Mailskinner

Résolu
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   -  
g!rly Messages postés 18215 Date d'inscription   Statut Contributeur Dernière intervention   -
Bonjour,

j ai un gros souci en fait j utilise spybot comme antispyware. je vien de faire un scan et il me détecte mailskinner comme une menace alors que je l ai désinstallé cet après midi.

et quand je fait "corriger les erreurs" ca ne veu pas me supprimer mailskinner!!!

j en ai marre il est 3h du mat, ce problème m obsède, j ai vraiment besoin de votre aide!

commen faire pour que spybot supprime mailskinner???
répondez moi vite svp j atten votre réponse

biz a tous!

58 réponses

Précédent
Réponse 41 / 58
g!rly Messages postés 18215 Date d'inscription   Statut Contributeur Dernière intervention   406
 
ok mimounne,

tu as supprimé tout ce que panda a touvé?

comment ce porte ton pc maintenant?

@+
0
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3
 
en relisant tout je vien de m appercevoir sur le message 43 tu m avais dis de télécharger ccleaner et je ne l ai pas fait c grave?
0
Réponse 42 / 58
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3
 
j ai oublier de sauvegarder le rapport de panda donc il faut que je refasse le scan donc rendez vous dans un peu moins d'une heure.

désolé.mimounne
0
Réponse 43 / 58
g!rly Messages postés 18215 Date d'inscription   Statut Contributeur Dernière intervention   406
 
Re,

non c´est pas grave pour ccleaner tu peux le faire maintenant...

pour panda, dis moi si il arrive a bien tout supprimer...

je risque de ne plus etre la dans une heure.

je reviendrais demain dans ce cas...

bon courrage`;-)

@+
0
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3
 
ok donc je refait un scan pand je le sauvegarde et désinfecte.

et pour ccleaner je fait tout ce que tu m as dis en message 43.

et ensuite je post le rapport de ccleaner et celui de panda c'est ca?

au fait tu sera la vers quelle heure demain?
0
Réponse 44 / 58
g!rly Messages postés 18215 Date d'inscription   Statut Contributeur Dernière intervention   406
 
Re,

post le rapport de panda ,

oui tu fais ccleaner comme indiqué au post 43, tu as vu il y a aussi regcleaner...

pour ces deux la ne post pas de rapport...

pour le moment je suis encore la, quand a demain je ne sais pas a quelle heure je passerais.

@+
0
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3
 
voici le rapport de panda:

;***********************************************************************************************************************************************************************************
ANALYSIS: 2008-03-03 20:46:48
PROTECTIONS: 1
MALWARE: 25
SUSPECTS: 0
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
avast! antivirus 4.7.1098 [VPS 080302-0] 4.7.1098 No Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@doubleclick[1].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\sandy@doubleclick[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\sandy@atdmt[2].txt
00139535 Application/Processor HackTools No 0 Yes No C:\Program Files\Navilog1\Process.exe
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@tradedoubler[2].txt
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\sandy@tradedoubler[1].txt
00145405 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@247realmedia[1].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\sandy@mediaplex[1].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@mediaplex[1].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@xiti[1].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\sandy@xiti[1].txt
00167709 Cookie/fe.lea.lycos TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\sandy@fe.lea.lycos[1].txt
00167709 Cookie/fe.lea.lycos TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@fe.lea.lycos[1].txt
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\sandy@serving-sys[1].txt
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@serving-sys[2].txt
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\sandy@bs.serving-sys[1].txt
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@bs.serving-sys[1].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\sandy@weborama[2].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@weborama[2].txt
00168109 Cookie/Adtech TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@adtech[1].txt
00168116 Cookie/Comclick TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@fl01.ct2.comclick[1].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@advertising[1].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\sandy@advertising[1].txt
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\sandy@zedo[2].txt
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\sandy@bluestreak[1].txt
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@bluestreak[2].txt
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@adultfriendfinder[2].txt
00207936 Cookie/Adviva TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@adviva[2].txt
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\sandy@smartadserver[2].txt
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Users\sandy\AppData\Roaming\Microsoft\Windows\Cookies\Low\sandy@smartadserver[1].txt
00375171 Adware/SweetBar Adware No 0 Yes No D:\PC-DE-SANDY\Backup Set 2008-02-18 214045\Backup Files 2008-03-03 110017\Backup files 1.zip[C\QooBox\Quarantine\C\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll.vir]
00375171 Adware/SweetBar Adware No 0 Yes No C:\QooBox\Quarantine\C\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll.vir
01048936 Generic Malware Virus/Trojan No 0 Yes No C:\Program Files\GameSpy Arcade\Services\_common\PortraitLoader.dll
01185375 Application/Psexec.A HackTools No 0 Yes No C:\Windows\PSEXESVC.EXE
01262593 Application/NirCmd.A HackTools No 0 No No C:\Users\sandy\Desktop\ComboFix.exe[327882R2FWJFW\nircmd.com]
01262593 Application/NirCmd.A HackTools No 0 No No C:\Users\sandy\Desktop\ComboFix.exe[327882R2FWJFW\nircmd.cfexe]
01262593 Application/NirCmd.A HackTools No 0 Yes No C:\Windows\Nircmd.exe
01262593 Application/NirCmd.A HackTools No 0 Yes No C:\ComboFix\nircmd.com
02197130 Trj/Rebooter.J Virus/Trojan No 1 Yes No C:\Program Files\Navilog1\reboot.exe
02219087 Generic Malware Virus/Trojan No 0 Yes No C:\Program Files\GameSpy Arcade\Aphex.exe
;===================================================================================================================================================================================
SUSPECTS
Location
;===================================================================================================================================================================================
;===================================================================================================================================================================================


mais j ai pas pu désinfecter car quand je clic dessus ca me dit qu il faut que j achète la version totalscan pro et je n ai pas les moyens!

donc si tu as une meilleure solution je suis preneuse.

en attendant ta réponse je vais faire ccleaner et regcleaner.

bye mimounne.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 45 / 58
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3
 
tout c bien passé avec ccleaner il ne me trouve plus rien sur 381 fichiers, mais par contre regcleaner, je coche ce que je désire enlever ensuite je clic sur supprimer mais ca me met un message d'erreur.

donc voila ou j en suis!
0
Réponse 46 / 58
g!rly Messages postés 18215 Date d'inscription   Statut Contributeur Dernière intervention   406
 
bonsoir mimoune,

fais ceci :

* Télécharge OTMoveIt2 (de Old_Timer) sur ton bureau : http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe
* Double-clique sur OTMoveIt.exe pour lancer le programme,
* Copie la liste de fichiers ou de dossiers ci-dessous et colle-la dans la fenêtre du programme "Paste Custom List of Files/Folders to Move" :

C:\Program Files\GameSpy Arcade

* Clique sur MoveIt! pour lancer la suppression,
* Le résultat appraraîtra dans le cadre Results.
* Clique sur Exit pour fermer le programme.
* Poste le rapport qui est situé ici : C:\\\_OTMoveIt\MovedFiles
* Il te sera peut-être demandé de redémarrer ton PC. Dans ce cas, clique sur Yes.

pour regcleaner tu as un numero de message d´erreure ? ou quel est le message d´erreure?

@+
0
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3
 
tout est ok pour regcleaner je l ai effectué en mode sans échec
0
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3 > mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention  
 
ok voici le rapport:

[Custom Input]
< C:\Program Files\GameSpy Arcade >
Folder move failed. C:\Program Files\GameSpy Arcade\Sounds\classic scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Sounds\(default) scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Sounds scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Skins\(default2) scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Skins scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Services\_support scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Services\_news scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Services\_gspyder scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Services\_gnews scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Services\_fplanet scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Services\_demospy scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Services\_common scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Services\_cache scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Services scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Profiles\(default) scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Profiles scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Images\portraits scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Images\icons scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Images scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\ut\Swat scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\ut\RocketArena scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\ut\Excessive scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\ut scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\tribes\TAC scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\tribes\RPG scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\tribes\Open Cal scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\tribes\MT scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\tribes\Fr scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\tribes\Duel scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\tribes\DM scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\tribes\DD scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\tribes\CTFplus scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\tribes\CTFb scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\tribes\CTF scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\tribes\ch scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\tribes\Arena scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\tribes scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake3\wfa scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake3\rocketarena3 scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake3\requiem scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake3\q3ut2 scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake3\q3f scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake3\q3comp scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake3\osp scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake3\matchmod scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake3\jailbreak scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake3\instagib scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake3\excessive scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake3\beryllium scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake3\alliance scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake3 scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\wod scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\wf scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\tourney scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\sconfig scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\requiem scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\ra2 scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\QPong scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\q2comp scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\pball scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\LMCTF scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\lithium2 scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\lfiredm scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\kots scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\jail scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\holywars scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\gxmod scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\gloom scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\freeze scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\duel scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\chaosdm scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\battle scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2\aq2 scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\quake2 scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\halflife\tfc scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\halflife\gearbox scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\halflife\frontline scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\halflife\firearms scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\halflife\cstrike scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\halflife\action scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\halflife scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\cstrike\frontline scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom\cstrike scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\Custom scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade\AddIns scheduled to be moved on reboot.
Folder move failed. C:\Program Files\GameSpy Arcade scheduled to be moved on reboot.

OTMoveIt2 v1.0.20 log created on 03052008_044927
0
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3 > mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention  
 
alors ton avis sur mon pc il en est ou coté virus?

c est bientot fini ou non? car depuis une semaine qu on bataille je commence a désespérer!!!

j attend la suite des indications.

mimounne
0
Réponse 47 / 58
g!rly Messages postés 18215 Date d'inscription   Statut Contributeur Dernière intervention   406
 
bonsoir mimounne,

oui ca commence a faire long...

apparament ot_move it n´a pas reussi a supprimer game spy, encore un petit effort et ce seras ok

on va le supprimer comme ca :

Copie le texte ci-dessous :

Folder::
C:\Program Files\GameSpy Arcade

Ouvre le Bloc-Notes puis colle le texte copié.
(Démarrer\Tous les programmes\Accessoires\Bloc notes.)
Sauvegarde ce fichier sous le nom de CFScript.txt.

Glisse maintenant le fichier CFScript.txt dans Combofix.exe comme ci-dessous :

http://serveur1.archive-host.com/membres/up/1366464061/CFScript.gif

Cela va relancer Combofix,

Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort) , tape 1 puis valide.

Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal!

Ne touche à rien tant que le scan n'est pas terminé.

Après redémarrage, poste le contenu du rapport Combofix.txt accompagné d'un rapport Hijackthis.

S'il n'y a pas de rédémarrage, poste quand même les rapports.

