S'il vous plait aidez moi je suis infecté !

j'ai Antivir PersonalEdition classic

[b]SDFix: Version 1.159 [/b]

Run by adama on 21/03/2008 at 12:55

Microsoft Windows XP [version 5.1.2600]
Running From: C:\DOCUME~1\adama\Bureau\hkbjhbjg\SDFix

[b]Checking Services [/b]:


Restoring Windows Registry Values
Restoring Windows Default Hosts File

Rebooting


[b]Checking Files [/b]:

Trojan Files Found:

C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat - Contains Links to Malware Sites! - Deleted
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat - Contains Links to Malware Sites! - Deleted
C:\Documents and Settings\adama\Favoris\Error Cleaner.url - Deleted
C:\Documents and Settings\adama\Favoris\Privacy Protector.url - Deleted
C:\Documents and Settings\adama\Favoris\Spyware&Malware Protection.url - Deleted
C:\WINDOWS\search_res.txt - Deleted





Removing Temp Files

[b]ADS Check [/b]:


C:\WINDOWS\system32
:dlihost 27859
Total size: 27859 bytes.
system32: deleted 27859 bytes in 1 streams.

Checking for remaining Streams

C:\WINDOWS\system32
No streams found.


[b]Final Check [/b]:

catchme 0.3.1344.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-21 13:09:26
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

scanning hidden registry entries ...

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Reinstall\%\xe3\xce\21\xbf\xc1\b]
"DisplayName"=""
"DeviceDesc"=""
"ProviderName"=""
"MFG"="\x435c\x6e6f\x7274\x6c6f\x435c\x616c\x7373\x545c\2"
"ReinstallString"="C:\WINDOWS\System32\ReinstallBackups\\xe325\x11ce\xc1bf\b\DriverFiles\\x49c8\23\x5a00\x7c92\x48b4\23\x4a54\23\1.INF"
"DeviceInstanceIds"=str(7):"mbusdrv\smbus\smbusati.inf"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Prefetcher]
"TracesProcessed"=dword:000000c3

scanning hidden files ...


scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 85


[b]Remaining Services [/b]:



Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"

[b]Remaining Files [/b]:


File Backups: - C:\DOCUME~1\adama\Bureau\hkbjhbjg\SDFix\backups\backups.zip

[b]Files with Hidden Attributes [/b]:

Mon 10 Mar 2008 16,914,944 ...H. --- "C:\My Games\Jewel Match - FR\jewelmatch.exe"
Wed 5 Dec 2007 4,348 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\Administrateur\Local Settings\Temp\BIT1.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\Administrateur\Local Settings\Temp\BIT5DE.tmp"
Fri 14 Dec 2007 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp"
Wed 6 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1.tmp"
Mon 4 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT10.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT100.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT101.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT102.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT103.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT10B.tmp"
Mon 4 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT11.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT117.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT11A.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT12.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT120.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT12A.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT13.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT136.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT139.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT13F.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT14.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT149.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT15.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT155.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT158.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT15F.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT16.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT168.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT17.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT174.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT177.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT17E.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT18.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT187.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT19.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT193.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT196.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT197.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT198.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT199.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT19A.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT19B.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT19C.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT19D.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT19E.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT19F.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1A.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1A0.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1A1.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1A2.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1A3.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1A4.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1A5.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1A6.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1A7.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1A8.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1A9.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1AB.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1AC.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1AD.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1AE.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1AF.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1B.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1B0.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1B1.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1B2.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1B3.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1B4.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1B5.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1B6.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1B7.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1B8.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1B9.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1BA.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1BB.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1BC.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1BD.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1BE.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1BF.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1C.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1C0.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1C1.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1C2.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1C3.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1C4.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1C5.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1C6.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1C7.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1C8.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1C9.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1CA.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1D.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1D0.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1D4.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1DB.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1E.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1E4.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1EF.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1F.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1F3.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT1FA.tmp"
Mon 4 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT20.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT203.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT20E.tmp"
Wed 30 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT21.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT212.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT219.tmp"
Wed 30 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT22.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT222.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT22D.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT23.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT231.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT238.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT24.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT242.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT24C.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT25.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT250.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT257.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT26.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT267.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT26B.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT26F.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT27.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT276.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT28.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT286.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT28A.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT28E.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT29.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT295.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2A.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2A5.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2A9.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2AD.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2B.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2B4.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2C.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2C5.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2C8.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2CC.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2D.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2D3.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2E.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2E4.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2E7.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2EB.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2F.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT2F2.tmp"
Mon 4 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT3.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT30.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT303.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT306.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT30A.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT31.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT311.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT32.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT322.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT325.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT329.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT33.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT330.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT34.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT341.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT344.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT348.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT34F.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT35.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT36.tmp"
Sun 27 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT360.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT363.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT367.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT37.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT37F.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT38.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT382.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT386.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT39.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT3A.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT3A1.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT3A5.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT3B.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT3C.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT3C1.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT3C4.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT3D.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT3E.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT3E0.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT3E3.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT3F.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT3FF.tmp"
Mon 4 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT4.tmp"
Wed 30 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT40.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT402.tmp"
Wed 30 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT41.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT41E.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT42.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT421.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT43.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT44.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT441.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT45.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT46.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT460.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT47.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT47F.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT48.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT49.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT49E.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT4A.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT4B.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT4BD.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT4C.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT4D.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT4DC.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT4E.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT4F.tmp"
Mon 4 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT5.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT50.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT51.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT51B.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT52.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT53.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT53A.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT54.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT55.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT559.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT56.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT57.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT578.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT58.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT59.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT5A.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT5B.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT5C.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT5D.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT5E.tmp"
Wed 30 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT5F.tmp"
Mon 4 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT6.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT60.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT61.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT62.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT63.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT64.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT65.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT66.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT67.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT68.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT69.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT6A.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT6B.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT6C.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT6D.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT6E.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT6F.tmp"
Mon 4 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT7.tmp"
Sat 9 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT70.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT71.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT72.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT73.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT74.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT75.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT76.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT77.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT78.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT79.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT7A.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT7B.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT7C.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT7D.tmp"
Wed 30 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT7E.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT7F.tmp"
Mon 4 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT8.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT80.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT81.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT82.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT83.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT84.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT85.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT86.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT87.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT88.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT89.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT8A.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT8B.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT8C.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT8D.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT8E.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT8F.tmp"
Mon 4 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT9.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT90.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT91.tmp"
Fri 8 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT92.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT93.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT94.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT95.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT96.tmp"
Mon 11 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT97.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT98.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT99.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT9A.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT9B.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT9C.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT9D.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT9E.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BIT9F.tmp"
Mon 4 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITA.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITA0.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITA1.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITA2.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITA3.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITA4.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITA5.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITA6.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITA7.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITA8.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITA9.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITAA.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITAB.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITAC.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITAD.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITAE.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITAF.tmp"
Wed 6 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITB.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITB0.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITB1.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITB2.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITB3.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITB4.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITB5.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITB6.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITB7.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITB8.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITB9.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITBA.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITBB.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITBC.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITBD.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITBE.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITBF.tmp"
Wed 6 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITC.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITC0.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITC1.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITC2.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITC3.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITC4.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITC5.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITC6.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITC7.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITC8.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITC9.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITCA.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITCB.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITCC.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITCD.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITCE.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITCF.tmp"
Wed 6 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITD.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITD0.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITD1.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITD2.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITD3.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITD4.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITD5.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITD6.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITD7.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITD8.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITD9.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITDA.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITDB.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITDC.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITDD.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITDE.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITDF.tmp"
Wed 6 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITE.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITE0.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITE1.tmp"
Sat 2 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITE2.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITE3.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITE4.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITE5.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITE6.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITE7.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITE8.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITE9.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITEA.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITEB.tmp"
Tue 12 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITEC.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITED.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITEE.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITEF.tmp"
Mon 4 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITF.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITF0.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITF1.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITF2.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITF3.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITF4.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITF5.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITF6.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITF7.tmp"
Mon 28 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITF8.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITF9.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITFA.tmp"
Tue 29 Jan 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITFB.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITFC.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITFD.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITFE.tmp"
Wed 13 Feb 2008 0 A..H. --- "C:\Documents and Settings\famille\Local Settings\Temp\BITFF.tmp"
Mon 14 Jan 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\0a67b6c406b1d7e0f5c1e6f6d44a3f6e\BIT2.tmp"
Mon 14 Jan 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\18b19374451d28a8fbaf1939cf31ff45\BIT5.tmp"
Mon 14 Jan 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\22fb973e059470cc1b5d76c4ae605351\BIT7.tmp"
Mon 14 Jan 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\26924cbc8132a10b438ce6e2b49d4652\BIT1.tmp"
Mon 14 Jan 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\30285791903730fbf957a83562db4ff4\BIT3.tmp"
Wed 23 Jan 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\585dc2612ebcefc90e7dee4c276ee95e\BIT1.tmp"
Mon 14 Jan 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\9e870549834e2bceb796e44a1e3ac6f5\BIT6.tmp"
Mon 14 Jan 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\cb8921d0c7830b2f33c00fa4c8a10d17\BIT4.tmp"

