.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part15.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part16.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part17.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part18.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part19.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part20.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part21.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part22.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part23.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part24.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part25.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part26.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part27.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part28.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part29.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part30.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part31.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part32.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part33.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part34.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part35.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part36.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part37.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part38.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part39.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part40.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part41.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part42.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part43.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part44.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part45.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part46.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part47.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part48.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part49.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part50.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part51.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part52.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part53.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part54.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part55.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part56.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part57.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part58.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part59.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part60.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part61.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part62.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part63.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part64.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part65.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part66.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part67.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part68.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part69.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part70.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part71.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part72.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part73.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part74.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part75.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part76.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part77.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part78.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part79.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part80.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part81.rar
C:\Users\Anthony\Documents\Azureus Downloads\SolidWorks.2008.SP0.Multilingual.Incl.Serial.and.Crack\SolidWorks.2008.SP0.Multilingual.part82.rar
C:\Users\Anthony\Documents\Azureus Downloads\Switch Sound File Converter Plus 1.5\Keygen.exe
C:\Users\Anthony\Documents\need for speed\cl‚ usb\Need.For.Speed.Undercover.Crack.and.Keygen.Only-RELOADED\reloaded.nfo
C:\Users\Anthony\Documents\need for speed\cl‚ usb\Need.For.Speed.Undercover.Crack.and.Keygen.Only-RELOADED\Crack\Keygen.exe
C:\Users\Public\Desktop\TrendMicro_TIS_17.10_en-US_32-bit\Setup\Patch\32bit\223\TISPthTl.exe
.
===================================
.
16013 Octet(s) - C:\Ad-Report-CLEAN.log
16147 Octet(s) - C:\Ad-Report-SCAN.log
.
1389 Fichier(s) - C:\Users\Anthony\AppData\Local\Temp
0 Fichier(s) - C:\Windows\Temp
.
20 Fichier(s) - C:\Program Files\Ad-remover\BACKUP
6 Fichier(s) - C:\Program Files\Ad-remover\QUARANTINE
.
Fin à: 12:14:37 | 05/07/2009
.
============== E.O.F ==============
.

Réponse 10 / 22

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009
5 juil. 2009 à 12:44

voici le rapport navilog:

Fix Navipromo version 4.0.0 commencé le 05/07/2009 à 12:30:33,99

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 19.06.2009 à 20h00 par IL-MAFIOSO

Microsoftｮ Windows Vista™ ﾉdition Familiale Premium ( v6.0.6002 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T5800 @ 2.00GHz )
BIOS : ZK2 v0.3204 3B04
USER : Anthony ( Not Administrator ! )
BOOT : Fail-safe boot

Firewall : Sunbelt Personal Firewall 4.6.1861 T (Activated)

C:\ (Local Disk) - NTFS - Total:144 Go (Free:69 Go)
D:\ (Local Disk) - NTFS - Total:140 Go (Free:130 Go)
F:\ (CD or DVD)

Mode suppression par méthode manuelle

Nom du fichier saisi : emkgqem

Nettoyage executé en mode sans échec

Nettoyage contenu C:\Windows\Temp effectué !
Nettoyage contenu C:\Users\Anthony\AppData\Local\Temp effectué !

*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok

*** Scan terminé le 05/07/2009 à 12:31:47,12 ***

Réponse 11 / 22

Trying2 Messages postés 7096 Date d'inscription dimanche 13 juillet 2008 Statut Contributeur sécurité Dernière intervention 15 octobre 2015 234
6 juil. 2009 à 17:17

Attention avec le téléchargement.

Reposte moi un rapport Rsit stp (juste le Log.txt).

Réponse 12 / 22

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009
6 juil. 2009 à 17:25

voila le rappport rsit:

Logfile of random's system information tool 1.06 (written by random/random)
Run by Anthony at 2009-07-06 17:24:05
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2
System drive C: has 65 GB (44%) free of 148 GB
Total RAM: 3066 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:24:21, on 06/07/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
C:\Windows\System32\rundll32.exe
C:\Windows\PLFSetI.exe
C:\Program Files\Launch Manager\QtZgAcer.EXE
C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe
C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\OrangeHSS\Systray\SystrayApp.exe
C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehtray.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Users\Anthony\AppData\Local\Temp\RtkBtMnt.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Privoxy\privoxy.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\TechSmith\Snagit 9\Snagit32.exe
C:\Program Files\SpywareGuard\sgmain.exe
C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\vghd\VirtuaGirl_downloader.exe
C:\Program Files\SpywareGuard\sgbhp.exe
C:\Program Files\TechSmith\Snagit 9\TSCHelp.exe
C:\Program Files\TechSmith\Snagit 9\SnagPriv.exe
C:\Program Files\OrangeHSS\Launcher\Launcher.exe
C:\Program Files\TechSmith\Snagit 9\snagiteditor.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\OrangeHSS\connectivity\connectivitymanager.exe
C:\Program Files\OrangeHSS\connectivity\CoreCom\CoreCom.exe
C:\Program Files\OrangeHSS\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Acer\Empowering Technology\NotificationCenter\Framework.NotificationCenter.exe
C:\Program Files\Opera\opera.exe
C:\Users\Anthony\Desktop\RSIT.exe
C:\Program Files\trend micro\Anthony.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.missim.org/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60341
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60341
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.missim.org/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60341
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60341
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\Snagit 9\SnagitBHO.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\Snagit 9\SnagitIEAddin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
O4 - HKLM\..\Run: [eAudio] "C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe"
O4 - HKLM\..\Run: [BkupTray] "C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [PLFSetI] C:\Windows\PLFSetI.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [ePower_DMC] C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [ZPdtWzdVitaKey MC3000] "C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe" show
O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [EPSON Stylus DX7400 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU "C:\Users\Anthony\AppData\Local\Temp\E_SD96E.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: DesktopVideoPlayer.LNK = C:\Program Files\vghd\vghd.exe
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O4 - Global Startup: Acer VCM.lnk = ?
O4 - Global Startup: Privoxy.lnk = C:\Program Files\Privoxy\privoxy.exe
O4 - Global Startup: Snagit 9.lnk = C:\Program Files\TechSmith\Snagit 9\Snagit32.exe
O9 - Extra button: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra 'Tools' menuitem: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
O16 - DPF: {C8AEB218-8B7A-4E15-AC17-0EE8D99B80EB} (GameTap Web Updater) - http://archives.gametap.com/static/cab_headless/GameTapWebUpdater.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: c:\progra~1\google\google~1\goec62~1.dll
O20 - Winlogon Notify: AWinNotifyVitaKey MC3000 - C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll
O20 - Winlogon Notify: spba - C:\Program Files\Common Files\SPBA\homefus2.dll
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: Google Desktop Manager 5.7.808.7150 (GoogleDesktopManager-080708-050100) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Service Google Update (gupdate1c9fd77ca95a81) (gupdate1c9fd77ca95a81) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iGroupTec Service (IGBASVC) - Unknown owner - C:\Program Files\Acer\Acer Bio Protection\BASVC.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: RdnaoFlSvc - Unknown owner - C:\Program Files\rnamfler\naofsvc.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

