Pc trop sécurisé ???
Fermé
mel
-
9 nov. 2008 à 09:55
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 - 13 nov. 2008 à 21:42
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 - 13 nov. 2008 à 21:42
A voir également:
- Pc trop sécurisé ???
- Mode sécurisé samsung - Guide
- Test performance pc - Guide
- Pc trop lent - Guide
- Reinitialiser pc - Guide
- Whatsapp pc - Télécharger - Messagerie
13 réponses
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 297
10 nov. 2008 à 10:13
10 nov. 2008 à 10:13
Tu as installé un rogue nommé BitDownload. Tu es infecté par Lop (Pubs CiD).
---> Télécharge Lop S&D sur ton Bureau.
---> Double-clique dessus pour lancer l'installation.
---> Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau.
---> Sélectionne la langue souhaitée, puis choisis l'option 1 (Recherche).
---> Patiente jusqu'à la fin du scan.
---> Poste le rapport généré (C:\lopR.txt).
---> Télécharge Lop S&D sur ton Bureau.
---> Double-clique dessus pour lancer l'installation.
---> Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau.
---> Sélectionne la langue souhaitée, puis choisis l'option 1 (Recherche).
---> Patiente jusqu'à la fin du scan.
---> Poste le rapport généré (C:\lopR.txt).
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 297
9 nov. 2008 à 09:58
9 nov. 2008 à 09:58
Salut,
- Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
- Double-clique sur RSIT.exe afin de lancer le programme.
- Clique sur Continue à l'écran Disclaimer.
- Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
- Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).
Note : Les rapports sont sauvegardés dans le dossier C:\rsit.
- Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
- Double-clique sur RSIT.exe afin de lancer le programme.
- Clique sur Continue à l'écran Disclaimer.
- Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
- Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).
Note : Les rapports sont sauvegardés dans le dossier C:\rsit.
joogle
Messages postés
281
Date d'inscription
lundi 3 novembre 2008
Statut
Membre
Dernière intervention
5 décembre 2011
36
9 nov. 2008 à 10:03
9 nov. 2008 à 10:03
destrio5 le roi incontestable des rapport hijackthis . au passage il faudra que tu me file un lien pour que j'apprenne a lire ce genre de chose ^^
-
En informatique, le problème se situe souvent
entre le clavier et le siège.
-
En informatique, le problème se situe souvent
entre le clavier et le siège.
Bonjour
merci pour ton aide voici le fichier info
info.txt logfile of random's system information tool 1.04 2008-11-10 10:02:02
======Uninstall list======
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Spyware Scanner"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Spyware"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Virus Client Security Installer"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Virus"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure DAAS"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Diagnostics"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure E-mail Scanning"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure FWES"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure GUI"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Help"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Internet Shield"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Management Agent"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Spam Control"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Spam Scanner"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure TNB"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"News Service"
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9c.exe -uninstallUnlock
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81200000003}
Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
AntiVirus Firewall-->C:\PROGRA~1\ANTIVI~1\Common\fsbwih.exe /uninstall
Apple Mobile Device Support-->MsiExec.exe /I{3EBD3749-304E-4A4C-9575-C00E5F015217}
Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
BigFix-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34FF0741-EC67-4C05-AC2A-6D257123DF2E}\setup.exe" -l0x40c -uninst -f"C:\Program Files\BigFix\Uninst.isu" -c"C:\Program Files\BigFix\Lib\UninstallHelper.dll"
BitDownload version 3.2.0.0-->"C:\Program Files\BitDownload\unins000.exe"
Browser Address Error Redirector-->regsvr32 /u /s "c:\windows\system32\BAE.dll"
