Systemdoctor etc qui revient...

Résolu
LocoDjp Messages postés 39 Statut Membre -  
LocoDjp Messages postés 39 Statut Membre -
Bonsoir à tous,

Alors, j'ai un ordi windows XP, assez recent.
je pense que vous le connaissez bien, ces trucs de systemdoctor etc.
Je suis deja passé dans quelques pages de ce site pr avoir de l'aide, j'ai reussi à enlever ce bug, mais il revient...mais moins qu'avant.
Je pense qu'il reste un petit truc dans mon ordi, mais je n'arrive pas à le trover. En plus de ça, mon ordinateur ne fonctionne pas tres vite et le disque dur semble avoir du mal à demarrer (quand je clique sur un fichier mp3, il prend 15 sec, mais apres tout fonctionne parfaitement). Est-ce une freeze? ou est-ce à cause des bugs? Et que dois je faire pr enlever Systemdoctor etc?
En tout cas merci en avance pr votre aide! :)
(dois-je vous donner un scan de hijackhis?)
Configuration: Windows XP
Internet Explorer 7.0

32 réponses

  • 1
  • 2
  1. Utilisateur anonyme
     
    Bonjour

    Fais ceci pour vérifier et prècise les anti-spywares que tu as.

    -----------
    Télécharge HijackThis :
    ---> http://www.trendsecure.com/portal/en-US/threat_analytics/HiJackThis_v2.exe

    Installe le dans son propre dossier :
    - clic droit sur le bureau, tu choisis "nouveau dossier" puis installe-le à l'intérieur.
    Fais un clic droit sur Hijackthis, choisis "renommer" puis marque ceci : abcde.exe
    Double-clic sur HijackThis. Clic sur "I Accept" puis clic sur "do a system scan and save logfile"
    Puis copie et colle ici le rapport qu'il va te générer.

    Démo pour HijackThis si besoin :
    http://pageperso.aol.fr/balltrap34/demohijack.htm
    0
  2. LocoDjp Messages postés 39 Statut Membre
     
    Salut boulepate62,

    J'ai comme antispyware:
    -Avg
    -Lavasoft ad-aware
    -Spybot
    -et Cccleaner
    -J'ai aussi Killbox au cas ou.

    Mon antivirus est Securitoo.

    voici le rapport de hijackthis sous le nom de abcde.exe:

    Logfile of Trend Micro HijackThis v2.0.0 (BETA)
    Scan saved at 09:52:55, on 20/05/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
    C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
    C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
    C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
    C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
    C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
    C:\Program Files\Ahead\InCD\InCDsrv.exe
    C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
    C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
    C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
    C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\HP\QuickPlay\QPService.exe
    C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
    C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
    C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    C:\Program Files\Ahead\InCD\InCD.exe
    C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTScheduler.exe
    C:\Program Files\AntivirusFirewall\Common\FSM32.EXE
    C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
    C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe
    C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
    C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe
    C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
    C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTAUTrayApp.exe
    C:\PROGRA~1\HPQ\Shared\HPQTOA~1.EXE
    C:\Program Files\Fichiers communs\Sony Shared\GMR\GMRMan.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\PROGRA~1\WIDCOMM\LOGICI~1\BTSTAC~1.EXE
    C:\Program Files\M-Audio Audiophile USB\Dmn\ma003dmn.exe
    C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
    C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTAutoUpdate.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
    C:\PROGRA~1\Wanadoo\ComComp.exe
    C:\PROGRA~1\Wanadoo\Toaster.exe
    C:\PROGRA~1\Wanadoo\Inactivity.exe
    C:\PROGRA~1\Wanadoo\PollingModule.exe
    C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
    C:\PROGRA~1\Wanadoo\Watch.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Azureus\Azureus.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Documents and Settings\Michiel Bastiaenen\Bureau\Nouveau dossier\abcde.exe.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://configuration.adsl/
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: (no name) - {AF57C3BC-90D3-4F62-8F84-CA3430A1D81D} - (no file)
    O2 - BHO: (no name) - {B525AC1C-2F8F-4258-A5B9-8A328D625540} - (no file)
    O2 - BHO: (no name) - {C5887F01-7FA9-4B50-A134-9448AB0DB45A} - (no file)
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /nodetect
    O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
    O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
    O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
    O4 - HKLM\..\Run: [Reminder] C:\Windows\CREATOR\Remind_XP.exe
    O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
    O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
    O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
    O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
    O4 - HKLM\..\Run: [CONNECTScheduler] "C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTScheduler.exe" /RUN_SCHEDULER
    O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
    O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
    O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
    O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [H2O] C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
    O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
    O4 - HKLM\..\Run: [SMSTray] C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
    O4 - Global Startup: BTTray.lnk = ?
    O4 - Global Startup: CONNECTAUTrayApp.lnk = C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTAUTrayApp.exe
    O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqthb08.exe
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
    O4 - Global Startup: MA003DMN.LNK = C:\Program Files\M-Audio Audiophile USB\Dmn\ma003dmn.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm
    O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
    O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
    O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
    O14 - IERESET.INF: START_PAGE_URL=https://www.msn.com/de-ch?cobrand=hp.msn.com&ocid=HPDHP&pc=HPDTDF&checklang=1
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061023/qtinstall.info.apple.com/qtactivex/qtplugin.cab
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/ES-ES/a-UNO1/GAME_UNO1.cab
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
    O18 - Protocol: bw+0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: offline-8876480 - {B99CEF33-B01E-4EAA-90FB-7368F02D9DF7} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
    O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
    O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
    O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
    O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
    O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
    O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - Unknown owner - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
    O23 - Service: fsbwsys - Unknown owner - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
    O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
    O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - Unknown owner - C:\WINDOWS\System32\FTRTSVC.exe (file missing)
    O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
    O23 - Service: InCD Helper (InCDsrv) - AHEAD Software - C:\Program Files\Ahead\InCD\InCDsrv.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Unknown owner - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTSERV.EXE (file missing)
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
    O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
    O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe (file missing)
    O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe (file missing)
    O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
    O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
    O23 - Service: Sony SCSI Helper Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\Fsk\SonySCSIHelperService.exe
    O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
    O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
    O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
    O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
    O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
    O24 - Desktop Component 0: (no name) - file:///C:/DOCUME~1/MICHIE~1/LOCALS~1/Temp/msohtml1/01/clip_image001.jpg
    0
  3. LocoDjp Messages postés 39 Statut Membre
     
    Au fait, c'est ''abcde.exe'' que je dois ecrire, ou juste ''abcde''?
    La j'ai fait ''abcde.exe'' et je pense que c'est faux...
    0
  4. Utilisateur anonyme
     
    Bien !

    Va dans ajouter/supprimer des programmes et désinstalle celui-ci :

    - Desktop Messenger (considéré comme un espion)

    ¤ Fais un clic droit sur ce lien :Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
    http://perso.orange.fr/il.mafioso/Navifix/navilog1.zip

    Fais un clic droit sur navilog1.zip et choisis "tout extraire"
    Ensuite double clique sur navilog1.exe pour lancer l'installation.
    Une fois l'installation terminée, le fix s'exécutera automatiquement.
    (Si ce n'est pas le cas, double-clique sur le raccourci Navilog1 présent sur le bureau).

    Laisse-toi guider. Au menu principal, choisis 1 et valides.
    (ne fais pas le choix 2,3 ou 4 sans notre avis/accord)

    Patiente jusqu'au message :
    *** Analyse Termine le ..... ***

    Appuie sur une touche comme demandé, le bloc-note va s'ouvrir.
    Copie-colle l'intégralité dans une réponse.
    Le rapport est en outre sauvegardé à la racine du disque (fixnavi.txt)
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. LocoDjp Messages postés 39 Statut Membre
     
    ai! Le lien ne marche plus!
    Je vais essayer de le télécharger depuis un autre site...
    tu connais peut-etre un autre lien? :/
    0
  7. LocoDjp Messages postés 39 Statut Membre
     
    c'est bon!
    J'ai trouvé un lien.
    Je lance le scan! :)
    0
  8. LocoDjp Messages postés 39 Statut Membre
     
    Voici le rapport!

    Search Navipromo version 2.0.2 commencé le 21/05/2007 à 18:17:33,31

    !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
    !!! Poster ce rapport sur le forum pour le faire analyser !!!
    !!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!!

    Fix lancé depuis C:\Program Files\navilog1
    Mise a jour le 17.05.2007 a 23h00 by IL-MAFIOSO

    Executé en mode normal

    *** Recherche Programmes installes ***

    *** Recherche dossiers dans C:\WINDOWS ***

    *** Recherche dossiers dans C:\Program Files ***

    *** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***

    *** Recherche dossiers dans C:\Documents and Settings\Michiel Bastiaenen\Application Data ***

    *** Recherche avec BlackLight Engine/F-secure ***
    BlackLight Engine est un produit de F-secure, pour + d'infos :
    https://www.f-secure.com/en

    Fichier(s) caché(s) dans C:\WINDOWS\system32 :

    Processus caché(s) dans C:\WINDOWS\system32 :

    *** Recherche fichiers ***

    *** Recherche cles registre ***

    Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs]

    Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage]

    Recherche Clé Magic Control

    *** Module de Recherche complémentaire ***
    (Recherche fichiers spécifiques)

    1)Recherche fichiers connus:

    2)Recherche Heuristique :
    *
    **
    ***
    ****
    *****
    ******
    *******
    ********

    *** Analyse Terminé le 21/05/2007 à 18:32:37,98 ***

    J'attend une réponse! ;)
    0
  9. Utilisateur anonyme
     
    Bonsoir

    Jete Nvilog, fais ceci pour vérifier

    Télécharge ComboScan sur ton Bureau.
    ---> http://www.techsupportforum.com/sectools/Deckard/dss.exe
    Ferme toutes les applications en cours ; antivirus, pare-feu, etc ..
    Double-clic sur comboscan.exe A la fenêtre qui s'affiche, clic sur OK.
    Soit patient ..
    Le rapport Comboscan.txt s'affichera, copie et colle le contenu de ce fichier ici.
    0
  10. LocoDjp Messages postés 39 Statut Membre
     
    Ok!
    C'est fait, mais quand je lisait le nouveau message à toi dans ce site, mon ordi a un peu crashé. D'abord, il y a eu une sorte de message de ''Sony Tray'', jmen souviens plus tres bien qu'est-ce que c'etait, mais ils ont dit qu'il y avait un erreur dans ce programme, et tout a coup, il y a eu un ecran bleu...avec des infos ou ils disent que qqchose c mal passé. Mais bon ça remarche, et j'espere vraiment que vous pourriez m'aider.
    Je n'ai pas eu de comboscan.txt mais j'ai eu un main.txt et un extra.txt.

    Voici le main:

    Computer is in Normal Mode.
    --------------------------------------------------------------------------------

    -- System Restore --------------------------------------------------------------

    Successfully created a Deckard's System Scanner Restore Point.

    -- Last 5 Restore Point(s) --
    78: 2007-05-22 16:12:49 UTC - RP299 - Deckard's System Scanner Restore Point
    77: 2007-05-21 15:58:58 UTC - RP298 - Supprimé Logitech Desktop Messenger
    76: 2007-05-20 08:21:42 UTC - RP297 - Removed Camtasia Studio 4
    75: 2007-05-18 21:12:37 UTC - RP296 - Installed EZXCocktail
    74: 2007-05-18 20:52:49 UTC - RP295 - Installed EZdrummer

    -- First Restore Point --
    1: 2007-02-21 19:55:18 UTC - RP222 - Point de vérification système

    Backed up registry hives.