[b]Finished![/b]

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:35:51, on 21/03/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Thomson\ST330\service\st330service.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RunDLL32.exe
C:\WINDOWS\vsnpstd3.exe
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Program Files\Thomson\ST330\diagnostics\diagnostics.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.iminent.com/...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Iminent.SearchTheWeb.HelperObject - {0E896FCA-D07E-45FE-901F-6A26FCF59C02} - mscoree.dll (file missing)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [PD0630 STISvc] RunDLL32.exe P0630Pin.dll,RunDLL32EP 513
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [diagnostics] "C:\Program Files\Thomson\ST330\diagnostics\diagnostics.exe" /icon -l:fr
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Balm Inter First Four] C:\Documents and Settings\All Users\Application Data\mail grey balm inter\style pile.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [htm aim] C:\DOCUME~1\adama\APPLIC~1\ROAMON~1\funk phone more.exe
O4 - HKCU\..\Run: [IMBooster] C:\Program Files\Iminent\imbooster.exe /silent
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\S-1-5-21-1123561945-789336058-682003330-1002\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User '?')
O4 - HKUS\S-1-5-21-1123561945-789336058-682003330-1002\..\Run: [htm aim] C:\DOCUME~1\adama\APPLIC~1\ROAMON~1\funk phone more.exe (User '?')
O4 - HKUS\S-1-5-21-1123561945-789336058-682003330-1002\..\Run: [IMBooster] C:\Program Files\Iminent\imbooster.exe /silent (User '?')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} - http://a516.g.akamai.net/f/516/25175/7d/runaware.download.akamai.com/25175/citrix/wficat-no-eula.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {AF2E62B6-F9E1-4D4F-A10A-9DC8E6DCBCC0} (VideoEgg ActiveX Loader) - http://update.videoegg.com/Install/Windows/Initial/VideoEggPublisher.exe
O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://ak.imgag.com/imgag/cp/install/crusher-kiwen.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{DE2E60CA-65F5-4880-B487-331C56889616}: NameServer = 213.154.95.126 213.154.64.13
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: SpeedTouch 330 Manager (st330service) - THOMSON Telecom Belgium - C:\Program Files/Thomson/ST330/service/st330service.exe

mais cecile je sait bien qu'il me faut un bon antivirus mais aussi payant pour suprimer les virus mai j'ai pas de quoi me l'offrir c'est pour cela que je demande de l'aide. mais quand même merci

ComboFix 08-03-21.1 - adama 2008-03-21 13:47:26.1 - NTFSx86

Endroit: C:\Documents and Settings\adama\Bureau\Combo-Fix.exe

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]
.

((((((((((((((((((((((((((((( Fichiers créés 2008-02-21 to 2008-03-21 ))))))))))))))))))))))))))))))))))))
.