@+
0
Réponse 48 / 58
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3
 
re g!rly,

bon j'ai bien sauvegarder CFScript.txt et fait le raccourci bureau mais quand je l ai fait glisser sur combofix, ca m a ouvert un message me disant que l application été trop vieille et qu il falai que j en trouve une plus récente et en suivant ca m a supprimer combofix de l ordi!

donc je suis aller dans tes vieux post pour retélécharger combofix le téléchargement ce passe bien mais une fois terminer impossible de trouver combofix dans tout l ordinateur!!!

je ne sais plus comment faire j aurai besoin d un petit coup de pouce stp.

merci
bye
mimounne.
0
Réponse 49 / 58
g!rly Messages postés 18215 Date d'inscription   Statut Contributeur Dernière intervention   406
 
Bonjour mimoune,

fais ceci : click sur demarrer puis executer et dans la boite de dialogue tape > combofix /u ( respect l´espace entre le x et la /

puis reprends combofix ici :

-> http://download.bleepingcomputer.com/sUBs/ComboFix.exe

dis moi quoi

@+
0
Réponse 50 / 58
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3
 
voici le rapport de combofix:

ComboFix 08-03-05.1 - sandy 2008-03-06 13:17:08.4 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6000.0.1252.1.1036.18.209 [GMT 1:00]
Endroit: C:\Users\sandy\Downloads\ComboFix.exe
Command switches used :: C:\Users\sandy\Desktop\CFScript.txt
* Création d'un nouveau point de restauration
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Program Files\GameSpy Arcade
C:\Program Files\GameSpy Arcade\4dca9208.dat
C:\Program Files\GameSpy Arcade\Aphex.exe
C:\Program Files\GameSpy Arcade\ArcRes.dll
C:\Program Files\GameSpy Arcade\Custom\clientfilters.cfg
C:\Program Files\GameSpy Arcade\Custom\cstrike\frontline\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\cstrike\frontline\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\action\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\action\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\cstrike\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\cstrike\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\cstrike\mod_cs.psd
C:\Program Files\GameSpy Arcade\Custom\halflife\firearms\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\firearms\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\frontline\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\frontline\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\gearbox\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\gearbox\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\tfc\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\tfc\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\tfc\mod_tfc.psd
C:\Program Files\GameSpy Arcade\Custom\quake2\aq2\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\aq2\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\battle\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\battle\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\chaosdm\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\chaosdm\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\duel\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\duel\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\freeze\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\freeze\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\gloom\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\gloom\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\gxmod\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\gxmod\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\holywars\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\holywars\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\jail\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\jail\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\kots\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\kots\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\lfiredm\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\lfiredm\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\lithium2\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\lithium2\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\LMCTF\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\LMCTF\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\pball\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\pball\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\q2comp\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\q2comp\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\QPong\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\QPong\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\ra2\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\ra2\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\requiem\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\requiem\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\sconfig\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\sconfig\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\tourney\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\tourney\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\wf\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\wf\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\wod\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\wod\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\alliance\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\alliance\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\beryllium\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\beryllium\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\excessive\Copy of gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\excessive\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\excessive\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\excessive\mod_excessive.psd
C:\Program Files\GameSpy Arcade\Custom\quake3\instagib\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\instagib\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\jailbreak\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\jailbreak\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\matchmod\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\matchmod\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\osp\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\osp\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\osp\mod_osp.psd
C:\Program Files\GameSpy Arcade\Custom\quake3\q3comp\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\q3comp\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\q3f\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\q3f\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\q3f\mod_q3f.psd
C:\Program Files\GameSpy Arcade\Custom\quake3\q3ut2\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\requiem\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\requiem\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\rocketarena3\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\rocketarena3\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\rocketarena3\mod_ra3.psd
C:\Program Files\GameSpy Arcade\Custom\quake3\wfa\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\wfa\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\wfa\mod_wfa.psd
C:\Program Files\GameSpy Arcade\Custom\tribes\Arena\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\Arena\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\ch\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\ch\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\CTF\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\CTF\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\CTFb\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\CTFb\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\CTFplus\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\CTFplus\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\DD\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\DD\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\DM\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\DM\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\Duel\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\Duel\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\Fr\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\Fr\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\MT\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\MT\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\Open Cal\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\Open Cal\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\RPG\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\RPG\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\TAC\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\TAC\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\ut\Excessive\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\ut\Excessive\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\ut\RocketArena\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\ut\RocketArena\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\ut\Swat\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\ut\Swat\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\ut\Swat\mod_swat.psd
C:\Program Files\GameSpy Arcade\dat.bmp
C:\Program Files\GameSpy Arcade\def_banner.gif
C:\Program Files\GameSpy Arcade\def_banner.html
C:\Program Files\GameSpy Arcade\def_bannerbg.jpg
C:\Program Files\GameSpy Arcade\def_loading.gif
C:\Program Files\GameSpy Arcade\def_logo.jpg
C:\Program Files\GameSpy Arcade\def_news.html
C:\Program Files\GameSpy Arcade\edge.ico
C:\Program Files\GameSpy Arcade\fpupdate.exe
C:\Program Files\GameSpy Arcade\GameSpy Arcade - Debug.lnk
C:\Program Files\GameSpy Arcade\GameSpy Arcade Help.url
C:\Program Files\GameSpy Arcade\GameSpy Arcade Website.url
C:\Program Files\GameSpy Arcade\GameSpy Arcade.lnk
C:\Program Files\GameSpy Arcade\GameSpy.com Gaming's Homepage.url
C:\Program Files\GameSpy Arcade\GSAPak.exe
C:\Program Files\GameSpy Arcade\gslan.dll
C:\Program Files\GameSpy Arcade\gsws.dll
C:\Program Files\GameSpy Arcade\Images\icons\blank.jpg
C:\Program Files\GameSpy Arcade\Images\icons\deficon.jpg
C:\Program Files\GameSpy Arcade\Images\icons\noimage.jpg
C:\Program Files\GameSpy Arcade\Images\icons\prequery.jpg
C:\Program Files\GameSpy Arcade\Images\portraits\blank.png
C:\Program Files\GameSpy Arcade\Images\portraits\noimage.png
C:\Program Files\GameSpy Arcade\Images\portraits\prequery.png
C:\Program Files\GameSpy Arcade\INSTALL.LOG
C:\Program Files\GameSpy Arcade\Profiles\(default)\settings.cfg
C:\Program Files\GameSpy Arcade\Profiles\(default)\sounds.cfg
C:\Program Files\GameSpy Arcade\Profiles\config.cfg
C:\Program Files\GameSpy Arcade\Profiles\countries.ini
C:\Program Files\GameSpy Arcade\Profiles\privacy.txt
C:\Program Files\GameSpy Arcade\Profiles\soundinfo.cfg
C:\Program Files\GameSpy Arcade\Profiles\support.cfg
C:\Program Files\GameSpy Arcade\Profiles\svcfilter.cfg
C:\Program Files\GameSpy Arcade\Profiles\tmpsupport.cfg
C:\Program Files\GameSpy Arcade\pw32.dll
C:\Program Files\GameSpy Arcade\readme.html
C:\Program Files\GameSpy Arcade\Register GameSpy Arcade.url
C:\Program Files\GameSpy Arcade\RptCrash.exe
C:\Program Files\GameSpy Arcade\Services\_cache\999020.shtml
C:\Program Files\GameSpy Arcade\Services\_common\catmap.cfg
C:\Program Files\GameSpy Arcade\Services\_common\country_icons.psd
C:\Program Files\GameSpy Arcade\Services\_common\PortraitLoader.dll
C:\Program Files\GameSpy Arcade\Services\_common\RWVoice.exe
C:\Program Files\GameSpy Arcade\Services\_common\splash_banner.psd
C:\Program Files\GameSpy Arcade\Services\_demospy\rsrc.dir
C:\Program Files\GameSpy Arcade\Services\_demospy\service_tab.psd
C:\Program Files\GameSpy Arcade\Services\_demospy\service_tab+.tga
C:\Program Files\GameSpy Arcade\Services\_demospy\svc.cfg
C:\Program Files\GameSpy Arcade\Services\_fplanet\rsrc.dir
C:\Program Files\GameSpy Arcade\Services\_fplanet\service_tab.psd
C:\Program Files\GameSpy Arcade\Services\_fplanet\svc.cfg
C:\Program Files\GameSpy Arcade\Services\_gnews\rsrc.dir
C:\Program Files\GameSpy Arcade\Services\_gnews\service_tab.psd
C:\Program Files\GameSpy Arcade\Services\_gnews\svc.cfg
C:\Program Files\GameSpy Arcade\Services\_gspyder\grprooms.cfg
C:\Program Files\GameSpy Arcade\Services\_gspyder\peer_ctl_buttons.psd
C:\Program Files\GameSpy Arcade\Services\_gspyder\rsrc.dir
C:\Program Files\GameSpy Arcade\Services\_gspyder\service_tab.psd
C:\Program Files\GameSpy Arcade\Services\_gspyder\stg_ctl_buttons.psd
C:\Program Files\GameSpy Arcade\Services\_gspyder\stg_legend.psd
C:\Program Files\GameSpy Arcade\Services\_gspyder\svc.cfg
C:\Program Files\GameSpy Arcade\Services\_news\rsrc.dir
C:\Program Files\GameSpy Arcade\Services\_news\service_tab.psd
C:\Program Files\GameSpy Arcade\Services\_news\service_tab+.tga
C:\Program Files\GameSpy Arcade\Services\_news\svc.cfg
C:\Program Files\GameSpy Arcade\Services\_news\web_left.psd
C:\Program Files\GameSpy Arcade\Services\_support\rsrc.dir
C:\Program Files\GameSpy Arcade\Services\_support\service_tab.psd
C:\Program Files\GameSpy Arcade\Services\_support\svc.cfg
C:\Program Files\GameSpy Arcade\Skins\(default2)\border_buttons.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\buddy_bottom.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\buddy_caption.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\buddy_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\buddy_left.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\buddy_right.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\buddy_tab.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\demospy_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\demospy_buttons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\demospy_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\demospy_left.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\demospy_right.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\demospy_scrollbar.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\demospy_splitter.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dialog_login_light.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_history_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_history_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_main_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_progress_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_progressgraph_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_progressitem_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_scrollbar.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_splitter.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_toolbar_buttons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_toolbar_left.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_toolbar_right.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\download_button_cancel.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\download_button_error.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\download_button_ok.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\download_button_open_file.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\GSFIXL.FON
C:\Program Files\GameSpy Arcade\Skins\(default2)\GSFIXL2.FON
C:\Program Files\GameSpy Arcade\Skins\(default2)\GSFIXS.FON
C:\Program Files\GameSpy Arcade\Skins\(default2)\gsg_radar.avi
C:\Program Files\GameSpy Arcade\Skins\(default2)\GSVAR.FON
C:\Program Files\GameSpy Arcade\Skins\(default2)\GSVARB.FON
C:\Program Files\GameSpy Arcade\Skins\(default2)\GSVARSM.FON
C:\Program Files\GameSpy Arcade\Skins\(default2)\GSVARSMB.FON
C:\Program Files\GameSpy Arcade\Skins\(default2)\login_finish.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\login_sidebar.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_layer_checkbox.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_layer_compact.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_layer_hide.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_layer_solo.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_layer_toggle_off.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_layer_toggle_on.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_panel_side_lt.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_panel_side_rt.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_panel_top.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_scrollbar.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_ctl_buttons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_ctl_left.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_ctl_right.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_frame_borders.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_frame_hilite.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_frame_widgets.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_gametype.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_link.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_checkbox.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_chicklets.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_icons_sm.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_icons_sm2.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_ping.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_scrollbar.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_logobg.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_reg_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_splitter.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_splitter_btns.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\playermatch_results.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\playermatch_search.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\portrait_outline.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\preview.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\register_tab.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\register_tab_w.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\resize_corner.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_gap.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_group.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_list_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_list_border_clear.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_menu_bg.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_menu_btns.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_sysmenu.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_tab.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_tab_blank.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_tab_dl.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\splash_banner.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_border_in.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_border_main.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_border_namebox.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_border_namebox_b.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_border_names.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_border_out.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_border_wv.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_ctl_buttons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_ctl_left.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_ctl_right.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_legend.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_map_us.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_map_world.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_playercard_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_splitter.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_voice.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_voice_checkbox.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_bottom.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_chatclub.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_left.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_main.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_main_clear.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_main_sm.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_right.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\unknown.jpg
C:\Program Files\GameSpy Arcade\Skins\(default2)\updown_order_faces.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\vscrollbar.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\waystation_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\web_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\web_buttons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\web_left.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\web_reload_button.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\web_right.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\window_bannerfill.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\window_bg.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\window_caption.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\window_progress.psd
C:\Program Files\GameSpy Arcade\Sounds\(default)\app_startup.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\buddy_close.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\buddy_message.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\buddy_online.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\buddy_open.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\buddy_select.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chat_hide_off.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chat_hide_on.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chat_layer_controls_off.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chat_layer_controls_on.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chat_message_delete.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chat_solo_off.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chat_solo_on.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chatmsg_absentee.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chatmsg_in.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chatmsg_named.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chatmsg_out.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\download_done.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\group_close.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\group_open.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\key_erase.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\key_type.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\list_select.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\list_unselect.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\player_ignore.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\redial_notify.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\room_create.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\room_enter.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\room_exit.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\room_new.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\service_click.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\service_select.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\splitter_down.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\splitter_restore.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\splitter_up.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_launch.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_notready.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_other_entered.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_other_left.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_other_notready.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_other_ready.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_ready.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_voice_regnotice.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\tab_close.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\tab_select.wav
C:\Program Files\GameSpy Arcade\Sounds\classic\app_startup.wav
C:\Program Files\GameSpy Arcade\Sounds\classic\stg_launch.wav
C:\Program Files\GameSpy Arcade\UNWISE.EXE
C:\Program Files\GameSpy Arcade\ws_default.html