    Performed disk cleanup.

    -- HijackThis (run as Michiel Bastiaenen.exe) ----------------------------------

    Logfile of HijackThis v1.99.1
    Scan saved at 18:15:54, on 22/05/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16441)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
    C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
    C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
    C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
    C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
    C:\Program Files\Ahead\InCD\InCDsrv.exe
    C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
    C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
    C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\PnkBstrA.exe
    C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\HP\QuickPlay\QPService.exe
    C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
    C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
    C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
    C:\Program Files\Ahead\InCD\InCD.exe
    C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTScheduler.exe
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
    C:\Program Files\AntivirusFirewall\Common\FSM32.EXE
    C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe
    C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe
    C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTAUTrayApp.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Program Files\M-Audio Audiophile USB\Dmn\ma003dmn.exe
    C:\Program Files\Fichiers communs\Sony Shared\GMR\GMRMan.exe
    C:\PROGRA~1\WIDCOMM\LOGICI~1\BTSTAC~1.EXE
    C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
    C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
    C:\PROGRA~1\HPQ\Shared\HPQTOA~1.EXE
    C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
    C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe
    C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\Documents and Settings\Michiel Bastiaenen\Bureau\dss.exe
    C:\HIJACK~1\Michiel Bastiaenen.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://configuration.adsl/
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: (no name) - {AF57C3BC-90D3-4F62-8F84-CA3430A1D81D} - (no file)
    O2 - BHO: (no name) - {B525AC1C-2F8F-4258-A5B9-8A328D625540} - (no file)
    O2 - BHO: (no name) - {C5887F01-7FA9-4B50-A134-9448AB0DB45A} - (no file)
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /nodetect
    O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
    O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
    O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
    O4 - HKLM\..\Run: [Reminder] C:\Windows\CREATOR\Remind_XP.exe
    O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
    O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
    O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
    O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
    O4 - HKLM\..\Run: [CONNECTScheduler] "C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTScheduler.exe" /RUN_SCHEDULER
    O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
    O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
    O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
    O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [H2O] C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
    O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
    O4 - HKLM\..\Run: [SMSTray] C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
    O4 - Global Startup: BTTray.lnk = ?
    O4 - Global Startup: CONNECTAUTrayApp.lnk = C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTAUTrayApp.exe
    O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqthb08.exe
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
    O4 - Global Startup: MA003DMN.LNK = C:\Program Files\M-Audio Audiophile USB\Dmn\ma003dmn.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm
    O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
    O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
    O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
    O11 - Options group: [INTERNATIONAL] International*
    O14 - IERESET.INF: START_PAGE_URL=https://www.msn.com/de-ch?cobrand=hp.msn.com&ocid=HPDHP&pc=HPDTDF&checklang=1
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061023/qtinstall.info.apple.com/qtactivex/qtplugin.cab
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/ES-ES/a-UNO1/GAME_UNO1.cab
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
    O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
    O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
    O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
    O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
    O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - Unknown owner - C:\WINDOWS\System32\FTRTSVC.exe (file missing)
    O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: InCD Helper (InCDsrv) - AHEAD Software - C:\Program Files\Ahead\InCD\InCDsrv.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Unknown owner - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTSERV.EXE (file missing)
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
    O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
    O23 - Service: Sony SCSI Helper Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\Fsk\SonySCSIHelperService.exe
    O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe

    -- HijackThis Fixed Entries (C:\HIJACK~1\backups\) -----------------------------

    backup-20070520-004202-611 O4 - HKLM\..\Run: [MAAgent] C:\Program Files\MarkAny\ContentSafer\MAAgent.exe

    -- File Associations -----------------------------------------------------------

    All associations okay.

    -- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

    R0 FSFW (F-Secure Firewall Driver) - c:\windows\system32\drivers\fsdfw.sys <Not Verified; F-Secure Corporation; F-Secure Anti-Virus Internet Shield>
    R1 SCDEmu - c:\windows\system32\drivers\scdemu.sys <Not Verified; PowerISO Computing, Inc.; scdemu>
    R2 F-Secure Filter (F-Secure File System Filter) - c:\program files\antivirusfirewall\anti-virus\win2k\fsfilter.sys
    R2 F-Secure Gatekeeper - c:\program files\antivirusfirewall\anti-virus\win2k\fsgk.sys
    R2 F-Secure Recognizer (F-Secure File System Recognizer) - c:\program files\antivirusfirewall\anti-virus\win2k\fsrec.sys
    R3 CLEDX (Team H2O CLEDX service) - c:\windows\system32\drivers\cledx.sys <Not Verified; Team H2O; CLEDX>
    R3 Pcouffin (Low level access layer for CD devices) - c:\windows\system32\drivers\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>

    S3 btwhid - c:\windows\system32\drivers\btwhid.sys <Not Verified; Broadcom Corporation.; Bluetooth Software 4.0.1.3400>
    S3 emuumidi (E-MU USB-MIDI Driver) - c:\windows\system32\drivers\emuumidi.sys <Not Verified; E-MU Systems; E-MU Audio Product>
    S3 ma763003 (M-Audio Audiophile) - c:\windows\system32\drivers\ma763003.sys <Not Verified; Nemesis; M-Audio Audiophile Driver>
    S3 MADFU003 - c:\windows\system32\drivers\madfu003.sys <Not Verified; Nemesis; M-Audio Audiophile USB Driver>
    S3 PCAMPR5 (PCAMPR5 NDIS Protocol Driver) - c:\windows\system32\pcampr5.sys (file missing)
    S3 PCANDIS5 (PCANDIS5 NDIS Protocol Driver) - c:\windows\system32\pcandis5.sys <Not Verified; Printing Communications Assoc., Inc. (PCAUSA); PCAUSA Rawether for Windows>
    S3 portio - c:\program files\zinf\portio.sys (file missing)
    S3 SYMIDSCO - c:\progra~1\fichie~1\symant~1\symcdata\idsdefs\20060922.092\symidsco.sys (file missing)
    S3 USBNP4X4 (M-Audio Audiophile USB Midi) - c:\windows\system32\drivers\usbnp4x4.sys <Not Verified; Doug Fetter Software Wizardry; M-Audio Audiophile USB Audio & Midi Interface>

    -- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

    R2 BackWeb Plug-in - 6588780 (Antivirus Firewall) - c:\progra~1\antivi~1\backweb\6588780\program\servic~1.exe <Not Verified; Securitoo Portal; RunnerEXE Application>
    R2 fsbwsys - "c:\program files\antivirusfirewall\backweb\6588780\program\fsbwsys.exe" <Not Verified; F-Secure Corp.; F-Secure BackWeb>
    R2 F-Secure Gatekeeper Handler Starter (FSGKHS) - "c:\program files\antivirusfirewall\anti-virus\fsgk32st.exe" <Not Verified; F-Secure Corporation; F-Secure Corp. Startup service>
    R2 FSMA (F-Secure Management Agent) - "c:\program files\antivirusfirewall\common\fsma32.exe" <Not Verified; F-Secure Corporation; F-Secure Management Agent>
    R3 FSDFWD (F-Secure Anti-Virus Firewall Daemon) - "c:\program files\antivirusfirewall\fwes\program\fsdfwd.exe" <Not Verified; F-Secure Corporation; F-Secure Anti-Virus Internet Shield>

    S2 FTRTSVC (France Telecom Routing Table Service) - c:\windows\system32\ftrtsvc.exe (file missing)
    S2 LBTServ (Logitech Bluetooth Service) - c:\program files\fichiers communs\logitech\bluetooth\lbtserv.exe (file missing)
    S4 Wlancfg (Service de lancement de WlanCfg) - c:\program files\inventel\gateway\wlancfg.exe svc <Not Verified; Inventel; Application WLANCfg>

    -- Scheduled Tasks -------------------------------------------------------------

    2007-05-22 17:15:29 552 --a------ C:\WINDOWS\Tasks\Scheduled scanning task.job
    2006-10-28 11:54:06 284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job

    -- Files created between 2007-04-22 and 2007-05-22 -----------------------------

    2007-05-21 18:16:56 53248 --a------ C:\WINDOWS\system32\Process.exe <Not Verified; http://www.beyondlogic.org; Command Line Process Utility>
    2007-05-21 18:15:29 0 d-------- C:\Program Files\Navilog1
    2007-05-20 12:00:53 0 d-------- C:\SDVDTemp
    2007-05-20 11:57:57 39264 --a------ C:\WINDOWS\system32\drivers\Pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>
    2007-05-20 11:57:54 0 d-------- C:\Program Files\Super DVD Creator 8.0
    2007-05-20 11:45:11 0 d-------- C:\DVDTemp
    2007-05-20 00:52:34 0 dr-h----- C:\Documents and Settings\Michiel Bastiaenen\Recent
    2007-05-20 00:28:54 0 d-------- C:\Program Files\CCleaner
    2007-05-20 00:17:33 11847 --a------ C:\dnsbak.reg
    2007-05-18 22:52:54 0 d-------- C:\Program Files\Toontrack
    2007-05-15 18:37:38 2829 --a------ C:\WINDOWS\War3Unin.pif
    2007-05-15 18:37:38 139264 --a------ C:\WINDOWS\War3Unin.exe <Not Verified; Blizzard Entertainment; Warcraft III Uninstaller>
    2007-05-15 18:37:38 69019 --a------ C:\WINDOWS\War3Unin.dat
    2007-05-15 18:34:04 0 d-------- C:\Program Files\Warcraft III
    2007-05-01 09:50:51 0 d-------- C:\Program Files\Propellerhead
    2007-04-30 17:05:51 0 d-------- C:\Program Files\MagicISO
    2007-04-28 17:04:57 0 d-------- C:\Documents and Settings\Michiel Bastiaenen\Application Data\DataCast
    2007-04-28 17:04:53 0 d-------- C:\Documents and Settings\Michiel Bastiaenen\Application Data\InstallShield
    2007-04-28 17:02:42 299008 --a------ C:\WINDOWS\system32\LAME_MP3.dll
    2007-04-28 17:02:41 0 d-------- C:\Program Files\Lame MP3 Codec
    2007-04-28 17:01:44 65024 --a------ C:\WINDOWS\IFinst26.exe
    2007-04-28 17:00:52 57344 --a------ C:\WINDOWS\system32\MTXSYNCICON.dll <Not Verified; Marktek Inc.; MTXSYNCICON Module>
    2007-04-28 17:00:52 40960 --a------ C:\WINDOWS\system32\MTTELECHIP.dll <Not Verified; Telechips Inc.,; TCC730 USB>
    2007-04-28 17:00:52 155648 --a------ C:\WINDOWS\system32\MSFLib.dll <Not Verified; Teruten Inc.; MSFLib>
    2007-04-28 17:00:52 245760 --a------ C:\WINDOWS\system32\MSCLib.dll <Not Verified; Teruten Inc.; MSCLib>
    2007-04-28 17:00:51 364544 --a------ C:\WINDOWS\system32\MASetupWizard.dll <Not Verified; (?)????; MASetupWizard Module>
    2007-04-28 17:00:51 24576 --a------ C:\WINDOWS\system32\MASetupCleaner.exe <Not Verified; (?)????; MASetupCleaner ?? ????>
    2007-04-28 17:00:50 200704 --a------ C:\WINDOWS\system32\muzwmts.dll <Not Verified; (c) MusicCity; P3WMTSplitter Filter>
    2007-04-28 17:00:50 167936 --a------ C:\WINDOWS\system32\muzapp.exe <Not Verified; Musiccity Co.Ltd.; MUZAoDApp Module>
    2007-04-28 17:00:50 471040 --a------ C:\WINDOWS\system32\muzapp.dll <Not Verified; Musiccity Co.Ltd.; MUZAoDAppCtrl Module>
    2007-04-28 17:00:50 135168 --a------ C:\WINDOWS\system32\muzaf1.dll <Not Verified; Musiccity Co.Ltd.; muzaf1>
    2007-04-28 17:00:50 57344 --a------ C:\WINDOWS\system32\MK_Lyric.dll <Not Verified; Marktek; Marktek MK_Lyric>
    2007-04-28 17:00:50 45056 --a------ C:\WINDOWS\system32\MaXMLProto.dll <Not Verified; (?) ????; XML ?? ???? ?????>
    2007-04-28 17:00:50 40960 --a------ C:\WINDOWS\system32\MAMACExtract.dll <Not Verified; ???????; ??????? MAMACExtract>
    2007-04-28 17:00:50 106609 --a------ C:\WINDOWS\system32\MaJUtilLib.dll <Not Verified; (?) ????, ??? ???; MaJUtilLib ?? ?? ?????>
    2007-04-28 17:00:50 49152 --a------ C:\WINDOWS\system32\MaJGUILib.dll <Not Verified; (?) ????; MaJGUILib ?? ?? ?????>
    2007-04-28 17:00:50 45056 --a------ C:\WINDOWS\system32\MACXMLProto.dll <Not Verified; (?) ????; ????? ???? ?????>
    2007-04-28 17:00:37 118784 --a------ C:\WINDOWS\system32\MaDRM.dll <Not Verified; (?)????; MaDRM ?? ?? ????? with PKI>
    2007-04-28 17:00:31 921600 --a------ C:\WINDOWS\system32\vorbisenc.dll
    2007-04-28 17:00:31 188416 --a------ C:\WINDOWS\system32\vorbis.dll
    2007-04-28 17:00:31 110592 --a------ C:\WINDOWS\system32\tg_dump.dll <Not Verified; ENJsoft Corporation; SelfMusicVideo Filter>
    2007-04-28 17:00:31 237568 --a------ C:\WINDOWS\system32\OggDS.dll <Not Verified; ; Ogg DirectShow(tm) Filter Collection>
    2007-04-28 17:00:31 45056 --a------ C:\WINDOWS\system32\Ogg.dll
    2007-04-28 17:00:28 0 d-------- C:\Program Files\Samsung