Canon MP Navigator EX 1.0-->"C:\Program Files\Canon\MP Navigator EX 1.0\Maint.exe" /UninstallRemove C:\Program Files\Canon\MP Navigator EX 1.0\uninst.ini
Canon MP210 series-->"C:\WINDOWS\system32\CanonIJ Uninstaller Information\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP210_series\DelDrv.exe" /U:{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP210_series /L0x000c
Canon My Printer-->C:\Program Files\Canon\MyPrinter\uninst.exe uninst.ini
Canon Utilities Easy-PhotoPrint EX-->C:\Program Files\Canon\Easy-PhotoPrint EX\uninst.exe uninst.ini
Canon Utilities Solution Menu-->C:\Program Files\Canon\SolutionMenu\uninst.exe uninst.ini
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Détecteur de flux Windows Live Toolbar-->MsiExec.exe /X{B9C5669B-4705-4046-A3EE-0BFD08D7B668}
Digital Media Reader-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{4AC55A61-BA20-4DF5-ABFF-8F4819E0C875} /l1033
DVD Solution-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\setup.exe" -uninstall
EBP Comptes Bancaires 2005-->"C:\Program Files\EBP\Comptes Bancaires\unins000.exe"
e-Carte Bleue Société Générale-->"C:\Program Files\InstallShield Installation Information\{EC3CAFA6-1CDC-46D1-AD8D-B66CFDE59EE0}\setup.exe" -runfromtemp -l0x040c -removeonly
Empereur : L'Empire du Milieu-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{821DABD6-26F2-49E5-AE55-40A589ADBE6D}\setup.exe" -l0x40c
Enregistrement utilisateur de Canon MP210 series-->C:\Program Files\Canon\IJEREG\MP210 series\UNINST.EXE
ESRI ArcExplorer 1.1.5-->C:\Program Files\ESRI\ArcExplorer\UNWISE32.EXE C:\PROGRA~1\ESRI\ARCEXP~1\INSTALL.LOG "ESRI ArcExplorer 1.1.5"
Extension MSN pour Windows Live Toolbar-->MsiExec.exe /X{0C858954-92B6-40C8-84D0-D095070C263C}
FUJIFILM USB Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5490882C-6961-11D5-BAE5-00E0188E010B}\SETUP.EXE"
GalleryPlayer Images-->C:\WINDOWS\GalleryPlayer Images Uninstaller.exe
Gestionnaire Internet-->C:\PROGRA~1\Wanadoo\uninstall.exe
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
IKEA Home Planner-->MsiExec.exe /I{A987FEC8-5616-49BD-BCA6-ACFFFE7403FE}
J2SE Runtime Environment 5.0 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150020}
J2SE Runtime Environment 5.0 Update 9-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150090}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
king.com (remove only)-->"C:\WINDOWS\king-uninstall.exe"
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Media Player-->"C:\Program Files\Orange\Media Player\uninstall.exe"
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Small Business Edition 2003-->MsiExec.exe /I{91CA040C-6000-11D3-8CFE-0150048383C9}
Microsoft Photo 2006 Starter Edition-->"C:\Program Files\Fichiers communs\Microsoft Shared\Picture It!\RmvSuite.exe" ADDREMOVE=1 SKU=TRIAL VERSION=11
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Works-->MsiExec.exe /I{6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
Multimedia Keyboard Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6E66ECBD-FCA7-4AE1-A8C5-1CA78BEEB057}\Setup.exe" -l0x40c
Navigateur Orange-->C:\PROGRA~1\Wanadoo\Shell.exe inst\uninst_FTBrowser.shl
Navigation par onglets (Windows Live Toolbar)-->MsiExec.exe /X{C087CD39-A5D9-4F1A-9BC6-3670C54A0912}
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
Pacific Fighters-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{E149E957-F289-45E3-8645-1794A173F5AB} /l1036
Package de pilotes Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)-->C:\PROGRA~1\DIFX\7B44739871F4D539FA473F57A832EA4B6A59EF06\DPInst.exe /d /u C:\WINDOWS\system32\DRVSTORE\amdk8_C7A451815AD6A55564D6F47B5A12C61D8B4DCFD1\amdk8.inf
Paint.NET v3.31-->MsiExec.exe /X{51AFB69C-1C54-4C77-A888-2860F8CD3E7D}
Photocite Collection 4-->"C:\uninstall.exe"
Power2Go 4.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\setup.exe" -uninstall
PowerDVD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall
QuickTime-->MsiExec.exe /I{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}
REALTEK GbE & FE Ethernet PCI NIC Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}\setup.exe" -l0x40c -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
SafeCast Shared Components-->C:\Program Files\Fichiers communs\Macrovision Shared\SafeCast\Install\CDAC13BA.EXE /uninstall
SAGEM F@st 800-840-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}\setup.exe" -l0x40c
ScanSoft OmniPage SE 4-->MsiExec.exe /I{DEE88727-779B-47A9-ACEF-F87CA5F92A65}
Super Casse-Tête-->MsiExec.exe /X{1F6EA582-6AF3-4FD3-AC28-731CD2664CE4}