.
((((((((((((((((((((((((((((( Fichiers créés 2008-02-06 to 2008-03-06 ))))))))))))))))))))))))))))))))))))
.

Pas de nouveau fichier créé dans cet espace de temps

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-06 09:16 352,615 ---ha-w C:\Windows\system32\drivers\vsconfig.xml
2008-03-06 08:53 --------- d-----w C:\Users\sandy\AppData\Roaming\PeerNetworking
2008-03-05 21:31 --------- d-----w C:\Users\sandy\AppData\Roaming\LimeWire
2008-03-04 17:26 --------- d-----w C:\ProgramData\avg7
2008-03-04 14:52 --------- d-----w C:\Users\sandy\AppData\Roaming\AVG7
2008-03-04 09:22 --------- d-----w C:\Program Files\RegCleaner
2008-03-03 20:10 --------- d-----w C:\Program Files\CCleaner
2008-03-03 12:26 --------- d-----w C:\Program Files\Panda Security
2008-03-03 11:53 --------- d-----w C:\Program Files\Common Files\Adobe
2008-03-03 06:39 --------- d-----w C:\Users\sandy\AppData\Roaming\Delivery
2008-03-02 20:56 --------- d-----w C:\Users\sandy\AppData\Roaming\Deliver
2008-03-02 16:39 --------- d---a-w C:\ProgramData\TEMP
2008-03-02 14:30 --------- d-----w C:\ProgramData\NannyMania
2008-03-02 14:28 --------- d-----w C:\Program Files\GamesBar
2008-03-01 15:25 --------- d-----w C:\ProgramData\PopCap
2008-02-29 15:35 --------- d-----w C:\ProgramData\Spybot - Search & Destroy
2008-02-29 14:48 --------- d-----w C:\ProgramData\CheckPoint
2008-02-29 14:48 --------- d-----w C:\Program Files\Zone Labs
2008-02-29 10:23 --------- d-----w C:\Users\sandy\AppData\Roaming\DeskSoft
2008-02-28 20:02 65,536 ----a-w C:\Windows\DTDraw.dll
2008-02-28 14:36 --------- d-----w C:\Program Files\Trend Micro
2008-02-28 14:22 --------- d-----w C:\Program Files\Navilog1
2008-02-27 15:07 --------- d-----w C:\ProgramData\MGS
2008-02-27 13:59 --------- d-----w C:\ProgramData\GamesBar
2008-02-26 15:54 12,824 ----a-w C:\Users\sandy\AppData\Roaming\wklnhst.dat
2008-02-25 22:10 --------- d-----w C:\Users\sandy\AppData\Roaming\PlayFirst
2008-02-25 22:10 --------- d-----w C:\ProgramData\PlayFirst
2008-02-24 20:36 --------- d-----w C:\Users\sandy\AppData\Roaming\Oberon Games
2008-02-24 20:36 --------- d-----w C:\ProgramData\Oberon Games
2008-02-24 20:33 --------- d-----w C:\Program Files\orange
2008-02-18 23:13 --------- d-----w C:\Program Files\Metin2_France
2008-02-15 16:01 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2008-02-15 13:12 --------- d-----w C:\ProgramData\Lavasoft
2008-02-15 10:44 194,560 ----a-w C:\Windows\System32\WebClnt.dll
2008-02-15 10:44 110,080 ----a-w C:\Windows\system32\drivers\mrxdav.sys
2008-02-15 10:21 45,112 ----a-w C:\Windows\system32\drivers\pciidex.sys
2008-02-15 10:21 3,505,720 ----a-w C:\Windows\System32\ntkrnlpa.exe
2008-02-15 10:21 3,471,928 ----a-w C:\Windows\System32\ntoskrnl.exe
2008-02-15 10:21 21,560 ----a-w C:\Windows\system32\drivers\atapi.sys
2008-02-15 10:21 154,624 ----a-w C:\Windows\system32\drivers\nwifi.sys
2008-02-15 10:21 15,928 ----a-w C:\Windows\system32\drivers\pciide.sys
2008-02-15 10:21 109,624 ----a-w C:\Windows\system32\drivers\ataport.sys
2008-02-15 10:19 806,400 ----a-w C:\Windows\system32\drivers\tcpip.sys
2008-02-15 10:19 24,064 ----a-w C:\Windows\System32\netcfg.exe
2008-02-15 10:19 22,016 ----a-w C:\Windows\System32\netiougc.exe
2008-02-15 10:19 217,144 ----a-w C:\Windows\system32\drivers\netio.sys
2008-02-15 10:19 167,424 ----a-w C:\Windows\System32\tcpipcfg.dll
2008-02-15 10:16 537,600 ----a-w C:\Windows\AppPatch\AcLayers.dll
2008-02-15 10:16 449,536 ----a-w C:\Windows\AppPatch\AcSpecfc.dll
2008-02-15 10:16 4,247,552 ----a-w C:\Windows\System32\GameUXLegacyGDFs.dll
2008-02-15 10:16 2,144,256 ----a-w C:\Windows\AppPatch\AcGenral.dll
2008-02-15 10:16 173,056 ----a-w C:\Windows\AppPatch\AcXtrnal.dll
2008-02-15 10:16 1,686,528 ----a-w C:\Windows\System32\gameux.dll
2008-02-15 10:11 824,832 ----a-w C:\Windows\System32\wininet.dll
2008-02-15 10:11 52,736 ----a-w C:\Windows\AppPatch\iebrshim.dll
2008-02-15 10:10 56,320 ----a-w C:\Windows\System32\iesetup.dll
2008-02-15 10:10 26,624 ----a-w C:\Windows\System32\ieUnatt.exe
2008-02-15 10:08 1,244,672 ----a-w C:\Windows\System32\mcmde.dll
2008-02-15 09:41 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-02-15 09:17 --------- d-----w C:\ProgramData\eSobi
2008-02-12 09:36 --------- d-----w C:\Users\sandy\AppData\Roaming\Image Zone Express
2008-02-11 10:48 --------- d-----w C:\Program Files\VirginMega
2008-02-11 10:43 --------- d-----w C:\ProgramData\Downloaded Installations
2008-02-11 09:55 --------- d-----w C:\Program Files\SAGEM
2008-02-11 09:54 --------- d-----w C:\Users\sandy\AppData\Roaming\InstallShield
2008-02-10 23:19 --------- d-----w C:\Program Files\CyberLink
2008-02-10 22:54 --------- d-----w C:\Users\sandy\AppData\Roaming\DivX
2008-02-10 20:12 --------- d-----w C:\Program Files\DivX
2008-02-10 20:12 --------- d-----w C:\Program Files\Common Files\PX Storage Engine
2008-02-10 20:04 --------- d-----w C:\Program Files\LimeWire
2008-02-10 19:39 --------- d-----w C:\Program Files\EA GAMES
2008-02-08 22:28 --------- d-----w C:\Users\sandy\AppData\Roaming\Weflirt
2008-02-08 17:59 --------- d-----w C:\Program Files\Java
2008-02-08 17:56 --------- d-----w C:\Program Files\Common Files\Java
2008-02-08 07:42 --------- d-----w C:\Program Files\Windows Live Toolbar
2008-02-07 21:12 --------- d-----w C:\Program Files\Alwil Software
2008-02-07 20:31 --------- dcsh--w C:\Program Files\Common Files\WindowsLiveInstaller
2008-02-07 20:31 --------- d-----w C:\Program Files\Windows Live
2008-02-07 20:27 --------- d-----w C:\ProgramData\WLInstaller
2008-02-07 18:18 --------- d-----w C:\Program Files\Google
2008-02-07 10:56 174 --sha-w C:\Program Files\desktop.ini
2008-02-07 10:50 --------- d-----w C:\Program Files\Windows Sidebar
2008-02-07 10:50 --------- d-----w C:\Program Files\Windows Mail
2008-02-07 10:50 --------- d-----w C:\Program Files\Windows Defender
2008-02-07 10:50 --------- d-----w C:\Program Files\Windows Calendar
2008-02-07 10:40 87,040 ----a-w C:\Windows\System32\msoert2.dll
2008-02-07 10:40 39,424 ----a-w C:\Windows\System32\ACCTRES.dll
2008-02-07 10:40 205,824 ----a-w C:\Windows\System32\msoeacct.dll
2008-02-07 10:39 704,000 ----a-w C:\Windows\System32\PhotoScreensaver.scr
2008-02-07 10:39 67,584 ----a-w C:\Windows\System32\wlanhlp.dll
2008-02-07 10:39 542,720 ----a-w C:\Windows\System32\sysmain.dll
2008-02-07 10:39 502,784 ----a-w C:\Windows\System32\wlansvc.dll
2008-02-07 10:39 47,104 ----a-w C:\Windows\System32\wlanapi.dll
2008-02-07 10:39 297,984 ----a-w C:\Windows\System32\wlansec.dll
2008-02-07 10:39 290,816 ----a-w C:\Windows\System32\wlanmsm.dll
2008-02-07 10:39 258,232 ----a-w C:\Windows\system32\drivers\acpi.sys
2008-02-07 10:39 24,064 ----a-w C:\Windows\System32\wtsapi32.dll
2008-02-07 10:39 2,923,520 ----a-w C:\Windows\explorer.exe
2008-02-07 10:39 2,027,008 ----a-w C:\Windows\System32\win32k.sys
2008-02-07 10:37 49,664 ----a-w C:\Windows\System32\csrsrv.dll
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acer Tour Reminder"="C:\Acer\AcerTour\Reminder.exe" [2007-02-15 17:39 151552]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2006-11-02 13:35 125440]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2007-08-31 16:46 1460560]
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 13:36 201728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2008-02-07 11:36 1006264]
"RtHDVCpl"="RtHDVCpl.exe" [2007-03-23 12:04 4423680 C:\Windows\RtHDVCpl.exe]
"Acer Tour"="" []
"Acer Empowering Technology Monitor"="C:\Acer\Empowering Technology\SysMonitor.exe" [2007-01-24 09:27 319488]
"eDataSecurity Loader"="C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2007-02-06 23:04 464168]
"WarReg_PopUp"="C:\Acer\WR_PopUp\WarReg_PopUp.exe" [2006-11-05 20:48 57344]
"eRecoveryService"="" []
"Acer Tour Reminder"="C:\Acer\AcerTour\Reminder.exe" [2007-02-15 17:39 151552]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2006-12-10 20:52 49152]
"SystrayORAHSS"="C:\Program Files\OrangeHSS\Systray\SystrayApp.exe" [2006-12-12 19:16 90112]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]
"ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [2008-01-23 10:37 959976]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe" [2007-03-16 11:45 63712]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 11:35 90112]
"Acer Tour Reminder"="C:\Acer\AcerTour\Reminder.exe" [2007-02-15 17:39 151552]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Empowering Technology Launcher.lnk - C:\Acer\Empowering Technology\eAPLauncher.exe [2007-05-06 20:28:40 528384]
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2007-01-02 20:40:10 210520]
PCM Media Sharing.lnk - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe [2007-05-06 20:33:11 200812]

