Fenetres pub dans IE et Firefox

Fermé
Lysky004 Messages postés 47 Date d'inscription mercredi 7 mai 2008 Statut Membre Dernière intervention 16 décembre 2008 - 17 oct. 2008 à 17:57
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 - 12 déc. 2008 à 20:33
Salut,

Depuis pas longtemps (je crois que c'est depuis que j'ai téléchargé frostwire), j'ai des fenetres de pub qui s'ouvrent tout le temps
From Internet Speed Monitor dans IE
Powered by ZEDO et Dormitory dans Firefox

J'ai essayé de désinstaller FrostWire mais ça change rien
J'ai donc suivi les conseils trouvés sur d'autres posts, j'ai téléchargé HiJackThis et voila mon rapport :




Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:55:37, on 17/10/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Securitoo\Contrôle Parental\bin\optproxy.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\CAPRPCSK.EXE
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\system32\keyhook.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\Wanadoo\CnxMon.exe
C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb08.exe
C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\WINDOWS\ALCMTR.EXE
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
C:\Program Files\Assistant DartyBox\Upgrade_Manager.exe
C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\Program Files\GetModule\GetModule23.exe
C:\Program Files\GetPack\GetPack22.exe
C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\DartyBox Wifi\SAGEM WiFi manager\WLANUTL.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe
C:\WINDOWS\system32\regsvr32.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Documents and Settings\HP_Propriétaire\Mes documents\texte\Manon\Internet\téléchargements\HiJackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: eBay Toolbar Helper - {22D8E815-4A5E-4DFB-845E-AAB64207F5BD} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll
O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
O2 - BHO: bannerstyles15 browser enhancer - {650664B1-D3E5-D3D1-9079-64FF10D058D4} - C:\WINDOWS\system32\bhhhahgvcyrisr.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: DrFlex IE Helper - {8EEB2711-9D21-4f9c-99A1-B7FC5A8CA56A} - C:\Program Files\QdrDrive\QdrDrive20.dll (file missing)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O2 - BHO: InlineSearchHandleHotKey - {B6FFE2AE-4D12-451F-B457-FE6125FFB1CF} - C:\Program Files\IE7\Inline Search\InlineSearch.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTSingleInstance.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: eBay Toolbar - {92085AD4-F48A-450D-BD93-B28CC7DF67CE} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: TV5 - Dictionnaires - {CEDDA62D-5FBE-4AB2-AE2E-5E069F444444} - C:\Program Files\Barre TV5_dico\MDTV5TB.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\Wanadoo\CnxMon.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [CAPON] C:\WINDOWS\system32\Spool\Drivers\w32x86\3\CAPONN.EXE
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb08.exe
O4 - HKLM\..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AutoTBar] c:\Program Files\HP\Digital Imaging\bin\AUTOTBAR.EXE
O4 - HKLM\..\Run: [PlayerKiosquePlus] C:\Program Files\Lecteur CANALPLAY\PlayerKiosquePlus.exe /iconic
O4 - HKLM\..\Run: [CanalPlayer] C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe /iconic
O4 - HKLM\..\Run: [DNSE] "C:\Program Files\Fichiers communs\SystemDoctor\DNSE.exe" -c
O4 - HKLM\..\Run: [DC6V_Check] "C:\Program Files\Fichiers communs\SystemDoctor\usdrdc.exe"
O4 - HKLM\..\Run: [MDRV_Check] "C:\Program Files\Fichiers communs\SystemDoctor\usdrmdr.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe -AutoStart
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [ijqogokxkjht] C:\WINDOWS\System32\regsvr32.exe /s "C:\WINDOWS\system32\bhhhahgvcyrisr.dll"
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [L'Assistant DartyBox] C:\Program Files\Assistant DartyBox\Upgrade_Manager.exe
O4 - HKCU\..\Run: [VoipBuster] "C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe" -nosplash -minimized
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [VnrPack20] "C:\Program Files\VnrPack\VnrPack20.exe"
O4 - HKCU\..\Run: [GetModule23] "C:\Program Files\GetModule\GetModule23.exe"
O4 - HKCU\..\Run: [GetPack22] "C:\Program Files\GetPack\GetPack22.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Startup: ppcbooster.lnk = C:\Program Files\ppcbooster\ppcbooster.exe
O4 - Global Startup: Canon LBP-800 Statusfönster.LNK = C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Ouvrir l'image dans &Microsoft PhotoDraw - res://C:\PROGRA~1\MICROS~2\Office\1036\phdintl.dll/phdContext.htm
O8 - Extra context menu item: Translate with &Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Translate.htm
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D80A6D1-B500-47DA-82B8-EB9875F85B4D} (Google Gadget Control) - http://dl.google.com/dl/desktop/L/GoogleGadgetPluginIEWin.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Securitoo Contrôle Parental (OPTENET_FILTER) - WANADOO - C:\Program Files\Securitoo\Contrôle Parental\bin\optproxy.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Service CANALPLAY - Canal+ Active - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe
O24 - Desktop Component 0: (no name) - http://www.wallpaperbase.com/wallpapers/cartoons/asterix/asterix_4.jpg
A voir également:

19 réponses

Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 297
15 nov. 2008 à 20:31
Tu as cliqué sur Supprimer la sélection ?
0
Lysky004 Messages postés 47 Date d'inscription mercredi 7 mai 2008 Statut Membre Dernière intervention 16 décembre 2008
16 nov. 2008 à 09:22
Non j'ai pas voulu faire une c*nnerie ^^ j'attendais ton avis. Je vais le faire tout de suite mais je sais pas si c'est encore possible ou si y faut recommencer tout ... Ça doit bien être possible, je vais essayer de trouver et je te tiens au courant
0
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 297
16 nov. 2008 à 10:40
Mets à jour MBAM avant de relancer le scan pour effacer les infections.
0
Lysky004 Messages postés 47 Date d'inscription mercredi 7 mai 2008 Statut Membre Dernière intervention 16 décembre 2008
16 nov. 2008 à 11:32
J'avais pas vu ta réponse donc j'ai pas mis a jour avant de supprimer mais je crois que c'est bon, pour l'instant je n'ai plus de fenêtres qui s'ouvrent !!! J'espère que ca va continuer comme ca !
En tout cas merci pour tout ! Jte dirai si ça reste comme ça.

Lysky004
0
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 297
16 nov. 2008 à 11:39
Non mais ce n'est pas fini.

---> Mets MBAM à jour, fais un scan rapide et supprime les infections s'il en trouve.

J'ai autre chose à te faire faire après.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Lysky004 Messages postés 47 Date d'inscription mercredi 7 mai 2008 Statut Membre Dernière intervention 16 décembre 2008
26 nov. 2008 à 21:45
Ok ok ! c'est fait !
0
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 297
26 nov. 2008 à 23:44
- Télécharge Navilog1 (de IL-MAFIOSO) et enregistre-le sur le bureau :
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe

- Double-clique sur Navilog1.exe afin de lancer l'installation

- Si le fix ne se lance pas automatiquement après son installation, double-clique sur Navilog1 présent sur le bureau

- Appuie sur F ou f puis valide par Entrée

- Appuie sur une touche de ton clavier à chaque fois que cela est demandé, tu arriveras au menu des options

- Choisis l'option 1 et appuie sur la touche Entrée pour valider ton choix

- Patiente jusqu'au message : *** Analyse terminée le ..... ***

- Le scan fini, le bloc-notes contenant le rapport sera affiché, poste le contenu de ce rapport dans ta prochaine réponse

- Si le résultat du scan ne s'affiche pas, tu le trouveras dans C:\fixnavi.txt

N'utilise pas l'option 2, 3 et 4 sans notre accord, des fichiers légitimes peuvent être inclus dans ce scan.
0
Lysky004 Messages postés 47 Date d'inscription mercredi 7 mai 2008 Statut Membre Dernière intervention 16 décembre 2008
30 nov. 2008 à 21:34
Ca yest c'est fait !



Search Navipromo version 3.6.9 commencé le 30/11/2008 à 21:11:51,98

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "HP_Propriétaire"

Mise à jour le 05.11.2008 à 21h00 par IL-MAFIOSO


Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 7.0.5730.13
Système de fichiers : NTFS

Recherche executé en mode normal

*** Recherche Programmes installés ***


*** Recherche dossiers dans "C:\WINDOWS" ***


*** Recherche dossiers dans "C:\Program Files" ***


*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***


*** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\HP_Propriétaire\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\HP_Propriétaire\menudm~1\progra~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\menudm~1\progra~1" ***


*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net



*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans "C:\WINDOWS\system32" *

* Recherche dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" *

* Recherche dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *



*** Recherche fichiers ***


C:\WINDOWS\pack.epk trouvé !

*** Recherche clés spécifiques dans le Registre ***

HKEY_CURRENT_USER\Software\Lanconfig trouvé !

*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :


2)Recherche Heuristique :

* Dans "C:\WINDOWS\system32" :

oauyg.exe trouvé !
oauyg.dat trouvé !
oauyg_navup.dat trouvé !

* Dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" :


* Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" :


3)Recherche Certificats :

Certificat Egroup trouvé !
Certificat Electronic-Group trouvé !
Certificat Montorgueil absent !
Certificat OOO-Favorit trouvé !
Certificat Sunny-Day-Design-Ltd absent !

4)Recherche fichiers connus :



*** Analyse terminée le 30/11/2008 à 21:28:05,76 ***
0
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 297
30 nov. 2008 à 23:19
---> Relance Navilog1, fais l'option 2 et poste le rapport.
0
Lysky004 Messages postés 47 Date d'inscription mercredi 7 mai 2008 Statut Membre Dernière intervention 16 décembre 2008
2 déc. 2008 à 21:55
Voila mon rapport !




Clean Navipromo version 3.6.9 commencé le 02/12/2008 à 21:47:04,70

Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "HP_Propriétaire"

Mise à jour le 05.11.2008 à 21h00 par IL-MAFIOSO


Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 7.0.5730.13
Système de fichiers : NTFS

Mode suppression automatique
avec prise en charge résultats Catchme et GNS


Nettoyage exécuté au redémarrage de l'ordinateur


*** fsbl1.txt non trouvé ***
(Assurez-vous que Catchme n'avait rien trouvé lors de la recherche)


*** Suppression avec sauvegardes résultats GenericNaviSearch ***

* Suppression dans "C:\WINDOWS\System32" *


* Suppression dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" *


* Suppression dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *


*** Suppression dossiers dans "C:\WINDOWS" ***


*** Suppression dossiers dans "C:\Program Files" ***


*** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***


*** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\HP_Propriétaire\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\HP_Propriétaire\menudm~1\progra~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\menudm~1\progra~1" ***



*** Suppression fichiers ***

C:\WINDOWS\pack.epk supprimé !

*** Suppression fichiers temporaires ***

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\HP_Propri‚taire\locals~1\Temp effectué !

*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Suppression avec sauvegardes nouveaux fichiers Instant Access :

2)Recherche, création sauvegardes et suppression Heuristique :


* Dans "C:\WINDOWS\system32" *


oauyg.exe trouvé !
Copie oauyg.exe réalisée avec succès !
oauyg.exe supprimé !

oauyg.dat trouvé !
Copie oauyg.dat réalisée avec succès !
oauyg.dat supprimé !

oauyg_navup.dat trouvé !
Copie oauyg_navup.dat réalisée avec succès !
oauyg_navup.dat supprimé !

oauyg_s2m.zl trouvé !
Copie oauyg_s2m.zl réalisée avec succès !
oauyg_s2m.zl supprimé !

C:\WINDOWS\prefetch\oauyg*.pf trouvé !
Copie C:\WINDOWS\prefetch\oauyg*.pf réalisée avec succès !
C:\WINDOWS\prefetch\oauyg*.pf supprimé !


* Dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" *


* Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *


*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok


*** Certificats ***

Certificat Egroup supprimé !
Certificat Electronic-Group supprimé !
Certificat Montorgueil absent !
Certificat OOO-Favorit supprimé !
Certificat Sunny-Day-Design-Ltdt absent !

*** Nettoyage terminé le 02/12/2008 à 21:52:36,95 ***
0
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 297
2 déc. 2008 à 21:57
- Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.