Update for Windows XP (KB953356)-->"C:\WINDOWS\$NtUninstallKB953356$\spuninst\spuninst.exe"
Utilitaire de sauvegarde Windows-->MsiExec.exe /I{76EFFC7C-17A6-479D-9E47-8E658C1695AE}
VideoLAN VLC media player 0.8.6c-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live Toolbar-->C:\Program Files\Windows Live Toolbar\UnInstall.exe {DE56FE92-9AD5-4DCB-9111-DDDF73EA5E5E}
Windows Live Toolbar-->MsiExec.exe /X{DE56FE92-9AD5-4DCB-9111-DDDF73EA5E5E}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Format SDK Hotfix - KB891122-->"C:\WINDOWS\$NtUninstallKB891122$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
Zuma Deluxe! 1.0-->C:\WINDOWS\iun6002.exe "C:\Documents and Settings\Mélanie et Gérald\Mes documents\exterieur\irunin.ini"
======Hosts File======
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
======Security center information======
AV: AntiVirus Firewall 6.15
FW: AntiVirus Firewall 6.15
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 75 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=4b02
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre1.5.0_09\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.5.0_09\lib\ext\QTJava.zip
-----------------EOF-----------------
merci pour ton aide voici le fichier info
info.txt logfile of random's system information tool 1.04 2008-11-10 10:02:02
======Uninstall list======
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Spyware Scanner"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Spyware"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Virus Client Security Installer"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Virus"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure DAAS"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Diagnostics"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure E-mail Scanning"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure FWES"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure GUI"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Help"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Internet Shield"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Management Agent"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Spam Control"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Spam Scanner"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure TNB"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"News Service"
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9c.exe -uninstallUnlock
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81200000003}
Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
AntiVirus Firewall-->C:\PROGRA~1\ANTIVI~1\Common\fsbwih.exe /uninstall
Apple Mobile Device Support-->MsiExec.exe /I{3EBD3749-304E-4A4C-9575-C00E5F015217}
Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
BigFix-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34FF0741-EC67-4C05-AC2A-6D257123DF2E}\setup.exe" -l0x40c -uninst -f"C:\Program Files\BigFix\Uninst.isu" -c"C:\Program Files\BigFix\Lib\UninstallHelper.dll"
BitDownload version 3.2.0.0-->"C:\Program Files\BitDownload\unins000.exe"
Browser Address Error Redirector-->regsvr32 /u /s "c:\windows\system32\BAE.dll"
Canon MP Navigator EX 1.0-->"C:\Program Files\Canon\MP Navigator EX 1.0\Maint.exe" /UninstallRemove C:\Program Files\Canon\MP Navigator EX 1.0\uninst.ini
Canon MP210 series-->"C:\WINDOWS\system32\CanonIJ Uninstaller Information\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP210_series\DelDrv.exe" /U:{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP210_series /L0x000c
Canon My Printer-->C:\Program Files\Canon\MyPrinter\uninst.exe uninst.ini
Canon Utilities Easy-PhotoPrint EX-->C:\Program Files\Canon\Easy-PhotoPrint EX\uninst.exe uninst.ini
Canon Utilities Solution Menu-->C:\Program Files\Canon\SolutionMenu\uninst.exe uninst.ini
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Détecteur de flux Windows Live Toolbar-->MsiExec.exe /X{B9C5669B-4705-4046-A3EE-0BFD08D7B668}
Digital Media Reader-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{4AC55A61-BA20-4DF5-ABFF-8F4819E0C875} /l1033
DVD Solution-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\setup.exe" -uninstall
EBP Comptes Bancaires 2005-->"C:\Program Files\EBP\Comptes Bancaires\unins000.exe"
e-Carte Bleue Société Générale-->"C:\Program Files\InstallShield Installation Information\{EC3CAFA6-1CDC-46D1-AD8D-B66CFDE59EE0}\setup.exe" -runfromtemp -l0x040c -removeonly
Empereur : L'Empire du Milieu-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{821DABD6-26F2-49E5-AE55-40A589ADBE6D}\setup.exe" -l0x40c