2008-03-21 13:34 . 2008-03-21 13:34 <REP> d-------- C:\Program Files\Trend Micro
2008-03-21 12:52 . 2008-03-21 12:52 <REP> d-------- C:\WINDOWS\ERUNT
2008-03-21 10:59 . 2008-03-21 10:59 <REP> d-------- C:\Documents and Settings\famille\Application Data\Iminent
2008-03-21 09:57 . 2008-03-21 09:57 <REP> d-------- C:\Documents and Settings\famille\Application Data\Rockstar Games
2008-03-20 16:52 . 2008-03-20 16:52 <REP> d-------- C:\Documents and Settings\adama\Application Data\Iminent
2008-03-20 16:47 . 2008-03-20 17:00 <REP> d-------- C:\Program Files\Iminent
2008-03-20 16:43 . 2008-03-20 16:43 <REP> d--h----- C:\Documents and Settings\All Users\Application Data\{39D45C8A-D78B-47FF-AE03-74BCF6971EB0}
2008-03-20 16:37 . 2008-03-20 16:37 <REP> d-------- C:\Program Files\Roam Once Active
2008-03-17 21:15 . 2008-03-17 21:15 <REP> d-------- C:\Program Files\Samsung
2008-03-17 21:15 . 2005-04-08 13:56 68,226 --------- C:\WINDOWS\system32\drivers\StMp3Rec.sys
2008-03-17 19:22 . 2008-03-17 19:22 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2008-03-17 19:09 . 2008-03-17 19:09 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2008-03-17 19:04 . 2008-03-17 19:04 <REP> d-------- C:\Program Files\CCleaner
2008-03-17 15:58 . 2008-03-20 16:20 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-03-17 15:58 . 2008-03-17 15:58 1,409 --a------ C:\WINDOWS\QTFont.for
2008-03-17 15:57 . 2008-03-17 15:57 <REP> d-------- C:\Program Files\iPod
2008-03-17 15:56 . 2008-03-17 15:57 <REP> d-------- C:\Program Files\iTunes
2008-03-17 15:54 . 2008-03-17 15:54 <REP> d-------- C:\Program Files\Bonjour
2008-03-17 15:52 . 2008-03-17 15:53 <REP> d-------- C:\Program Files\QuickTime
2008-03-15 07:44 . 2008-03-15 07:44 23,392 --a------ C:\WINDOWS\system32\nscompat.tlb
2008-03-15 07:44 . 2008-03-15 07:44 16,832 --a------ C:\WINDOWS\system32\amcompat.tlb
2008-03-13 10:53 . 2008-03-13 10:53 <REP> d-------- C:\Program Files\Easy Video Splitter
2008-03-13 08:51 . 2008-03-13 08:51 <REP> d-------- C:\Program Files\Ares
2008-03-13 07:29 . 2008-03-13 07:29 <REP> d-------- C:\Documents and Settings\Administrateur\Application Data\vlc
2008-03-13 07:24 . 2008-03-13 07:24 268 --ah----- C:\sqmdata01.sqm
2008-03-13 07:24 . 2008-03-13 07:24 244 --ah----- C:\sqmnoopt01.sqm
2008-03-09 11:53 . 2006-10-25 14:17 <REP> d-------- C:\Documents and Settings\famille\Support
2008-03-09 11:53 . 2006-10-25 14:17 <REP> d-------- C:\Documents and Settings\famille\DirectX
2008-03-09 11:53 . 2006-10-25 14:17 380,928 --a------ C:\Documents and Settings\famille\server.dll
2008-03-09 11:50 . 2006-10-25 14:17 625,035,295 --a------ C:\Documents and Settings\famille\[u]0[/u]compressed.zip
2008-03-09 11:50 . 2006-10-25 14:17 7,577,600 --a------ C:\Documents and Settings\famille\nfsc_demo.exe
2008-03-09 11:50 . 2006-10-25 14:17 720,896 --a------ C:\Documents and Settings\famille\EAInstall.dll
2008-03-09 11:50 . 2006-10-25 14:17 569,344 --a------ C:\Documents and Settings\famille\AutoRun.exe
2008-03-09 11:50 . 2006-10-25 14:17 528,384 --a------ C:\Documents and Settings\famille\AutoRunGUI.dll
2008-03-09 11:50 . 2006-10-25 14:17 499,712 --a------ C:\Documents and Settings\famille\msvcp71.dll
2008-03-09 11:50 . 2006-10-25 14:17 348,160 --a------ C:\Documents and Settings\famille\msvcr71.dll
2008-03-09 11:50 . 2006-10-25 14:17 253,952 --a------ C:\Documents and Settings\famille\eauninstall.exe
2008-03-09 11:50 . 2006-10-25 14:17 53,248 --a------ C:\Documents and Settings\famille\nfs_inst.exe
2008-03-09 11:50 . 2006-10-25 14:17 258 --a------ C:\Documents and Settings\famille\dat.bin
2008-03-09 02:53 . 2008-03-09 02:53 <REP> d-------- C:\WINDOWS\system32\Kaspersky Lab
2008-03-08 14:08 . 2008-03-08 14:09 <REP> d-------- C:\DOCUMENT
2008-03-07 13:58 . 2008-03-10 01:39 <REP> d-------- C:\Documents and Settings\famille\Application Data\Ahead
2008-03-05 16:46 . 2008-03-05 16:46 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Ahead
2008-03-04 07:57 . 2008-03-04 19:50 <REP> d-------- C:\Documents and Settings\famille\Tracing
2008-03-03 17:24 . 2008-03-06 10:23 <REP> d-------- C:\Documents and Settings\adama\Tracing
2008-03-01 16:40 . 2008-03-02 21:42 <REP> d-------- C:\Program Files\EA SPORTS
2008-02-29 17:26 . 2007-04-30 03:50 5,537,792 --a------ C:\WINDOWS\system32\OLD9E.tmp
2008-02-28 14:29 . 2008-03-16 11:16 10 --a------ C:\WINDOWS\popcinfo.dat
2008-02-27 08:28 . 2007-06-18 23:22 364,544 --a------ C:\WINDOWS\system32\PropertyGrid.ocx
2008-02-27 08:28 . 2005-10-13 13:42 208,500 --a------ C:\WINDOWS\system32\ReyXpBasics.tlb
2008-02-27 08:28 . 2004-03-09 00:00 84,512 --a------ C:\WINDOWS\system32\PICCLP32.OCX
2008-02-27 08:28 . 2005-09-28 01:31 24,576 --a------ C:\WINDOWS\system32\ControlSubX.ocx
2008-02-27 08:28 . 1998-07-13 00:00 9,728 --a------ C:\WINDOWS\system32\PCCLPFR.DLL
2008-02-25 13:29 . 2008-02-25 13:29 <REP> d-------- C:\Documents and Settings\adama\Application Data\Nokia Multimedia Player
2008-02-24 15:16 . 2007-09-03 17:19 39,584 --a------ C:\WINDOWS\system32\drivers\VBoxDrv.sys
2008-02-24 15:16 . 2007-09-03 17:19 27,744 --a------ C:\WINDOWS\system32\drivers\VBoxUSBMon.sys