    -- Find3M Report ---------------------------------------------------------------

    2007-05-22 18:12:46 0 d-------- C:\Program Files\Wanadoo
    2007-05-22 18:06:02 664 --a------ C:\WINDOWS\system32\d3d9caps.dat
    2007-05-21 17:58:54 0 d-------- C:\Program Files\Logitech
    2007-05-21 17:53:00 0 d-------- C:\Program Files\MSN Messenger
    2007-05-20 12:22:50 0 d-------- C:\Documents and Settings\Michiel Bastiaenen\Application Data\Azureus
    2007-05-18 22:52:54 0 d-------- C:\Program Files\VstPlugins
    2007-05-17 14:01:01 0 d-------- C:\Program Files\Fichiers communs\Sonic Shared
    2007-05-17 13:59:56 0 d-------- C:\Program Files\CONEXANT
    2007-05-17 13:58:06 0 d-------- C:\Program Files\eMule
    2007-05-05 09:17:24 445584 --a------ C:\WINDOWS\system32\perfh00C.dat
    2007-05-05 09:17:24 64016 --a------ C:\WINDOWS\system32\perfc00C.dat
    2007-04-28 17:04:57 0 d--h----- C:\Program Files\InstallShield Installation Information
    2007-04-20 17:52:53 0 d-------- C:\Documents and Settings\Michiel Bastiaenen\Application Data\Propellerhead Software
    2007-04-20 17:38:12 0 d-------- C:\Program Files\PowerISO
    2007-04-18 19:00:02 0 d-------- C:\Documents and Settings\Michiel Bastiaenen\Application Data\ImgBurn
    2007-04-15 13:16:20 0 d-------- C:\Program Files\MUSICMATCH
    2007-04-15 11:11:02 0 d-------- C:\Documents and Settings\Michiel Bastiaenen\Application Data\Logitech
    2007-04-15 11:01:26 0 d-------- C:\Program Files\Fichiers communs\Logitech
    2007-04-14 18:24:40 0 d-------- C:\Program Files\Fichiers communs
    2007-04-14 18:24:40 0 d-------- C:\Program Files\Fichiers communs\AVSMedia
    2007-04-13 14:41:16 0 d-------- C:\Program Files\Azureus
    2007-04-11 19:55:30 0 d-------- C:\Program Files\Activision
    2007-04-01 11:31:50 0 d-------- C:\Program Files\Creative

    -- Registry Dump ---------------------------------------------------------------

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
    {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
    {53707962-6F74-2D53-2644-206D7942484F} C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
    "SunJavaUpdateSched"="C:\\Program Files\\Java\\jre1.5.0_06\\bin\\jusched.exe"
    "hpWirelessAssistant"="C:\\Program Files\\hpq\\HP Wireless Assistant\\HP Wireless Assistant.exe"
    "NvCplDaemon"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup"
    "NvMediaCenter"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvMcTray.dll,NvTaskbarInit"
    "nwiz"="nwiz.exe /installquiet /nodetect"
    "High Definition Audio Property Page Shortcut"="CHDAudPropShortcut.exe"
    "SynTPEnh"="C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe"
    "QPService"="\"C:\\Program Files\\HP\\QuickPlay\\QPService.exe\""
    "HP Software Update"="C:\\Program Files\\Hp\\HP Software Update\\HPWuSchd2.exe"
    "QlbCtrl"=hex(2):25,50,72,6f,67,72,61,6d,46,69,6c,65,73,25,5c,48,65,77,6c,65,\
    "Cpqset"="C:\\Program Files\\HPQ\\Default Settings\\cpqset.exe"
    "RecGuard"="C:\\Windows\\SMINST\\RecGuard.exe"
    "Reminder"="C:\\Windows\\CREATOR\\Remind_XP.exe"
    "Logitech Hardware Abstraction Layer"="KHALMNPR.EXE"
    "WOOWATCH"="C:\\PROGRA~1\\Wanadoo\\Watch.exe"
    "WOOTASKBARICON"="C:\\PROGRA~1\\Wanadoo\\GestMaj.exe TaskBarIcon.exe"
    "UpdReg"="C:\\WINDOWS\\UpdReg.EXE"
    "ISUSPM Startup"="C:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\UPDATE~1\\ISUSPM.exe -startup"
    "ISUSScheduler"="\"C:\\Program Files\\Fichiers communs\\InstallShield\\UpdateService\\issch.exe\" -start"
    "NeroFilterCheck"="C:\\WINDOWS\\system32\\NeroCheck.exe"
    "InCD"="C:\\Program Files\\Ahead\\InCD\\InCD.exe"
    "CONNECTScheduler"="\"C:\\Program Files\\Sony\\CONNECTAutoUpdate\\CONNECTScheduler.exe\" /RUN_SCHEDULER"
    "F-Secure Manager"="\"C:\\Program Files\\AntivirusFirewall\\Common\\FSM32.EXE\" /splash"
    "F-Secure TNB"="\"C:\\Program Files\\AntivirusFirewall\\TNB\\TNBUtil.exe\" /CHECKALL /WAITFORSW"
    "F-Secure Startup Wizard"="\"C:\\Program Files\\AntivirusFirewall\\FSGUI\\FSSW.EXE\" /reboot"
    "News Service"="\"C:\\Program Files\\AntivirusFirewall\\FSGUI\\ispnews.exe\""
    "QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
    "H2O"="C:\\Program Files\\SyncroSoft\\Pos\\H2O\\cledx.exe"
    "PWRISOVM.EXE"="C:\\Program Files\\PowerISO\\PWRISOVM.EXE"
    "SMSTray"="C:\\Program Files\\Samsung\\Samsung Media Studio 5\\SMSTray.exe"

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
    "CTFMON.EXE"="C:\\WINDOWS\\system32\\ctfmon.exe"
    "WOOKIT"="C:\\PROGRA~1\\Wanadoo\\Shell.exe appLaunchClientZone.shl|PARAM= cnx"

    [HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
    "CTFMON.EXE"="C:\\WINDOWS\\system32\\CTFMON.EXE"

    [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
    Source REG_SZ file:///C:/DOCUME~1/MICHIE~1/LOCALS~1/Temp/msohtml1/01/clip_image001.jpg

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
    "{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"
    "{1EB27C5E-3DF4-41E2-B51A-D80F812D561D}"=""

    HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa
    Authentication Packages REG_MULTI_SZ msv1_0\0\0
    Security Packages REG_MULTI_SZ kerberos\0msv1_0\0schannel\0wdigest\0\0
    Notification Packages REG_MULTI_SZ scecli\0\0

    [HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]
    HTTPFilter REG_MULTI_SZ HTTPFilter\0\0
    LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0
    NetworkService REG_MULTI_SZ DnsCache\0\0
    DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0
    rpcss REG_MULTI_SZ RpcSs\0\0
    imgsvc REG_MULTI_SZ StiSvc\0\0
    termsvcs REG_MULTI_SZ TermService\0\0
    Usnsvc REG_MULTI_SZ usnsvc\0\0
    WudfServiceGroup REG_MULTI_SZ WUDFSvc\0\0

    -- End of Deckard's System Scanner: finished at 2007-05-22 at 18:17:38 ---------

    Et voici le Extra.txt:

    Deckard's System Scanner v20070426.43
    Extra logfile - please post this as an attachment with your post.
    --------------------------------------------------------------------------------

    -- System Information ----------------------------------------------------------

    Microsoft Windows XP Édition familiale (build 2600) SP 2.0
    Architecture: X86; Language: French

    CPU 0: Genuine Intel(R) CPU T2400 @ 1.83GHz
    CPU 1: Genuine Intel(R) CPU T2400 @ 1.83GHz
    Percentage of Memory in Use: 26%
    Physical Memory (total/avail): 2046.04 MiB / 1504.93 MiB
    Pagefile Memory (total/avail): 3937.02 MiB / 3539.07 MiB
    Virtual Memory (total/avail): 2047.88 MiB / 1954.84 MiB

    C: is Fixed (NTFS) - 103.16 GiB total, 19.87 GiB free.
    D: is Fixed (FAT32) - 7.6 GiB total, 1.2 GiB free.
    E: is CDROM (No Media)
    F: is CDROM (No Media)

    -- Security Center -------------------------------------------------------------

    AUOptions is scheduled to auto-install.
    Windows Internal Firewall is disabled.

    FirstRunDisabled is set.