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{3949DEB9-8DD8-42E4-A506-7B9F4A231291}"= UDP:C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{A033DC2D-F311-40C6-91FC-22337523B865}"= TCP:C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{F726BF72-BF4E-4B4F-B9FE-4CDF4E903131}"= C:\Program Files\Acer Arcade Live\Acer Arcade Live Main Page\Acer Arcade Live.exe:Acer Arcade Live|Desc=Acer Arcade Live
"{51674872-C1F2-4F6E-9B9C-A757F38BE2C6}"= C:\Program Files\Acer Arcade Live\SlideShow DVD\Component\CLSLDVD.exe:SlideShow DVD workprocess|Desc=SlideShow DVD workprocess
"{00717E99-5B5E-4D82-B899-5B920CE145A9}"= C:\Program Files\Acer Arcade Live\Acer DV Magician\Component\ARAWP.exe:DV Magician ARA workprocess|Desc=DV Magician ARA workprocess
"{F90A806B-AED4-4244-AC78-EA10F3E4F0E6}"= C:\Program Files\Acer Arcade Live\Acer DV Magician\Component\DVAX2Process.exe:DV Magician AVAX workprocess|Desc=DV Magician AVAX workprocess
"{2EACCE03-44AD-4451-AFA5-833B35CC35B9}"= C:\Program Files\Acer Arcade Live\Acer DVDivine\DVDivine.exe:DVDivine|Desc=DVDivine
"{39E7738E-3D11-43B9-835D-D16D2F3B2B0D}"= C:\Program Files\Acer Arcade Live\Acer HomeMedia\HomeMedia.exe:HomeMedia|Desc=HomeMedia
"{59B339AA-E6E9-43D5-A0ED-DAC81D658E12}"= C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\HomeMedia Connect.exe:HomeMedia Connect|Desc=HomeMedia Connect
"{B70C9DFF-8065-445C-8092-F386899335A3}"= C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.EXE:HomeMedia Connect Service|Desc=HomeMedia Connect Service
"{9F52794C-B028-4208-88E2-1D78370B9A3B}"= C:\Program Files\Acer Arcade Live\Acer VideoMagician\VideoMagician.exe:VideoMagician|Desc=VideoMagician
"TCP Query User{828F7F3A-2C9F-4D4E-AFE9-2FC6A7DDBCEA}C:\program files\valve\hl.exe"= UDP:C:\program files\valve\hl.exe:Half-Life Launcher|Desc=Half-Life Launcher
"UDP Query User{0AC60B9D-2DFA-4706-93FC-7EEDA7D0B643}C:\program files\valve\hl.exe"= TCP:C:\program files\valve\hl.exe:Half-Life Launcher|Desc=Half-Life Launcher
"TCP Query User{01726951-EEEE-42B5-9377-F45E572CC990}C:\program files\valve\lh.exe"= UDP:C:\program files\valve\lh.exe:Half-Life Launcher|Desc=Half-Life Launcher
"UDP Query User{AF74ED0E-FDE3-4C1F-AF90-30DB4FBA0D6B}C:\program files\valve\lh.exe"= TCP:C:\program files\valve\lh.exe:Half-Life Launcher|Desc=Half-Life Launcher
"{DE4EAA97-230E-43F0-A2EE-CD731D3EBB31}"= UDP:C:\Program Files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.5
"{1AE8DB5E-313D-4F3B-A95D-2EC14CDD296A}"= TCP:C:\Program Files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.5
"{F34EC33D-76DE-41BD-ACEC-4B44EC52F000}"= UDP:C:\Program Files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.5
"{51DFBD1F-1148-4B8B-8E2C-D8290C2754C5}"= TCP:C:\Program Files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.5
"{039444AE-D51C-4CE6-A53A-DE8957359139}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)|Edge=TRUE|
"TCP Query User{90E46FA7-05FE-4E61-A079-CAF1EDC63D9A}C:\program files\limewire\limewire.exe"= UDP:C:\program files\limewire\limewire.exe:LimeWire|Desc=LimeWire
"UDP Query User{9EDCEEC5-5343-4C63-8452-3E03A4B1263B}C:\program files\limewire\limewire.exe"= TCP:C:\program files\limewire\limewire.exe:LimeWire|Desc=LimeWire
"TCP Query User{E9871095-6068-45DE-B224-04BE877A4954}C:\program files\orangehss\browser\browser.exe"= UDP:C:\program files\orangehss\browser\browser.exe:Browser|Desc=Browser
"UDP Query User{5CBD314A-0274-4826-BEA3-2B0CC9CEDED9}C:\program files\orangehss\browser\browser.exe"= TCP:C:\program files\orangehss\browser\browser.exe:Browser|Desc=Browser
"TCP Query User{D01D9A24-4A9E-4D88-A450-CA3599032CE2}C:\program files\metin2_france\metin2.bin"= UDP:C:\program files\metin2_france\metin2.bin:metin2.bin|Desc=metin2.bin
"UDP Query User{DA250FFE-52B5-42DE-8D4E-C823113F3D56}C:\program files\metin2_france\metin2.bin"= TCP:C:\program files\metin2_france\metin2.bin:metin2.bin|Desc=metin2.bin
"TCP Query User{D104210C-C4C8-4023-A6D6-5FF3FCDD63F5}C:\program files\internet explorer\iexplore.exe"= UDP:C:\program files\internet explorer\iexplore.exe:Internet Explorer|Desc=Internet Explorer
"UDP Query User{AE19078F-22F7-475C-A327-3EC48F19E619}C:\program files\internet explorer\iexplore.exe"= TCP:C:\program files\internet explorer\iexplore.exe:Internet Explorer|Desc=Internet Explorer

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\RestrictedServices\Static\System]
"DFSR-1"= RPort=5722|UDP:%SystemRoot%\system32\svchost.exe|Svc=DFSR:Allow inbound TCP traffic|

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe"= C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe:*:enabled:CSS

R0 AtiPcie;ATI PCI Express (3GIO) Filter;C:\Windows\system32\DRIVERS\AtiPcie.sys [2006-10-30 04:22]
R0 PSDFilter;PSDFilter;C:\Windows\system32\DRIVERS\psdfilter.sys [2007-02-06 23:04]
R0 PSDNServ;PSDNSERVER;C:\Windows\system32\drivers\PSDNServ.sys [2007-02-06 23:04]
R0 psdvdisk;psdvdisk;C:\Windows\system32\drivers\psdvdisk.sys [2007-02-06 23:04]
R2 Acer HomeMedia Connect Service;Acer HomeMedia Connect Service;"C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe" [2007-04-04 17:54]
R2 aswMonFlt;aswMonFlt;C:\Windows\system32\DRIVERS\aswMonFlt.sys [2007-12-04 15:52]
R2 eDataSecurity Service;eDSService.exe;"C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe" [2007-02-06 23:04]
R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2007-08-31 16:46]
R3 atikmdag;atikmdag;C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-14 15:04]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\system32\DRIVERS\yk60x86.sys [2007-12-06 09:51]
S3 PCAMp50;PCAMp50 NDIS Protocol Driver;C:\Windows\system32\Drivers\PCAMp50.sys [2006-11-28 21:46]
S3 PCASp50;PCASp50 NDIS Protocol Driver;C:\Windows\system32\Drivers\PCASp50.sys [2006-11-28 21:46]
S3 w300bus;Sony Ericsson W300 Driver driver (WDM);C:\Windows\system32\DRIVERS\w300bus.sys [2006-03-13 15:49]
S3 w300mdfl;Sony Ericsson W300 USB WMC Modem Filter;C:\Windows\system32\DRIVERS\w300mdfl.sys [2006-03-13 15:50]
S3 w300mdm;Sony Ericsson W300 USB WMC Modem Driver;C:\Windows\system32\DRIVERS\w300mdm.sys [2006-03-13 15:50]
S3 w300mgmt;Sony Ericsson W300 USB WMC Device Management Drivers (WDM);C:\Windows\system32\DRIVERS\w300mgmt.sys [2006-03-13 15:50]
S3 w300obex;Sony Ericsson W300 USB WMC OBEX Interface;C:\Windows\system32\DRIVERS\w300obex.sys [2006-03-13 15:50]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2008-03-05 16:25:34 C:\Windows\Tasks\User_Feed_Synchronization-{2DF2ABB1-BCBA-4C84-AEC8-256432B6B8BE}.job"
- C:\Windows\system32\msfeedssync.exe
"2008-03-06 11:40:07 C:\Windows\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job"
- C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-06 13:23:26
Windows 6.0.6000 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
Temps d'accomplissement: 2008-03-06 13:25:01
ComboFix-quarantined-files.txt 2008-03-06 12:24:51
ComboFix2.txt 2008-03-06 09:08:22
.
2008-03-05 06:05:56 --- E O F ---