Enregistrement utilisateur de Canon MP210 series-->C:\Program Files\Canon\IJEREG\MP210 series\UNINST.EXE
ESRI ArcExplorer 1.1.5-->C:\Program Files\ESRI\ArcExplorer\UNWISE32.EXE C:\PROGRA~1\ESRI\ARCEXP~1\INSTALL.LOG "ESRI ArcExplorer 1.1.5"
Extension MSN pour Windows Live Toolbar-->MsiExec.exe /X{0C858954-92B6-40C8-84D0-D095070C263C}
FUJIFILM USB Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5490882C-6961-11D5-BAE5-00E0188E010B}\SETUP.EXE"
GalleryPlayer Images-->C:\WINDOWS\GalleryPlayer Images Uninstaller.exe
Gestionnaire Internet-->C:\PROGRA~1\Wanadoo\uninstall.exe
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
IKEA Home Planner-->MsiExec.exe /I{A987FEC8-5616-49BD-BCA6-ACFFFE7403FE}
J2SE Runtime Environment 5.0 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150020}
J2SE Runtime Environment 5.0 Update 9-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150090}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
king.com (remove only)-->"C:\WINDOWS\king-uninstall.exe"
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Media Player-->"C:\Program Files\Orange\Media Player\uninstall.exe"
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Small Business Edition 2003-->MsiExec.exe /I{91CA040C-6000-11D3-8CFE-0150048383C9}
Microsoft Photo 2006 Starter Edition-->"C:\Program Files\Fichiers communs\Microsoft Shared\Picture It!\RmvSuite.exe" ADDREMOVE=1 SKU=TRIAL VERSION=11
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Works-->MsiExec.exe /I{6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
Multimedia Keyboard Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6E66ECBD-FCA7-4AE1-A8C5-1CA78BEEB057}\Setup.exe" -l0x40c
Navigateur Orange-->C:\PROGRA~1\Wanadoo\Shell.exe inst\uninst_FTBrowser.shl
Navigation par onglets (Windows Live Toolbar)-->MsiExec.exe /X{C087CD39-A5D9-4F1A-9BC6-3670C54A0912}
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
Pacific Fighters-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{E149E957-F289-45E3-8645-1794A173F5AB} /l1036
Package de pilotes Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)-->C:\PROGRA~1\DIFX\7B44739871F4D539FA473F57A832EA4B6A59EF06\DPInst.exe /d /u C:\WINDOWS\system32\DRVSTORE\amdk8_C7A451815AD6A55564D6F47B5A12C61D8B4DCFD1\amdk8.inf
Paint.NET v3.31-->MsiExec.exe /X{51AFB69C-1C54-4C77-A888-2860F8CD3E7D}
Photocite Collection 4-->"C:\uninstall.exe"
Power2Go 4.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\setup.exe" -uninstall
PowerDVD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall
QuickTime-->MsiExec.exe /I{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}
REALTEK GbE & FE Ethernet PCI NIC Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}\setup.exe" -l0x40c -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
SafeCast Shared Components-->C:\Program Files\Fichiers communs\Macrovision Shared\SafeCast\Install\CDAC13BA.EXE /uninstall
SAGEM F@st 800-840-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}\setup.exe" -l0x40c
ScanSoft OmniPage SE 4-->MsiExec.exe /I{DEE88727-779B-47A9-ACEF-F87CA5F92A65}
Super Casse-Tête-->MsiExec.exe /X{1F6EA582-6AF3-4FD3-AC28-731CD2664CE4}
Update for Windows XP (KB953356)-->"C:\WINDOWS\$NtUninstallKB953356$\spuninst\spuninst.exe"
Utilitaire de sauvegarde Windows-->MsiExec.exe /I{76EFFC7C-17A6-479D-9E47-8E658C1695AE}
VideoLAN VLC media player 0.8.6c-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live Toolbar-->C:\Program Files\Windows Live Toolbar\UnInstall.exe {DE56FE92-9AD5-4DCB-9111-DDDF73EA5E5E}
Windows Live Toolbar-->MsiExec.exe /X{DE56FE92-9AD5-4DCB-9111-DDDF73EA5E5E}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Format SDK Hotfix - KB891122-->"C:\WINDOWS\$NtUninstallKB891122$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
Zuma Deluxe! 1.0-->C:\WINDOWS\iun6002.exe "C:\Documents and Settings\Mélanie et Gérald\Mes documents\exterieur\irunin.ini"
======Hosts File======
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
======Security center information======
AV: AntiVirus Firewall 6.15
FW: AntiVirus Firewall 6.15
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 75 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=4b02
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre1.5.0_09\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.5.0_09\lib\ext\QTJava.zip
-----------------EOF-----------------
et voici le fichier log
Logfile of random's system information tool 1.04 (written by random/random)