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-21 09:57 --------- d-----w C:\Documents and Settings\famille\Application Data\InstallShield
2008-03-20 16:38 --------- d-----w C:\Documents and Settings\adama\Application Data\Roam Once Active
2008-03-20 16:37 --------- d-----w C:\Documents and Settings\All Users\Application Data\mail grey balm inter
2008-03-20 16:36 --------- d-----w C:\Program Files\Messenger Plus! Live
2008-03-17 21:15 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-03-17 19:05 --------- d-----w C:\Program Files\Yahoo!
2008-03-17 18:12 3,348 ----a-w C:\WINDOWS\system32\tmp.reg
2008-03-16 09:27 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-03-15 07:11 --------- d-----w C:\Documents and Settings\All Users\Application Data\Nero
2008-03-15 07:00 --------- d-----w C:\Program Files\Windows Media Connect 2
2008-03-12 15:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-03-09 07:43 --------- d-----w C:\Documents and Settings\adama\Application Data\Ahead
2008-03-06 10:47 --------- d-----w C:\Program Files\Windows Live
2008-03-06 10:39 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-03-04 05:43 --------- d-----w C:\Program Files\Circle Developement
2008-03-02 11:47 --------- d-----w C:\Documents and Settings\famille\Application Data\InstallShield Installation Information
2008-02-12 05:14 --------- d-----w C:\Documents and Settings\All Users\Application Data\BigFishGamesCache
2008-02-11 06:26 --------- d-----w C:\Documents and Settings\famille\Application Data\Apple Computer
2008-02-11 06:23 --------- d-----w C:\Documents and Settings\famille\Application Data\Babylon
2008-02-08 14:47 --------- d-----w C:\Program Files\Fichiers communs\Adobe
2008-02-08 14:29 --------- d-----w C:\Documents and Settings\adama\Application Data\AdobeUM
2008-02-06 19:24 23,600 ----a-w C:\WINDOWS\system32\drivers\TVICHW32.SYS
2008-02-06 15:46 --------- d-----w C:\Documents and Settings\famille\Application Data\Nokia Multimedia Player
2008-02-03 22:53 4,528 ----a-w C:\NONAME00.EXE
2008-02-01 15:53 15,397 ----a-w C:\Program Files\settings.dat
2008-02-01 15:53 --------- d-----w C:\Program Files\PDFCreator
2008-02-01 11:17 587,264 ----a-w C:\WINDOWS\WLXPGSS.SCR
2008-01-31 12:10 --------- d-----w C:\Program Files\PhotoFiltre Studio
2008-01-30 15:18 --------- d-----w C:\Program Files\Avira
2008-01-30 15:18 --------- d-----w C:\Documents and Settings\All Users\Application Data\Avira
2008-01-28 10:36 --------- d-----w C:\Documents and Settings\famille\Application Data\vlc
2008-01-27 16:31 --------- d-----w C:\Documents and Settings\adama\Application Data\vlc
2008-01-27 16:28 --------- d-----w C:\Program Files\VideoLAN
2008-01-27 10:45 --------- d-----w C:\Documents and Settings\adama\Application Data\PC Suite
2008-01-27 07:27 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-01-26 15:35 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
2008-01-23 13:53 --------- d-----w C:\Documents and Settings\adama\Application Data\ICAClient
2008-01-21 15:44 --------- d-----w C:\Program Files\Thrustmaster
2008-01-15 22:49 2,464 ----a-w C:\MONNOM.EXE
2008-01-14 22:31 4,000 ----a-w C:\GREP2MSG.EXE
2008-01-14 21:15 74,752 ----a-w C:\WINDOWS\ST6UNST.EXE
2008-01-14 21:15 253,952 ------w C:\WINDOWS\Setup1.exe
2008-01-05 13:30 774,144 ----a-w C:\Program Files\RngInterstitial.dll
2007-09-26 14:01 2,532,922 ----a-w C:\WINDOWS\inf\SET14D.tmp
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0E896FCA-D07E-45FE-901F-6A26FCF59C02}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 11:34 5724184]
"ares"="C:\Program Files\Ares\Ares.exe" [2008-02-20 14:33 963072]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-03 22:54 15360]
"htm aim"="C:\DOCUME~1\adama\APPLIC~1\ROAMON~1\funk phone more.exe" [2008-03-20 16:37 458752]
"IMBooster"="C:\Program Files\Iminent\imbooster.exe" [2008-03-10 13:20 532480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PD0630 STISvc"="P0630Pin.dll" [2005-06-05 17:01 36864 C:\WINDOWS\system32\P0630Pin.dll]
"snpstd3"="C:\WINDOWS\vsnpstd3.exe" [2006-09-19 04:37 827392]
"Smapp"="C:\Program Files\Analog Devices\SoundMAX\SMTray.exe" [2003-07-30 05:38 143360]
"diagnostics"="C:\Program Files\Thomson\ST330\diagnostics\diagnostics.exe" [2007-12-01 12:34 557149]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2003-07-29 16:40 335872]
"ATIModeChange"="Ati2mdxx.exe" [2001-09-04 05:24 28672 C:\WINDOWS\system32\Ati2mdxx.exe]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2008-01-31 23:13 385024]
"Balm Inter First Four"="C:\Documents and Settings\All Users\Application Data\mail grey balm inter\style pile.exe" [2008-03-21 13:15 468480]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-03 22:54 15360]
"Nokia.PCSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-11-07 13:05 1294336]

[HKLM\~\startupfolder\C:^Documents and Settings^adama^Menu Démarrer^Programmes^Démarrage^MSN Pictures Displayer.lnk]
path=C:\Documents and Settings\adama\Menu Démarrer\Programmes\Démarrage\MSN Pictures Displayer.lnk
backup=C:\WINDOWS\pss\MSN Pictures Displayer.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Probe]
--a------ 2002-12-06 11:37 617984 C:\Program Files\ASUS\Probe\AsusProb.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\htm aim]
--a------ 2008-03-20 16:37 458752 C:\DOCUME~1\adama\APPLIC~1\ROAMON~1\funk phone more.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2008-02-19 13:10 267048 C:\Program Files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
--a------ 2007-12-10 05:42 695808 C:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\System12]
C:\WINDOWS\system32\ne0kS.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"Boonty Games"=3 (0x3)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
DcomLaunch REG_MULTI_SZ DcomLaunch

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{267428c8-c5d5-11dc-9fc3-000e50d1400d}]
\Shell\AutoRun\command - F:\xn1i9x.com
\Shell\explore\Command - F:\xn1i9x.com
\Shell\open\Command - F:\xn1i9x.com

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4f8a149a-e2c5-11dc-a048-000e50d1400d}]
\Shell\AutoRun\command - 0hct8ybw.bat
\Shell\explore\Command - 0hct8ybw.bat
\Shell\open\Command - 0hct8ybw.bat

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{51935ca8-ad63-11dc-9f49-000e50d1400d}]
\Shell\AutoRun\command - fooool.exe
\Shell\explore\Command - fooool.exe
\Shell\open\Command - fooool.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6438571d-d95b-11dc-a023-000e50d1400d}]
\Shell\AutoRun\command - F:\xfoolavp.com
\Shell\explore\Command - F:\xfoolavp.com
\Shell\open\Command - F:\xfoolavp.com

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{90a34812-b11b-11dc-9f5d-000e50d1400d}]
\Shell\AutoRun\command - d.com
\Shell\explore\Command - d.com
\Shell\open\Command - d.com

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c2ebbd9a-a275-11dc-9f08-000e50d1400d}]
\Shell\AutoRun\command - sxs.exe
\Shell\explore\Command - sxs.exe
\Shell\open\Command - sxs.exe

*Newly Created Service* - SENS

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2563DA26-40A7-A641-3235-308CA13E866F}]
C:\WINDOWS\system32:dlihost.exe
.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2008-03-21 12:00:24 C:\WINDOWS\Tasks\A43FD8F891905414.job"
- c:\docume~1\adama\applic~1\roamon~1\freedeadbin.exe
"2008-03-04 20:07:03 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-21 13:49:59
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet003\Services\st330service]
"ImagePath"="C:\Program Files/Thomson/ST330/service/st330service.exe -service"
.
Temps d'accomplissement: 2008-03-21 13:51:02
ComboFix-quarantined-files.txt 2008-03-21 13:50:51
.
2008-03-15 18:29:52 --- E O F ---