et le rapport de hijackthis:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:28:01, on 06/03/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Acer\Empowering Technology\SysMonitor.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\OrangeHSS\Systray\SystrayApp.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
C:\Windows\ehome\ehmsas.exe
C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Windows\system32\conime.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\explorer.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Windows Media Player\wmplayer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Alcohol Toolbar Helper - {8126A4A5-BFD3-46FE-BBDF-BFB5CF78E489} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\system32\ActiveToolBand.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Alcohol Toolbar - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (User 'Default user')
O4 - Global Startup: Empowering Technology Launcher.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: PCM Media Sharing.lnk = C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) - https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
O16 - DPF: {5CE72DD0-4695-4D18-A4D3-3367ACD37578} (F-Secure Health Check 1.0) - http://support.f-secure.com/enu/home/onlineservices/fshc/fscax.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -
O16 - DPF: {7F8C8173-AD80-4807-AA75-5672F22B4582} (ICSScanner Class) - http://download.zonelabs.com/bin/promotions/spywaredetector/ICSScanner371420.cab
O16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) - https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} -
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - file:///C:/Users/sandy/AppData/Local/Oberon%20Media/Oberon%20Games%20Host/popcaploader_v6.cab
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe
0
Réponse 51 / 58
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3
 
voici le rapport de combofix:

ComboFix 08-03-05.1 - sandy 2008-03-06 13:17:08.4 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6000.0.1252.1.1036.18.209 [GMT 1:00]
Endroit: C:\Users\sandy\Downloads\ComboFix.exe
Command switches used :: C:\Users\sandy\Desktop\CFScript.txt
* Création d'un nouveau point de restauration
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Program Files\GameSpy Arcade
C:\Program Files\GameSpy Arcade\4dca9208.dat
C:\Program Files\GameSpy Arcade\Aphex.exe
C:\Program Files\GameSpy Arcade\ArcRes.dll
C:\Program Files\GameSpy Arcade\Custom\clientfilters.cfg
C:\Program Files\GameSpy Arcade\Custom\cstrike\frontline\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\cstrike\frontline\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\action\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\action\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\cstrike\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\cstrike\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\cstrike\mod_cs.psd
C:\Program Files\GameSpy Arcade\Custom\halflife\firearms\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\firearms\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\frontline\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\frontline\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\gearbox\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\gearbox\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\tfc\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\tfc\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\halflife\tfc\mod_tfc.psd
C:\Program Files\GameSpy Arcade\Custom\quake2\aq2\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\aq2\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\battle\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\battle\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\chaosdm\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\chaosdm\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\duel\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\duel\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\freeze\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\freeze\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\gloom\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\gloom\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\gxmod\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\gxmod\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\holywars\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\holywars\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\jail\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\jail\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\kots\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\kots\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\lfiredm\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\lfiredm\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\lithium2\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\lithium2\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\LMCTF\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\LMCTF\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\pball\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\pball\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\q2comp\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\q2comp\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\QPong\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\QPong\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\ra2\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\ra2\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\requiem\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\requiem\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\sconfig\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\sconfig\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\tourney\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\tourney\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\wf\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\wf\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\wod\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake2\wod\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\alliance\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\alliance\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\beryllium\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\beryllium\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\excessive\Copy of gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\excessive\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\excessive\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\excessive\mod_excessive.psd
C:\Program Files\GameSpy Arcade\Custom\quake3\instagib\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\instagib\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\jailbreak\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\jailbreak\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\matchmod\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\matchmod\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\osp\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\osp\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\osp\mod_osp.psd
C:\Program Files\GameSpy Arcade\Custom\quake3\q3comp\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\q3comp\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\q3f\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\q3f\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\q3f\mod_q3f.psd
C:\Program Files\GameSpy Arcade\Custom\quake3\q3ut2\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\requiem\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\requiem\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\rocketarena3\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\rocketarena3\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\rocketarena3\mod_ra3.psd
C:\Program Files\GameSpy Arcade\Custom\quake3\wfa\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\wfa\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\quake3\wfa\mod_wfa.psd
C:\Program Files\GameSpy Arcade\Custom\tribes\Arena\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\Arena\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\ch\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\ch\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\CTF\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\CTF\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\CTFb\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\CTFb\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\CTFplus\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\CTFplus\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\DD\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\DD\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\DM\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\DM\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\Duel\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\Duel\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\Fr\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\Fr\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\MT\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\MT\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\Open Cal\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\Open Cal\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\RPG\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\RPG\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\TAC\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\tribes\TAC\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\ut\Excessive\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\ut\Excessive\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\ut\RocketArena\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\ut\RocketArena\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\ut\Swat\filters.cfg
C:\Program Files\GameSpy Arcade\Custom\ut\Swat\gametype.cfg
C:\Program Files\GameSpy Arcade\Custom\ut\Swat\mod_swat.psd
C:\Program Files\GameSpy Arcade\dat.bmp
C:\Program Files\GameSpy Arcade\def_banner.gif
C:\Program Files\GameSpy Arcade\def_banner.html
C:\Program Files\GameSpy Arcade\def_bannerbg.jpg
C:\Program Files\GameSpy Arcade\def_loading.gif
C:\Program Files\GameSpy Arcade\def_logo.jpg
C:\Program Files\GameSpy Arcade\def_news.html
C:\Program Files\GameSpy Arcade\edge.ico
C:\Program Files\GameSpy Arcade\fpupdate.exe
C:\Program Files\GameSpy Arcade\GameSpy Arcade - Debug.lnk
C:\Program Files\GameSpy Arcade\GameSpy Arcade Help.url
C:\Program Files\GameSpy Arcade\GameSpy Arcade Website.url
C:\Program Files\GameSpy Arcade\GameSpy Arcade.lnk
C:\Program Files\GameSpy Arcade\GameSpy.com Gaming's Homepage.url
C:\Program Files\GameSpy Arcade\GSAPak.exe
C:\Program Files\GameSpy Arcade\gslan.dll
C:\Program Files\GameSpy Arcade\gsws.dll
C:\Program Files\GameSpy Arcade\Images\icons\blank.jpg
C:\Program Files\GameSpy Arcade\Images\icons\deficon.jpg
C:\Program Files\GameSpy Arcade\Images\icons\noimage.jpg
C:\Program Files\GameSpy Arcade\Images\icons\prequery.jpg
C:\Program Files\GameSpy Arcade\Images\portraits\blank.png
C:\Program Files\GameSpy Arcade\Images\portraits\noimage.png
C:\Program Files\GameSpy Arcade\Images\portraits\prequery.png
C:\Program Files\GameSpy Arcade\INSTALL.LOG
C:\Program Files\GameSpy Arcade\Profiles\(default)\settings.cfg
C:\Program Files\GameSpy Arcade\Profiles\(default)\sounds.cfg
C:\Program Files\GameSpy Arcade\Profiles\config.cfg
C:\Program Files\GameSpy Arcade\Profiles\countries.ini
C:\Program Files\GameSpy Arcade\Profiles\privacy.txt
C:\Program Files\GameSpy Arcade\Profiles\soundinfo.cfg
C:\Program Files\GameSpy Arcade\Profiles\support.cfg
C:\Program Files\GameSpy Arcade\Profiles\svcfilter.cfg
C:\Program Files\GameSpy Arcade\Profiles\tmpsupport.cfg
C:\Program Files\GameSpy Arcade\pw32.dll
C:\Program Files\GameSpy Arcade\readme.html
C:\Program Files\GameSpy Arcade\Register GameSpy Arcade.url
C:\Program Files\GameSpy Arcade\RptCrash.exe
C:\Program Files\GameSpy Arcade\Services\_cache\999020.shtml
C:\Program Files\GameSpy Arcade\Services\_common\catmap.cfg
C:\Program Files\GameSpy Arcade\Services\_common\country_icons.psd
C:\Program Files\GameSpy Arcade\Services\_common\PortraitLoader.dll
C:\Program Files\GameSpy Arcade\Services\_common\RWVoice.exe
C:\Program Files\GameSpy Arcade\Services\_common\splash_banner.psd
C:\Program Files\GameSpy Arcade\Services\_demospy\rsrc.dir
C:\Program Files\GameSpy Arcade\Services\_demospy\service_tab.psd
C:\Program Files\GameSpy Arcade\Services\_demospy\service_tab+.tga
C:\Program Files\GameSpy Arcade\Services\_demospy\svc.cfg
C:\Program Files\GameSpy Arcade\Services\_fplanet\rsrc.dir
C:\Program Files\GameSpy Arcade\Services\_fplanet\service_tab.psd
C:\Program Files\GameSpy Arcade\Services\_fplanet\svc.cfg
C:\Program Files\GameSpy Arcade\Services\_gnews\rsrc.dir
C:\Program Files\GameSpy Arcade\Services\_gnews\service_tab.psd
C:\Program Files\GameSpy Arcade\Services\_gnews\svc.cfg
C:\Program Files\GameSpy Arcade\Services\_gspyder\grprooms.cfg
C:\Program Files\GameSpy Arcade\Services\_gspyder\peer_ctl_buttons.psd
C:\Program Files\GameSpy Arcade\Services\_gspyder\rsrc.dir
C:\Program Files\GameSpy Arcade\Services\_gspyder\service_tab.psd
C:\Program Files\GameSpy Arcade\Services\_gspyder\stg_ctl_buttons.psd
C:\Program Files\GameSpy Arcade\Services\_gspyder\stg_legend.psd
C:\Program Files\GameSpy Arcade\Services\_gspyder\svc.cfg
C:\Program Files\GameSpy Arcade\Services\_news\rsrc.dir
C:\Program Files\GameSpy Arcade\Services\_news\service_tab.psd
C:\Program Files\GameSpy Arcade\Services\_news\service_tab+.tga
C:\Program Files\GameSpy Arcade\Services\_news\svc.cfg
C:\Program Files\GameSpy Arcade\Services\_news\web_left.psd
C:\Program Files\GameSpy Arcade\Services\_support\rsrc.dir
C:\Program Files\GameSpy Arcade\Services\_support\service_tab.psd
C:\Program Files\GameSpy Arcade\Services\_support\svc.cfg
C:\Program Files\GameSpy Arcade\Skins\(default2)\border_buttons.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\buddy_bottom.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\buddy_caption.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\buddy_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\buddy_left.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\buddy_right.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\buddy_tab.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\demospy_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\demospy_buttons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\demospy_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\demospy_left.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\demospy_right.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\demospy_scrollbar.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\demospy_splitter.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dialog_login_light.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_history_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_history_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_main_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_progress_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_progressgraph_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_progressitem_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_scrollbar.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_splitter.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_toolbar_buttons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_toolbar_left.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\dlmgr_toolbar_right.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\download_button_cancel.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\download_button_error.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\download_button_ok.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\download_button_open_file.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\GSFIXL.FON
C:\Program Files\GameSpy Arcade\Skins\(default2)\GSFIXL2.FON
C:\Program Files\GameSpy Arcade\Skins\(default2)\GSFIXS.FON
C:\Program Files\GameSpy Arcade\Skins\(default2)\gsg_radar.avi
C:\Program Files\GameSpy Arcade\Skins\(default2)\GSVAR.FON
C:\Program Files\GameSpy Arcade\Skins\(default2)\GSVARB.FON
C:\Program Files\GameSpy Arcade\Skins\(default2)\GSVARSM.FON
C:\Program Files\GameSpy Arcade\Skins\(default2)\GSVARSMB.FON
C:\Program Files\GameSpy Arcade\Skins\(default2)\login_finish.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\login_sidebar.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_layer_checkbox.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_layer_compact.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_layer_hide.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_layer_solo.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_layer_toggle_off.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_layer_toggle_on.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_panel_side_lt.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_panel_side_rt.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_panel_top.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_chat_scrollbar.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_ctl_buttons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_ctl_left.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_ctl_right.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_frame_borders.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_frame_hilite.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_frame_widgets.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_gametype.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_link.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_checkbox.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_chicklets.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_icons_sm.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_icons_sm2.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_ping.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_list_scrollbar.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_logobg.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_reg_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_splitter.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\peer_splitter_btns.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\playermatch_results.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\playermatch_search.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\portrait_outline.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\preview.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\register_tab.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\register_tab_w.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\resize_corner.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_gap.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_group.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_list_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_list_border_clear.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_menu_bg.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_menu_btns.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_sysmenu.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_tab.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_tab_blank.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\service_tab_dl.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\splash_banner.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_border_in.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_border_main.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_border_namebox.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_border_namebox_b.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_border_names.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_border_out.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_border_wv.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_ctl_buttons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_ctl_left.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_ctl_right.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_legend.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_map_us.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_map_world.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_playercard_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_splitter.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_voice.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\stg_voice_checkbox.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_bottom.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_chatclub.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_icons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_left.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_main.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_main_clear.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_main_sm.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\tab_right.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\unknown.jpg
C:\Program Files\GameSpy Arcade\Skins\(default2)\updown_order_faces.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\vscrollbar.bmp
C:\Program Files\GameSpy Arcade\Skins\(default2)\waystation_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\web_border.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\web_buttons.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\web_left.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\web_reload_button.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\web_right.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\window_bannerfill.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\window_bg.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\window_caption.psd
C:\Program Files\GameSpy Arcade\Skins\(default2)\window_progress.psd
C:\Program Files\GameSpy Arcade\Sounds\(default)\app_startup.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\buddy_close.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\buddy_message.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\buddy_online.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\buddy_open.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\buddy_select.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chat_hide_off.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chat_hide_on.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chat_layer_controls_off.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chat_layer_controls_on.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chat_message_delete.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chat_solo_off.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chat_solo_on.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chatmsg_absentee.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chatmsg_in.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chatmsg_named.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\chatmsg_out.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\download_done.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\group_close.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\group_open.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\key_erase.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\key_type.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\list_select.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\list_unselect.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\player_ignore.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\redial_notify.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\room_create.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\room_enter.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\room_exit.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\room_new.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\service_click.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\service_select.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\splitter_down.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\splitter_restore.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\splitter_up.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_launch.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_notready.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_other_entered.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_other_left.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_other_notready.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_other_ready.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_ready.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\stg_voice_regnotice.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\tab_close.wav
C:\Program Files\GameSpy Arcade\Sounds\(default)\tab_select.wav
C:\Program Files\GameSpy Arcade\Sounds\classic\app_startup.wav
C:\Program Files\GameSpy Arcade\Sounds\classic\stg_launch.wav
C:\Program Files\GameSpy Arcade\UNWISE.EXE
C:\Program Files\GameSpy Arcade\ws_default.html