Run by Mélanie et Gérald at 2008-11-10 10:01:45
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 149 GB (80%) free of 187 GB
Total RAM: 894 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:02:01, on 10/11/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
C:\WINDOWS\system32\bgsvcgen.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\Program Files\AntivirusFirewall\Common\FSM32.EXE
C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe
C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\ctfmon.exe
C:\program files\orange\media player\Media Player.exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\Program Files\BigFix\bigfix.exe
C:\Program Files\e-Carte Bleue Société Générale\ecbl-sg.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Mélanie et Gérald\Local Settings\Temporary Internet Files\Content.IE5\L90CBG7R\RSIT[1].exe
C:\Program Files\trend micro\Mélanie et Gérald.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.gateway.com/g/startpage.html?Ch=Retail&Br=EM&Loc=FRN_FR&Sys=DTP&M=E4092
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: (no name) - {41D68ED8-4CFF-4115-88A6-6EBB8AF19000} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\windows\system32\BAE.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [Time41bias] C:\Documents and Settings\All Users\Application Data\Up itch time 4\Blah mess.exe
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MediaAmok] C:\DOCUME~1\MLANIE~1\APPLIC~1\LOVELO~1\Forksoap.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MsgCenterExe] "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
O4 - HKCU\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray
O4 - HKCU\..\Run: [Power2GoExpress] NA
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: BigFix.lnk = C:\Program Files\BigFix\bigfix.exe
O4 - Global Startup: e-Carte Bleue Société Générale.lnk = ?
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: (no name) - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - (no file)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {45A0A292-ECC6-4D8F-9EA9-A4BD411D24C1} (king.com) - http://fr.midas.games.yahoo.net/ctl/kingcomie.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.extrafilm.fr/ImageUploader4.cab
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx
O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IPSUploader Control) - http://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{F38FDCCB-8175-4062-A865-B6A583EABE1D}: NameServer = 80.10.246.130 81.253.149.10
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
Logfile of random's system information tool 1.04 (written by random/random)
Run by Mélanie et Gérald at 2008-11-10 10:01:45
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 149 GB (80%) free of 187 GB
Total RAM: 894 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:02:01, on 10/11/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
C:\WINDOWS\system32\bgsvcgen.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\Program Files\AntivirusFirewall\Common\FSM32.EXE
C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe
C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\ctfmon.exe
C:\program files\orange\media player\Media Player.exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\Program Files\BigFix\bigfix.exe
C:\Program Files\e-Carte Bleue Société Générale\ecbl-sg.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Mélanie et Gérald\Local Settings\Temporary Internet Files\Content.IE5\L90CBG7R\RSIT[1].exe
C:\Program Files\trend micro\Mélanie et Gérald.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.gateway.com/g/startpage.html?Ch=Retail&Br=EM&Loc=FRN_FR&Sys=DTP&M=E4092
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: (no name) - {41D68ED8-4CFF-4115-88A6-6EBB8AF19000} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\windows\system32\BAE.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [Time41bias] C:\Documents and Settings\All Users\Application Data\Up itch time 4\Blah mess.exe
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MediaAmok] C:\DOCUME~1\MLANIE~1\APPLIC~1\LOVELO~1\Forksoap.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MsgCenterExe] "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
O4 - HKCU\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray
O4 - HKCU\..\Run: [Power2GoExpress] NA
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: BigFix.lnk = C:\Program Files\BigFix\bigfix.exe
O4 - Global Startup: e-Carte Bleue Société Générale.lnk = ?