    FW: Norton Internet Worm Protection v2006 (Symantec) [COLOR=RED]Disabled[/COLOR]
    FW: AntiVirus Firewall 6.15 v6.15 (F-Secure Corporation) [COLOR=RED]Disabled[/COLOR]
    AV: AntiVirus Firewall 6.15 v6.15 (F-Secure Corporation) [COLOR=RED]Disabled[/COLOR]

    -- Environment Variables -------------------------------------------------------

    ALLUSERSPROFILE=C:\Documents and Settings\All Users
    APPDATA=C:\Documents and Settings\Michiel Bastiaenen\Application Data
    CLASSPATH=.;C:\Program Files\Java\jre1.5.0_06\lib\ext\QTJava.zip
    CLIENTNAME=Console
    CommonProgramFiles=C:\Program Files\Fichiers communs
    COMPUTERNAME=PC245227001778
    ComSpec=C:\WINDOWS\system32\cmd.exe
    FP_NO_HOST_CHECK=NO
    HOMEDRIVE=C:
    HOMEPATH=\Documents and Settings\Michiel Bastiaenen
    LOGONSERVER=\\PC245227001778
    NUMBER_OF_PROCESSORS=2
    OS=Windows_NT
    Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
    PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
    PCTYPE=PAVILION
    PLATFORM=MCD
    PROCESSOR_ARCHITECTURE=x86
    PROCESSOR_IDENTIFIER=x86 Family 6 Model 14 Stepping 8, GenuineIntel
    PROCESSOR_LEVEL=6
    PROCESSOR_REVISION=0e08
    ProgramFiles=C:\Program Files
    PROMPT=$P$G
    QTJAVA=C:\Program Files\Java\jre1.5.0_06\lib\ext\QTJava.zip
    SESSIONNAME=Console
    SonicCentral=C:\Program Files\Fichiers communs\Sonic Shared\Sonic Central\
    SystemDrive=C:
    SystemRoot=C:\WINDOWS
    TEMP=C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp
    TMP=C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp
    USERDOMAIN=PC245227001778
    USERNAME=Michiel Bastiaenen
    USERPROFILE=C:\Documents and Settings\Michiel Bastiaenen
    windir=C:\WINDOWS
    __COMPAT_LAYER=EnableNXShowUI

    -- User Profiles ---------------------------------------------------------------

    Michiel Bastiaenen [I](admin)[/I]