.
((((((((((((((((((((((((((((( Fichiers créés 2008-02-06 to 2008-03-06 ))))))))))))))))))))))))))))))))))))
.

Pas de nouveau fichier créé dans cet espace de temps

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-06 09:16 352,615 ---ha-w C:\Windows\system32\drivers\vsconfig.xml
2008-03-06 08:53 --------- d-----w C:\Users\sandy\AppData\Roaming\PeerNetworking
2008-03-05 21:31 --------- d-----w C:\Users\sandy\AppData\Roaming\LimeWire
2008-03-04 17:26 --------- d-----w C:\ProgramData\avg7
2008-03-04 14:52 --------- d-----w C:\Users\sandy\AppData\Roaming\AVG7
2008-03-04 09:22 --------- d-----w C:\Program Files\RegCleaner
2008-03-03 20:10 --------- d-----w C:\Program Files\CCleaner
2008-03-03 12:26 --------- d-----w C:\Program Files\Panda Security
2008-03-03 11:53 --------- d-----w C:\Program Files\Common Files\Adobe
2008-03-03 06:39 --------- d-----w C:\Users\sandy\AppData\Roaming\Delivery
2008-03-02 20:56 --------- d-----w C:\Users\sandy\AppData\Roaming\Deliver
2008-03-02 16:39 --------- d---a-w C:\ProgramData\TEMP
2008-03-02 14:30 --------- d-----w C:\ProgramData\NannyMania
2008-03-02 14:28 --------- d-----w C:\Program Files\GamesBar
2008-03-01 15:25 --------- d-----w C:\ProgramData\PopCap
2008-02-29 15:35 --------- d-----w C:\ProgramData\Spybot - Search & Destroy
2008-02-29 14:48 --------- d-----w C:\ProgramData\CheckPoint
2008-02-29 14:48 --------- d-----w C:\Program Files\Zone Labs
2008-02-29 10:23 --------- d-----w C:\Users\sandy\AppData\Roaming\DeskSoft
2008-02-28 20:02 65,536 ----a-w C:\Windows\DTDraw.dll
2008-02-28 14:36 --------- d-----w C:\Program Files\Trend Micro
2008-02-28 14:22 --------- d-----w C:\Program Files\Navilog1
2008-02-27 15:07 --------- d-----w C:\ProgramData\MGS
2008-02-27 13:59 --------- d-----w C:\ProgramData\GamesBar
2008-02-26 15:54 12,824 ----a-w C:\Users\sandy\AppData\Roaming\wklnhst.dat
2008-02-25 22:10 --------- d-----w C:\Users\sandy\AppData\Roaming\PlayFirst
2008-02-25 22:10 --------- d-----w C:\ProgramData\PlayFirst
2008-02-24 20:36 --------- d-----w C:\Users\sandy\AppData\Roaming\Oberon Games
2008-02-24 20:36 --------- d-----w C:\ProgramData\Oberon Games
2008-02-24 20:33 --------- d-----w C:\Program Files\orange
2008-02-18 23:13 --------- d-----w C:\Program Files\Metin2_France
2008-02-15 16:01 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2008-02-15 13:12 --------- d-----w C:\ProgramData\Lavasoft
2008-02-15 10:44 194,560 ----a-w C:\Windows\System32\WebClnt.dll
2008-02-15 10:44 110,080 ----a-w C:\Windows\system32\drivers\mrxdav.sys
2008-02-15 10:21 45,112 ----a-w C:\Windows\system32\drivers\pciidex.sys
2008-02-15 10:21 3,505,720 ----a-w C:\Windows\System32\ntkrnlpa.exe
2008-02-15 10:21 3,471,928 ----a-w C:\Windows\System32\ntoskrnl.exe
2008-02-15 10:21 21,560 ----a-w C:\Windows\system32\drivers\atapi.sys
2008-02-15 10:21 154,624 ----a-w C:\Windows\system32\drivers\nwifi.sys
2008-02-15 10:21 15,928 ----a-w C:\Windows\system32\drivers\pciide.sys
2008-02-15 10:21 109,624 ----a-w C:\Windows\system32\drivers\ataport.sys
2008-02-15 10:19 806,400 ----a-w C:\Windows\system32\drivers\tcpip.sys
2008-02-15 10:19 24,064 ----a-w C:\Windows\System32\netcfg.exe
2008-02-15 10:19 22,016 ----a-w C:\Windows\System32\netiougc.exe
2008-02-15 10:19 217,144 ----a-w C:\Windows\system32\drivers\netio.sys
2008-02-15 10:19 167,424 ----a-w C:\Windows\System32\tcpipcfg.dll
2008-02-15 10:16 537,600 ----a-w C:\Windows\AppPatch\AcLayers.dll
2008-02-15 10:16 449,536 ----a-w C:\Windows\AppPatch\AcSpecfc.dll
2008-02-15 10:16 4,247,552 ----a-w C:\Windows\System32\GameUXLegacyGDFs.dll
2008-02-15 10:16 2,144,256 ----a-w C:\Windows\AppPatch\AcGenral.dll
2008-02-15 10:16 173,056 ----a-w C:\Windows\AppPatch\AcXtrnal.dll
2008-02-15 10:16 1,686,528 ----a-w C:\Windows\System32\gameux.dll
2008-02-15 10:11 824,832 ----a-w C:\Windows\System32\wininet.dll
2008-02-15 10:11 52,736 ----a-w C:\Windows\AppPatch\iebrshim.dll
2008-02-15 10:10 56,320 ----a-w C:\Windows\System32\iesetup.dll
2008-02-15 10:10 26,624 ----a-w C:\Windows\System32\ieUnatt.exe
2008-02-15 10:08 1,244,672 ----a-w C:\Windows\System32\mcmde.dll
2008-02-15 09:41 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-02-15 09:17 --------- d-----w C:\ProgramData\eSobi
2008-02-12 09:36 --------- d-----w C:\Users\sandy\AppData\Roaming\Image Zone Express
2008-02-11 10:48 --------- d-----w C:\Program Files\VirginMega
2008-02-11 10:43 --------- d-----w C:\ProgramData\Downloaded Installations
2008-02-11 09:55 --------- d-----w C:\Program Files\SAGEM
2008-02-11 09:54 --------- d-----w C:\Users\sandy\AppData\Roaming\InstallShield
2008-02-10 23:19 --------- d-----w C:\Program Files\CyberLink
2008-02-10 22:54 --------- d-----w C:\Users\sandy\AppData\Roaming\DivX
2008-02-10 20:12 --------- d-----w C:\Program Files\DivX
2008-02-10 20:12 --------- d-----w C:\Program Files\Common Files\PX Storage Engine
2008-02-10 20:04 --------- d-----w C:\Program Files\LimeWire
2008-02-10 19:39 --------- d-----w C:\Program Files\EA GAMES
2008-02-08 22:28 --------- d-----w C:\Users\sandy\AppData\Roaming\Weflirt
2008-02-08 17:59 --------- d-----w C:\Program Files\Java
2008-02-08 17:56 --------- d-----w C:\Program Files\Common Files\Java
2008-02-08 07:42 --------- d-----w C:\Program Files\Windows Live Toolbar
2008-02-07 21:12 --------- d-----w C:\Program Files\Alwil Software
2008-02-07 20:31 --------- dcsh--w C:\Program Files\Common Files\WindowsLiveInstaller
2008-02-07 20:31 --------- d-----w C:\Program Files\Windows Live
2008-02-07 20:27 --------- d-----w C:\ProgramData\WLInstaller
2008-02-07 18:18 --------- d-----w C:\Program Files\Google
2008-02-07 10:56 174 --sha-w C:\Program Files\desktop.ini
2008-02-07 10:50 --------- d-----w C:\Program Files\Windows Sidebar
2008-02-07 10:50 --------- d-----w C:\Program Files\Windows Mail
2008-02-07 10:50 --------- d-----w C:\Program Files\Windows Defender
2008-02-07 10:50 --------- d-----w C:\Program Files\Windows Calendar
2008-02-07 10:40 87,040 ----a-w C:\Windows\System32\msoert2.dll
2008-02-07 10:40 39,424 ----a-w C:\Windows\System32\ACCTRES.dll
2008-02-07 10:40 205,824 ----a-w C:\Windows\System32\msoeacct.dll
2008-02-07 10:39 704,000 ----a-w C:\Windows\System32\PhotoScreensaver.scr
2008-02-07 10:39 67,584 ----a-w C:\Windows\System32\wlanhlp.dll
2008-02-07 10:39 542,720 ----a-w C:\Windows\System32\sysmain.dll
2008-02-07 10:39 502,784 ----a-w C:\Windows\System32\wlansvc.dll
2008-02-07 10:39 47,104 ----a-w C:\Windows\System32\wlanapi.dll
2008-02-07 10:39 297,984 ----a-w C:\Windows\System32\wlansec.dll
2008-02-07 10:39 290,816 ----a-w C:\Windows\System32\wlanmsm.dll
2008-02-07 10:39 258,232 ----a-w C:\Windows\system32\drivers\acpi.sys
2008-02-07 10:39 24,064 ----a-w C:\Windows\System32\wtsapi32.dll
2008-02-07 10:39 2,923,520 ----a-w C:\Windows\explorer.exe
2008-02-07 10:39 2,027,008 ----a-w C:\Windows\System32\win32k.sys
2008-02-07 10:37 49,664 ----a-w C:\Windows\System32\csrsrv.dll
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acer Tour Reminder"="C:\Acer\AcerTour\Reminder.exe" [2007-02-15 17:39 151552]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2006-11-02 13:35 125440]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2007-08-31 16:46 1460560]
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 13:36 201728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2008-02-07 11:36 1006264]
"RtHDVCpl"="RtHDVCpl.exe" [2007-03-23 12:04 4423680 C:\Windows\RtHDVCpl.exe]
"Acer Tour"="" []
"Acer Empowering Technology Monitor"="C:\Acer\Empowering Technology\SysMonitor.exe" [2007-01-24 09:27 319488]
"eDataSecurity Loader"="C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2007-02-06 23:04 464168]
"WarReg_PopUp"="C:\Acer\WR_PopUp\WarReg_PopUp.exe" [2006-11-05 20:48 57344]
"eRecoveryService"="" []
"Acer Tour Reminder"="C:\Acer\AcerTour\Reminder.exe" [2007-02-15 17:39 151552]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2006-12-10 20:52 49152]
"SystrayORAHSS"="C:\Program Files\OrangeHSS\Systray\SystrayApp.exe" [2006-12-12 19:16 90112]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]
"ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [2008-01-23 10:37 959976]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe" [2007-03-16 11:45 63712]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 11:35 90112]
"Acer Tour Reminder"="C:\Acer\AcerTour\Reminder.exe" [2007-02-15 17:39 151552]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Empowering Technology Launcher.lnk - C:\Acer\Empowering Technology\eAPLauncher.exe [2007-05-06 20:28:40 528384]
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2007-01-02 20:40:10 210520]
PCM Media Sharing.lnk - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe [2007-05-06 20:33:11 200812]