- Double-clique sur RSIT.exe afin de lancer le programme.

- Clique sur Continue à l'écran Disclaimer.

- Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

- Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

Note : Les rapports sont sauvegardés dans le dossier C:\rsit.
0
Lysky004 Messages postés 47 Date d'inscription mercredi 7 mai 2008 Statut Membre Dernière intervention 16 décembre 2008
10 déc. 2008 à 19:08
Voila log.txt

Logfile of random's system information tool 1.04 (written by random/random)
Run by HP_Propriétaire at 2008-12-10 18:41:28
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 62 GB (42%) free of 147 GB
Total RAM: 2047 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:41:41, on 10/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Program Files\Securitoo\Contrôle Parental\bin\optproxy.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\CAPRPCSK.EXE
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\system32\keyhook.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\Wanadoo\CnxMon.exe
C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb08.exe
C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\WINDOWS\ALCMTR.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Assistant DartyBox\Upgrade_Manager.exe
C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\DartyBox Wifi\SAGEM WiFi manager\WLANUTL.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe
C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Opera\opera.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\HP_Propriétaire\Bureau\RSIT.exe
C:\Documents and Settings\HP_Propriétaire\Mes documents\texte\Manon\Internet\téléchargements\HiJackThis\HP_Propriétaire.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: eBay Toolbar Helper - {22D8E815-4A5E-4DFB-845E-AAB64207F5BD} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: InlineSearchHandleHotKey - {B6FFE2AE-4D12-451F-B457-FE6125FFB1CF} - C:\Program Files\IE7\Inline Search\InlineSearch.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTSingleInstance.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: eBay Toolbar - {92085AD4-F48A-450D-BD93-B28CC7DF67CE} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: TV5 - Dictionnaires - {CEDDA62D-5FBE-4AB2-AE2E-5E069F444444} - C:\Program Files\Barre TV5_dico\MDTV5TB.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\Wanadoo\CnxMon.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [CAPON] C:\WINDOWS\system32\Spool\Drivers\w32x86\3\CAPONN.EXE
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb08.exe
O4 - HKLM\..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [AutoTBar] c:\Program Files\HP\Digital Imaging\bin\AUTOTBAR.EXE
O4 - HKLM\..\Run: [PlayerKiosquePlus] C:\Program Files\Lecteur CANALPLAY\PlayerKiosquePlus.exe /iconic
O4 - HKLM\..\Run: [CanalPlayer] C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe /iconic
O4 - HKLM\..\Run: [DNSE] "C:\Program Files\Fichiers communs\SystemDoctor\DNSE.exe" -c
O4 - HKLM\..\Run: [DC6V_Check] "C:\Program Files\Fichiers communs\SystemDoctor\usdrdc.exe"
O4 - HKLM\..\Run: [MDRV_Check] "C:\Program Files\Fichiers communs\SystemDoctor\usdrmdr.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe -AutoStart
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [L'Assistant DartyBox] C:\Program Files\Assistant DartyBox\Upgrade_Manager.exe
O4 - HKCU\..\Run: [VoipBuster] "C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe" -nosplash -minimized
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [VnrPack20] "C:\Program Files\VnrPack\VnrPack20.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Startup: ppcbooster.lnk = C:\Program Files\ppcbooster\ppcbooster.exe
O4 - Global Startup: Canon LBP-800 Statusfönster.LNK = C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Ouvrir l'image dans &Microsoft PhotoDraw - res://C:\PROGRA~1\MICROS~2\Office\1036\phdintl.dll/phdContext.htm
O8 - Extra context menu item: Translate with &Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Translate.htm
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D80A6D1-B500-47DA-82B8-EB9875F85B4D} (Google Gadget Control) - http://dl.google.com/dl/desktop/L/GoogleGadgetPluginIEWin.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: Securitoo Contrôle Parental (OPTENET_FILTER) - WANADOO - C:\Program Files\Securitoo\Contrôle Parental\bin\optproxy.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Service CANALPLAY - Canal+ Active - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe
O24 - Desktop Component 0: (no name) - http://www.wallpaperbase.com/wallpapers/cartoons/asterix/asterix_4.jpg
0
Lysky004 Messages postés 47 Date d'inscription mercredi 7 mai 2008 Statut Membre Dernière intervention 16 décembre 2008
10 déc. 2008 à 19:08
Voila log.txt

Logfile of random's system information tool 1.04 (written by random/random)
Run by HP_Propriétaire at 2008-12-10 18:41:28
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 62 GB (42%) free of 147 GB
Total RAM: 2047 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:41:41, on 10/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Program Files\Securitoo\Contrôle Parental\bin\optproxy.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\CAPRPCSK.EXE
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\system32\keyhook.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\Wanadoo\CnxMon.exe
C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb08.exe
C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\WINDOWS\ALCMTR.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Assistant DartyBox\Upgrade_Manager.exe
C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\DartyBox Wifi\SAGEM WiFi manager\WLANUTL.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe
C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Opera\opera.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\HP_Propriétaire\Bureau\RSIT.exe
C:\Documents and Settings\HP_Propriétaire\Mes documents\texte\Manon\Internet\téléchargements\HiJackThis\HP_Propriétaire.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: eBay Toolbar Helper - {22D8E815-4A5E-4DFB-845E-AAB64207F5BD} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: InlineSearchHandleHotKey - {B6FFE2AE-4D12-451F-B457-FE6125FFB1CF} - C:\Program Files\IE7\Inline Search\InlineSearch.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTSingleInstance.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: eBay Toolbar - {92085AD4-F48A-450D-BD93-B28CC7DF67CE} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: TV5 - Dictionnaires - {CEDDA62D-5FBE-4AB2-AE2E-5E069F444444} - C:\Program Files\Barre TV5_dico\MDTV5TB.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\Wanadoo\CnxMon.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\TaskbarIcon.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [CAPON] C:\WINDOWS\system32\Spool\Drivers\w32x86\3\CAPONN.EXE
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb08.exe
O4 - HKLM\..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [AutoTBar] c:\Program Files\HP\Digital Imaging\bin\AUTOTBAR.EXE
O4 - HKLM\..\Run: [PlayerKiosquePlus] C:\Program Files\Lecteur CANALPLAY\PlayerKiosquePlus.exe /iconic
O4 - HKLM\..\Run: [CanalPlayer] C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe /iconic
O4 - HKLM\..\Run: [DNSE] "C:\Program Files\Fichiers communs\SystemDoctor\DNSE.exe" -c
O4 - HKLM\..\Run: [DC6V_Check] "C:\Program Files\Fichiers communs\SystemDoctor\usdrdc.exe"
O4 - HKLM\..\Run: [MDRV_Check] "C:\Program Files\Fichiers communs\SystemDoctor\usdrmdr.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe -AutoStart
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [L'Assistant DartyBox] C:\Program Files\Assistant DartyBox\Upgrade_Manager.exe
O4 - HKCU\..\Run: [VoipBuster] "C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe" -nosplash -minimized
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [VnrPack20] "C:\Program Files\VnrPack\VnrPack20.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Startup: ppcbooster.lnk = C:\Program Files\ppcbooster\ppcbooster.exe
O4 - Global Startup: Canon LBP-800 Statusfönster.LNK = C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Ouvrir l'image dans &Microsoft PhotoDraw - res://C:\PROGRA~1\MICROS~2\Office\1036\phdintl.dll/phdContext.htm
O8 - Extra context menu item: Translate with &Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Translate.htm
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D80A6D1-B500-47DA-82B8-EB9875F85B4D} (Google Gadget Control) - http://dl.google.com/dl/desktop/L/GoogleGadgetPluginIEWin.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: Securitoo Contrôle Parental (OPTENET_FILTER) - WANADOO - C:\Program Files\Securitoo\Contrôle Parental\bin\optproxy.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Service CANALPLAY - Canal+ Active - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe
O24 - Desktop Component 0: (no name) - http://www.wallpaperbase.com/wallpapers/cartoons/asterix/asterix_4.jpg

End of file - 17785 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskUser.job
C:\WINDOWS\tasks\HPpromotions journeysoftware.job
C:\WINDOWS\tasks\Norton Security Scan.job
C:\WINDOWS\tasks\Symantec NetDetect.job
C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll [2008-07-28 882416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22D8E815-4A5E-4DFB-845E-AAB64207F5BD}]
eBay Toolbar Helper - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll [2005-09-23 465256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2008-11-05 308856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-06-22 329104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar2.dll [2007-01-19 2436160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll [2008-10-27 652784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B6FFE2AE-4D12-451F-B457-FE6125FFB1CF}]
InlineSearchHandleHotKeys Class - C:\Program Files\IE7\Inline Search\InlineSearch.dll [2007-05-05 299008]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTSingleInstance.dll [2008-07-28 160496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDD3B846-8D59-4ffb-8758-209B6AD74ACC}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{92085AD4-F48A-450D-BD93-B28CC7DF67CE} - eBay Toolbar - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll [2005-09-23 465256]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll [2008-07-28 882416]
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar2.dll [2007-01-19 2436160]
{CEDDA62D-5FBE-4AB2-AE2E-5E069F444444} - TV5 - Dictionnaires - C:\Program Files\Barre TV5_dico\MDTV5TB.dll [2007-09-11 802816]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
"hpsysdrv"=c:\windows\system\hpsysdrv.exe [1998-05-07 52736]
"HPHUPD06"=c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe [2004-06-07 49152]
"HPHmon06"=C:\WINDOWS\system32\hphmon06.exe [2004-06-07 659456]
"KBD"=C:\HP\KBD\KBD.EXE [2003-02-11 61440]
"Recguard"=C:\WINDOWS\SMINST\RECGUARD.EXE [2004-04-14 233472]
"VTTimer"=VTTimer.exe []
"SiS Windows KeyHook"=C:\WINDOWS\system32\keyhook.exe [2004-05-20 249856]
"AGRSMMSG"=C:\WINDOWS\AGRSMMSG.exe [2005-03-04 88209]
"PS2"=C:\WINDOWS\system32\ps2.exe [2002-10-16 81920]
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2004-06-24 339968]
"WooCnxMon"=C:\PROGRA~1\Wanadoo\CnxMon.exe [2004-05-13 24576]
"WOOWATCH"=C:\PROGRA~1\Wanadoo\Watch.exe [2004-05-13 24576]
"WOOTASKBARICON"=C:\PROGRA~1\Wanadoo\TaskbarIcon.exe [2004-05-13 49152]
"SpeedTouch USB Diagnostics"=C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe [2004-01-26 866816]
"CAPON"=C:\WINDOWS\system32\Spool\Drivers\w32x86\3\CAPONN.EXE [2000-04-21 22528]
"HPDJ Taskbar Utility"=C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb08.exe [2003-03-12 172032]
"eBayToolbar"=C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe [2005-09-23 452968]
"Microsoft Works Update Detection"=C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe [2003-06-10 50688]
"AutoTBar"=c:\Program Files\HP\Digital Imaging\bin\AUTOTBAR.EXE []
"PlayerKiosquePlus"=C:\Program Files\Lecteur CANALPLAY\PlayerKiosquePlus.exe /iconic []
"CanalPlayer"=C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe [2006-07-11 1996648]
"DNSE"=C:\Program Files\Fichiers communs\SystemDoctor\DNSE.exe -c []
"DC6V_Check"=C:\Program Files\Fichiers communs\SystemDoctor\usdrdc.exe []
"MDRV_Check"=C:\Program Files\Fichiers communs\SystemDoctor\usdrmdr.exe []
"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-09-27 29744]
"Babylon Client"=C:\Program Files\Babylon\Babylon-Pro\Babylon.exe -AutoStart []
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-09-06 413696]
"High Definition Audio Property Page Shortcut"=C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]
"YSearchProtection"=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [2008-07-11 223984]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2008-07-09 919016]
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2008-11-05 185896]
"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2008-08-19 77824]
"AlcWzrd"=C:\WINDOWS\ALCWZRD.EXE [2008-06-19 2808832]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-10-01 289576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MoneyAgent"=C:\Program Files\Microsoft Money\System\mnyexpr.exe [2003-06-18 204800]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Acme.PCHButton"=C:\PROGRA~1\HELPAN~1\Pavilion\XPHWWBF4\plugin\bin\pchbutton.exe [2004-01-01 159744]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-06-17 68856]
"L'Assistant DartyBox"=C:\Program Files\Assistant DartyBox\Upgrade_Manager.exe [2007-06-05 151552]
"VoipBuster"=C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe -nosplash -minimized []
"Google Update"=C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2008-09-10 133104]
"YSearchProtection"=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [2008-07-11 223984]
"VnrPack20"=C:\Program Files\VnrPack\VnrPack20.exe []