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:35:51, on 21/03/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Thomson\ST330\service\st330service.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RunDLL32.exe
C:\WINDOWS\vsnpstd3.exe
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Program Files\Thomson\ST330\diagnostics\diagnostics.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.iminent.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Iminent.SearchTheWeb.HelperObject - {0E896FCA-D07E-45FE-901F-6A26FCF59C02} - mscoree.dll (file missing)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [PD0630 STISvc] RunDLL32.exe P0630Pin.dll,RunDLL32EP 513
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [diagnostics] "C:\Program Files\Thomson\ST330\diagnostics\diagnostics.exe" /icon -l:fr
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Balm Inter First Four] C:\Documents and Settings\All Users\Application Data\mail grey balm inter\style pile.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [htm aim] C:\DOCUME~1\adama\APPLIC~1\ROAMON~1\funk phone more.exe
O4 - HKCU\..\Run: [IMBooster] C:\Program Files\Iminent\imbooster.exe /silent
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\S-1-5-21-1123561945-789336058-682003330-1002\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User '?')
O4 - HKUS\S-1-5-21-1123561945-789336058-682003330-1002\..\Run: [htm aim] C:\DOCUME~1\adama\APPLIC~1\ROAMON~1\funk phone more.exe (User '?')
O4 - HKUS\S-1-5-21-1123561945-789336058-682003330-1002\..\Run: [IMBooster] C:\Program Files\Iminent\imbooster.exe /silent (User '?')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} - http://a516.g.akamai.net/
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/default.aspx
O16 - DPF: {AF2E62B6-F9E1-4D4F-A10A-9DC8E6DCBCC0} (VideoEgg ActiveX Loader) - http://update.videoegg.com/Install/Windows/Initial/VideoEggPublisher.exe
O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://ak.imgag.com/imgag/cp/install/crusher-kiwen.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{DE2E60CA-65F5-4880-B487-331C56889616}: NameServer = 213.154.95.126 213.154.64.13
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: SpeedTouch 330 Manager (st330service) - THOMSON Telecom Belgium - C:\Program Files/Thomson/ST330/service/st330service.exe

File move failed. C:\Documents and Settings\All Users\Application Data\mail grey balm inter\style pile.exe scheduled to be moved on reboot.
C:\DOCUME~1\adama\APPLIC~1\ROAMON~1\funk phone more.exe moved successfully.

Created on 03/21/2008 15:12:56

AntiVir PersonalEdition Classic
Report file date: vendredi 21 mars 2008 15:37

Scanning for 1160082 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Username: adama
Computer name: FAMILLE-896431C

Version information:
BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 14:16:29
AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 13:23:51
LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 16:32:47
LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 13:35:20
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 15:27:15
ANTIVIR1.VDF : 7.0.3.2 5447168 Bytes 07/03/2008 15:14:27
ANTIVIR2.VDF : 7.0.3.3 2048 Bytes 07/03/2008 15:14:27
ANTIVIR3.VDF : 7.0.3.61 328192 Bytes 20/03/2008 16:46:02
AVEWIN32.DLL : 7.6.0.75 3334656 Bytes 20/03/2008 16:46:03
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 11:36:26
AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 08:39:17
AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 14:16:24
AVPACK32.DLL : 7.6.0.3 360488 Bytes 03/02/2008 09:21:50
AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 08:17:06
AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 13:26:33
AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 08:10:18
NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 12:09:42
RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 13:38:13
RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 13:50:37
SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 10:37:21

Configuration settings for the scan:
Jobname..........................: Active Processes
Configuration file...............: c:\program files\avira\antivir personaledition classic\process.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Scan memory......................: off
Process scan.....................: on
Extended process scan............: on
Scan registry....................: off
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium

Start of the scan: vendredi 21 mars 2008 15:37

The scan of running processes will be started
Scan process 'avscan.exe' - '35' Module(s) have been scanned
Scan process 'avcenter.exe' - '90' Module(s) have been scanned
Scan process 'distnoted.exe' - '25' Module(s) have been scanned
Scan process 'AppleMobileDeviceHelper.exe' - '46' Module(s) have been scanned
Scan process 'iPodService.exe' - '27' Module(s) have been scanned
Scan process 'iTunes.exe' - '105' Module(s) have been scanned
Scan process 'usnsvc.exe' - '15' Module(s) have been scanned
Scan process 'WLLoginProxy.exe' - '42' Module(s) have been scanned
Scan process 'iexplore.exe' - '109' Module(s) have been scanned
Scan process 'ctfmon.exe' - '26' Module(s) have been scanned
Scan process 'msnmsgr.exe' - '138' Module(s) have been scanned
Scan process 'atiptaxx.exe' - '32' Module(s) have been scanned
Scan process 'diagnostics.exe' - '35' Module(s) have been scanned
Scan process 'SMTray.exe' - '22' Module(s) have been scanned
Scan process 'vsnpstd3.exe' - '20' Module(s) have been scanned
Scan process 'rundll32.exe' - '34' Module(s) have been scanned
Scan process 'explorer.exe' - '103' Module(s) have been scanned
Scan process 'wdfmgr.exe' - '15' Module(s) have been scanned
Scan process 'svchost.exe' - '38' Module(s) have been scanned
Scan process 'SMAgent.exe' - '14' Module(s) have been scanned
Scan process 'mDNSResponder.exe' - '27' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '21' Module(s) have been scanned
Scan process 'sched.exe' - '34' Module(s) have been scanned
Scan process 'avguard.exe' - '36' Module(s) have been scanned
Scan process 'spoolsv.exe' - '53' Module(s) have been scanned
Scan process 'svchost.exe' - '41' Module(s) have been scanned
Scan process 'svchost.exe' - '32' Module(s) have been scanned
Scan process 'svchost.exe' - '31' Module(s) have been scanned
Scan process 'st330service.exe' - '33' Module(s) have been scanned
Scan process 'svchost.exe' - '133' Module(s) have been scanned
Scan process 'svchost.exe' - '38' Module(s) have been scanned
Scan process 'svchost.exe' - '28' Module(s) have been scanned
Scan process 'ati2evxx.exe' - '13' Module(s) have been scanned
Scan process 'lsass.exe' - '60' Module(s) have been scanned
Scan process 'services.exe' - '26' Module(s) have been scanned
Scan process 'winlogon.exe' - '62' Module(s) have been scanned
Scan process 'csrss.exe' - '12' Module(s) have been scanned
Scan process 'smss.exe' - '2' Module(s) have been scanned
38 processes with 1653 modules were scanned


End of the scan: vendredi 21 mars 2008 15:38
Used time: 00:57 min

The scan has been done completely.

0 Scanning directories
1653 Files were scanned
0 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
0 files were moved to quarantine
0 files were renamed
0 Files cannot be scanned
1653 Files not concerned
0 Archives were scanned
0 Warnings
0 Notes

# Rapport Lopxp fait le 21/03/2008 à 15:43:06
# Exécuté dans : C:\Program Files\Lopxp
# Version 3.09 - Maj du 28/02/2008

Killing 'iexplore.exe'
"C:\Program Files\Internet Explorer\IEXPLORE.EXE" (348)

========== Listing des dossiers Application Data

+- C:\Documents and Settings\adama\Application Data

2008-02-08 à 14:57:01 - Adobe
2008-02-08 à 14:29:40 - AdobeUM
2008-03-09 à 07:43:59 - Ahead
2008-01-12 à 13:02:07 - Apple Computer
2007-12-01 à 14:35:07 - ArcSoft
2007-12-01 à 12:45:12 - Help
2008-01-23 à 13:53:13 - ICAClient
2007-12-01 à 10:10:01 - Identities
2008-03-20 à 16:52:28 - Iminent
2007-12-02 à 11:58:33 - Macromedia
2008-03-20 à 16:58:51 - Microsoft
2008-01-05 à 13:47:52 - My Games
2007-12-05 à 04:30:59 - Nero
2007-12-23 à 23:51:57 - Nokia
2008-02-25 à 13:29:51 - Nokia Multimedia Player
2008-01-27 à 10:45:39 - PC Suite
2008-03-20 à 16:38:11 - Roam Once Active
2007-12-11 à 08:10:12 - VideoEgg
2008-01-27 à 16:31:10 - vlc
2007-12-27 à 01:47:13 - WinRAR