Réponse 13 / 22

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009
6 juil. 2009 à 17:26

voila le rapport rsit

Logfile of random's system information tool 1.06 (written by random/random)
Run by Anthony at 2009-07-06 17:24:05
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2
System drive C: has 65 GB (44%) free of 148 GB
Total RAM: 3066 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:24:21, on 06/07/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
C:\Windows\System32\rundll32.exe
C:\Windows\PLFSetI.exe
C:\Program Files\Launch Manager\QtZgAcer.EXE
C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe
C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\OrangeHSS\Systray\SystrayApp.exe
C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehtray.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Users\Anthony\AppData\Local\Temp\RtkBtMnt.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Privoxy\privoxy.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\TechSmith\Snagit 9\Snagit32.exe
C:\Program Files\SpywareGuard\sgmain.exe
C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\vghd\VirtuaGirl_downloader.exe
C:\Program Files\SpywareGuard\sgbhp.exe
C:\Program Files\TechSmith\Snagit 9\TSCHelp.exe
C:\Program Files\TechSmith\Snagit 9\SnagPriv.exe
C:\Program Files\OrangeHSS\Launcher\Launcher.exe
C:\Program Files\TechSmith\Snagit 9\snagiteditor.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\OrangeHSS\connectivity\connectivitymanager.exe
C:\Program Files\OrangeHSS\connectivity\CoreCom\CoreCom.exe
C:\Program Files\OrangeHSS\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Acer\Empowering Technology\NotificationCenter\Framework.NotificationCenter.exe
C:\Program Files\Opera\opera.exe
C:\Users\Anthony\Desktop\RSIT.exe
C:\Program Files\trend micro\Anthony.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.missim.org/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60341
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60341
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.missim.org/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60341
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60341
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\Snagit 9\SnagitBHO.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\Snagit 9\SnagitIEAddin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
O4 - HKLM\..\Run: [eAudio] "C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe"
O4 - HKLM\..\Run: [BkupTray] "C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [PLFSetI] C:\Windows\PLFSetI.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [ePower_DMC] C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [ZPdtWzdVitaKey MC3000] "C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe" show
O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [EPSON Stylus DX7400 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU "C:\Users\Anthony\AppData\Local\Temp\E_SD96E.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: DesktopVideoPlayer.LNK = C:\Program Files\vghd\vghd.exe
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O4 - Global Startup: Acer VCM.lnk = ?
O4 - Global Startup: Privoxy.lnk = C:\Program Files\Privoxy\privoxy.exe
O4 - Global Startup: Snagit 9.lnk = C:\Program Files\TechSmith\Snagit 9\Snagit32.exe
O9 - Extra button: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra 'Tools' menuitem: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
O16 - DPF: {C8AEB218-8B7A-4E15-AC17-0EE8D99B80EB} (GameTap Web Updater) - http://archives.gametap.com/static/cab_headless/GameTapWebUpdater.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: c:\progra~1\google\google~1\goec62~1.dll
O20 - Winlogon Notify: AWinNotifyVitaKey MC3000 - C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll
O20 - Winlogon Notify: spba - C:\Program Files\Common Files\SPBA\homefus2.dll
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: Google Desktop Manager 5.7.808.7150 (GoogleDesktopManager-080708-050100) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Service Google Update (gupdate1c9fd77ca95a81) (gupdate1c9fd77ca95a81) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iGroupTec Service (IGBASVC) - Unknown owner - C:\Program Files\Acer\Acer Bio Protection\BASVC.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: RdnaoFlSvc - Unknown owner - C:\Program Files\rnamfler\naofsvc.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

Réponse 14 / 22

Trying2 Messages postés 7096 Date d'inscription dimanche 13 juillet 2008 Statut Contributeur sécurité Dernière intervention 15 octobre 2015 234
6 juil. 2009 à 18:01

Essaye de cette manière.

Réponse 15 / 22

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009
6 juil. 2009 à 18:37

ca na pas marché mais j'ai désinstallé la yahoo toolbar avec paneau de configuration

Trying2 Messages postés 7096 Date d'inscription dimanche 13 juillet 2008 Statut Contributeur sécurité Dernière intervention 15 octobre 2015 234
10 juil. 2009 à 10:03

Hello,

*Désactive ton antivirus le temps de la manipulation car OTM est détecté comme une infection à tort.

*Télécharge OTM (OldTimer) sur ton Bureau :

*Double-clique sur OTM.exe afin de le lancer.

* Copie (Ctrl+C) le texte en gras ci-dessous :

:processes
explorer.exe

:reg
[-HKEY_CLASSES_ROOT\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{32099AAC-C132-4136-9E9A-4E364A424E17}"=-

:files
c:\program files\daemon tools toolbar\dttoolbar.dll
C:\Program Files\Burn4Free
:commands
[purity]
[emptytemp]
[reboot]

*Colle (Ctrl+V) le texte précédemment copié dans le cadre "Paste Instructions for Items to be Moved".

*Clique maintenant sur le bouton "MoveIt"! puis ferme OTMoveIt3.

*Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.

*Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log

Réponse 16 / 22

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009
10 juil. 2009 à 20:18

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== REGISTRY ==========
Registry key HKEY_CLASSES_ROOT\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
========== FILES ==========
LoadLibrary failed for c:\program files\daemon tools toolbar\DTToolbar.dll
c:\program files\daemon tools toolbar\DTToolbar.dll NOT unregistered.
c:\program files\daemon tools toolbar\DTToolbar.dll moved successfully.
C:\Program Files\Burn4Free\wav moved successfully.
C:\Program Files\Burn4Free\temp moved successfully.
C:\Program Files\Burn4Free\queue moved successfully.
C:\Program Files\Burn4Free\languages moved successfully.
C:\Program Files\Burn4Free moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Anthony
->Temp folder emptied: 13320034 bytes
->Temporary Internet Files folder emptied: 22669755 bytes
->Java cache emptied: 25491978 bytes
->Google Chrome cache emptied: 6632954 bytes
->Opera cache emptied: 210314078 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Invité
->Temp folder emptied: 299324 bytes
->Temporary Internet Files folder emptied: 62190837 bytes
->Java cache emptied: 5775 bytes

User: Public

User: TEMP
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32768 bytes

%systemdrive% .tmp files removed: 0 bytes
C:\Windows\2FADA80A5D894CC89ED7445527754A83.TMP folder deleted successfully.
C:\Windows\msdownld.tmp folder deleted successfully.
%systemroot% .tmp files removed: 490000 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
Windows Temp folder emptied: 535630 bytes
RecycleBin emptied: 31969350 bytes

Total Files Cleaned = 356,66 mb

OTM by OldTimer - Version 3.0.0.4 log created on 07102009_200706

Files moved on Reboot...

Registry entries deleted on Reboot...

Réponse 17 / 22

Trying2 Messages postés 7096 Date d'inscription dimanche 13 juillet 2008 Statut Contributeur sécurité Dernière intervention 15 octobre 2015 234
11 juil. 2009 à 00:48

Si ccleaner est toujours présent sur ton pc (sinon télécharge le):

Suis ces instructions, pour (installer) et exécuter ccleaner.

En résumé:
(Ne pas installer le yahoo toolbar: si tu le réininstalles)

Il faut cocher ces deux cases avant le nettoyage:
* clique sur "Options", "Avancé" et décoche la case: "Effacer uniquement les fichiers, du dossier Temp de Windows, plus vieux que 48 heures".

*Dans Nettoyeur/Windows /avancé il faut cocher la case vieilles données du prefetch.

Et fais ensuite ces deux procédures:
1/Nettoyage classique
2/Recherche des erreurs .--> Tu peux effectuer 3 fois la recherche des erreurs de registre.(en n'oubliant pas à chaque fois comme proposé de faire une sauvegarde dans mes documents)

Comment se comporte ton pc?
Si tu des soucis, essaye d'être précis dans leur description.

Réponse 18 / 22

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009
29 juil. 2009 à 18:51

mon ordi met beaucoup de temps pour s'éteindre

Réponse 19 / 22

Trying2 Messages postés 7096 Date d'inscription dimanche 13 juillet 2008 Statut Contributeur sécurité Dernière intervention 15 octobre 2015 234
31 juil. 2009 à 22:53

1/Fais un scan avec Kaspersky et poste le rapport stp.

2/Lance Anthony.exe (Hijackthis) qui se trouve dans ce dossier C:\Program Files\trend micro\

et poste moi le rapport dans ta prochaine réponse.
Comment générer un rapport. (merci à Balltrap 34 pour la démo)

Réponse 20 / 22

Anthonyo1991 Messages postés 66 Date d'inscription jeudi 20 novembre 2008 Statut Membre Dernière intervention 16 décembre 2009
2 août 2009 à 12:18

Voici le rapport kaspersky

KASPERSKY ONLINE SCANNER 7.0: rapport d'analyse
dimanche 2 août 2009
Système d'exploitation : Microsoft Windows Vista Home Premium Edition, 32-bit Service Pack 2 (build 6002)
Version de Kaspersky Online Scanner : 7.0.26.13
Dernière mise à jour de la base : Saturday, August 01, 2009 18:51:24
Enregistrements dans la base : 2570668

Paramètres d'analyse
analyser avec la base suivante étendue
Analyser les archives oui
Analyser les bases de messagerie oui

Zone d'analyse Poste de travail
C:\
D:\
F:\

Statistiques d'analyse
Objets analysés 165444
Menaces trouvées 0
Objets infectés trouvés 0
Objets suspects trouvés 0
Durée d'analyse 15:45:42

Aucune menace trouvée. La zone d'analyse est propre.
La zone sélectionnée a été analysée.

Discussions similaires

Softonic,est-ce un virus ?

Est ce que le site tlauncher est dangereux ?

4 virus en raison d’un porno ????

problême Opéra est ce un virus??

Désinstaller Softonic