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Canon LBP-800 Statusfönster.LNK - C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
Démarrage rapide du logiciel HP Image Zone.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE
Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk - C:\Program Files\DartyBox Wifi\SAGEM WiFi manager\WLANUTL.exe
Windows Desktop Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe

C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\Programmes\Démarrage
ppcbooster.lnk - C:\Program Files\ppcbooster\ppcbooster.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2004-06-25 86016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2004-08-03 344064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2007-02-05 294400]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLUA"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\AOL 9.0\waol.exe"="C:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL France"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe"="C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe:*:Enabled:Lecteur CANALPLAY"
"C:\Program Files\Lecteur CANALPLAY\CanalPlayerHelper.exe"="C:\Program Files\Lecteur CANALPLAY\CanalPlayerHelper.exe:*:Enabled:Lecteur CANALPLAY Helper"
"C:\Program Files\Assistant Dartybox\um.exe"="C:\Program Files\Assistant Dartybox\um.exe:*:Enabled:Mise à Jour pour L'Assistant Dartybox"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\Assistant Dartybox\upgrade_manager.exe"="C:\Program Files\Assistant Dartybox\upgrade_manager.exe:*:Enabled:Mise à Jour pour L'Assistant Dartybox"
"C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe"="C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe:*:Enabled:VoipBuster"
"C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe:*:Enabled:Render Manager"
"C:\Program Files\Pinnacle\VideoSpin\Programs\PMSRegisterFile.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\PMSRegisterFile.exe:*:Enabled:PMSRegisterFile"
"C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe:*:Enabled:umi"
"C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe:*:Enabled:Pinnacle VideoSpin"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\Program Files\FrostWire\FrostWire.exe"="C:\Program Files\FrostWire\FrostWire.exe:*:Enabled:FrostWire"
"C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\Programmes\Audio & Video\FrostWire\FrostWire.exe"="C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\Programmes\Audio & Video\FrostWire\FrostWire.exe:*:Enabled:FrostWire"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

======List of files/folders created in the last 1 months======

2008-12-10 18:41:28 ----D---- C:\rsit
2008-12-02 21:47:04 ----A---- C:\cleannavi.txt
2008-11-30 21:11:52 ----A---- C:\fixnavi.txt
2008-11-30 21:10:25 ----D---- C:\Program Files\Navilog1
2008-11-26 19:38:18 ----D---- C:\Program Files\Illustrate
2008-11-26 18:23:00 ----A---- C:\WINDOWS\system32\SpoonUninstall.exe
2008-11-26 18:22:49 ----D---- C:\Program Files\dBpowerAMP
2008-11-26 10:28:38 ----D---- C:\emme
2008-11-23 15:10:35 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\cmw
2008-11-23 14:08:30 ----D---- C:\Program Files\winpwn-2.5
2008-11-20 22:06:48 ----D---- C:\Program Files\iPod
2008-11-20 22:06:46 ----D---- C:\Program Files\iTunes
2008-11-20 22:06:46 ----D---- C:\Documents and Settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-11-20 21:54:59 ----D---- C:\Program Files\Safari
2008-11-16 19:57:23 ----D---- C:\ubuntu
2008-11-12 22:46:32 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2008-11-12 22:46:22 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2008-11-12 22:46:07 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$

======List of files/folders modified in the last 1 months======

2008-12-10 18:41:41 ----D---- C:\WINDOWS\Prefetch
2008-12-10 18:39:21 ----D---- C:\Documents and Settings\All Users\Application Data\Google Updater
2008-12-10 18:39:12 ----D---- C:\WINDOWS\Temp
2008-12-10 15:58:33 ----D---- C:\WINDOWS\Internet Logs
2008-12-10 10:28:13 ----D---- C:\WINDOWS
2008-12-10 10:27:54 ----D---- C:\WINDOWS\system32\CatRoot2
2008-12-09 22:54:20 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-12-09 16:02:35 ----D---- C:\WINDOWS\network diagnostic
2008-12-08 17:05:07 ----SHD---- C:\WINDOWS\Installer
2008-12-03 21:43:53 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2008-12-03 12:15:10 ----D---- C:\WINDOWS\system32\FxsTmp
2008-12-02 21:52:37 ----D---- C:\WINDOWS\system32
2008-11-30 21:10:25 ----RD---- C:\Program Files
2008-11-30 12:38:21 ----D---- C:\Program Files\Mozilla Firefox
2008-11-26 22:25:19 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-11-26 21:43:43 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-11-26 21:43:42 ----D---- C:\WINDOWS\system32\drivers
2008-11-26 19:29:58 ----D---- C:\Program Files\Bonjour
2008-11-26 19:28:12 ----HD---- C:\Config.Msi
2008-11-26 11:16:58 ----A---- C:\WINDOWS\win.ini
2008-11-26 11:10:25 ----A---- C:\WINDOWS\QTW.INI
2008-11-24 21:34:20 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla
2008-11-22 20:45:51 ----D---- C:\Documents and Settings\HP_Propriétaire\Application Data\Apple Computer
2008-11-21 19:21:05 ----HD---- C:\WINDOWS\inf
2008-11-20 22:02:57 ----DC---- C:\WINDOWS\system32\DRVSTORE
2008-11-20 20:47:41 ----D---- C:\WINDOWS\Help
2008-11-20 16:19:54 ----D---- C:\Program Files\Wanadoo
2008-11-20 16:01:49 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-11-19 20:47:07 ----SD---- C:\WINDOWS\Tasks
2008-11-16 20:02:41 ----RSH---- C:\boot.ini
2008-11-15 19:29:36 ----A---- C:\WINDOWS\ntbtlog.txt
2008-11-15 13:38:34 ----D---- C:\Documents and Settings
2008-11-15 10:48:22 ----D---- C:\Documents and Settings\All Users\Application Data\Google
2008-11-15 10:47:57 ----D---- C:\temp
2008-11-12 22:46:28 ----HD---- C:\WINDOWS\$hf_mig$
2008-11-12 22:46:25 ----A---- C:\WINDOWS\imsins.BAK
2008-11-12 22:45:13 ----D---- C:\WINDOWS\WinSxS

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-11-28 75072]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 KLIF;KLIF; C:\WINDOWS\system32\DRIVERS\klif.sys [2007-07-19 127768]
R1 SiSkp;SiSkp; C:\WINDOWS\system32\DRIVERS\srvkp.sys [2004-07-17 12160]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2008-07-09 394952]
R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-05 12032]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2007-10-20 271360]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2007-10-20 18048]
R2 RapidPort;RapidPort; \??\C:\WINDOWS\system32\Drivers\CAPLPTN.SYS []
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2005-03-04 1066278]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-06-25 747008]
R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\SYSTEM32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-10-31 4942336]
R3 Iviaspi;IVI ASPI Shell; C:\WINDOWS\system32\drivers\iviaspi.sys [2003-09-10 21060]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 Pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-09-19 10368]
R3 Ps2;PS2; C:\WINDOWS\system32\DRIVERS\PS2.sys [2001-06-04 14112]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-05 5888]
R3 rtl8139;Realtek RTL8139/810x Family Fast Ethernet NIC NT Driver; C:\WINDOWS\system32\DRIVERS\R8139n51.SYS [2002-10-04 46976]
R3 SG762_XP;SAGEM 802.11g XG762 1211B Driver; C:\WINDOWS\system32\DRIVERS\WlanBZXP.sys [2007-01-16 450560]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 ZDPSp50;ZDPSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\ZDPSp50.sys [2007-01-16 17664]
S1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41856]
S3 alcan5wn;SpeedTouch USB ADSL PPP Networking Driver (NDISWAN); C:\WINDOWS\system32\DRIVERS\alcan5wn.sys [2003-12-08 53600]
S3 alcaudsl;SpeedTouch ADSL Modem ATM Transport; C:\WINDOWS\system32\DRIVERS\alcaudsl.sys [2003-12-08 70688]
S3 catchme;catchme; \??\C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\catchme.sys []
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 grmnusb;grmnusb; C:\WINDOWS\system32\drivers\grmnusb.sys [2003-09-23 7296]
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-03-08 51120]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-03-08 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-03-08 21744]
S3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2004-08-03 730653]
S3 SiS315;SiS315; C:\WINDOWS\system32\DRIVERS\sisgrp.sys [2004-07-19 218112]
S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320]
S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys [2005-08-30 8336]
S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys [2005-08-30 94000]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2008-10-01 32000]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 viagfx;viagfx; C:\WINDOWS\system32\DRIVERS\vtmini.sys [2004-05-05 142976]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 ZDCndis5;ZDCndis5 Protocol Driver; \??\C:\WINDOWS\system32\ZDCndis5.SYS []
S3 ZDPNDIS5;ZDPNDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\ZDPNDIS5.SYS []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-11-09 68865]
R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-11-09 151297]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-10-01 116040]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2004-06-25 385024]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-10-27 168432]
R2 NMSAccessU;NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-06-15 71096]
R2 OPTENET_FILTER;Securitoo Contrôle Parental; C:\Program Files\Securitoo\Contrôle Parental\bin\optproxy.exe [2004-07-28 497744]
R2 SymWSC;SymWMI Service; c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe [2004-11-02 316544]
R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2008-07-09 75304]
R2 WSearch;Recherche Windows; C:\WINDOWS\system32\SearchIndexer.exe [2007-02-05 300032]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-10-01 536872]
R3 Service CANALPLAY;Service CANALPLAY; C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe [2006-07-11 370536]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-09-29 69632]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
S3 GoogleDesktopManager-061008-081103;Google Desktop Manager 5.7.806.10245; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-09-27 29744]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2008-11-02 195752]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-08-16 98672]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-08-23 261120]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]

-----------------EOF-----------------
0
Lysky004 Messages postés 47 Date d'inscription mercredi 7 mai 2008 Statut Membre Dernière intervention 16 décembre 2008
10 déc. 2008 à 19:14
et voila info.txt