+- C:\Documents and Settings\adama\Local Settings\Application Data

2008-03-13 à 12:13:43 - Adobe
2008-03-08 à 18:11:07 - Ahead
2007-12-23 à 03:10:33 - Apple
2007-12-23 à 03:08:54 - Apple Computer
2008-03-17 à 17:57:24 - Ares
2007-12-01 à 12:45:12 - Help
2008-03-20 à 17:07:13 - Iminent
2008-02-25 à 01:42:51 - Microsoft
2007-12-01 à 12:49:02 - Microsoft Help
2007-12-02 à 12:17:52 - PCHealth
2008-03-06 à 12:05:25 - WinAVI

+- C:\Documents and Settings\Administrateur\Application Data

2008-01-05 à 18:49:44 - Adobe
2007-12-31 à 20:44:21 - Apple Computer
2007-12-30 à 20:36:50 - Identities
2007-12-30 à 20:44:22 - Macromedia
2007-12-30 à 20:38:33 - Microsoft
2008-03-13 à 07:29:24 - vlc

+- C:\Documents and Settings\Administrateur\Local Settings\Application Data

2008-02-11 à 13:29:23 - Adobe
2008-03-13 à 07:12:12 - Ahead
2007-12-31 à 20:44:21 - Apple Computer
2008-03-13 à 07:19:11 - Ares
2008-01-02 à 18:33:47 - Microsoft

+- C:\Documents and Settings\All Users\Application Data

2008-02-08 à 14:48:45 - Adobe
2008-03-05 à 16:46:51 - Ahead
2007-12-23 à 03:09:48 - Apple
2007-12-23 à 03:11:54 - Apple Computer
2008-01-30 à 15:18:28 - Avira
2008-02-12 à 05:14:04 - BigFishGamesCache
2007-12-11 à 12:33:45 - Bluetooth
2007-12-29 à 00:54:38 - BOONTY
2008-01-07 à 17:03:48 - BufferZone
2008-03-17 à 19:22:23 - Grisoft
2008-01-20 à 06:39:24 - Installations
2008-01-27 à 07:27:55 - Kaspersky Lab
2008-01-26 à 15:35:51 - Kaspersky Lab Setup Files
2008-03-20 à 16:37:50 - mail grey balm inter
2007-12-30 à 21:38:15 - Messenger Plus!
2008-02-12 à 06:49:43 - Microsoft
2008-03-12 à 15:23:01 - Microsoft Help
2008-03-15 à 07:11:09 - Nero
2007-12-24 à 16:59:16 - PC Suite
2007-12-06 à 12:54:15 - pcgdemo
2008-03-16 à 09:27:56 - Spybot - Search & Destroy
2008-02-29 à 20:08:00 - Windows Genuine Advantage
2008-03-06 à 10:39:14 - WLInstaller
2008-03-17 à 19:09:44 - Yahoo! Companion
2008-03-20 à 16:43:49 - {39D45C8A-D78B-47FF-AE03-74BCF6971EB0}

+- C:\Documents and Settings\famille\Application Data

2008-02-11 à 07:15:44 - Adobe
2008-03-10 à 01:39:02 - Ahead
2008-02-11 à 06:26:35 - Apple Computer
2008-02-11 à 06:23:20 - Babylon
2007-12-02 à 18:21:19 - Help
2007-12-01 à 09:52:08 - Identities
2008-03-21 à 10:59:16 - Iminent
2008-03-21 à 09:57:21 - InstallShield
2008-03-02 à 11:47:01 - InstallShield Installation Information
2007-12-02 à 20:01:48 - Macromedia
2008-03-21 à 09:54:18 - Microsoft
2007-12-27 à 06:59:58 - Nokia
2008-02-06 à 15:46:14 - Nokia Multimedia Player
2007-12-26 à 08:30:34 - PC Suite
2008-03-21 à 09:57:48 - Rockstar Games
2007-12-23 à 23:46:47 - TMNT Demo
2007-12-23 à 23:46:09 - Ubisoft
2008-01-28 à 10:36:14 - vlc
2007-12-15 à 12:53:26 - Windows Live Writer
2007-12-23 à 23:48:10 - WinRAR

+- C:\Documents and Settings\famille\Local Settings\Application Data

2008-02-11 à 07:15:40 - Adobe
2008-02-14 à 09:10:16 - Ahead
2008-01-28 à 11:22:01 - Apple
2007-12-26 à 09:06:05 - Apple Computer
2008-03-21 à 10:37:15 - Ares
2008-01-06 à 12:10:16 - Help
2008-03-21 à 10:55:39 - Iminent
2008-03-19 à 18:22:10 - Microsoft
2007-12-15 à 12:53:31 - Windows Live Writer

+- C:\Documents and Settings\Invit‚\Application Data

2007-12-30 à 20:52:23 - Identities
2007-12-31 à 16:27:11 - Microsoft

+- C:\Documents and Settings\Invit‚\Local Settings\Application Data

2007-12-31 à 20:37:08 - Ahead
2007-12-30 à 20:52:35 - Apple Computer
2007-12-31 à 20:33:47 - Microsoft