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: (no name) - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - (no file)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {45A0A292-ECC6-4D8F-9EA9-A4BD411D24C1} (king.com) - http://fr.midas.games.yahoo.net/ctl/kingcomie.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.extrafilm.fr/ImageUploader4.cab
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx
O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IPSUploader Control) - http://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{F38FDCCB-8175-4062-A865-B6A583EABE1D}: NameServer = 80.10.246.130 81.253.149.10
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 297
10 nov. 2008 à 10:42
10 nov. 2008 à 10:42
---> Relance Lop S&D.
---> Choisis cette fois-ci l'option 2 (Suppression).
---> Ne ferme pas la fenêtre lors de la suppression !
---> Poste le rapport généré (C:\lopR.txt).
---> Choisis cette fois-ci l'option 2 (Suppression).
---> Ne ferme pas la fenêtre lors de la suppression !
---> Poste le rapport généré (C:\lopR.txt).
Et voici !!!
--------------------\\ Lop S&D 4.2.4-9c XP/Vista
"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [2] ( 10/11/2008|13:18 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsd35.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsgFD.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsj1AF1.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsk10A.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsl84.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsm112.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsm1B1.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsp36.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsr11.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsr1B6.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nstmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsv15B.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsw233.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\APPLIC~1\BitDownload\Data
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload\BitDownload.lnk
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload\Uninstall BitDownload.lnk
Supprime! - C:\Program Files\BitDownload\BITDOWNLOAD.0XE
Supprime! - C:\Program Files\BitDownload\BitDownload.TRC
Supprime! - C:\Program Files\BitDownload\BitDownload_1.TRC
Supprime! - C:\Program Files\BitDownload\BitDownload_2.TRC
Supprime! - C:\Program Files\BitDownload\settings.ini
Supprime! - C:\Program Files\BitDownload\settings.stp
Supprime! - C:\Program Files\BitDownload\SkinCrafterDll.dll
Supprime! - C:\Program Files\BitDownload\Skins
Supprime! - C:\Program Files\BitDownload\Support
Supprime! - C:\Program Files\BitDownload\unins000.dat
Supprime! - C:\Program Files\BitDownload\unins000.exe
Supprime! - C:\Program Files\BitDownload\ZM
Supprime! - C:\DOCUME~1\MLANIE~1\Cookies\mélanie_et_gérald@2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\MLANIE~1\Cookies\mélanie_et_gérald@www.2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\MLANIE~1\APPLIC~1\Bitdownload
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload
Supprime! - C:\Program Files\BitDownload
Supprime! - C:\Program Files\Multi_Media
Supprime! - C:\Program Files\Multi_Media_France
Supprime! - C:\DOCUME~1\MLANIE~1\APPLIC~1\LOVELO~1
Supprime! - C:\Program Files\LOVELO~1
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[24/10/2004|18:30] C:\DOCUME~1\ADMINI~2\APPLIC~1\Identities
[14/09/2006|11:56] C:\DOCUME~1\ADMINI~2\APPLIC~1\Microsoft
[14/09/2006|11:54] C:\DOCUME~1\ADMINI~2\APPLIC~1\SampleView