info.txt logfile of random's system information tool 1.04 2008-12-10 18:41:49

======Uninstall list======

-->C:\PROGRA~1\Yahoo!\Common\UNYT_W~1.EXE
-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu
-->c:\WINDOWS\system32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19}
-->MsiExec /X{7104189A-C592-4A56-AC9E-7C0CA135DA3C}
-->MsiExec.exe /X{7B4AB13C-1A5C-4BC5-ABA6-762F8198444C}
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{39DA87A1-0B26-4562-A70C-2A6147366E47}\Setup.exe"
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9F765BD0-B900-4EDE-A90B-61C8A9E95C42}\Setup.exe"
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BAD59025-5B73-4E12-B789-0028C5A573C2}\Setup.exe"
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E06E4F4E-72D6-4497-BFFD-BCB43077C2F4}\setup.exe" -l0x40c -uninst
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81200000003}
AGEIA PhysX v6.10.25-->MsiExec.exe /X{7104189A-C592-4A56-AC9E-7C0CA135DA3C}
Agere Systems PCI Soft Modem-->agrsmdel
AoA Audio Extractor 1.0-->"C:\Program Files\AoA Audio Extractor\unins000.exe"
Apple Mobile Device Support-->MsiExec.exe /I{976C2B2A-CE59-4AB3-83FB-BF895E28F2E6}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Applian FLV Player-->"C:\WINDOWS\Applian FLV Player\uninstall.exe" "/U:C:\Program Files\FLV Player\Uninstall\uninstall.xml"
Assistant de connexion Windows Live-->MsiExec.exe /I{CB5EA99C-8A5B-49F2-9A1A-2EF78BE4DB41}
ATI Control Panel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Atlas Bordas collège-->C:\PROGRA~1\ATLASB~1\UNWISE.EXE C:\PROGRA~1\ATLASB~1\INSTALL.LOG
Audacity 1.2.6-->"C:\Program Files\Audacity\unins000.exe"
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
AviSynth 2.5-->"C:\Program Files\AviSynth 2.5\Uninstall.exe"
AxCrypt (Désinstaller uniquement)-->"C:\Program Files\Axon Data\AxCrypt\AxCryptU.exe"
Barre d'outils Outlook de Windows Live (Windows Live Toolbar)-->MsiExec.exe /X{6E15BEDF-7EB5-4010-998E-B430DB4EFE45}
Blender (remove only)-->"C:\Program Files\Blender Foundation\Blender\uninstall.exe"
Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{A425C250-A0E1-4D78-B1C1-A5CBC7385E7C}
Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}
Canon Camera Window for ZoomBrowser EX-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{FC3EEA54-C009-4D75-B753-3CD871BF3EBA}
Canon Internet Library for ZoomBrowser EX-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{6A0DBAA6-4FEC-41B7-858E-99EF59B9173C}
Canon LBP-800-->C:\WINDOWS\system32\Spool\Drivers\w32x86\3\CAP1UNIK.EXE
Canon PhotoRecord-->MsiExec.exe /X{BEF56F2D-56ED-4176-BF72-7B68D4A3B98D}
Canon RAW Image Task for ZoomBrowser EX-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{D076E06B-F74B-454F-A56E-7510D7B6C9F0}
Canon RemoteCapture Task for ZoomBrowser EX-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{2811B04D-5AAB-4117-8FF8-79529D54634F}
Canon Utilities PhotoStitch 3.1-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{C05E2D43-A05F-4835-A15C-CD0AD1576506}
Canon Utilities ZoomBrowser EX-->MsiExec.exe /X{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}
CDBurnerXP-->"C:\Program Files\CDBurnerXP\unins000.exe"
CDex extraction audio-->"C:\Program Files\CDex_170b2\uninstall.exe"
Complément Microsoft Word pour Microsoft Works Suite-->MsiExec.exe /I{7054ED85-498D-4D20-906F-14646AEC5581}
Connexion Facile à Internet-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{8105684D-8CA6-440D-8F58-7E5FD67A499D} /l1036
Contrôle Parental-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{93094D10-9388-11D4-9886-0000B43F396D}\Setup.exe" -l0x40c
CoolCam Camera Suite-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\ArcSoft\Camera Suite\Uninst.isu"
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
DartyBox WiFi Manager-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{40ACE18D-D5B4-40AF-81E8-2816A8AED029}\Setup.exe" -l0x40c
DartyBox-->C:\Program Files\InstallShield Installation Information\{5ABD53CC-6182-40DF-9663-EBC9E6F3AE7C}\Setup.exe -runfromtemp -l0x040c -removeonly
DartyBox-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{91B4F889-3B59-4D09-8E0E-5FE47451E468}\Setup.exe" -l0x40c
dBpoweramp m4a Codec-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp m4a Codec.dat
dBpowerAMP Music Converter-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpowerAMP Music Converter.dat
Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{EFFCB0F1-CFEC-48D4-B793-EBFCAE852976}
Dev-C++ 5 beta 9 release (4.9.9.2)-->"C:\Dev-Cpp\uninstall.exe"
DiskAid 1.1-->"C:\Program Files\DiskAid\unins000.exe"
eBay Toolbar-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3DB5FD00-BB93-4AF3-B925-77DAA0E4E2F4}\setup.exe" -l0x40c
Encyclopédie Microsoft Encarta 2004-->MsiExec.exe /I{04460044-9149-45C6-A806-F2BF9CFCE762}
EVEREST Ultimate Edition v4.50-->"C:\Program Files\Lavalys\EVEREST Ultimate Edition\unins000.exe"
Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{0CA6047C-D28B-4295-834A-07C52BA20C2D}
Extension Système de Microsoft Money-->MsiExec.exe /I{8C64E149-54BA-11D6-91B1-00500462BE80}
Fort Boyard - le jeu-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{11581B7A-E460-4078-894B-978249254D71}\setup.exe" -l0x40c -removeonly
Free Video Converter V 1.2-->"C:\Program Files\Free Video Converter\unins000.exe"
GIMP 2.4.4-->"C:\Program Files\GIMP-2.0\setup\unins000.exe"
Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall
Google Earth-->MsiExec.exe /I{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}
Google SketchUp 6-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{98736A65-3C79-49EC-B7E9-A3C77774B0E6}\setup.exe" -l0x40c -removeonly
Google SketchUp 6-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B3D8B2F8-3C2C-45BC-933E-8B60E78F6684}\setup.exe" -l0x40c -removeonly
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar2.dll"
Help and Support Additions-->C:\PROGRA~1\HELPAN~1\UNWISE.EXE C:\PROGRA~1\HELPAN~1\INSTALL.LOG
High Definition Audio Driver Package - KB835221-->C:\WINDOWS\$NtUninstallKB835221WXP$\spuninst\spuninst.exe
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Documents and Settings\HP_Propriétaire\Mes documents\texte\Manon\Internet\téléchargements\HiJackThis\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
HP Deskjet Preloaded Printer Drivers-->MsiExec.exe /X{F419D20A-7719-4639-8E30-C073A040D878}
HP Document Viewer 5.3-->C:\Program Files\HP\Digital Imaging\DocumentViewer\hpzscr01.exe -datfile hpqbud04.dat
HP Extended Capabilities 5.3-->C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Image Zone 5.3-->C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP Imaging Device Functions 5.3-->C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat
HP PSC & OfficeJet 4.0-->"C:\Program Files\HP\Digital Imaging\{A1062847-0846-427A-92A1-BB8251A91E91}\setup\hpzscr01.exe" -datfile hposcr04.dat
HP PSC & OfficeJet 5.3.A-->"C:\Program Files\HP\Digital Imaging\{3E386744-10FA-44b2-98C9-DF7A270DECB3}\setup\hpzscr01.exe" -datfile hposcr06.dat
HP Software Update-->MsiExec.exe /X{15EE79F4-4ED1-4267-9B0F-351009325D7D}
HP Solution Center & Imaging Support Tools 5.3-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
Il était une fois la vie-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\TLC\Il était une fois la vie\Uninst.isu"
i-minitel ADSL-->C:\PROGRA~1\MINITE~1\UNWISE.EXE C:\PROGRA~1\MINITE~1\INSTALL.LOG
Inline Search v1.5.0 for Internet Explorer (remove only)-->"C:\Program Files\IE7\Inline Search\uninstall.exe"
InterVideo WinDVD Creator 2-->"C:\Program Files\InstallShield Installation Information\{2FCE4FC5-6930-40E7-A4F1-F862207424EF}\setup.exe" REMOVEALL
InterVideo WinDVD Player-->"C:\Program Files\InstallShield Installation Information\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}\setup.exe" REMOVEALL
iTunes-->MsiExec.exe /I{DDDE0BE3-0CBE-4BF6-B75A-E3F69C947843}
Java 2 Runtime Environment, SE v1.4.2_03-->MsiExec.exe /I{7148F0A8-6813-11D6-A77B-00B0D0142030}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
KBD-->C:\HP\KBD\KBD.EXE uninstalled
Kubuntu-->C:\ubuntu\Uninstall-Kubuntu.exe
La nuit des sacrifies-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E478F3F-7A7B-42C5-BE9C-40FC0E07665F}\setup.exe" -l0x40c -removeonly
La Toolbar TV5 - Dictionnaires-->MsiExec.exe /I{03D2963E-8DC6-4D31-A920-4B216CDF5DCD}
L'Assistant DartyBox-->C:\Program Files\Assistant Dartybox\L'Assistant DartyBox Uninstaller.exe
Le Club des Cinq 4-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EE51FA1C-3680-4CD2-8C01-D1BB60369370}\SETUP.EXE"
Le Fabuleux Voyage de l'Oncle Ernest-->C:\emme\Voyage\Desinst.exe
Le Monde de Nemo : Une Odyssée Sous-Marine-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{BCB8D603-985E-4765-B4AB-B4B991A535B7} NemoUWFUninstall
Le Temple Perdu de l'Oncle Ernest-->C:\emme\Le Temple Perdu\Desinst.exe
Lecteur CANALPLAY 2.2-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E9E37358-E3E1-47BA-9E21-375EF3616BC9}\setup.exe" -l0x40c -removeonly
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Les Pirates des Maths-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{62849D4E-E538-411F-8938-1326DECDDC03}\setup.exe"
L'Ile Mystérieuse de l'Oncle Ernest-->C:\emme\Ile_myst\Desinst.exe
LiveUpdate 2.5 (Symantec Corporation)-->C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE /U
LNH Handball Manager 2008-->"C:\Program Files\LNH Handball Manager 2008\unins000.exe"
Ma-Config.com-->MsiExec.exe /X{DD987A54-122B-4CFD-A8C5-5577027A6B78}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
MapSource - MetroGuide Europe v7-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{AC1F9422-E734-4AF2-B5B0-F33D3DE50384} /l1036
MapSource - Trip & Waypoint Manager v2-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{A0F584A7-B0C2-4D90-9580-15456B9CF63C} /l1036
MapSource Product Install-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B8BFB69F-BBBA-48A9-A788-851222571C77}\SETUP.EXE" -l0x40c AddRemove
MapSource-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5E3CFCA6-C95A-47CB-A822-7FA80D423AF2}\Setup.exe" -l0x40c AddRemove
Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}
Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
MessengerDiscovery Live 1.3.0300-->"C:\Program Files\MessengerDiscovery\unins000.exe"
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft Money-->MsiExec.exe /I{1D643CD2-4DD6-11D7-A4E0-000874180BB3}
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office 2000 SR-1 Disque 2-->MsiExec.exe /I{0004040C-78E1-11D2-B60F-006097C998E7}
Microsoft Office 2000 SR-1 Premium-->MsiExec.exe /I{0000040C-78E1-11D2-B60F-006097C998E7}
Microsoft PhotoDraw 2000 Version 2-->MsiExec.exe /I{3C5EA394-1036-11D2-A2CB-00C04F72F31D}
Microsoft Picture It! Photo Premium 9-->C:\WINDOWS\system32\msiexec.exe /i {DBA8B9E1-C6FF-4624-9598-73D3B41A0903}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Word 2002-->MsiExec.exe /I{911B040C-6000-11D3-8CFE-0050048383C9}
Microsoft Works-->MsiExec.exe /I{E6BAE954-487E-488B-BC4E-2E69E54E8117}
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)-->"C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953838)-->"C:\WINDOWS\$NtUninstallKB953838$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mozilla Firefox (3.0.1)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Navilog1 3.6.9-->"C:\Program Files\Navilog1\unins000.exe"
Norton Security Center-->MsiExec.exe /X{503AA035-41E2-4858-B31F-1E49AC66C309}
Norton Security Scan-->MsiExec.exe /I{230C4A45-2586-4161-84EF-5C0D75D5B270}
Norton WMI Update-->MsiExec.exe /X{1526D87C-A955-4FAB-BF18-697BA457E352}
Notepad++-->C:\Program Files\Notepad++\uninstall.exe
OneCare Advisor (Windows Live Toolbar)-->MsiExec.exe /X{6D7F8D4B-D1A4-402A-973E-31E90940E585}
Opera 9.62-->MsiExec.exe /X{D9226EB1-C528-48AC-B423-BD9240E1F60B}
Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
PC-Doctor pour Windows-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1F7CCFA3-D926-4882-B2A5-A0217ED25597}\Setup.exe"
Photo et imagerie HP 3.5 - HP Devices-->C:\Program Files\HP\Digital Imaging\{15B9DC72-73F9-4d99-9E28-848D66DA8D99}\setup\hpzscr01.exe -datfile hpiscr01.dat
PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"
Photosmart 320,370,7400,8100,8400 Series (fra)-->C:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\setup\hpzscr01.exe -datfile hphscr01.dat
Picasa 2-->"C:\Program Files\Picasa\Uninstall.exe"
Pinnacle VideoSpin-->MsiExec.exe /X{4EDB1CA5-983F-4FC3-A8E3-E34981E05A60}
Pixia 3.3b-->"C:\Program Files\Seagrand\Pixia\unins000.exe"
PPC Booster-->"C:\Program Files\ppcbooster\ppcbooster-uninst.exe"
PS2-->C:\WINDOWS\system32\ps2.exe uninstall
Python 2.2 combined Win32 extensions-->C:\Python22\Lib\SITE-P~1\UNWISE~1.EXE C:\Python22\Lib\SITE-P~1\w32inst.log
Python 2.2.1-->C:\Python22\UNWISE.EXE C:\Python22\INSTALL.LOG
QuickTime for Windows (32-bit)-->C:\WINDOWS\QTW32DEL.EXE
QuickTime-->MsiExec.exe /I{8DC42D05-680B-41B0-8878-6C14D24602DB}
RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
Safari-->MsiExec.exe /I{34F85A4D-03CC-428A-80A4-880228646518}
SAMSUNG CDMA Modem Driver Set-->C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
SAMSUNG Mobile Composite Device Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\6\SSBCUninstall.exe
Samsung Mobile phone USB driver Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\5\SSSDUninstall.exe
SAMSUNG Mobile USB Modem 1.0 Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
SAMSUNG Mobile USB Modem Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
Samsung PC Studio 3 USB Driver Installer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe" -l0x40c -removeonly
Samsung PC Studio 3-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -l0x40c -removeonly
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Sélecteur d'installation de Microsoft Works 2004-->C:\Program Files\Microsoft Works Suite 2004\Setup\Launcher.exe /ARP E:\
Sethi et la couronne d'Egypte-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Montparnasse multimedia - GEO\Sethi et la couronne d'Egypte\Uninst.isu"
Sethi et la Tribu ...-->MsiExec.exe /X{21F47166-8A5E-4FA7-BB32-6CA1CC444E07}
Shockwave-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
SiS VGA Utilities-->Rundll32 SiSInst.dll,Uninstall VGA,R
SIW version 2008-04-02-->"C:\Program Files\SIW\unins000.exe"
Skype™ 3.6-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
Sonic RecordNow!-->MsiExec.exe /I{9541FED0-327F-4DF0-8B96-EF57EF622F19}
SpeedTouch USB Software-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D41FAAA9-8048-4906-86B2-9AADEA1FA0B7}\setup.exe" /l040c -Control_Panel
SUPER © Version 2008.bld.25 (Feb 5, 2008)-->C:\PROGRA~1\ERIGHT~1\SUPER\Setup.exe /remove /q0
TerraExplorer-->C:\Program Files\Skyline\TerraExplorer\Setup.exe [OP]/U
Visionneuse Journal Windows Microsoft-->MsiExec.exe /X{43DCF766-6838-4F9A-8C91-D92DA586DFA8}
Wanadoo Messager-->C:\PROGRA~1\WANADO~1\UNWISE.EXE C:\PROGRA~1\WANADO~1\INSTALL.LOG
Wanadoo-->C:\PROGRA~1\Wanadoo\Shell.exe desinstall.shl
Web Media Player 0.63c-->"C:\Program Files\Web Media Player\unins000.exe"
Windows Desktop Search 3.01-->"C:\WINDOWS\$NtUninstallKB917013$\spuninst\spuninst.exe"
Windows Live Favorites pour Windows Live Toolbar-->MsiExec.exe /X{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}
Windows Live installer-->MsiExec.exe /X{1F1D4D23-6189-486B-A36B-11CE16DF59F1}
Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Live Safety Scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT
Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Writer-->MsiExec.exe /X{3DFF4274-EBB0-4356-9692-972965018954}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
winpwn-2.5 2.5.0.0-->C:\Program Files\winpwn-2.5\uninstall winpwn-2.5.exe
Winter Sports 2008-->"C:\Program Files\Winter Sports 2008\Uninstall.exe"
Wondershare PPT2DVD 4.7.0.11 Trial-->"C:\Program Files\PPT2DVD\unins000.exe"
Yahoo! Install Manager-->C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
Yahoo! Search Protection-->C:\PROGRA~1\Yahoo!\SEARCH~1\UNINST~1.EXE
Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\UNYT_W~1.EXE
ZoneAlarm-->C:\Program Files\Zone Labs\ZoneAlarm\zauninst.exe