    -- Add/Remove Programs ---------------------------------------------------------

    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Spyware Scanner"
    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Spyware"
    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Virus Client Security Installer"
    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Virus"
    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure DAAS"
    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Diagnostics"
    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure E-mail Scanning"
    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure FWES"
    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure GUI"
    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Help"
    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Internet Shield"
    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Management Agent"
    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Spam Control"
    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Spam Scanner"
    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure TNB"
    --> "C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"News Service"
    --> "C:\Program Files\Creative Professional\E-MU Xboard\Program\SETUP.EXE" /S /U /W /L:FRN
    --> C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu
    --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4475840A-BEB5-4F64-808D-EA73D20ECA35}\SETUP.EXE" -l0x40c
    --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34AF8F17-2C77-43FC-8462-FB29900E4882}\setup.exe" -l0x40c
    --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34AF8F17-2C77-43FC-8462-FB29900E4882}\setup.exe" -l0x40c /remove
    --> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    2000 Jeux XP --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1DCF26DF-2B3D-4EA7-9090-B842F7A404CA}\SETUP.EXE" -l0x40c
    802.11 USB Wireless LAN Adapter --> C:\WINDOWS\system32\unwlsdrv.exe SiS163u
    Ad-Aware SE Personal --> C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG
    Adobe Flash Player 9 ActiveX --> C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
    Adobe Photoshop 7.0 --> C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Adobe\Photoshop 7.0\Uninst.isu" -c"C:\Program Files\Adobe\Photoshop 7.0\Uninst.dll"
    Adobe Reader 6.0.1 - Français --> MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A00000000001}
    Adobe Shockwave Player --> C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
    Amélioration de nos services --> C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{23012310-3E05-46A5-88A9-C6CBCABCAC79} /l1036
    AntiVirus Firewall --> C:\PROGRA~1\ANTIVI~1\Common\fsbwih.exe /uninstall
    Apple Software Update --> MsiExec.exe /I{55FA89BD-21D3-42F7-9249-C94C0094A83C}
    Ares 1.9.0 --> "C:\Program Files\Ares\uninstall.exe"
    ASIO4ALL --> C:\Program Files\ASIO4ALL v2\uninstall.exe
    Audiophile USB 1.5.4.15 --> C:\WINDOWS\iun6002.exe "C:\Program Files\M-Audio Audiophile USB\irunin.ini"
    AVG Anti-Spyware 7.5 --> C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe
    Azureus --> C:\Program Files\Azureus\Uninstall.exe
    Call of Duty(R) 2 --> C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{D0A05794-48C2-4424-A15A-9F20FCFDD374} /l2057
    CCleaner (remove only) --> "C:\Program Files\CCleaner\uninst.exe"
    Conexant HD Audio --> C:\Program Files\CONEXANT\CNXT_HDAUDIO\HXFSETUP.EXE -U -ICPL30A5a.INF
    CONNECT Auto Update --> C:\Program Files\Sony\CONNECTAutoUpdate\Uninstall.exe
    CONNECT Player --> MsiExec.exe /X{EC62DAEB-05E7-46FF-8867-FEBE00DBD790}
    CONNECT Player Language Pack --> MsiExec.exe /X{DC986B2B-DAE4-43E1-A00A-74044CFB6EA4}
    Correctif pour Windows XP (KB896256) --> "C:\WINDOWS\$NtUninstallKB896256$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB909095) --> "C:\WINDOWS\$NtUninstallKB909095$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB912436) --> "C:\WINDOWS\$NtUninstallKB912436$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB914440) --> "C:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB915326) --> "C:\WINDOWS\$NtUninstallKB915326$\spuninst\spuninst.exe"
    Correctif Windows XP - KB873333 --> C:\WINDOWS\$NtUninstallKB873333$\spuninst\spuninst.exe
    Correctif Windows XP - KB873339 --> C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
    Correctif Windows XP - KB883667 --> C:\WINDOWS\$NtUninstallKB883667$\spuninst\spuninst.exe
    Correctif Windows XP - KB884575 --> C:\WINDOWS\$NtUninstallKB884575$\spuninst\spuninst.exe
    Correctif Windows XP - KB885250 --> C:\WINDOWS\$NtUninstallKB885250$\spuninst\spuninst.exe
    Correctif Windows XP - KB885464 --> C:\WINDOWS\$NtUninstallKB885464$\spuninst\spuninst.exe
    Correctif Windows XP - KB885835 --> C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
    Correctif Windows XP - KB885836 --> C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
    Correctif Windows XP - KB885855 --> C:\WINDOWS\$NtUninstallKB885855$\spuninst\spuninst.exe
    Correctif Windows XP - KB885884 --> C:\WINDOWS\$NtUninstallKB885884$\spuninst\spuninst.exe
    Correctif Windows XP - KB886185 --> C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
    Correctif Windows XP - KB887472 --> C:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe
    Correctif Windows XP - KB888113 --> C:\WINDOWS\$NtUninstallKB888113$\spuninst\spuninst.exe
    Correctif Windows XP - KB888239 --> C:\WINDOWS\$NtUninstallKB888239$\spuninst\spuninst.exe
    Correctif Windows XP - KB888302 --> C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
    Correctif Windows XP - KB888402 --> C:\WINDOWS\$NtUninstallKB888402$\spuninst\spuninst.exe
    Correctif Windows XP - KB889673 --> C:\WINDOWS\$NtUninstallKB889673$\spuninst\spuninst.exe
    Correctif Windows XP - KB890859 --> "C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
    Correctif Windows XP - KB891781 --> C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
    Correctif Windows XP - KB892559 --> "C:\WINDOWS\$NtUninstallKB892559$\spuninst\spuninst.exe"
    DataCastComponent --> C:\Program Files\InstallShield Installation Information\{0354C0B5-AA35-49D8-B7B7-1CF3412465DD}\setup.exe -runfromtemp -l0x040c -removeonly
    De Sims 2 --> C:\Program Files\EA GAMES\De Sims 2\EAUninstall.exe
    DirectWave --> C:\Program Files\VstPlugins\DirectWave\uninstall.exe
    DVS Guitar v1.04 --> "C:\Program Files\Steinberg\VstPlugins\DVS Guitar\unins000.exe"
    DX10 --> C:\Program Files\Image-Line\DX10\uninstall.exe
    E-MU Xboard --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{91108AD9-F983-4FDA-A089-ED269C75F21B}\SETUP.EXE" -l0x40c /remove
    EZdrummer --> MsiExec.exe /I{43E8D9E7-AFC9-4BA3-8106-B95E02B87AB7}
    EZXCocktail --> MsiExec.exe /I{147567F0-8575-4BE0-B5B3-62706C67FA5A}
    FC Loader 1.01D --> "C:\Program Files\FC Loader\unins000.exe"
    Final Master Trial --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E622ECC4-4310-4D7B-B401-159E0C22516A}\Setup.exe" -l0x40c
    FL Studio 7 --> C:\Program Files\Image-Line\FL Studio 7\uninstall.exe
    Gestionnaire Internet --> C:\PROGRA~1\Wanadoo\uninstall.exe
    GlaceVerb 1.01 --> "C:\Program Files\Steinberg\Vstplugins\Dasample GlaceVerb\unins000.exe"
    Google Earth --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}\setup.exe" -l0x40c -removeonly
    HDAUDIO Soft Data Fax Modem with SmartCP --> C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_CPL30A5m\HXFSETUP.EXE -U -ICPL30A5m.inf
    HijackThis 1.99.1 --> C:\HIJACK~1\HijackThis.exe /uninstall
    Hotfix for Windows Media Format 11 SDK (KB929399) --> "C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
    HP Help and Support --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}\setup.exe" -l0x40c -removeonly
    HP Imaging Device Functions 6.0 --> C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat
    HP Integrated Module with Bluetooth wireless technology --> MsiExec.exe /X{3F4EC965-28EF-45C3-B063-04B25D4E9679}
    HP Photosmart Premier Software 6.0 --> C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
    HP Quick Launch Buttons 6.00 E2 --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34D2AB40-150D-475D-AE32-BD23FB5EE355}\setup.exe" -l0x40c -removeonly uninst
    HP QuickPlay 2.1 --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{45D707E9-F3C4-11D9-A373-0050BAE317E1}\setup.exe" -uninstall
    HP Software Update --> MsiExec.exe /X{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}
    HP User Guides--System Recovery --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BC96BBA7-C634-460E-AD18-A0A994213F80}\Setup.exe" -l0x40c -removeonly
    HP User Guides 0019 --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E74E3D81-773B-4DCF-B706-50236F80BD81}\setup.exe" -l0x40c -removeonly
    HP Wireless Assistant 2.00 E1 --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4302B2DD-D958-40E3-BAF3-B07FFE1978CE}\setup.exe" -l0x40c hpquninst
    IL Download Manager --> C:\Program Files\Image-Line\Downloader\uninstall.exe
    InCD --> C:\WINDOWS\NuNInst.exe /UNINSTALL
    Intel(R) PRO Network Connections Drivers --> Prounstl.exe
    IsoBuster 2.0 --> "C:\Program Files\Smart Projects\IsoBuster\Uninst\unins000.exe"
    J2SE Runtime Environment 5.0 Update 6 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
    JX220 (remove only) --> "C:\Program Files\JXPlugins\JX220\uninstall.exe"
    Lame ACM MP3 Codec --> "C:\WINDOWS\IFinst26.exe" -UC:\Program Files\Lame MP3 Codec\IFU1D1.inf
    Le Centre de Contrôle de Licences de Syncrosoft --> C:\PROGRA~1\SYNCRO~1\UNWISE.EXE C:\PROGRA~1\SYNCRO~1\INSTALL.LOG
    LimeWire PRO 4.12.3 --> "C:\Program Files\LimeWire\uninstall.exe"
    LiquidInstrumentVst 1.0 --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A2453C21-B185-437A-933D-EAFC19D0E2D2}\setup.exe" -l0x9 -removeonly
    Logitech SetPoint --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe" -l0x40c -removeonly
    Macromedia Flash Player 8 --> MsiExec.exe /X{6815FCDD-401D-481E-BA88-31B4754C2B46}
    Magic ISO Maker v5.3 (build 0221) --> C:\PROGRA~1\MagicISO\UNWISE.EXE C:\PROGRA~1\MagicISO\INSTALL.LOG
    Microsoft Compression Client Pack 1.0 for Windows XP --> "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
    Microsoft Office Word Viewer 2003 --> MsiExec.exe /I{9085040C-6000-11D3-8CFE-0150048383C9}
    Microsoft Office XP Small Business --> MsiExec.exe /I{91130413-6000-11D3-8CFE-0050048383C9}
    Microsoft User-Mode Driver Framework Feature Pack 1.0 --> "C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
    Microsoft Works --> MsiExec.exe /I{A059DE09-1B49-4450-B340-7AE097EC3F04}
    Mise à jour de sécurité pour Lecteur Windows Media (KB911564) --> "C:\WINDOWS\$NtUninstallKB911564$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734) --> "C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398) --> "C:\WINDOWS\$NtUninstallKB925398_WMP64$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 9 (KB911565) --> "C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Step by Step Interactive Training (KB898458) --> "C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Step by Step Interactive Training (KB923723) --> "C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB890046) --> "C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB893066) --> "C:\WINDOWS\$NtUninstallKB893066$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB893756) --> "C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896358) --> "C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896422) --> "C:\WINDOWS\$NtUninstallKB896422$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896423) --> "C:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896424) --> "C:\WINDOWS\$NtUninstallKB896424$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896428) --> "C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB899587) --> "C:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB899591) --> "C:\WINDOWS\$NtUninstallKB899591$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB900725) --> "C:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB901017) --> "C:\WINDOWS\$NtUninstallKB901017$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB901190) --> "C:\WINDOWS\$NtUninstallKB901190$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB901214) --> "C:\WINDOWS\$NtUninstallKB901214$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB902400) --> "C:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB903235) --> "C:\WINDOWS\$NtUninstallKB903235$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB904706) --> "C:\WINDOWS\$NtUninstallKB904706$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB905414) --> "C:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB905749) --> "C:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB908519) --> "C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911562) --> "C:\WINDOWS\$NtUninstallKB911562$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911567) --> "C:\WINDOWS\$NtUninstallKB911567$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911927) --> "C:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB912919) --> "C:\WINDOWS\$NtUninstallKB912919$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB913446) --> "C:\WINDOWS\$NtUninstallKB913446$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB913580) --> "C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB914388) --> "C:\WINDOWS\$NtUninstallKB914388$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB914389) --> "C:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917159) --> "C:\WINDOWS\$NtUninstallKB917159$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917344) --> "C:\WINDOWS\$NtUninstallKB917344$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917422) --> "C:\WINDOWS\$NtUninstallKB917422$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917953) --> "C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB918118) --> "C:\WINDOWS\$NtUninstallKB918118$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB918439) --> "C:\WINDOWS\$NtUninstallKB918439$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB918899) --> "C:\WINDOWS\$NtUninstallKB918899$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB919007) --> "C:\WINDOWS\$NtUninstallKB919007$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920213) --> "C:\WINDOWS\$NtUninstallKB920213$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920214) --> "C:\WINDOWS\$NtUninstallKB920214$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920670) --> "C:\WINDOWS\$NtUninstallKB920670$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920683) --> "C:\WINDOWS\$NtUninstallKB920683$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920685) --> "C:\WINDOWS\$NtUninstallKB920685$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB921398) --> "C:\WINDOWS\$NtUninstallKB921398$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB921883) --> "C:\WINDOWS\$NtUninstallKB921883$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB922616) --> "C:\WINDOWS\$NtUninstallKB922616$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB922760) --> "C:\WINDOWS\$NtUninstallKB922760$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB922819) --> "C:\WINDOWS\$NtUninstallKB922819$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923191) --> "C:\WINDOWS\$NtUninstallKB923191$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923414) --> "C:\WINDOWS\$NtUninstallKB923414$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923689) --> "C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923694) --> "C:\WINDOWS\$NtUninstallKB923694$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923980) --> "C:\WINDOWS\$NtUninstallKB923980$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924191) --> "C:\WINDOWS\$NtUninstallKB924191$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924270) --> "C:\WINDOWS\$NtUninstallKB924270$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924496) --> "C:\WINDOWS\$NtUninstallKB924496$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924667) --> "C:\WINDOWS\$NtUninstallKB924667$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB925454) --> "C:\WINDOWS\$NtUninstallKB925454$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB925486) --> "C:\WINDOWS\$NtUninstallKB925486$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB926255) --> "C:\WINDOWS\$NtUninstallKB926255$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB926436) --> "C:\WINDOWS\$NtUninstallKB926436$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB927779) --> "C:\WINDOWS\$NtUninstallKB927779$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB927802) --> "C:\WINDOWS\$NtUninstallKB927802$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB928255) --> "C:\WINDOWS\$NtUninstallKB928255$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB928843) --> "C:\WINDOWS\$NtUninstallKB928843$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB930178) --> "C:\WINDOWS\$NtUninstallKB930178$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB932168) --> "C:\WINDOWS\$NtUninstallKB932168$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB894391) --> "C:\WINDOWS\$NtUninstallKB894391$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB896727) --> "C:\WINDOWS\$NtUninstallKB896727$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB898461) --> "C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB900485) --> "C:\WINDOWS\$NtUninstallKB900485$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB904942) --> "C:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB908531) --> "C:\WINDOWS\$NtUninstallKB908531$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB910437) --> "C:\WINDOWS\$NtUninstallKB910437$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB911280) --> "C:\WINDOWS\$NtUninstallKB911280$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB912945) -->
    Mise à jour pour Windows XP (KB916595) --> "C:\WINDOWS\$NtUninstallKB916595$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB920872) --> "C:\WINDOWS\$NtUninstallKB920872$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB922582) --> "C:\WINDOWS\$NtUninstallKB922582$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB929338) --> "C:\WINDOWS\$NtUninstallKB929338$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB930916) --> "C:\WINDOWS\$NtUninstallKB930916$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB931836) --> "C:\WINDOWS\$NtUninstallKB931836$\spuninst\spuninst.exe"
    Native Instruments B4 II --> C:\PROGRA~1\NATIVE~1\B4II~1\UNWISE.EXE C:\PROGRA~1\NATIVE~1\B4II~1\INSTALL.LOG
    Navigateur Orange --> C:\PROGRA~1\Wanadoo\Shell.exe inst\uninst_FTBrowser.shl
    Navilog1 Version 2.0.2 --> "C:\Program Files\Navilog1\uninstall.exe"
    Nero 6 Ultra Edition --> C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
    Nero Burning Rom Screensaver --> C:\WINDOWS\Nero Burning Rom Screensaver.scr /u
    Nero Media Player --> C:\WINDOWS\UNNMP.exe /UNINSTALL
    NeroMIX --> C:\WINDOWS\UNNMIX.exe /UNINSTALL
    NeroVision Express 2 --> C:\WINDOWS\UNNeroVision.exe /UNINSTALL
    NetWaiting --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\setup.exe" -l0x40c ControlPanel -S
    NVIDIA Drivers --> C:\WINDOWS\system32\nvudisp.exe UninstallGUI
    OpenMG Secure Module 4.3.00 --> C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{F5E4C38C-73BC-4D44-8BFC-969C2B4DABCA} UNINSTALL
    PhotoFiltre --> "C:\Program Files\PhotoFiltre\Uninst.exe"
    PowerISO --> "C:\Program Files\PowerISO\uninstall.exe"
    Proteus X LE --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4475840A-BEB5-4F64-808D-EA73D20ECA35}\SETUP.EXE" -l0x40c /remove
    QuickTime --> MsiExec.exe /I{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}
    Reason 3.0 --> "C:\Program Files\Propellerhead\Reason\Uninstall Reason\unins000.exe"
    Samsung Media Studio --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C20CE592-B0F8-4D20-BF31-0151CA6331A6}\Setup.exe" -l0x40c
    sfArk --> C:\Program Files\sfArk\uninstall.exe
    SimSynth --> C:\Program Files\Image-Line\SimSynth\uninstall.exe
    Sonic Express Labeler --> MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
    Sonic MyDVD Plus --> MsiExec.exe /I{21657574-BD54-48A2-9450-EB03B2C7FC29}
    Sonic Update Manager --> MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
    Spirit of Fire 3D Screensaver 2.2 --> "C:\Program Files\Spirit of Fire 3D Screensaver\unins000.exe"
    Spybot - Search & Destroy 1.4 --> "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
    Steinberg Cubase SX v3.1.1.944 --> C:\PROGRA~1\STEINB~1
    0
  11. LocoDjp Messages postés 39 Statut Membre
     
    Et ici aussi un moved.txt au cas ou...:

    Directories/Files moved to C:\Deckard\System Scanner\backup

    2007-05-22 17:55:49 27331 --a-----t C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\25B542.dmp
    2007-05-22 17:55:49 64108 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\a11d_appcompat.txt
    2007-05-22 17:55:48 27714 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ad6a_appcompat.txt
    2007-05-20 11:51:39 0 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\AZ_15437.txt
    2007-05-21 17:58:54 701 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\BWInstall.log
    2007-05-20 11:29:40 0 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\CacheInfo.dnl
    2007-05-20 11:46:24 0 d-------- C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\e4j118.tmp_dir16038
    2007-05-20 11:51:25 0 d-------- C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\e4j126.tmp_dir17021
    2007-05-21 18:17:34 0 d-------- C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\F-Secure
    2007-05-20 10:49:57 0 d-------- C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\FL Studio
    2007-05-20 21:54:55 0 d-------- C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\hsperfdata_Michiel Bastiaenen
    2007-04-15 11:02:40 24613 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\IadHide5.dll <Not Verified; BackWeb; BackWeb IAdHide>
    2007-01-20 00:54:07 17929072 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\Install_Messenger.exe <Verified; Microsoft Corporation; Messenger>
    2007-05-20 21:32:11 832 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\java_install_reg.log
    2007-05-22 17:25:17 1252 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\jusched.log
    2007-05-22 17:37:04 0 d-------- C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\MessengerCache
    2006-12-30 17:41:01 85286 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru101.tmp
    2006-12-30 17:41:01 88172 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru102.tmp
    2006-12-30 17:41:01 79416 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru103.tmp
    2006-12-30 17:41:01 52874 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru104.tmp
    2006-12-30 17:41:01 47242 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru105.tmp
    2006-12-30 18:43:29 14234 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru105C.tmp
    2006-12-30 18:43:29 13468 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru105D.tmp
    2006-12-30 18:43:29 25212 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru105E.tmp
    2006-12-30 18:43:29 65012 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru105F.tmp
    2006-12-30 17:41:01 53898 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru106.tmp
    2006-12-30 18:43:29 30072 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru1060.tmp
    2006-12-30 18:43:29 12402 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru1061.tmp
    2006-12-30 18:43:29 24120 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru1062.tmp
    2006-12-30 18:43:29 85286 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru1063.tmp
    2006-12-30 18:43:29 88172 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru1064.tmp
    2006-12-30 18:43:29 79416 --a------ C:\DOCUME~1\MICHIE~1\LOCALS~1\Temp\ru1065.tmp
    2002-07-26 02:13:12 196608 --a------ C:\WINDOWS\Downloaded Program Files\dwusplay.exe <Not Verified; InstallShield Software Corporation; InstallShield Update Service>
    2004-12-07 17:07:08 32 --a------ C:\WINDOWS\Downloaded Program Files\bdcore.dll
    2005-03-01 15:08:48 118784 --a------ C:\WINDOWS\Downloaded Program Files\bdupd.dll
    2002-07-26 02:13:18 24576 --a------ C:\WINDOWS\Downloaded Program Files\dwusplay.dll <Not Verified; InstallShield Software Corporation; InstallShield Update Service>
    2007-04-13 02:14:52 382344 --a------ C:\WINDOWS\Downloaded Program Files\GAME_UNO1.dll <Verified; Microsoft; UNO Messenger>
    2005-03-01 15:08:52 53248 --a------ C:\WINDOWS\Downloaded Program Files\ipsupd.dll
    2004-07-28 00:48:52 323584 --a------ C:\WINDOWS\Downloaded Program Files\isusweb.dll <Not Verified; InstallShield Software Corporation; InstallShield Update Service>
    2004-12-07 17:07:08 32 --a------ C:\WINDOWS\Downloaded Program Files\libfn.dll
    2003-05-29 15:00:20 160864 --a------ C:\WINDOWS\Downloaded Program Files\messengerstatsclient.dll <Verified; Microsoft Corporation; MSN® Games by Zone.com>
    2004-04-06 19:03:54 172072 --a------ C:\WINDOWS\Downloaded Program Files\MessengerStatsPAClient.dll <Not Verified; Microsoft Corporation; MSN® Games by Zone.com>
    2007-02-28 15:21:04 130472 --a------ C:\WINDOWS\Downloaded Program Files\MineSweeper.dll <Verified; Microsoft Corporation; MSN® Games by Zone.com>
    2006-06-01 03:54:16 471040 --a------ C:\WINDOWS\Downloaded Program Files\oscan8.ocx <Not Verified; SOFTWIN; bdscanonline>
    2006-05-31 05:15:16 10 --a------ C:\WINDOWS\Downloaded Program Files\oscan81.ocx_x
    2006-07-18 14:35:06 151080 --a------ C:\WINDOWS\Downloaded Program Files\ZIntro.ocx <Not Verified; Microsoft Corporation; MSN® Games by Zone.com>

    -*- End of Logfile -*-
    0
  12. LocoDjp Messages postés 39 Statut Membre
     
    Salut,
    J'ai une question en plus.
    Dans le rapport j'ai vu ces trucs:

    Correctif pour Windows XP (KB896256) --> "C:\WINDOWS\$NtUninstallKB896256$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB909095) --> "C:\WINDOWS\$NtUninstallKB909095$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB912436) --> "C:\WINDOWS\$NtUninstallKB912436$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB914440) --> "C:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB915326) --> "C:\WINDOWS\$NtUninstallKB915326$\spuninst\spuninst.exe"
    Correctif Windows XP - KB873333 --> C:\WINDOWS\$NtUninstallKB873333$\spuninst\spuninst.exe
    Correctif Windows XP - KB873339 --> C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
    Correctif Windows XP - KB883667 --> C:\WINDOWS\$NtUninstallKB883667$\spuninst\spuninst.exe
    Correctif Windows XP - KB884575 --> C:\WINDOWS\$NtUninstallKB884575$\spuninst\spuninst.exe
    Correctif Windows XP - KB885250 --> C:\WINDOWS\$NtUninstallKB885250$\spuninst\spuninst.exe
    Correctif Windows XP - KB885464 --> C:\WINDOWS\$NtUninstallKB885464$\spuninst\spuninst.exe
    Correctif Windows XP - KB885835 --> C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
    Correctif Windows XP - KB885836 --> C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
    Correctif Windows XP - KB885855 --> C:\WINDOWS\$NtUninstallKB885855$\spuninst\spuninst.exe
    Correctif Windows XP - KB885884 --> C:\WINDOWS\$NtUninstallKB885884$\spuninst\spuninst.exe
    Correctif Windows XP - KB886185 --> C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
    Correctif Windows XP - KB887472 --> C:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe
    Correctif Windows XP - KB888113 --> C:\WINDOWS\$NtUninstallKB888113$\spuninst\spuninst.exe
    Correctif Windows XP - KB888239 --> C:\WINDOWS\$NtUninstallKB888239$\spuninst\spuninst.exe
    Correctif Windows XP - KB888302 --> C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
    Correctif Windows XP - KB888402 --> C:\WINDOWS\$NtUninstallKB888402$\spuninst\spuninst.exe
    Correctif Windows XP - KB889673 --> C:\WINDOWS\$NtUninstallKB889673$\spuninst\spuninst.exe
    Correctif Windows XP - KB890859 --> "C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
    Correctif Windows XP - KB891781 --> C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
    Correctif Windows XP - KB892559 --> "C:\WINDOWS\$NtUninstallKB892559$\spuninst\spuninst.exe"

    J'suis allé voir dans C/Windows, et j'ai jamais vu un truc ainsi.
    Je pense que ce sont de nouveaux trucs qui casse l'ordi...ou bien c'est un truc qui fait parti de windows...

    EN PLUS, il y a un nouveau user. En fin je pense sous le nom de ''Default User''. Il y a de nouveaux dossier, mais c'est un peu transparant. Ceci est venu apres le petit crash...

    Qu'en pensez vous?
    0
  13. Utilisateur anonyme
     
    Bonsoir

    Non ce sont les correctifs Windows et l'autre dossier est un dossier Windows.

    ¤ Clic sur démarrer, poste de travail, C:, program files et supprime :

    - Navilog1

    ¤ Clic sur démarrer, panneau de configuration, ajouter/supprimer es programmes et désinstalle :

    - J2SE Runtime Environment 5.0 Update 6

    Télécharge et installe Java dernière version
    ---> https://www.java.com/fr/download/manual.jsp

    ¤ Clic sur démarrer, C:, et supprime ce dossier :

    - Deckard

    ¤ Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked

    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: (no name) - {AF57C3BC-90D3-4F62-8F84-CA3430A1D81D} - (no file)
    O2 - BHO: (no name) - {B525AC1C-2F8F-4258-A5B9-8A328D625540} - (no file)
    O2 - BHO: (no name) - {C5887F01-7FA9-4B50-A134-9448AB0DB45A} - (no file)
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /nodetect
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
    O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
    O4 - HKLM\..\Run: [CONNECTScheduler] "C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTScheduler.exe" /RUN_SCHEDULER
    O4 - HKLM\..\Run: [H2O] C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
    O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: MA003DMN.LNK = C:\Program Files\M-Audio Audiophile USB\Dmn\ma003dmn.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/ES-ES/a-UNO1/GAME_UNO1.cab
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab

    ¤ Clic sur "démarrer", "exécuter", tape: services.msc
    Cherche dans la liste les lignes ci-dessous, tu fais un clic droit dessus choisis "propriétés" et régle les sur "désactivé"

    - AVG Anti-Spyware Guard
    - NVIDIA Display Driver Service
    - InstallDriver Table Manager
    - France Telecom Routing Table Service

    ¤ Avec CCleaner :

    * Redémarre ton PC. Dès l'allumage de celui-ci tapote la touche F8 (ou F5 si F8 ne fonctionne pas), à l'écran qui va apparaître choisis "mode sans echec" attends un peu..

    Fais un nettoyage complet avec Ccleaner (nettoyage + erreur)
    Dès que c'est fait redémarre normalement.

    ¤ Rends toi sur se site
    http://www.virustotal.com/en/virustotalx.html

    En haut à droite clic sur "choisir"
    Tu vas dans C:, windows, tu cherches le processus ci-dessous et tu clic sur "ouvrir"

    C:\WINDOWS\IFinst26.exe

    dès que c'est fait, clic sur "send"
    Tu attends un peu qu'il analyse ton fichier ça peut duré plusieurs minutes et colle le rapport ici une fois qu'il a terminé stp

    ¤ Clic sur démarrer, poste de travail, C:, cherche le fichier ci-dessous, fais un clic droti dessus et choisis "modifier" puis colle le contenu de ce fichier ici

    - dnsbak.reg

    A++
    0
  14. LocoDjp Messages postés 39 Statut Membre
     
    ReSalut!

    J'ai tout fait comme tu l'as dit!
    Voci les rapports.
    Celui de virusTotal:

    Complete scanning result of "IFinst26.exe", received in VirusTotal at 05.23.2007, 14:25:59 (CET).

    Antivirus Version Update Result
    AhnLab-V3 2007.5.23.1 05.23.2007 no virus found
    AntiVir 7.4.0.27 05.23.2007 no virus found
    Authentium 4.93.8 05.23.2007 no virus found
    Avast 4.7.997.0 05.22.2007 no virus found
    AVG 7.5.0.467 05.22.2007 no virus found
    BitDefender 7.2 05.23.2007 no virus found
    CAT-QuickHeal 9.00 05.23.2007 no virus found
    ClamAV devel-20070416 05.23.2007 no virus found
    DrWeb 4.33 05.23.2007 no virus found
    eSafe 7.0.15.0 05.21.2007 suspicious Trojan/Worm
    eTrust-Vet 30.7.3655 05.23.2007 no virus found
    Ewido 4.0 05.23.2007 no virus found
    FileAdvisor 1 05.23.2007 no virus found
    Fortinet 2.85.0.0 05.23.2007 suspicious
    F-Prot 4.3.2.48 05.23.2007 no virus found
    F-Secure 6.70.13030.0 05.23.2007 no virus found
    Ikarus T3.1.1.8 05.23.2007 no virus found
    Kaspersky 4.0.2.24 05.23.2007 no virus found
    McAfee 5036 05.22.2007 no virus found
    Microsoft 1.2503 05.22.2007 no virus found
    NOD32v2 2286 05.23.2007 no virus found
    Norman 5.80.02 05.23.2007 no virus found
    Panda 9.0.0.4 05.23.2007 no virus found
    Prevx1 V2 05.23.2007 no virus found
    Sophos 4.17.0 05.23.2007 no virus found
    Sunbelt 2.2.907.0 05.17.2007 no virus found
    Symantec 10 05.23.2007 no virus found
    TheHacker 6.1.6.120 05.21.2007 no virus found
    VBA32 3.12.0 05.22.2007 no virus found
    VirusBuster 4.3.23:9 05.22.2007 no virus found
    Webwasher-Gateway 6.0.1 05.23.2007 no virus found