========== Listing du dossier Program Files

+- C:\Program Files

2008-02-08 à 14:47:21 - Adobe
2007-12-09 à 20:20:06 - Adverts
2007-12-01 à 12:32:07 - AI - Series
2008-01-11 à 17:48:39 - Alwil Software
2007-12-01 à 12:30:02 - Analog Devices
2007-12-23 à 03:10:30 - Apple Software Update
2008-03-13 à 08:51:29 - Ares
2007-12-01 à 12:31:59 - ASUS
2007-12-01 à 12:29:34 - ATI Technologies
2008-01-30 à 15:18:28 - Avira
2008-03-17 à 15:54:22 - Bonjour
2008-03-17 à 19:04:38 - CCleaner
2008-03-04 à 05:43:42 - Circle Developement
2007-12-23 à 23:50:58 - DIFX
2008-03-02 à 21:42:42 - EA SPORTS
2008-03-13 à 10:53:34 - Easy Video Splitter
2008-03-15 à 14:04:11 - Fichiers communs
2007-12-08 à 23:42:18 - File Lock
2008-03-20 à 17:00:30 - Iminent
2008-03-17 à 21:15:43 - InstallShield Installation Information
2008-02-13 à 11:36:14 - Internet Explorer
2008-03-17 à 15:57:14 - iPod
2008-03-17 à 15:57:41 - iTunes
2008-03-21 à 15:43:17 - Lopxp
2008-03-20 à 16:36:07 - Messenger Plus! Live
2007-12-01 à 14:14:08 - microsoft frontpage
2008-03-15 à 12:35:29 - Microsoft Office
2008-01-03 à 11:51:47 - Microsoft Silverlight
2007-12-09 à 19:04:26 - Microsoft SQL Server Compact Edition
2007-12-11 à 15:06:27 - Microsoft Visual Studio
2007-12-11 à 15:02:27 - Microsoft Visual Studio 8
2007-12-11 à 15:07:07 - Microsoft Works
2007-12-11 à 15:05:08 - Microsoft.NET
2007-12-01 à 14:17:49 - Movie Maker
2008-03-20 à 16:47:52 - Mozilla Firefox
2007-12-11 à 15:06:51 - MSBuild
2007-12-01 à 14:14:08 - msn gaming zone
2007-12-03 à 13:19:28 - MSXML 4.0
2007-12-01 à 14:11:49 - NetMeeting
2007-12-29 à 00:49:42 - Nokia
2007-12-02 à 22:33:31 - Outlook Express
2007-12-29 à 00:47:57 - PC Connectivity Solution
2008-02-01 à 15:53:16 - PDFCreator
2008-01-31 à 12:10:34 - PhotoFiltre Studio
2008-03-17 à 15:53:56 - QuickTime
2008-03-20 à 16:37:21 - Roam Once Active
2008-03-17 à 21:15:44 - Samsung
2007-12-01 à 10:13:55 - Services en ligne
2007-12-01 à 12:34:10 - Thomson
2008-01-21 à 15:44:11 - Thrustmaster
2008-03-21 à 15:00:20 - Trend Micro
2007-12-01 à 09:52:07 - Uninstall Information
2008-01-27 à 16:28:26 - VideoLAN
2008-03-06 à 10:47:56 - Windows Live
2008-03-15 à 07:00:39 - Windows Media Connect 2
2008-03-15 à 07:43:41 - Windows Media Player
2007-12-01 à 14:14:08 - windows nt
2007-12-01 à 14:13:03 - WindowsUpdate
2007-12-13 à 16:39:32 - WinRAR
2007-12-01 à 14:14:08 - xerox
2008-03-17 à 19:05:47 - Yahoo!

========== Tâches planifiées

A43FD8F891905414.job: c:\docume~1\adama\applic~1\roamon~1\freedeadbin.exe
AppleSoftwareUpdate.job: C:\Program Files\Apple Software Update\SoftwareUpdate.exe -task

========== Clés registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"htm aim"="C:\DOCUME~1\adama\APPLIC~1\ROAMON~1\funk phone more.exe"


========== Bloqueur popups Internet Explorer

www.host-domain-lookup.com
PopupMgr

========== Suggestion ( /!\ Nécessite une interprétation.) ==========

C:\Documents and Settings\adama\Application Data\Roam Once Active
C:\Documents and Settings\All Users\Application Data\mail grey balm inter
C:\Program Files\Adverts
C:\Program Files\Circle Developement
C:\Program Files\Roam Once Active
C:\WINDOWS\tasks\A43FD8F891905414.job

+- Registre:

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"htm aim"=-

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow]
"host-domain-lookup.com"=-
"www.host-domain-lookup.com"=-



- Fin du rapport -

# Rapport Lopxp fait le 21/03/2008 à 16:04:59
# Exécuté dans : C:\Program Files\Lopxp
# Version 3.09 - Maj du 28/02/2008

Killing 'iexplore.exe'
"C:\Program Files\Internet Explorer\IEXPLORE.EXE" (2584)

========== FixLog ==========


+- C:\Documents and Settings\adama\Application Data\Roam Once Active
Choix utilisateur : Suppression acceptée.
Déplacé avec succès.

+- C:\Documents and Settings\All Users\Application Data\mail grey balm inter
Choix utilisateur : Suppression acceptée.
Déplacé avec succès.

+- C:\Program Files\Adverts
Choix utilisateur : Suppression acceptée.
Déplacé avec succès.

+- C:\Program Files\Circle Developement
Choix utilisateur : Suppression acceptée.
Déplacé avec succès.

+- C:\Program Files\Roam Once Active
Choix utilisateur : Suppression acceptée.
Déplacé avec succès.

+- C:\WINDOWS\tasks\A43FD8F891905414.job
Choix utilisateur : Suppression acceptée.
Déplacé avec succès.

+- Registre :
Nettoyage effectué.

+- Fichiers temporaires :
Nettoyage effectué.


========== Listing des dossiers Application Data

+- C:\Documents and Settings\adama\Application Data

2008-02-08 à 14:57:01 - Adobe
2008-02-08 à 14:29:40 - AdobeUM
2008-03-09 à 07:43:59 - Ahead
2008-01-12 à 13:02:07 - Apple Computer
2007-12-01 à 14:35:07 - ArcSoft
2007-12-01 à 12:45:12 - Help
2008-01-23 à 13:53:13 - ICAClient
2007-12-01 à 10:10:01 - Identities
2008-03-20 à 16:52:28 - Iminent
2007-12-02 à 11:58:33 - Macromedia
2008-03-20 à 16:58:51 - Microsoft
2008-01-05 à 13:47:52 - My Games
2007-12-05 à 04:30:59 - Nero
2007-12-23 à 23:51:57 - Nokia
2008-02-25 à 13:29:51 - Nokia Multimedia Player
2008-01-27 à 10:45:39 - PC Suite
2007-12-11 à 08:10:12 - VideoEgg
2008-01-27 à 16:31:10 - vlc
2007-12-27 à 01:47:13 - WinRAR

+- C:\Documents and Settings\adama\Local Settings\Application Data

2008-03-13 à 12:13:43 - Adobe
2008-03-08 à 18:11:07 - Ahead
2007-12-23 à 03:10:33 - Apple
2007-12-23 à 03:08:54 - Apple Computer
2008-03-17 à 17:57:24 - Ares
2007-12-01 à 12:45:12 - Help
2008-03-20 à 17:07:13 - Iminent
2008-02-25 à 01:42:51 - Microsoft
2007-12-01 à 12:49:02 - Microsoft Help
2007-12-02 à 12:17:52 - PCHealth
2008-03-06 à 12:05:25 - WinAVI

+- C:\Documents and Settings\Administrateur\Application Data

2008-01-05 à 18:49:44 - Adobe
2007-12-31 à 20:44:21 - Apple Computer
2007-12-30 à 20:36:50 - Identities
2007-12-30 à 20:44:22 - Macromedia
2007-12-30 à 20:38:33 - Microsoft
2008-03-13 à 07:29:24 - vlc

+- C:\Documents and Settings\Administrateur\Local Settings\Application Data

2008-02-11 à 13:29:23 - Adobe
2008-03-13 à 07:12:12 - Ahead
2007-12-31 à 20:44:21 - Apple Computer
2008-03-13 à 07:19:11 - Ares
2008-01-02 à 18:33:47 - Microsoft