======Hosts File======

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD

======Security center information======

AV: Avira AntiVir PersonalEdition
FW: ZoneAlarm Firewall

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;c:\Python22;C:\Program Files\PC-Doctor for Windows\services;C:\Program Files\ATI Technologies\ATI Control Panel;C:\Program Files\Pinnacle\Shared Files\;C:\Program Files\QuickTime\QTSystem\;C:\Program Files\Samsung\Samsung PC Studio 3\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 3 Stepping 4, GenuineIntel
"PROCESSOR_REVISION"=0304
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\j2re1.4.2_03\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\j2re1.4.2_03\lib\ext\QTJava.zip
"tvdumpflags"=8

-----------------EOF-----------------
0
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 297
10 déc. 2008 à 21:06
---> Télécharge Lop S&D sur ton Bureau.
---> Double-clique dessus pour lancer l'installation.
---> Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau.
---> Sélectionne la langue souhaitée, puis choisis l'option 1 (Recherche).
---> Patiente jusqu'à la fin du scan.
---> Poste le rapport généré (C:\lopR.txt).
0
Lysky004 Messages postés 47 Date d'inscription mercredi 7 mai 2008 Statut Membre Dernière intervention 16 décembre 2008
11 déc. 2008 à 21:53
Voila



--------------------\\ Lop S&D 4.2.4-9c XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : BIOS Date: 08/27/04 13:45:15 Ver: 08.00.10
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)
Firewall : ZoneAlarm Firewall 7.0.483.000 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:143 Go (Free:60 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:1 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [1] ( 11/12/2008|21:45 )

--------------------\\ Listing des dossiers dans APPLIC~1

[01/01/2004|17:45] C:\DOCUME~1\ADMINI~1\APPLIC~1\Apple Computer
[01/01/2004|14:06] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[01/01/2004|17:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\Intervideo
[06/09/2007|16:44] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[15/11/2008|13:39] C:\DOCUME~1\ADMINI~1\APPLIC~1\Malwarebytes
[01/01/2004|14:09] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[01/01/2004|18:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\SampleView
[01/01/2004|15:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
[01/01/2004|21:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec

[20/11/2008|22:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[25/05/2008|09:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[06/07/2007|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[24/03/2007|10:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[09/11/2008|16:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[26/03/2008|15:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Babylon
[15/11/2008|10:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[11/12/2008|19:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[13/01/2007|18:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
[13/01/2007|19:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[01/01/2004|17:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InterVideo
[08/11/2008|18:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[17/10/2008|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[17/10/2008|17:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[06/09/2008|12:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[26/10/2008|11:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[01/01/2004|17:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
[03/07/2008|11:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[03/07/2008|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle VideoSpin
[26/03/2006|21:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[15/03/2008|16:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\RTL Winter Sports 2008
[01/01/2004|14:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[12/11/2004|00:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBT
[01/09/2007|19:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skyline
[15/09/2007|08:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[02/05/2008|11:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\soft ref platform bind
[13/01/2007|18:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[15/03/2008|09:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[03/12/2008|21:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[03/07/2008|11:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\VideoSpin
[24/07/2006|19:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[10/12/2006|17:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[03/10/2007|16:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[29/09/2008|21:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\yahoo!
[29/09/2008|21:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[08/11/2008|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[01/01/2004|17:45] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[01/01/2004|14:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[01/01/2004|17:36] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Intervideo
[06/09/2007|16:44] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[01/01/2004|14:09] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[01/01/2004|18:12] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[01/01/2004|15:07] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[01/01/2004|21:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[13/01/2007|15:00] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Adobe
[11/12/2005|22:00] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AdobeUM
[22/11/2008|20:45] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Apple Computer
[23/03/2008|10:54] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Babylon
[04/11/2008|19:13] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Canneverbe_Limited
[23/11/2008|15:10] C:\DOCUME~1\HP_PRO~1\APPLIC~1\cmw
[09/04/2008|16:49] C:\DOCUME~1\HP_PRO~1\APPLIC~1\codeblocks
[02/05/2008|11:19] C:\DOCUME~1\HP_PRO~1\APPLIC~1\default mode base
[09/04/2008|17:19] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Dev-Cpp
[15/10/2008|13:58] C:\DOCUME~1\HP_PRO~1\APPLIC~1\DiskAid
[17/10/2008|16:02] C:\DOCUME~1\HP_PRO~1\APPLIC~1\FrostWire
[15/03/2008|10:33] C:\DOCUME~1\HP_PRO~1\APPLIC~1\F-Secure
[28/09/2006|17:43] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Google
[12/10/2008|20:31] C:\DOCUME~1\HP_PRO~1\APPLIC~1\gtk-2.0
[05/12/2004|17:54] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Help
[13/01/2007|19:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HP
[08/11/2008|11:29] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Identities
[07/06/2008|18:34] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InstallShield
[01/01/2004|17:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Intervideo
[06/12/2004|21:16] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Leadertech
[11/11/2004|23:06] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Macromedia
[17/10/2008|17:02] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Malwarebytes
[19/08/2007|10:25] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Microsoft
[12/11/2004|00:00] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Microsoft Web Folders
[02/01/2007|12:59] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mindscape
[30/12/2004|15:39] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Motive
[24/11/2008|21:34] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mozilla
[22/03/2006|16:02] C:\DOCUME~1\HP_PRO~1\APPLIC~1\MSNInstaller
[09/04/2008|15:15] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Notepad++
[03/11/2008|20:31] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Opera
[28/04/2008|10:06] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Real
[01/01/2004|18:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SampleView
[26/10/2008|10:43] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Samsung
[19/08/2007|12:13] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Screenshot Sender
[06/07/2006|11:34] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Skype
[06/12/2004|21:17] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sonic
[01/01/2004|15:07] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sun
[01/01/2004|21:04] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Symantec
[30/06/2007|20:41] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Talkback
[28/06/2008|19:39] C:\DOCUME~1\HP_PRO~1\APPLIC~1\VoipBuster
[17/03/2007|17:59] C:\DOCUME~1\HP_PRO~1\APPLIC~1\WholeSecurity
[30/09/2007|16:47] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Windows Desktop Search
[19/12/2007|19:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Windows Live Writer
[01/04/2007|16:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\WinRAR
[29/09/2008|21:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Yahoo!
[08/11/2008|11:29] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Zylom

[15/11/2006|15:54] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[07/02/2007|20:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\Help
[05/04/2007|17:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[09/12/2006|15:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla
[11/11/2006|15:21] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[10/09/2008|14:18] C:\DOCUME~1\NETWOR~1\APPLIC~1\Google
[01/12/2007|23:58] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[14/02/2005|20:56] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[11/12/2008 20:17][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUser.job
[29/08/2008 14:00][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
[09/12/2008 22:13][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[11/12/2008 20:00][--a------] C:\WINDOWS\tasks\HPpromotions journeysoftware.job
[11/12/2008 20:09][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[05/08/2004 11:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
[11/12/2008 17:47][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
[11/12/2008 17:24][--ah-----] C:\WINDOWS\tasks\SA.DAT