    Aditional Information
    File size: 65024 bytes
    MD5: fdc9d4de50a845137580698494b19f13
    SHA1: 0982241e310fd7d79ce544d1c78ee4c6ce704091
    packers: UPX
    packers: UPX
    packers: UPX

    Et voici celui de dnsbak.reg:

    REGEDIT4

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters]
    "NV Hostname"="PC245227001778"
    "DataBasePath"=hex(2):25,53,79,73,74,65,6d,52,6f,6f,74,25,5c,53,79,73,74,65,6d,\
    33,32,5c,64,72,69,76,65,72,73,5c,65,74,63,00
    "NameServer"=""
    "ForwardBroadcasts"=dword:00000000
    "IPEnableRouter"=dword:00000000
    "Domain"=""
    "Hostname"="PC245227001778"
    "SearchList"=""
    "UseDomainNameDevolution"=dword:00000001
    "EnableICMPRedirect"=dword:00000001
    "DeadGWDetectDefault"=dword:00000001
    "DontAddDefaultGatewayDefault"=dword:00000000
    "EnableSecurityFilters"=dword:00000000
    "TcpWindowSize"=dword:0000ffff
    "DhcpNameServer"="192.168.1.1"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Adapters]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Adapters\NdisWanIp]
    "LLInterface"="WANARP"
    "IpConfig"=hex(7):54,63,70,69,70,5c,50,61,72,61,6d,65,74,65,72,73,5c,49,6e,74,\
    65,72,66,61,63,65,73,5c,7b,44,43,41,43,45,45,46,44,2d,36,39,37,36,2d,34,37,\
    44,39,2d,41,30,45,41,2d,31,43,38,35,42,41,35,32,36,42,45,44,7d,00,54,63,70,\
    69,70,5c,50,61,72,61,6d,65,74,65,72,73,5c,49,6e,74,65,72,66,61,63,65,73,5c,\
    7b,38,39,44,41,44,35,35,43,2d,45,46,32,37,2d,34,38,36,32,2d,41,34,43,35,2d,\
    46,36,45,35,37,39,34,36,38,39,33,46,7d,00,00
    "NumInterfaces"=dword:00000002
    "IpInterfaces"=hex:fd,ee,ac,dc,76,69,d9,47,a0,ea,1c,85,ba,52,6b,ed,5c,d5,da,89,\
    27,ef,62,48,a4,c5,f6,e5,79,46,89,3f

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Adapters\{3EF1DFC7-EFC5-4002-85DE-181130353EFF}]
    "LLInterface"=""
    "IpConfig"=hex(7):54,63,70,69,70,5c,50,61,72,61,6d,65,74,65,72,73,5c,49,6e,74,\
    65,72,66,61,63,65,73,5c,7b,33,45,46,31,44,46,43,37,2d,45,46,43,35,2d,34,30,\
    30,32,2d,38,35,44,45,2d,31,38,31,31,33,30,33,35,33,45,46,46,7d,00,00

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Adapters\{4D8ED66A-BA74-43DE-8886-9E9973F22A2D}]
    "LLInterface"=""
    "IpConfig"=hex(7):54,63,70,69,70,5c,50,61,72,61,6d,65,74,65,72,73,5c,49,6e,74,\
    65,72,66,61,63,65,73,5c,7b,34,44,38,45,44,36,36,41,2d,42,41,37,34,2d,34,33,\
    44,45,2d,38,38,38,36,2d,39,45,39,39,37,33,46,32,32,41,32,44,7d,00,00

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Adapters\{6EDBB11E-A1A4-4D05-B711-1960A85E19F7}]
    "LLInterface"=""
    "IpConfig"=hex(7):54,63,70,69,70,5c,50,61,72,61,6d,65,74,65,72,73,5c,49,6e,74,\
    65,72,66,61,63,65,73,5c,7b,36,45,44,42,42,31,31,45,2d,41,31,41,34,2d,34,44,\
    30,35,2d,42,37,31,31,2d,31,39,36,30,41,38,35,45,31,39,46,37,7d,00,00

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Adapters\{87960175-6B2C-4786-920A-2B8D5FD61250}]
    "LLInterface"=""
    "IpConfig"=hex(7):54,63,70,69,70,5c,50,61,72,61,6d,65,74,65,72,73,5c,49,6e,74,\
    65,72,66,61,63,65,73,5c,7b,38,37,39,36,30,31,37,35,2d,36,42,32,43,2d,34,37,\
    38,36,2d,39,32,30,41,2d,32,42,38,44,35,46,44,36,31,32,35,30,7d,00,00

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Adapters\{CEB8C933-EE42-4375-B51A-A9294A677A51}]
    "LLInterface"=""
    "IpConfig"=hex(7):54,63,70,69,70,5c,50,61,72,61,6d,65,74,65,72,73,5c,49,6e,74,\
    65,72,66,61,63,65,73,5c,7b,43,45,42,38,43,39,33,33,2d,45,45,34,32,2d,34,33,\
    37,35,2d,42,35,31,41,2d,41,39,32,39,34,41,36,37,37,41,35,31,7d,00,00

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Adapters\{DB685492-591D-4CBA-9DAB-D40458C07335}]
    "LLInterface"=""
    "IpConfig"=hex(7):54,63,70,69,70,5c,50,61,72,61,6d,65,74,65,72,73,5c,49,6e,74,\
    65,72,66,61,63,65,73,5c,7b,44,42,36,38,35,34,39,32,2d,35,39,31,44,2d,34,43,\
    42,41,2d,39,44,41,42,2d,44,34,30,34,35,38,43,30,37,33,33,35,7d,00,00

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Adapters\{FA310855-B0F7-4026-8398-49041AD55C0F}]
    "LLInterface"="ARP1394"
    "IpConfig"=hex(7):54,63,70,69,70,5c,50,61,72,61,6d,65,74,65,72,73,5c,49,6e,74,\
    65,72,66,61,63,65,73,5c,7b,46,41,33,31,30,38,35,35,2d,42,30,46,37,2d,34,30,\
    32,36,2d,38,33,39,38,2d,34,39,30,34,31,41,44,35,35,43,30,46,7d,00,00

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\DNSRegisteredAdapters]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Interfaces]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Interfaces\{3EF1DFC7-EFC5-4002-85DE-181130353EFF}]
    "UseZeroBroadcast"=dword:00000000
    "EnableDeadGWDetect"=dword:00000001
    "EnableDHCP"=dword:00000001
    "IPAddress"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "SubnetMask"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "DefaultGateway"=hex(7):00
    "DefaultGatewayMetric"=hex(7):00
    "NameServer"=""
    "Domain"=""
    "RegistrationEnabled"=dword:00000001
    "RegisterAdapterName"=dword:00000000
    "TCPAllowedPorts"=hex(7):30,00,00
    "UDPAllowedPorts"=hex(7):30,00,00
    "RawIPAllowedProtocols"=hex(7):30,00,00
    "NTEContextList"=hex(7):30,78,30,30,30,30,30,30,30,34,00,00
    "DhcpClassIdBin"=hex:
    "DhcpServer"="192.168.1.1"
    "Lease"=dword:00015180
    "LeaseObtainedTime"=dword:464f2ca2
    "T1"=dword:464fd562
    "T2"=dword:465053f2
    "LeaseTerminatesTime"=dword:46507e22
    "IPAutoconfigurationAddress"="0.0.0.0"
    "IPAutoconfigurationMask"="255.255.0.0"
    "IPAutoconfigurationSeed"=dword:f6d4876f
    "AddressType"=dword:00000000
    "DhcpIPAddress"="192.168.1.18"
    "DhcpSubnetMask"="255.255.255.0"
    "DhcpRetryTime"=dword:0000a8be
    "DhcpRetryStatus"=dword:00000000
    "DhcpNameServer"="192.168.1.1"
    "DhcpDefaultGateway"=hex(7):31,39,32,2e,31,36,38,2e,31,2e,31,00,00
    "DhcpSubnetMaskOpt"=hex(7):32,35,35,2e,32,35,35,2e,32,35,35,2e,30,00,00

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Interfaces\{4D8ED66A-BA74-43DE-8886-9E9973F22A2D}]
    "UseZeroBroadcast"=dword:00000000
    "EnableDeadGWDetect"=dword:00000001
    "EnableDHCP"=dword:00000001
    "IPAddress"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "SubnetMask"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "DefaultGateway"=hex(7):00
    "DefaultGatewayMetric"=hex(7):00
    "NameServer"=""
    "Domain"=""
    "RegistrationEnabled"=dword:00000001
    "RegisterAdapterName"=dword:00000000
    "TCPAllowedPorts"=hex(7):30,00,00
    "UDPAllowedPorts"=hex(7):30,00,00
    "RawIPAllowedProtocols"=hex(7):30,00,00
    "NTEContextList"=hex(7):30,78,30,30,30,30,30,30,30,32,00,00
    "DhcpClassIdBin"=hex:
    "DhcpServer"="192.168.1.1"
    "Lease"=dword:00015180
    "LeaseObtainedTime"=dword:464f2b1d
    "T1"=dword:464fd3dd
    "T2"=dword:4650526d
    "LeaseTerminatesTime"=dword:46507c9d
    "IPAutoconfigurationAddress"="0.0.0.0"
    "IPAutoconfigurationMask"="255.255.0.0"
    "IPAutoconfigurationSeed"=dword:786188c6
    "AddressType"=dword:00000000
    "DhcpIPAddress"="192.168.1.132"
    "DhcpSubnetMask"="255.255.255.0"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Interfaces\{6EDBB11E-A1A4-4D05-B711-1960A85E19F7}]
    "UseZeroBroadcast"=dword:00000000
    "EnableDeadGWDetect"=dword:00000001
    "EnableDHCP"=dword:00000001
    "IPAddress"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "SubnetMask"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "DefaultGateway"=hex(7):00
    "DefaultGatewayMetric"=hex(7):00
    "NameServer"=""
    "Domain"=""
    "RegistrationEnabled"=dword:00000001
    "RegisterAdapterName"=dword:00000000
    "TCPAllowedPorts"=hex(7):30,00,00
    "UDPAllowedPorts"=hex(7):30,00,00
    "RawIPAllowedProtocols"=hex(7):30,00,00
    "NTEContextList"=hex(7):00
    "DhcpClassIdBin"=hex:
    "DhcpServer"="255.255.255.255"
    "Lease"=dword:00000e10
    "LeaseObtainedTime"=dword:4611523c
    "T1"=dword:46115944
    "T2"=dword:46115e8a
    "LeaseTerminatesTime"=dword:4611604c
    "IPAutoconfigurationAddress"="0.0.0.0"
    "IPAutoconfigurationMask"="255.255.0.0"
    "IPAutoconfigurationSeed"=dword:00000000
    "AddressType"=dword:00000000

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Interfaces\{87960175-6B2C-4786-920A-2B8D5FD61250}]
    "UseZeroBroadcast"=dword:00000000
    "EnableDeadGWDetect"=dword:00000001
    "EnableDHCP"=dword:00000001
    "IPAddress"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "SubnetMask"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "DefaultGateway"=hex(7):00
    "DefaultGatewayMetric"=hex(7):00
    "NameServer"=""
    "Domain"=""
    "RegistrationEnabled"=dword:00000001
    "RegisterAdapterName"=dword:00000000
    "TCPAllowedPorts"=hex(7):30,00,00
    "UDPAllowedPorts"=hex(7):30,00,00
    "RawIPAllowedProtocols"=hex(7):30,00,00
    "NTEContextList"=hex(7):00