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{3949DEB9-8DD8-42E4-A506-7B9F4A231291}"= UDP:C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{A033DC2D-F311-40C6-91FC-22337523B865}"= TCP:C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{F726BF72-BF4E-4B4F-B9FE-4CDF4E903131}"= C:\Program Files\Acer Arcade Live\Acer Arcade Live Main Page\Acer Arcade Live.exe:Acer Arcade Live|Desc=Acer Arcade Live
"{51674872-C1F2-4F6E-9B9C-A757F38BE2C6}"= C:\Program Files\Acer Arcade Live\SlideShow DVD\Component\CLSLDVD.exe:SlideShow DVD workprocess|Desc=SlideShow DVD workprocess
"{00717E99-5B5E-4D82-B899-5B920CE145A9}"= C:\Program Files\Acer Arcade Live\Acer DV Magician\Component\ARAWP.exe:DV Magician ARA workprocess|Desc=DV Magician ARA workprocess
"{F90A806B-AED4-4244-AC78-EA10F3E4F0E6}"= C:\Program Files\Acer Arcade Live\Acer DV Magician\Component\DVAX2Process.exe:DV Magician AVAX workprocess|Desc=DV Magician AVAX workprocess
"{2EACCE03-44AD-4451-AFA5-833B35CC35B9}"= C:\Program Files\Acer Arcade Live\Acer DVDivine\DVDivine.exe:DVDivine|Desc=DVDivine
"{39E7738E-3D11-43B9-835D-D16D2F3B2B0D}"= C:\Program Files\Acer Arcade Live\Acer HomeMedia\HomeMedia.exe:HomeMedia|Desc=HomeMedia
"{59B339AA-E6E9-43D5-A0ED-DAC81D658E12}"= C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\HomeMedia Connect.exe:HomeMedia Connect|Desc=HomeMedia Connect
"{B70C9DFF-8065-445C-8092-F386899335A3}"= C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.EXE:HomeMedia Connect Service|Desc=HomeMedia Connect Service
"{9F52794C-B028-4208-88E2-1D78370B9A3B}"= C:\Program Files\Acer Arcade Live\Acer VideoMagician\VideoMagician.exe:VideoMagician|Desc=VideoMagician
"TCP Query User{828F7F3A-2C9F-4D4E-AFE9-2FC6A7DDBCEA}C:\program files\valve\hl.exe"= UDP:C:\program files\valve\hl.exe:Half-Life Launcher|Desc=Half-Life Launcher
"UDP Query User{0AC60B9D-2DFA-4706-93FC-7EEDA7D0B643}C:\program files\valve\hl.exe"= TCP:C:\program files\valve\hl.exe:Half-Life Launcher|Desc=Half-Life Launcher
"TCP Query User{01726951-EEEE-42B5-9377-F45E572CC990}C:\program files\valve\lh.exe"= UDP:C:\program files\valve\lh.exe:Half-Life Launcher|Desc=Half-Life Launcher
"UDP Query User{AF74ED0E-FDE3-4C1F-AF90-30DB4FBA0D6B}C:\program files\valve\lh.exe"= TCP:C:\program files\valve\lh.exe:Half-Life Launcher|Desc=Half-Life Launcher
"{DE4EAA97-230E-43F0-A2EE-CD731D3EBB31}"= UDP:C:\Program Files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.5
"{1AE8DB5E-313D-4F3B-A95D-2EC14CDD296A}"= TCP:C:\Program Files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.5
"{F34EC33D-76DE-41BD-ACEC-4B44EC52F000}"= UDP:C:\Program Files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.5
"{51DFBD1F-1148-4B8B-8E2C-D8290C2754C5}"= TCP:C:\Program Files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.5
"{039444AE-D51C-4CE6-A53A-DE8957359139}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)|Edge=TRUE|
"TCP Query User{90E46FA7-05FE-4E61-A079-CAF1EDC63D9A}C:\program files\limewire\limewire.exe"= UDP:C:\program files\limewire\limewire.exe:LimeWire|Desc=LimeWire
"UDP Query User{9EDCEEC5-5343-4C63-8452-3E03A4B1263B}C:\program files\limewire\limewire.exe"= TCP:C:\program files\limewire\limewire.exe:LimeWire|Desc=LimeWire
"TCP Query User{E9871095-6068-45DE-B224-04BE877A4954}C:\program files\orangehss\browser\browser.exe"= UDP:C:\program files\orangehss\browser\browser.exe:Browser|Desc=Browser
"UDP Query User{5CBD314A-0274-4826-BEA3-2B0CC9CEDED9}C:\program files\orangehss\browser\browser.exe"= TCP:C:\program files\orangehss\browser\browser.exe:Browser|Desc=Browser
"TCP Query User{D01D9A24-4A9E-4D88-A450-CA3599032CE2}C:\program files\metin2_france\metin2.bin"= UDP:C:\program files\metin2_france\metin2.bin:metin2.bin|Desc=metin2.bin
"UDP Query User{DA250FFE-52B5-42DE-8D4E-C823113F3D56}C:\program files\metin2_france\metin2.bin"= TCP:C:\program files\metin2_france\metin2.bin:metin2.bin|Desc=metin2.bin
"TCP Query User{D104210C-C4C8-4023-A6D6-5FF3FCDD63F5}C:\program files\internet explorer\iexplore.exe"= UDP:C:\program files\internet explorer\iexplore.exe:Internet Explorer|Desc=Internet Explorer
"UDP Query User{AE19078F-22F7-475C-A327-3EC48F19E619}C:\program files\internet explorer\iexplore.exe"= TCP:C:\program files\internet explorer\iexplore.exe:Internet Explorer|Desc=Internet Explorer

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\RestrictedServices\Static\System]
"DFSR-1"= RPort=5722|UDP:%SystemRoot%\system32\svchost.exe|Svc=DFSR:Allow inbound TCP traffic|

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe"= C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe:*:enabled:CSS