--------------------\\ Listing des dossiers dans C:\Program Files

[20/08/2008|21:23] C:\Program Files\Adobe
[20/10/2007|14:00] C:\Program Files\AGEIA Technologies
[02/09/2008|10:47] C:\Program Files\AoA Audio Extractor
[10/09/2008|14:10] C:\Program Files\Apple Software Update
[11/07/2005|21:02] C:\Program Files\ArcSoft
[29/03/2008|19:05] C:\Program Files\Assistant Dartybox
[11/11/2004|22:05] C:\Program Files\ATI Technologies
[02/09/2008|10:56] C:\Program Files\Atlas Bordas collŠge
[18/05/2008|21:04] C:\Program Files\Audacity
[09/11/2008|16:19] C:\Program Files\Avira
[27/05/2008|19:53] C:\Program Files\AviSynth 2.5
[09/06/2008|17:45] C:\Program Files\Axon Data
[01/12/2007|17:24] C:\Program Files\Barre TV5_dico
[16/05/2008|19:19] C:\Program Files\Blender Foundation
[26/11/2008|19:29] C:\Program Files\Bonjour
[13/11/2004|19:58] C:\Program Files\Canon
[04/11/2008|19:12] C:\Program Files\CDBurnerXP
[18/05/2008|17:52] C:\Program Files\CDex_170b2
[08/04/2008|16:42] C:\Program Files\CodeBlocks
[16/04/2005|08:17] C:\Program Files\coktel
[01/01/2004|14:03] C:\Program Files\ComPlus Applications
[15/03/2008|12:15] C:\Program Files\Dartybox
[27/09/2008|13:32] C:\Program Files\DartyBox Wifi
[26/11/2008|19:31] C:\Program Files\dBpowerAMP
[09/04/2008|17:03] C:\Program Files\Dev-Cpp
[13/11/2004|17:42] C:\Program Files\directx
[09/06/2008|17:55] C:\Program Files\DiskAid
[16/02/2008|13:10] C:\Program Files\Easy Internet signup
[05/12/2005|23:03] C:\Program Files\eBay
[29/04/2008|08:59] C:\Program Files\emme
[14/03/2008|18:34] C:\Program Files\eRightSoft
[05/11/2008|19:00] C:\Program Files\Fichiers communs
[31/05/2008|18:48] C:\Program Files\FLV Player
[20/10/2007|13:54] C:\Program Files\Focus
[30/05/2008|20:30] C:\Program Files\Free Video Converter
[31/05/2008|12:22] C:\Program Files\Freez FLV to MP3 Converter
[16/02/2008|13:10] C:\Program Files\Garmin
[15/02/2008|19:03] C:\Program Files\GIMP-2.0
[29/08/2008|10:45] C:\Program Files\Google
[01/01/2004|17:57] C:\Program Files\Help and Support Additions
[13/01/2007|18:52] C:\Program Files\Hewlett-Packard
[13/01/2007|18:52] C:\Program Files\HP
[31/08/2007|11:28] C:\Program Files\IE7
[26/11/2008|19:38] C:\Program Files\Illustrate
[26/10/2008|09:52] C:\Program Files\InstallShield Installation Information
[11/12/2008|15:38] C:\Program Files\Internet Explorer
[11/11/2004|22:07] C:\Program Files\InterVideo
[20/11/2008|22:06] C:\Program Files\iPod
[20/11/2008|22:07] C:\Program Files\iTunes
[13/10/2008|20:54] C:\Program Files\Java
[31/05/2008|15:11] C:\Program Files\Lavalys
[01/06/2008|09:15] C:\Program Files\Lecteur CANALPLAY
[05/01/2008|12:47] C:\Program Files\LNH Handball Manager 2008
[25/05/2008|09:20] C:\Program Files\Lopxp
[08/11/2008|18:17] C:\Program Files\ma-config.com
[26/11/2008|21:43] C:\Program Files\Malwarebytes' Anti-Malware
[25/09/2008|22:09] C:\Program Files\Messenger
[04/09/2008|12:47] C:\Program Files\Messenger Plus! Live
[10/05/2007|22:09] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[13/11/2004|23:21] C:\Program Files\Microsoft Encarta
[01/01/2004|14:06] C:\Program Files\microsoft frontpage
[13/11/2004|23:14] C:\Program Files\Microsoft Money
[13/11/2004|23:10] C:\Program Files\Microsoft Office
[16/02/2008|13:10] C:\Program Files\Microsoft Picture It! 9
[12/11/2004|00:04] C:\Program Files\Microsoft Visual Studio
[16/02/2008|13:10] C:\Program Files\Microsoft Works
[13/11/2004|23:03] C:\Program Files\Microsoft Works Suite 2004
[13/01/2008|17:06] C:\Program Files\Mindscape
[10/12/2006|17:50] C:\Program Files\minitel
[16/02/2008|13:10] C:\Program Files\MinitelADSL
[21/12/2004|18:33] C:\Program Files\Montparnasse multimedia
[30/12/2005|11:29] C:\Program Files\Montparnasse multimedia - GEO
[24/09/2008|20:42] C:\Program Files\Movie Maker
[30/11/2008|12:38] C:\Program Files\Mozilla Firefox
[24/09/2008|20:42] C:\Program Files\msn
[21/12/2007|12:21] C:\Program Files\MSN 2
[01/01/2004|14:03] C:\Program Files\MSN Gaming Zone
[15/11/2006|22:59] C:\Program Files\MSXML 4.0
[02/12/2008|21:52] C:\Program Files\Navilog1
[24/09/2008|20:40] C:\Program Files\NetMeeting
[15/03/2008|09:59] C:\Program Files\Norton AntiVirus
[14/02/2008|22:25] C:\Program Files\Norton Security Scan
[09/04/2008|15:12] C:\Program Files\Notepad++
[01/01/2004|14:03] C:\Program Files\Online Services
[03/11/2008|20:31] C:\Program Files\Opera
[24/09/2008|20:50] C:\Program Files\Outlook Express
[16/02/2008|13:10] C:\Program Files\PC-Doctor for Windows
[21/05/2007|10:11] C:\Program Files\Photo Orange
[02/09/2008|10:44] C:\Program Files\PhotoFiltre
[07/10/2008|21:04] C:\Program Files\Picasa
[11/04/2008|18:50] C:\Program Files\Picasa2
[03/07/2008|11:23] C:\Program Files\Pinnacle
[17/10/2008|08:55] C:\Program Files\ppcbooster
[14/06/2008|14:43] C:\Program Files\PPT2DVD
[10/06/2008|18:47] C:\Program Files\Presentersoft PowerVideoMaker
[10/09/2008|14:06] C:\Program Files\QuickTime
[15/02/2005|14:55] C:\Program Files\Ravensburger
[21/05/2006|17:21] C:\Program Files\Real
[24/09/2008|18:35] C:\Program Files\Realtek
[27/05/2008|19:53] C:\Program Files\Red Kawa
[20/11/2008|21:55] C:\Program Files\Safari
[31/03/2007|11:04] C:\Program Files\SAGEM
[07/06/2008|18:34] C:\Program Files\SAGEM WiFi manager
[26/10/2008|09:48] C:\Program Files\Samsung
[23/01/2008|16:35] C:\Program Files\Seagrand
[21/10/2005|20:58] C:\Program Files\Securitoo
[01/01/2004|18:06] C:\Program Files\Services en ligne
[02/01/2004|06:00] C:\Program Files\SiS VGA Utilities V3.59e
[31/05/2008|13:38] C:\Program Files\SIW
[01/09/2007|19:30] C:\Program Files\Skyline
[26/03/2008|17:09] C:\Program Files\Skype
[12/11/2004|00:09] C:\Program Files\Snapshot Viewer
[01/01/2004|17:34] C:\Program Files\Sonic
[01/01/2004|17:34] C:\Program Files\Sonic RecordNow!
[15/03/2008|10:11] C:\Program Files\Symantec
[11/11/2004|22:50] C:\Program Files\Thomson
[16/11/2004|18:10] C:\Program Files\THQ
[30/12/2004|15:35] C:\Program Files\TLC
[01/01/2004|14:09] C:\Program Files\Uninstall Information
[20/11/2008|16:19] C:\Program Files\Wanadoo
[16/02/2008|13:10] C:\Program Files\Wanadoo Messager
[31/05/2008|14:27] C:\Program Files\WinAVI MP4 Converter
[29/09/2007|14:00] C:\Program Files\Windows Desktop Search
[16/05/2007|16:36] C:\Program Files\Windows Journal Viewer
[29/12/2007|22:54] C:\Program Files\Windows Live
[30/11/2007|23:28] C:\Program Files\Windows Live Favorites
[13/10/2006|14:14] C:\Program Files\Windows Live Safety Center
[16/02/2008|13:10] C:\Program Files\Windows Live Toolbar
[16/02/2008|13:10] C:\Program Files\Windows Media Connect 2
[24/09/2008|20:40] C:\Program Files\Windows Media Player
[24/09/2008|20:40] C:\Program Files\Windows NT
[01/01/2004|14:04] C:\Program Files\WindowsUpdate
[23/11/2008|15:11] C:\Program Files\winpwn-2.5
[02/04/2007|08:05] C:\Program Files\WinRAR
[15/03/2008|16:00] C:\Program Files\Winter Sports 2008
[01/01/2004|14:06] C:\Program Files\xerox
[29/09/2008|21:36] C:\Program Files\Yahoo!
[31/05/2008|14:37] C:\Program Files\Yamb
[17/10/2008|08:49] C:\Program Files\Zone Labs

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[25/05/2008|09:21] C:\Program Files\Fichiers communs\Adobe
[10/09/2008|14:05] C:\Program Files\Fichiers communs\Apple
[12/11/2004|00:04] C:\Program Files\Fichiers communs\Designer
[01/01/2004|15:41] C:\Program Files\Fichiers communs\Hewlett-Packard
[13/01/2007|18:58] C:\Program Files\Fichiers communs\HP
[02/01/2004|05:59] C:\Program Files\Fichiers communs\InstallShield
[01/01/2004|15:07] C:\Program Files\Fichiers communs\Java
[29/09/2007|13:50] C:\Program Files\Fichiers communs\Microsoft Shared
[01/01/2004|14:04] C:\Program Files\Fichiers communs\MSSoap
[01/01/2004|14:59] C:\Program Files\Fichiers communs\ODBC
[05/11/2008|19:00] C:\Program Files\Fichiers communs\Real
[19/10/2004|03:41] C:\Program Files\Fichiers communs\Services
[26/03/2008|17:09] C:\Program Files\Fichiers communs\Skype
[13/01/2007|18:59] C:\Program Files\Fichiers communs\Sonic Shared
[01/01/2004|14:59] C:\Program Files\Fichiers communs\SpeechEngines
[01/01/2004|17:34] C:\Program Files\Fichiers communs\SureThing Shared
[15/03/2008|10:12] C:\Program Files\Fichiers communs\Symantec Shared
[24/09/2008|20:50] C:\Program Files\Fichiers communs\System
[20/10/2007|13:59] C:\Program Files\Fichiers communs\Wise Installation Wizard
[05/11/2008|19:00] C:\Program Files\Fichiers communs\xing shared
[03/07/2008|11:23] C:\Program Files\Fichiers communs\Yahoo!

--------------------\\ Process

( 75 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\soft ref platform bind
C:\DOCUME~1\ALLUSE~1\APPLIC~1\soft ref platform bind\log chin.exe
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@advertstream[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@www.adserver5[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@adultfriendfinder[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@advertising[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@adin.bigpoint[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@bigpoint[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr.thepimps.bigpoint[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr1.darkorbit.bigpoint[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr1.seafight.bigpoint[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.cotedazurpalace[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@cotedazurpalace[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@www.cotedazurpalace[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@adopt.euroclick[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@pacificpoker[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@partygaming.122.2o7[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@partypoker[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr1.seafight.bigpoint[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@32vegas[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.32vegas[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@cachewww.32vegas[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@lasvegascasino-web[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@vegasred[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@www.vegasred[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@www.lop[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@cc.2xmoinscher[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@888[1].txt

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD

-> 58 [ 56 ## added by CiD ]

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-11 21:48:01
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 183

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:131][D:30]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp
[F:1503][D:0]-> C:\DOCUME~1\HP_PRO~1\Cookies
[F:16766][D:44]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 11/12/2008|21:51 - Option : [1]

--------------------\\ Fin du rapport a 21:51:43
0
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 297
11 déc. 2008 à 21:58
---> Relance Lop S&D.
---> Choisis cette fois-ci l'option 2 (Suppression).
---> Ne ferme pas la fenêtre lors de la suppression !
---> Poste le rapport généré (C:\lopR.txt).
0
Lysky004 Messages postés 47 Date d'inscription mercredi 7 mai 2008 Statut Membre Dernière intervention 16 décembre 2008
12 déc. 2008 à 20:21
Voila