+- C:\Documents and Settings\All Users\Application Data

2008-02-08 à 14:48:45 - Adobe
2008-03-05 à 16:46:51 - Ahead
2007-12-23 à 03:09:48 - Apple
2007-12-23 à 03:11:54 - Apple Computer
2008-01-30 à 15:18:28 - Avira
2008-02-12 à 05:14:04 - BigFishGamesCache
2007-12-11 à 12:33:45 - Bluetooth
2007-12-29 à 00:54:38 - BOONTY
2008-01-07 à 17:03:48 - BufferZone
2008-03-17 à 19:22:23 - Grisoft
2008-01-20 à 06:39:24 - Installations
2008-01-27 à 07:27:55 - Kaspersky Lab
2008-01-26 à 15:35:51 - Kaspersky Lab Setup Files
2007-12-30 à 21:38:15 - Messenger Plus!
2008-02-12 à 06:49:43 - Microsoft
2008-03-12 à 15:23:01 - Microsoft Help
2008-03-15 à 07:11:09 - Nero
2007-12-24 à 16:59:16 - PC Suite
2007-12-06 à 12:54:15 - pcgdemo
2008-03-16 à 09:27:56 - Spybot - Search & Destroy
2008-02-29 à 20:08:00 - Windows Genuine Advantage
2008-03-06 à 10:39:14 - WLInstaller
2008-03-17 à 19:09:44 - Yahoo! Companion
2008-03-20 à 16:43:49 - {39D45C8A-D78B-47FF-AE03-74BCF6971EB0}

+- C:\Documents and Settings\famille\Application Data

2008-02-11 à 07:15:44 - Adobe
2008-03-10 à 01:39:02 - Ahead
2008-02-11 à 06:26:35 - Apple Computer
2008-02-11 à 06:23:20 - Babylon
2007-12-02 à 18:21:19 - Help
2007-12-01 à 09:52:08 - Identities
2008-03-21 à 10:59:16 - Iminent
2008-03-21 à 09:57:21 - InstallShield
2008-03-02 à 11:47:01 - InstallShield Installation Information
2007-12-02 à 20:01:48 - Macromedia
2008-03-21 à 09:54:18 - Microsoft
2007-12-27 à 06:59:58 - Nokia
2008-02-06 à 15:46:14 - Nokia Multimedia Player
2007-12-26 à 08:30:34 - PC Suite
2008-03-21 à 09:57:48 - Rockstar Games
2007-12-23 à 23:46:47 - TMNT Demo
2007-12-23 à 23:46:09 - Ubisoft
2008-01-28 à 10:36:14 - vlc
2007-12-15 à 12:53:26 - Windows Live Writer
2007-12-23 à 23:48:10 - WinRAR

+- C:\Documents and Settings\famille\Local Settings\Application Data

2008-02-11 à 07:15:40 - Adobe
2008-02-14 à 09:10:16 - Ahead
2008-01-28 à 11:22:01 - Apple
2007-12-26 à 09:06:05 - Apple Computer
2008-03-21 à 10:37:15 - Ares
2008-01-06 à 12:10:16 - Help
2008-03-21 à 10:55:39 - Iminent
2008-03-19 à 18:22:10 - Microsoft
2007-12-15 à 12:53:31 - Windows Live Writer

+- C:\Documents and Settings\Invit‚\Application Data

2007-12-30 à 20:52:23 - Identities
2007-12-31 à 16:27:11 - Microsoft

+- C:\Documents and Settings\Invit‚\Local Settings\Application Data

2007-12-31 à 20:37:08 - Ahead
2007-12-30 à 20:52:35 - Apple Computer
2007-12-31 à 20:33:47 - Microsoft

========== Listing du dossier Program Files

+- C:\Program Files

2008-02-08 à 14:47:21 - Adobe
2007-12-01 à 12:32:07 - AI - Series
2008-01-11 à 17:48:39 - Alwil Software
2007-12-01 à 12:30:02 - Analog Devices
2007-12-23 à 03:10:30 - Apple Software Update
2008-03-13 à 08:51:29 - Ares
2007-12-01 à 12:31:59 - ASUS
2007-12-01 à 12:29:34 - ATI Technologies
2008-01-30 à 15:18:28 - Avira
2008-03-17 à 15:54:22 - Bonjour
2008-03-17 à 19:04:38 - CCleaner
2007-12-23 à 23:50:58 - DIFX
2008-03-02 à 21:42:42 - EA SPORTS
2008-03-13 à 10:53:34 - Easy Video Splitter
2008-03-15 à 14:04:11 - Fichiers communs
2007-12-08 à 23:42:18 - File Lock
2008-03-20 à 17:00:30 - Iminent
2008-03-17 à 21:15:43 - InstallShield Installation Information
2008-02-13 à 11:36:14 - Internet Explorer
2008-03-17 à 15:57:14 - iPod
2008-03-17 à 15:57:41 - iTunes
2008-03-21 à 16:06:19 - Lopxp
2008-03-20 à 16:36:07 - Messenger Plus! Live
2007-12-01 à 14:14:08 - microsoft frontpage
2008-03-15 à 12:35:29 - Microsoft Office
2008-01-03 à 11:51:47 - Microsoft Silverlight
2007-12-09 à 19:04:26 - Microsoft SQL Server Compact Edition
2007-12-11 à 15:06:27 - Microsoft Visual Studio
2007-12-11 à 15:02:27 - Microsoft Visual Studio 8
2007-12-11 à 15:07:07 - Microsoft Works
2007-12-11 à 15:05:08 - Microsoft.NET
2007-12-01 à 14:17:49 - Movie Maker
2008-03-20 à 16:47:52 - Mozilla Firefox
2007-12-11 à 15:06:51 - MSBuild
2007-12-01 à 14:14:08 - msn gaming zone
2007-12-03 à 13:19:28 - MSXML 4.0
2007-12-01 à 14:11:49 - NetMeeting
2007-12-29 à 00:49:42 - Nokia
2007-12-02 à 22:33:31 - Outlook Express
2007-12-29 à 00:47:57 - PC Connectivity Solution
2008-02-01 à 15:53:16 - PDFCreator
2008-01-31 à 12:10:34 - PhotoFiltre Studio
2008-03-17 à 15:53:56 - QuickTime
2008-03-17 à 21:15:44 - Samsung
2007-12-01 à 10:13:55 - Services en ligne
2007-12-01 à 12:34:10 - Thomson
2008-01-21 à 15:44:11 - Thrustmaster
2008-03-21 à 15:00:20 - Trend Micro
2007-12-01 à 09:52:07 - Uninstall Information
2008-01-27 à 16:28:26 - VideoLAN
2008-03-06 à 10:47:56 - Windows Live
2008-03-15 à 07:00:39 - Windows Media Connect 2
2008-03-15 à 07:43:41 - Windows Media Player
2007-12-01 à 14:14:08 - windows nt
2007-12-01 à 14:13:03 - WindowsUpdate
2007-12-13 à 16:39:32 - WinRAR
2007-12-01 à 14:14:08 - xerox
2008-03-17 à 19:05:47 - Yahoo!

========== Tâches planifiées

AppleSoftwareUpdate.job: C:\Program Files\Apple Software Update\SoftwareUpdate.exe -task

========== Clés registre


========== Bloqueur popups Internet Explorer


========== Suggestion ( /!\ Nécessite une interprétation.) ==========

+- Dossiers\Fichiers : Aucune suggestion.

+- Registre : Aucune suggestion.


- Fin du rapport -

oui merci beaucoup. excusez moi d'être percistant mai l'ordinateur est toujours lent surtout au démarage. quand il affiche la fenétre de windows xp pour se charger avant de commencé il peut rester labà pendant plusieurs minutes