R0 AtiPcie;ATI PCI Express (3GIO) Filter;C:\Windows\system32\DRIVERS\AtiPcie.sys [2006-10-30 04:22]
R0 PSDFilter;PSDFilter;C:\Windows\system32\DRIVERS\psdfilter.sys [2007-02-06 23:04]
R0 PSDNServ;PSDNSERVER;C:\Windows\system32\drivers\PSDNServ.sys [2007-02-06 23:04]
R0 psdvdisk;psdvdisk;C:\Windows\system32\drivers\psdvdisk.sys [2007-02-06 23:04]
R2 Acer HomeMedia Connect Service;Acer HomeMedia Connect Service;"C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe" [2007-04-04 17:54]
R2 aswMonFlt;aswMonFlt;C:\Windows\system32\DRIVERS\aswMonFlt.sys [2007-12-04 15:52]
R2 eDataSecurity Service;eDSService.exe;"C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe" [2007-02-06 23:04]
R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2007-08-31 16:46]
R3 atikmdag;atikmdag;C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-14 15:04]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\system32\DRIVERS\yk60x86.sys [2007-12-06 09:51]
S3 PCAMp50;PCAMp50 NDIS Protocol Driver;C:\Windows\system32\Drivers\PCAMp50.sys [2006-11-28 21:46]
S3 PCASp50;PCASp50 NDIS Protocol Driver;C:\Windows\system32\Drivers\PCASp50.sys [2006-11-28 21:46]
S3 w300bus;Sony Ericsson W300 Driver driver (WDM);C:\Windows\system32\DRIVERS\w300bus.sys [2006-03-13 15:49]
S3 w300mdfl;Sony Ericsson W300 USB WMC Modem Filter;C:\Windows\system32\DRIVERS\w300mdfl.sys [2006-03-13 15:50]
S3 w300mdm;Sony Ericsson W300 USB WMC Modem Driver;C:\Windows\system32\DRIVERS\w300mdm.sys [2006-03-13 15:50]
S3 w300mgmt;Sony Ericsson W300 USB WMC Device Management Drivers (WDM);C:\Windows\system32\DRIVERS\w300mgmt.sys [2006-03-13 15:50]
S3 w300obex;Sony Ericsson W300 USB WMC OBEX Interface;C:\Windows\system32\DRIVERS\w300obex.sys [2006-03-13 15:50]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2008-03-05 16:25:34 C:\Windows\Tasks\User_Feed_Synchronization-{2DF2ABB1-BCBA-4C84-AEC8-256432B6B8BE}.job"
- C:\Windows\system32\msfeedssync.exe
"2008-03-06 11:40:07 C:\Windows\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job"
- C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-06 13:23:26
Windows 6.0.6000 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
Temps d'accomplissement: 2008-03-06 13:25:01
ComboFix-quarantined-files.txt 2008-03-06 12:24:51
ComboFix2.txt 2008-03-06 09:08:22
.
2008-03-05 06:05:56 --- E O F ---


et le rapport de hijackthis:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:28:01, on 06/03/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Acer\Empowering Technology\SysMonitor.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\OrangeHSS\Systray\SystrayApp.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
C:\Windows\ehome\ehmsas.exe
C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Windows\system32\conime.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\explorer.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Windows Media Player\wmplayer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Alcohol Toolbar Helper - {8126A4A5-BFD3-46FE-BBDF-BFB5CF78E489} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\system32\ActiveToolBand.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Alcohol Toolbar - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (User 'Default user')
O4 - Global Startup: Empowering Technology Launcher.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: PCM Media Sharing.lnk = C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) - https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
O16 - DPF: {5CE72DD0-4695-4D18-A4D3-3367ACD37578} (F-Secure Health Check 1.0) - http://support.f-secure.com/enu/home/onlineservices/fshc/fscax.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -
O16 - DPF: {7F8C8173-AD80-4807-AA75-5672F22B4582} (ICSScanner Class) - http://download.zonelabs.com/bin/promotions/spywaredetector/ICSScanner371420.cab
O16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) - https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} -
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - file:///C:/Users/sandy/AppData/Local/Oberon%20Media/Oberon%20Games%20Host/popcaploader_v6.cab
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe
0
Réponse 52 / 58
g!rly Messages postés 18215 Date d'inscription   Statut Contributeur Dernière intervention   406
 
bonsoir mimounne,

bon ca l´a fait cette fois si ;-)

a l´aide de hijack this coche et fix ceci :

O2 - BHO: (no name) - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} -

comment ca va de ton coté?

@+
0
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3
 
re g!rly

pour rep a ta question de mon coté ca va pas trop mal a part que j en ai marre de me battre contre ces virus!

quand est ce qu on va en voir la fin???

c bientot fini?
0
Réponse 53 / 58
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3
 
voici le nouveau rapport hijackthis apres avoir cocher et fixer:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:19:17, on 07/03/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Acer\Empowering Technology\SysMonitor.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\OrangeHSS\Systray\SystrayApp.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
C:\Windows\ehome\ehmsas.exe
C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Windows\regedit.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Alcohol Toolbar Helper - {8126A4A5-BFD3-46FE-BBDF-BFB5CF78E489} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\system32\ActiveToolBand.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Alcohol Toolbar - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\OrangeHSS\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKCU\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (User 'Default user')
O4 - Global Startup: Empowering Technology Launcher.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: PCM Media Sharing.lnk = C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) - https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
O16 - DPF: {5CE72DD0-4695-4D18-A4D3-3367ACD37578} (F-Secure Health Check 1.0) - http://support.f-secure.com/enu/home/onlineservices/fshc/fscax.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -
O16 - DPF: {7F8C8173-AD80-4807-AA75-5672F22B4582} (ICSScanner Class) - http://download.zonelabs.com/bin/promotions/spywaredetector/ICSScanner371420.cab
O16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) - https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - file:///C:/Users/sandy/AppData/Local/Oberon%20Media/Oberon%20Games%20Host/popcaploader_v6.cab
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe
0
Réponse 54 / 58
g!rly Messages postés 18215 Date d'inscription   Statut Contributeur Dernière intervention   406
 
mimounne,

on a terminé ;-)

j´ai toute fois omis les lignes correspondant au différents scan que tu as pu effectuer.

coche et fix encore ceci :

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) - https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
O16 - DPF: {5CE72DD0-4695-4D18-A4D3-3367ACD37578} (F-Secure Health Check 1.0) - http://support.f-secure.com/enu/home/onlineservices/fshc/fscax.cab
O16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) - https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan

puis va dans C:\Windows\ et double cick sur le fichier bdoscandel.exe pour supprimer les traces laissées par bitdefender.

puis pour supprimer les outils que nous avons utilisés fais ceci :

Télécharge ToolsCleaner sur ton bureau.
--> http://www.commentcamarche.net/telecharger/telechargement 34055291 toolsclean(...)
# Clique sur Recherche et laisse le scan agir ...
# Clique sur Suppression pour finaliser.
# Tu peux, si tu le souhaites, te servir des Options facultatives.
# Clique sur Quitter pour obtenir le rapport.
# Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).

voila ;-)
0
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3
 
ok merci pour toute ton aide

mais pour ce que tu vien de me dire au message du dessus je le ferai demain car je vais me coucher bye
0
Réponse 55 / 58
g!rly Messages postés 18215 Date d'inscription   Statut Contributeur Dernière intervention   406
 
ok
bonne nuit ;-)
bye`
0
Réponse 56 / 58
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3
 
-->- Recherche:

C:\Combofix: trouvé !
C:\Qoobox: trouvé !
C:\_OtMoveIt: trouvé !
C:\Program Files\Navilog1: trouvé !
C:\Program Files\Navilog1\Navilog1.bat: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé !
C:\ProgramData\Microsoft\Windows\Start Menu\Programmes\HijackThis: trouvé !
C:\ProgramData\Microsoft\Windows\Start Menu\Programmes\Navilog1: trouvé !
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HijackThis: trouvé !
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navilog1: trouvé !
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HijackThis\HijackThis.lnk: trouvé !
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navilog1\Navilog1.lnk: trouvé !
C:\QooBox\Quarantine\C\Combofix: trouvé !
C:\Users\All Users\Microsoft\Windows\Start Menu\Programmes\HijackThis: trouvé !
C:\Users\All Users\Microsoft\Windows\Start Menu\Programmes\Navilog1: trouvé !
C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\HijackThis: trouvé !
C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Navilog1: trouvé !
C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\HijackThis\HijackThis.lnk: trouvé !
C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Navilog1\Navilog1.lnk: trouvé !
C:\Users\Public\Desktop\Navilog1.lnk: trouvé !
C:\Users\sandy\AppData\Local\VirtualStore\Program Files\Trend Micro\HijackThis: trouvé !
C:\Users\sandy\Desktop\HijackThis.lnk: trouvé !
C:\Users\sandy\Downloads\ComboFix.exe: trouvé !

---------------------------------
-->- Suppression:

C:\Program Files\Navilog1\Navilog1.bat: ERREUR DE SUPPRESSION !!
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: ERREUR DE SUPPRESSION !!
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HijackThis\HijackThis.lnk: ERREUR DE SUPPRESSION !!
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navilog1\Navilog1.lnk: ERREUR DE SUPPRESSION !!
C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\HijackThis\HijackThis.lnk: ERREUR DE SUPPRESSION !!
C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Navilog1\Navilog1.lnk: ERREUR DE SUPPRESSION !!
C:\Users\Public\Desktop\Navilog1.lnk: supprimé !
C:\Users\sandy\Desktop\HijackThis.lnk: supprimé !
C:\Users\sandy\Downloads\ComboFix.exe: supprimé !
C:\Combofix: supprimé !
C:\Qoobox: ERREUR DE SUPPRESSION !!
C:\_OtMoveIt: supprimé !
C:\Program Files\Navilog1: ERREUR DE SUPPRESSION !!
C:\Program Files\Trend Micro\HijackThis: ERREUR DE SUPPRESSION !!
C:\ProgramData\Microsoft\Windows\Start Menu\Programmes\HijackThis: ERREUR DE SUPPRESSION !!
C:\ProgramData\Microsoft\Windows\Start Menu\Programmes\Navilog1: ERREUR DE SUPPRESSION !!
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HijackThis: ERREUR DE SUPPRESSION !!
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navilog1: ERREUR DE SUPPRESSION !!
C:\QooBox\Quarantine\C\Combofix: supprimé !
C:\Users\All Users\Microsoft\Windows\Start Menu\Programmes\HijackThis: ERREUR DE SUPPRESSION !!
C:\Users\All Users\Microsoft\Windows\Start Menu\Programmes\Navilog1: ERREUR DE SUPPRESSION !!
C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\HijackThis: ERREUR DE SUPPRESSION !!
C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Navilog1: ERREUR DE SUPPRESSION !!
C:\Users\sandy\AppData\Local\VirtualStore\Program Files\Trend Micro\HijackThis: supprimé !
0
Réponse 57 / 58
g!rly Messages postés 18215 Date d'inscription   Statut Contributeur Dernière intervention   406
 
Ok mimounne,

supprimes navilog et hijack this manuellement si toujours present...

Je mets le topik en resolu et te souhaite une bonne continuation ;-)

Bye`
0
mimounne Messages postés 71 Date d'inscription   Statut Membre Dernière intervention   3
 
merci pour tout g!rly et peu etre a une prochaine fois du moins j espère pas!!!

bye
0
Réponse 58 / 58
g!rly Messages postés 18215 Date d'inscription   Statut Contributeur Dernière intervention   406
 
De rien ;-)

A jamais :D

Bye`
0