--------------------\\ Lop S&D 4.2.4-9c XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : BIOS Date: 08/27/04 13:45:15 Ver: 08.00.10
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)
Firewall : ZoneAlarm Firewall 7.0.483.000 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:143 Go (Free:60 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:1 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [2] ( 12/12/2008|20:13 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\soft ref platform bind\log chin.exe
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@advertstream[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@www.adserver5[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@adultfriendfinder[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@advertising[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@adin.bigpoint[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@bigpoint[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr.thepimps.bigpoint[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr1.darkorbit.bigpoint[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr1.seafight.bigpoint[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@www.cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@adopt.euroclick[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@pacificpoker[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@partygaming.122.2o7[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@partypoker[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@32vegas[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.32vegas[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@cachewww.32vegas[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@lasvegascasino-web[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@vegasred[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@www.vegasred[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@www.lop[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@cc.2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@888[1].txt
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\soft ref platform bind
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[01/01/2004|17:45] C:\DOCUME~1\ADMINI~1\APPLIC~1\Apple Computer
[01/01/2004|14:06] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[01/01/2004|17:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\Intervideo
[06/09/2007|16:44] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[15/11/2008|13:39] C:\DOCUME~1\ADMINI~1\APPLIC~1\Malwarebytes
[01/01/2004|14:09] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[01/01/2004|18:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\SampleView
[01/01/2004|15:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
[01/01/2004|21:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec

[20/11/2008|22:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[25/05/2008|09:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[06/07/2007|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[24/03/2007|10:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[09/11/2008|16:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[26/03/2008|15:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Babylon
[15/11/2008|10:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[11/12/2008|19:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[13/01/2007|18:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
[13/01/2007|19:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[01/01/2004|17:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InterVideo
[08/11/2008|18:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[17/10/2008|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[17/10/2008|17:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[06/09/2008|12:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[26/10/2008|11:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[01/01/2004|17:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
[03/07/2008|11:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[03/07/2008|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle VideoSpin
[26/03/2006|21:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[15/03/2008|16:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\RTL Winter Sports 2008
[01/01/2004|14:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[12/11/2004|00:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBT
[01/09/2007|19:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skyline
[15/09/2007|08:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[13/01/2007|18:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[15/03/2008|09:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[03/12/2008|21:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[03/07/2008|11:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\VideoSpin
[24/07/2006|19:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[10/12/2006|17:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[03/10/2007|16:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[29/09/2008|21:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\yahoo!
[29/09/2008|21:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[08/11/2008|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[01/01/2004|17:45] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[01/01/2004|14:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[01/01/2004|17:36] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Intervideo
[06/09/2007|16:44] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[01/01/2004|14:09] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[01/01/2004|18:12] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[01/01/2004|15:07] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[01/01/2004|21:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[13/01/2007|15:00] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Adobe
[11/12/2005|22:00] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AdobeUM
[22/11/2008|20:45] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Apple Computer
[23/03/2008|10:54] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Babylon
[04/11/2008|19:13] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Canneverbe_Limited
[23/11/2008|15:10] C:\DOCUME~1\HP_PRO~1\APPLIC~1\cmw
[09/04/2008|16:49] C:\DOCUME~1\HP_PRO~1\APPLIC~1\codeblocks
[02/05/2008|11:19] C:\DOCUME~1\HP_PRO~1\APPLIC~1\default mode base
[09/04/2008|17:19] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Dev-Cpp
[15/10/2008|13:58] C:\DOCUME~1\HP_PRO~1\APPLIC~1\DiskAid
[17/10/2008|16:02] C:\DOCUME~1\HP_PRO~1\APPLIC~1\FrostWire
[15/03/2008|10:33] C:\DOCUME~1\HP_PRO~1\APPLIC~1\F-Secure
[28/09/2006|17:43] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Google
[12/10/2008|20:31] C:\DOCUME~1\HP_PRO~1\APPLIC~1\gtk-2.0
[05/12/2004|17:54] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Help
[13/01/2007|19:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HP
[08/11/2008|11:29] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Identities
[07/06/2008|18:34] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InstallShield
[01/01/2004|17:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Intervideo
[06/12/2004|21:16] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Leadertech
[11/11/2004|23:06] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Macromedia
[17/10/2008|17:02] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Malwarebytes
[19/08/2007|10:25] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Microsoft
[12/11/2004|00:00] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Microsoft Web Folders
[02/01/2007|12:59] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mindscape
[30/12/2004|15:39] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Motive
[24/11/2008|21:34] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mozilla
[22/03/2006|16:02] C:\DOCUME~1\HP_PRO~1\APPLIC~1\MSNInstaller
[09/04/2008|15:15] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Notepad++
[03/11/2008|20:31] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Opera
[28/04/2008|10:06] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Real
[01/01/2004|18:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SampleView
[26/10/2008|10:43] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Samsung
[19/08/2007|12:13] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Screenshot Sender
[06/07/2006|11:34] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Skype
[06/12/2004|21:17] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sonic
[01/01/2004|15:07] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sun
[01/01/2004|21:04] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Symantec
[30/06/2007|20:41] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Talkback
[28/06/2008|19:39] C:\DOCUME~1\HP_PRO~1\APPLIC~1\VoipBuster
[17/03/2007|17:59] C:\DOCUME~1\HP_PRO~1\APPLIC~1\WholeSecurity
[30/09/2007|16:47] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Windows Desktop Search
[19/12/2007|19:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Windows Live Writer
[01/04/2007|16:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\WinRAR
[29/09/2008|21:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Yahoo!
[08/11/2008|11:29] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Zylom

[15/11/2006|15:54] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[07/02/2007|20:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\Help
[05/04/2007|17:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[09/12/2006|15:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla
[11/11/2006|15:21] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[10/09/2008|14:18] C:\DOCUME~1\NETWOR~1\APPLIC~1\Google
[01/12/2007|23:58] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[14/02/2005|20:56] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[12/12/2008 20:05][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUser.job
[29/08/2008 14:00][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
[09/12/2008 22:13][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[12/12/2008 20:00][--a------] C:\WINDOWS\tasks\HPpromotions journeysoftware.job
[12/12/2008 20:09][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[05/08/2004 11:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
[11/12/2008 21:47][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
[12/12/2008 19:11][--ah-----] C:\WINDOWS\tasks\SA.DAT

--------------------\\ Listing des dossiers dans C:\Program Files

[20/08/2008|21:23] C:\Program Files\Adobe
[20/10/2007|14:00] C:\Program Files\AGEIA Technologies
[02/09/2008|10:47] C:\Program Files\AoA Audio Extractor
[10/09/2008|14:10] C:\Program Files\Apple Software Update
[11/07/2005|21:02] C:\Program Files\ArcSoft
[29/03/2008|19:05] C:\Program Files\Assistant Dartybox
[11/11/2004|22:05] C:\Program Files\ATI Technologies
[02/09/2008|10:56] C:\Program Files\Atlas Bordas collŠge
[18/05/2008|21:04] C:\Program Files\Audacity
[09/11/2008|16:19] C:\Program Files\Avira
[27/05/2008|19:53] C:\Program Files\AviSynth 2.5
[09/06/2008|17:45] C:\Program Files\Axon Data
[01/12/2007|17:24] C:\Program Files\Barre TV5_dico
[16/05/2008|19:19] C:\Program Files\Blender Foundation
[26/11/2008|19:29] C:\Program Files\Bonjour
[13/11/2004|19:58] C:\Program Files\Canon
[04/11/2008|19:12] C:\Program Files\CDBurnerXP
[18/05/2008|17:52] C:\Program Files\CDex_170b2
[08/04/2008|16:42] C:\Program Files\CodeBlocks
[16/04/2005|08:17] C:\Program Files\coktel
[01/01/2004|14:03] C:\Program Files\ComPlus Applications
[15/03/2008|12:15] C:\Program Files\Dartybox
[27/09/2008|13:32] C:\Program Files\DartyBox Wifi
[26/11/2008|19:31] C:\Program Files\dBpowerAMP
[09/04/2008|17:03] C:\Program Files\Dev-Cpp
[13/11/2004|17:42] C:\Program Files\directx
[09/06/2008|17:55] C:\Program Files\DiskAid
[16/02/2008|13:10] C:\Program Files\Easy Internet signup
[05/12/2005|23:03] C:\Program Files\eBay
[29/04/2008|08:59] C:\Program Files\emme
[14/03/2008|18:34] C:\Program Files\eRightSoft
[05/11/2008|19:00] C:\Program Files\Fichiers communs
[31/05/2008|18:48] C:\Program Files\FLV Player
[20/10/2007|13:54] C:\Program Files\Focus
[30/05/2008|20:30] C:\Program Files\Free Video Converter
[31/05/2008|12:22] C:\Program Files\Freez FLV to MP3 Converter
[16/02/2008|13:10] C:\Program Files\Garmin
[15/02/2008|19:03] C:\Program Files\GIMP-2.0
[29/08/2008|10:45] C:\Program Files\Google
[01/01/2004|17:57] C:\Program Files\Help and Support Additions
[13/01/2007|18:52] C:\Program Files\Hewlett-Packard
[13/01/2007|18:52] C:\Program Files\HP
[31/08/2007|11:28] C:\Program Files\IE7
[26/11/2008|19:38] C:\Program Files\Illustrate
[26/10/2008|09:52] C:\Program Files\InstallShield Installation Information
[11/12/2008|15:38] C:\Program Files\Internet Explorer
[11/11/2004|22:07] C:\Program Files\InterVideo
[20/11/2008|22:06] C:\Program Files\iPod
[20/11/2008|22:07] C:\Program Files\iTunes
[13/10/2008|20:54] C:\Program Files\Java
[31/05/2008|15:11] C:\Program Files\Lavalys
[01/06/2008|09:15] C:\Program Files\Lecteur CANALPLAY
[05/01/2008|12:47] C:\Program Files\LNH Handball Manager 2008
[25/05/2008|09:20] C:\Program Files\Lopxp
[08/11/2008|18:17] C:\Program Files\ma-config.com
[26/11/2008|21:43] C:\Program Files\Malwarebytes' Anti-Malware
[25/09/2008|22:09] C:\Program Files\Messenger
[04/09/2008|12:47] C:\Program Files\Messenger Plus! Live
[10/05/2007|22:09] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[13/11/2004|23:21] C:\Program Files\Microsoft Encarta
[01/01/2004|14:06] C:\Program Files\microsoft frontpage
[13/11/2004|23:14] C:\Program Files\Microsoft Money
[13/11/2004|23:10] C:\Program Files\Microsoft Office
[16/02/2008|13:10] C:\Program Files\Microsoft Picture It! 9
[12/11/2004|00:04] C:\Program Files\Microsoft Visual Studio
[16/02/2008|13:10] C:\Program Files\Microsoft Works
[13/11/2004|23:03] C:\Program Files\Microsoft Works Suite 2004
[13/01/2008|17:06] C:\Program Files\Mindscape
[10/12/2006|17:50] C:\Program Files\minitel
[16/02/2008|13:10] C:\Program Files\MinitelADSL
[21/12/2004|18:33] C:\Program Files\Montparnasse multimedia
[30/12/2005|11:29] C:\Program Files\Montparnasse multimedia - GEO
[24/09/2008|20:42] C:\Program Files\Movie Maker
[30/11/2008|12:38] C:\Program Files\Mozilla Firefox
[24/09/2008|20:42] C:\Program Files\msn
[21/12/2007|12:21] C:\Program Files\MSN 2
[01/01/2004|14:03] C:\Program Files\MSN Gaming Zone
[15/11/2006|22:59] C:\Program Files\MSXML 4.0
[02/12/2008|21:52] C:\Program Files\Navilog1
[24/09/2008|20:40] C:\Program Files\NetMeeting
[15/03/2008|09:59] C:\Program Files\Norton AntiVirus
[14/02/2008|22:25] C:\Program Files\Norton Security Scan
[09/04/2008|15:12] C:\Program Files\Notepad++
[01/01/2004|14:03] C:\Program Files\Online Services
[03/11/2008|20:31] C:\Program Files\Opera
[24/09/2008|20:50] C:\Program Files\Outlook Express
[16/02/2008|13:10] C:\Program Files\PC-Doctor for Windows
[21/05/2007|10:11] C:\Program Files\Photo Orange
[02/09/2008|10:44] C:\Program Files\PhotoFiltre
[07/10/2008|21:04] C:\Program Files\Picasa
[11/04/2008|18:50] C:\Program Files\Picasa2
[03/07/2008|11:23] C:\Program Files\Pinnacle
[17/10/2008|08:55] C:\Program Files\ppcbooster
[14/06/2008|14:43] C:\Program Files\PPT2DVD
[10/06/2008|18:47] C:\Program Files\Presentersoft PowerVideoMaker
[10/09/2008|14:06] C:\Program Files\QuickTime
[15/02/2005|14:55] C:\Program Files\Ravensburger
[21/05/2006|17:21] C:\Program Files\Real
[24/09/2008|18:35] C:\Program Files\Realtek
[27/05/2008|19:53] C:\Program Files\Red Kawa
[20/11/2008|21:55] C:\Program Files\Safari
[31/03/2007|11:04] C:\Program Files\SAGEM
[07/06/2008|18:34] C:\Program Files\SAGEM WiFi manager
[26/10/2008|09:48] C:\Program Files\Samsung
[23/01/2008|16:35] C:\Program Files\Seagrand
[21/10/2005|20:58] C:\Program Files\Securitoo
[01/01/2004|18:06] C:\Program Files\Services en ligne
[02/01/2004|06:00] C:\Program Files\SiS VGA Utilities V3.59e
[31/05/2008|13:38] C:\Program Files\SIW
[01/09/2007|19:30] C:\Program Files\Skyline
[26/03/2008|17:09] C:\Program Files\Skype
[12/11/2004|00:09] C:\Program Files\Snapshot Viewer
[01/01/2004|17:34] C:\Program Files\Sonic
[01/01/2004|17:34] C:\Program Files\Sonic RecordNow!
[15/03/2008|10:11] C:\Program Files\Symantec
[11/11/2004|22:50] C:\Program Files\Thomson
[16/11/2004|18:10] C:\Program Files\THQ
[30/12/2004|15:35] C:\Program Files\TLC
[01/01/2004|14:09] C:\Program Files\Uninstall Information
[20/11/2008|16:19] C:\Program Files\Wanadoo
[16/02/2008|13:10] C:\Program Files\Wanadoo Messager
[31/05/2008|14:27] C:\Program Files\WinAVI MP4 Converter
[29/09/2007|14:00] C:\Program Files\Windows Desktop Search
[16/05/2007|16:36] C:\Program Files\Windows Journal Viewer
[29/12/2007|22:54] C:\Program Files\Windows Live
[30/11/2007|23:28] C:\Program Files\Windows Live Favorites
[13/10/2006|14:14] C:\Program Files\Windows Live Safety Center
[16/02/2008|13:10] C:\Program Files\Windows Live Toolbar
[16/02/2008|13:10] C:\Program Files\Windows Media Connect 2
[24/09/2008|20:40] C:\Program Files\Windows Media Player
[24/09/2008|20:40] C:\Program Files\Windows NT
[01/01/2004|14:04] C:\Program Files\WindowsUpdate
[23/11/2008|15:11] C:\Program Files\winpwn-2.5
[02/04/2007|08:05] C:\Program Files\WinRAR
[15/03/2008|16:00] C:\Program Files\Winter Sports 2008
[01/01/2004|14:06] C:\Program Files\xerox
[29/09/2008|21:36] C:\Program Files\Yahoo!
[31/05/2008|14:37] C:\Program Files\Yamb
[17/10/2008|08:49] C:\Program Files\Zone Labs