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Interfaces\{89DAD55C-EF27-4862-A4C5-F6E57946893F}]
    "UseZeroBroadcast"=dword:00000000
    "EnableDHCP"=dword:00000000
    "IPAddress"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "SubnetMask"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "DefaultGateway"=hex(7):00
    "EnableDeadGWDetect"=dword:00000001
    "DontAddDefaultGateway"=dword:00000000

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Interfaces\{CEB8C933-EE42-4375-B51A-A9294A677A51}]
    "UseZeroBroadcast"=dword:00000000
    "EnableDeadGWDetect"=dword:00000001
    "EnableDHCP"=dword:00000001
    "IPAddress"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "SubnetMask"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "DefaultGateway"=hex(7):00
    "DefaultGatewayMetric"=hex(7):00
    "NameServer"=""
    "Domain"=""
    "RegistrationEnabled"=dword:00000001
    "RegisterAdapterName"=dword:00000000
    "TCPAllowedPorts"=hex(7):30,00,00
    "UDPAllowedPorts"=hex(7):30,00,00
    "RawIPAllowedProtocols"=hex(7):30,00,00
    "NTEContextList"=hex(7):30,78,30,30,30,30,30,30,30,36,00,00
    "DhcpClassIdBin"=hex:

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Interfaces\{DB685492-591D-4CBA-9DAB-D40458C07335}]
    "UseZeroBroadcast"=dword:00000000
    "EnableDeadGWDetect"=dword:00000001
    "EnableDHCP"=dword:00000001
    "IPAddress"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "SubnetMask"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "DefaultGateway"=hex(7):00
    "DefaultGatewayMetric"=hex(7):00
    "NameServer"=""
    "Domain"=""
    "RegistrationEnabled"=dword:00000001
    "RegisterAdapterName"=dword:00000000
    "TCPAllowedPorts"=hex(7):30,00,00
    "UDPAllowedPorts"=hex(7):30,00,00
    "RawIPAllowedProtocols"=hex(7):30,00,00
    "NTEContextList"=hex(7):30,78,30,30,30,30,30,30,30,33,00,00
    "DhcpClassIdBin"=hex:

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Interfaces\{DCACEEFD-6976-47D9-A0EA-1C85BA526BED}]
    "UseZeroBroadcast"=dword:00000000
    "EnableDHCP"=dword:00000000
    "IPAddress"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "SubnetMask"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "DefaultGateway"=hex(7):00
    "EnableDeadGWDetect"=dword:00000001
    "DontAddDefaultGateway"=dword:00000000

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Interfaces\{FA310855-B0F7-4026-8398-49041AD55C0F}]
    "UseZeroBroadcast"=dword:00000000
    "EnableDHCP"=dword:00000001
    "IPAddress"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "SubnetMask"=hex(7):30,2e,30,2e,30,2e,30,00,00
    "DefaultGateway"=hex(7):00
    "DefaultGatewayMetric"=hex(7):00
    "NameServer"=""
    "Domain"=""
    "RegistrationEnabled"=dword:00000001
    "RegisterAdapterName"=dword:00000000
    "TCPAllowedPorts"=hex(7):30,00,00
    "UDPAllowedPorts"=hex(7):30,00,00
    "RawIPAllowedProtocols"=hex(7):30,00,00

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\PersistentRoutes]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Winsock]
    "UseDelayedAcceptance"=dword:00000000
    "HelperDllName"=hex(2):25,53,79,73,74,65,6d,52,6f,6f,74,25,5c,53,79,73,74,65,\
    6d,33,32,5c,77,73,68,74,63,70,69,70,2e,64,6c,6c,00
    "MaxSockAddrLength"=dword:00000010
    "MinSockAddrLength"=dword:00000010
    "Mapping"=hex:0b,00,00,00,03,00,00,00,02,00,00,00,01,00,00,00,06,00,00,00,02,\
    00,00,00,01,00,00,00,00,00,00,00,02,00,00,00,00,00,00,00,06,00,00,00,00,00,\
    00,00,00,00,00,00,06,00,00,00,00,00,00,00,01,00,00,00,06,00,00,00,02,00,00,\
    00,02,00,00,00,11,00,00,00,02,00,00,00,02,00,00,00,00,00,00,00,02,00,00,00,\
    00,00,00,00,11,00,00,00,00,00,00,00,00,00,00,00,11,00,00,00,00,00,00,00,02,\
    00,00,00,11,00,00,00,02,00,00,00,03,00,00,00,00,00,00,00

    Voila! Encore merci pr tous ces réponses!

    (dois je reactiver les trucs de AvG et Nvidia etc.?)
    0
  15. LocoDjp Messages postés 39 Statut Membre
     
    comment ça se fait que tout ces correctifs et ces dossiers cachés sont venu juste apres le crach? On ne peu pas les enlever?
    0
  16. Utilisateur anonyme
     
    Non ne réactive pas AVG et Nvidia ça permet à ton système d'avoir deux services en mois au démarrage de ton PC ;-)
    0
  17. LocoDjp Messages postés 39 Statut Membre
     
    C tout!
    OK!
    MERCI BEAUCOUP pr ton aide!!!!
    En effet l'ordi marche plus vite et ce system doctor je ne l'ai plus revu! :D

    Je sais pas comment tu réussis à aider tout ces gens. En plus tu leur repond à 3h du matin, franchement Bravo!
    Bonne chance pr le reste et j'espere que je ne vais plus t'embeter avec mes problemes! lol

    @+

    (j'applaudis ;) ! )
    0
  18. LocoDjp Messages postés 39 Statut Membre
     
    AH NON!!!!
    Je viens juste de revoir protection center...
    je fais quoi?
    0
  19. Utilisateur anonyme
     
    Fais un nettoyage complet avec CCleaner (nettoyage + erreur) fais le en mode sans échec si possible.

    Télécharge SmitfraudFix et enregistre le sur le bureau. Si ton anti-virus t'alerte d'un virus, désactive-le.
    http://siri.urz.free.fr/Fix/SmitfraudFix.zip

    décompresse SmitfraudFix
    Lance le fichier SmitfraudFix ou SmitfraudFix.cmd et choisit l option 1 copie le rapport ici

    ET

    ¤ Télécharge Clean
    ----> http://www.malekal.com/download/clean.zip

    Dézippe tout le contenu dans le même dossier. Double clic sur clean ou clean.cmd choisissez l'option 1.
    Un rapport va s'ouvrir, copie et colle le contenu ici stp
    0
  20. LocoDjp Messages postés 39 Statut Membre
     
    Ok, voici Smitfraudfix:

    SmitFraudFix v2.186

    Rapport fait à 16:59:10,23, 25/05/2007
    Executé à partir de C:\Documents and Settings\Michiel Bastiaenen\Bureau\SmitfraudFix
    OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
    Le type du système de fichiers est NTFS
    Fix executé en mode normal

    »»»»»»»»»»»»»»»»»»»»»»»» Process

    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
    C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
    C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
    C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
    C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
    C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
    C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
    C:\Program Files\Ahead\InCD\InCDsrv.exe
    C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    C:\WINDOWS\system32\PnkBstrA.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
    C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
    C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
    C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
    C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\HP\QuickPlay\QPService.exe
    C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
    C:\Program Files\AntivirusFirewall\Common\FSM32.EXE
    C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe
    C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe
    C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTAUTrayApp.exe
    C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Program Files\Fichiers communs\Sony Shared\GMR\GMRMan.exe
    C:\Program Files\M-Audio Audiophile USB\Dmn\ma003dmn.exe
    C:\PROGRA~1\WIDCOMM\LOGICI~1\BTSTAC~1.EXE
    C:\PROGRA~1\HPQ\Shared\HPQTOA~1.EXE
    C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
    C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
    C:\PROGRA~1\Wanadoo\ComComp.exe
    C:\PROGRA~1\Wanadoo\Toaster.exe
    C:\PROGRA~1\Wanadoo\Inactivity.exe
    C:\PROGRA~1\Wanadoo\PollingModule.exe
    C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
    C:\WINDOWS\system32\wuauclt.exe
    C:\PROGRA~1\Wanadoo\Watch.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\WINDOWS\system32\cmd.exe

    »»»»»»»»»»»»»»»»»»»»»»»» hosts

    »»»»»»»»»»»»»»»»»»»»»»»» C:\

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles

    »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Michiel Bastiaenen

    »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Michiel Bastiaenen\Application Data

    »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer

    »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\MICHIE~1\Favoris

    »»»»»»»»»»»»»»»»»»»»»»»» Bureau

    »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

    »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues

    »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
    "Source"="file:///C:/DOCUME~1/MICHIE~1/LOCALS~1/Temp/msohtml1/01/clip_image001.jpg"
    "SubscribedURL"="file:///C:/DOCUME~1/MICHIE~1/LOCALS~1/Temp/msohtml1/01/clip_image001.jpg"
    "FriendlyName"=""

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\1]
    "Source"="About:Home"
    "SubscribedURL"="About:Home"
    "FriendlyName"="Ma page d'accueil"

    »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    SrchSTS.exe by S!Ri
    Search SharedTaskScheduler's .dll

    »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLs"=""

    »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
    "System"=""

    »»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32-huy32

    »»»»»»»»»»»»»»»»»»»»»»»» DNS

    Description: 802.11 USB Wireless LAN Adapter - Miniport d'ordonnancement de paquets
    DNS Server Search Order: 192.168.1.1

    HKLM\SYSTEM\CCS\Services\Tcpip\..\{3EF1DFC7-EFC5-4002-85DE-181130353EFF}: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CS1\Services\Tcpip\..\{3EF1DFC7-EFC5-4002-85DE-181130353EFF}: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CS2\Services\Tcpip\..\{4D8ED66A-BA74-43DE-8886-9E9973F22A2D}: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1

    »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll

    »»»»»»»»»»»»»»»»»»»»»»»» Fin

    Et voici Clean:

    25/05/2007 a 17:01:18,45

    *** Recherche des fichiers dans C:
    C:\StubInstaller.exe FOUND

    *** Recherche des fichiers dans C:\WINDOWS\

    *** Recherche des fichiers dans C:\WINDOWS\system32
    "C:\WINDOWS\Downloaded Program Files\CONFLICT.1" FOUND

    *** Recherche des fichiers dans C:\Program Files
    *** Fin du rapport !

    Voila! :)
    0
  21. Utilisateur anonyme
     
    Pour Smitfraudfix et Clean

    Redémarre le PC en mode sans échec : tu tapotes sur la touche F8 de ton clavier (ou F5 ) dès le démarrage et tu choisis le mode sans échec)

    - Ouvre le dossier "SmitfraudFix" et double clique sur "Smitfraudfix.cmd", choisit l 'option 2 et tu réponds oui à tout.

    - Redémarre ton PC. Dès l'allumage de celui-ci tapote la touche F8 (ou F5 si F8 ne fonctionne pas), à l'écran qui va apparaître choisis "mode sans echec" attends un peu..
    Entre dans le dossier Clean
    Double clic sur clean ou clean.cmd et choisis l'option 2
    Dès qu'il a terminé redémarre normalement.

    Profite en le temps que tu es en mode sans échec pour faire un nettoyage avec CCleaner (important)

    Redémarre normalement et dis moi comment ça se passe.
    0
  • 1
  • 2