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[25/05/2008|09:21] C:\Program Files\Fichiers communs\Adobe
[10/09/2008|14:05] C:\Program Files\Fichiers communs\Apple
[12/11/2004|00:04] C:\Program Files\Fichiers communs\Designer
[01/01/2004|15:41] C:\Program Files\Fichiers communs\Hewlett-Packard
[13/01/2007|18:58] C:\Program Files\Fichiers communs\HP
[02/01/2004|05:59] C:\Program Files\Fichiers communs\InstallShield
[01/01/2004|15:07] C:\Program Files\Fichiers communs\Java
[29/09/2007|13:50] C:\Program Files\Fichiers communs\Microsoft Shared
[01/01/2004|14:04] C:\Program Files\Fichiers communs\MSSoap
[01/01/2004|14:59] C:\Program Files\Fichiers communs\ODBC
[05/11/2008|19:00] C:\Program Files\Fichiers communs\Real
[19/10/2004|03:41] C:\Program Files\Fichiers communs\Services
[26/03/2008|17:09] C:\Program Files\Fichiers communs\Skype
[13/01/2007|18:59] C:\Program Files\Fichiers communs\Sonic Shared
[01/01/2004|14:59] C:\Program Files\Fichiers communs\SpeechEngines
[01/01/2004|17:34] C:\Program Files\Fichiers communs\SureThing Shared
[15/03/2008|10:12] C:\Program Files\Fichiers communs\Symantec Shared
[24/09/2008|20:50] C:\Program Files\Fichiers communs\System
[20/10/2007|13:59] C:\Program Files\Fichiers communs\Wise Installation Wizard
[05/11/2008|19:00] C:\Program Files\Fichiers communs\xing shared
[03/07/2008|11:23] C:\Program Files\Fichiers communs\Yahoo!

--------------------\\ Process

( 72 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-12 20:16:48
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\DOCUME~1\HP_PRO~1\LOCALS~1\APPLIC~1\Opera\Opera\profile\vps\0007\adoc.bx-g 8 bytes
C:\DOCUME~1\HP_PRO~1\LOCALS~1\APPLIC~1\Opera\Opera\profile\vps\0007\url.ax-g 8 bytes
C:\DOCUME~1\HP_PRO~1\LOCALS~1\APPLIC~1\Opera\Opera\profile\vps\0007\w.ax-g 8 bytes
scan completed successfully
hidden processes: 0
hidden files: 186

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:143][D:32]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp
[F:1478][D:0]-> C:\DOCUME~1\HP_PRO~1\Cookies
[F:16780][D:44]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 11/12/2008|21:51 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 12/12/2008|20:20 - Option : [2]

--------------------\\ Fin du rapport a 20:20:40
0
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 297
12 déc. 2008 à 20:33
---> Télécharge OTMoveIt3 (OldTimer) sur ton Bureau :
http://oldtimer.geekstogo.com/OTMoveIt3.exe

---> Double-clique sur OTMoveIt3.exe afin de le lancer.

---> Copie (Ctrl+C) le texte suivant ci-dessous :





:processes
explorer.exe

:files
C:\DOCUME~1\HP_PRO~1\APPLIC~1\default mode base

:commands
[purity]
[emptytemp]
[start explorer]
[reboot]





---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.

---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.

---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
0
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 297
17 oct. 2008 à 17:59
Salut,

- Télécharge et installe MalwareByte's Anti-Malware :
http://www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.htm

- Mets-le à jour

- Redémarre en mode sans échec (Recommandé) :
https://blog.sosordi.net/

- Choisis ta session habituelle

- Fais un scan complet avec MalwareByte's Anti-Malware

- Supprime tout ce que le logiciel trouve, enregistre le rapport

- Redémarre en mode normal et poste le rapport ici

Tutorial :
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
-1
Lysky004 Messages postés 47 Date d'inscription mercredi 7 mai 2008 Statut Membre Dernière intervention 16 décembre 2008
15 nov. 2008 à 20:30
Coucou !

Désolée pour le retard ...

voila mon rapport






Malwarebytes' Anti-Malware 1.29
Version de la base de données: 1278
Windows 5.1.2600 Service Pack 3

15/11/2008 19:28:29
rapport malwarebytes anti-malware

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 209693
Temps écoulé: 3 hour(s), 4 minute(s), 23 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 8
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 9
Fichier(s) infecté(s): 26

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\Interface\{00b77587-be1b-4201-b8e9-09fcf50ab771} (Adware.Zango) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{2b81f920-6660-4f76-93bf-b1c67bf5d1a0} (Adware.Zango) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{549b5ca7-4a86-11d7-a4df-000874180bb3} (Trojan.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\icheck (Trojan.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{650664b1-d3e5-d3d1-9079-64ff10d058d4} (Adware.BHO) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{650664b1-d3e5-d3d1-9079-64ff10d058d4} (Adware.BHO) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8eeb2711-9d21-4f9c-99a1-b7fc5a8ca56a} (Trojan.BHO) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{8eeb2711-9d21-4f9c-99a1-b7fc5a8ca56a} (Trojan.BHO) -> No action taken.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Program Files\SystemDoctor Free (Rogue.SystemDoctor) -> No action taken.
C:\Program Files\Fichiers communs\SystemDoctor (Rogue.SystemDoctor) -> No action taken.
C:\Program Files\GetPack (Trojan.Agent) -> No action taken.
C:\Program Files\iCheck (Trojan.Agent) -> No action taken.
C:\Program Files\GetModule (Trojan.Agent) -> No action taken.
C:\Documents and Settings\All Users\Application Data\SystemDoctor Free (Rogue.SystemDoctor) -> No action taken.
C:\Documents and Settings\All Users\Application Data\SystemDoctor Free\Data (Rogue.SystemDoctor) -> No action taken.
C:\Documents and Settings\HP_Propriétaire\Application Data\SystemDoctor Free (Rogue.SystemDoctor) -> No action taken.
C:\Documents and Settings\HP_Propriétaire\Application Data\SystemDoctor Free\Logs (Rogue.SystemDoctor) -> No action taken.

Fichier(s) infecté(s):
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\44.exe (Trojan.BHO) -> No action taken.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\gettpa222.exe (Adware.ISM) -> No action taken.
C:\Program Files\GetModule\GetModule23.exe (Adware.ISM) -> No action taken.
C:\Program Files\GetPack\GetPack22.exe (Adware.ISM) -> No action taken.
C:\Program Files\iCheck\iCheck.exe (Adware.ISM) -> No action taken.
C:\RECYCLER\S-1-5-21-2966090796-2909807297-1716033719-1007\Dc5704\qdrloader.exe (Trojan.Downloader) -> No action taken.
C:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP791\A0101101.dll (Adware.Hotbar) -> No action taken.
C:\Program Files\SystemDoctor Free\st.dat (Rogue.SystemDoctor) -> No action taken.
C:\Program Files\Fichiers communs\SystemDoctor\err.log (Rogue.SystemDoctor) -> No action taken.
C:\Program Files\GetPack\dictame.gz (Trojan.Agent) -> No action taken.
C:\Program Files\GetPack\trgtame.gz (Trojan.Agent) -> No action taken.
C:\Program Files\iCheck\Uninstall.exe (Trojan.Agent) -> No action taken.
C:\Program Files\GetModule\dicik.gz (Trojan.Agent) -> No action taken.
C:\Program Files\GetModule\GetModule24.exe (Trojan.Agent) -> No action taken.
C:\Program Files\GetModule\GetModule25.exe (Trojan.Agent) -> No action taken.
C:\Program Files\GetModule\kwdik.gz (Trojan.Agent) -> No action taken.
C:\Program Files\GetModule\squaraksupdate.exe (Trojan.Agent) -> No action taken.
C:\Documents and Settings\All Users\Application Data\SystemDoctor Free\Data\Abbr (Rogue.SystemDoctor) -> No action taken.
C:\Documents and Settings\All Users\Application Data\SystemDoctor Free\Data\ActivationCode (Rogue.SystemDoctor) -> No action taken.
C:\Documents and Settings\All Users\Application Data\SystemDoctor Free\Data\HOURS (Rogue.SystemDoctor) -> No action taken.
C:\Documents and Settings\All Users\Application Data\SystemDoctor Free\Data\ProductCode (Rogue.SystemDoctor) -> No action taken.
C:\Documents and Settings\HP_Propriétaire\Application Data\SystemDoctor Free\Logs\update.log (Rogue.SystemDoctor) -> No action taken.
C:\WINDOWS\system32\soaay_navps.dat (Adware.NaviPromo) -> No action taken.
C:\WINDOWS\system32\soaay_nav.dat (Adware.NaviPromo) -> No action taken.
C:\WINDOWS\system32\nvs2.inf (Adware.EGDAccess) -> No action taken.
C:\WINDOWS\system32\bhhhahgvcyrisr.dll (Adware.BHO) -> No action taken.





C'est GetPack et GetModule qu'il faut supprimer n'est-ce pas ? J'avais déja essayé avant mais windows affiche un message d'erreur.
Je fais comment ???

Merci de ton aide
Lysky004
0