[13/02/2008|22:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/09/2007|16:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[01/09/2007|16:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[12/01/2007|18:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[04/02/2008|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
[31/12/2006|17:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[13/11/2006|20:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[07/03/2008|22:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugawi
[23/10/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[28/08/2008|14:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hps
[04/02/2008|19:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[13/01/2007|12:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[14/09/2006|11:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[14/09/2006|11:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
[18/11/2006|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com Personal Firewall
[12/06/2007|19:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/09/2006|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Prism Deploy
[04/02/2008|19:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[06/12/2006|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[20/03/2007|14:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Up itch time 4
[13/11/2006|18:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[11/11/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[09/12/2006|22:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[24/10/2004|18:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[19/04/2008|23:48] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[14/09/2006|11:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[02/11/2006|11:28] C:\DOCUME~1\LOCALS~1\APPLIC~1\McAfee.com Personal Firewall
[21/04/2007|11:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[16/06/2008|07:59] C:\DOCUME~1\MLANIE~1\APPLIC~1\Adobe
[07/02/2007|21:32] C:\DOCUME~1\MLANIE~1\APPLIC~1\AdobeUM
[18/11/2007|11:48] C:\DOCUME~1\MLANIE~1\APPLIC~1\Ahead
[01/09/2007|16:28] C:\DOCUME~1\MLANIE~1\APPLIC~1\Apple Computer
[31/12/2007|17:38] C:\DOCUME~1\MLANIE~1\APPLIC~1\AVSMedia
[04/02/2008|19:16] C:\DOCUME~1\MLANIE~1\APPLIC~1\Canon
[31/12/2006|17:43] C:\DOCUME~1\MLANIE~1\APPLIC~1\CyberLink
[22/11/2006|13:19] C:\DOCUME~1\MLANIE~1\APPLIC~1\F-Secure
[28/02/2008|21:01] C:\DOCUME~1\MLANIE~1\APPLIC~1\Fugawi
[04/03/2008|21:46] C:\DOCUME~1\MLANIE~1\APPLIC~1\FUJIFILM
[15/11/2006|23:00] C:\DOCUME~1\MLANIE~1\APPLIC~1\Google
[10/12/2006|23:02] C:\DOCUME~1\MLANIE~1\APPLIC~1\Help
[24/10/2004|18:30] C:\DOCUME~1\MLANIE~1\APPLIC~1\Identities
[22/11/2006|13:14] C:\DOCUME~1\MLANIE~1\APPLIC~1\ispnews
[06/03/2007|20:37] C:\DOCUME~1\MLANIE~1\APPLIC~1\Leadertech
[18/12/2006|20:04] C:\DOCUME~1\MLANIE~1\APPLIC~1\Macromedia
[15/11/2006|22:33] C:\DOCUME~1\MLANIE~1\APPLIC~1\McAfee.com Personal Firewall
[19/06/2008|21:35] C:\DOCUME~1\MLANIE~1\APPLIC~1\Media Player
[31/07/2008|22:38] C:\DOCUME~1\MLANIE~1\APPLIC~1\Microsoft
[10/03/2007|18:16] C:\DOCUME~1\MLANIE~1\APPLIC~1\Mozilla
[15/11/2006|10:37] C:\DOCUME~1\MLANIE~1\APPLIC~1\MSNInstaller
[13/11/2006|20:07] C:\DOCUME~1\MLANIE~1\APPLIC~1\PEX
[18/04/2008|20:44] C:\DOCUME~1\MLANIE~1\APPLIC~1\Player Orange
[19/05/2008|18:50] C:\DOCUME~1\MLANIE~1\APPLIC~1\Real
[14/09/2006|11:54] C:\DOCUME~1\MLANIE~1\APPLIC~1\SampleView
[04/02/2008|19:04] C:\DOCUME~1\MLANIE~1\APPLIC~1\ScanSoft
[30/11/2006|15:30] C:\DOCUME~1\MLANIE~1\APPLIC~1\Seven Zip
[01/01/2008|16:18] C:\DOCUME~1\MLANIE~1\APPLIC~1\Skype
[02/11/2006|21:22] C:\DOCUME~1\MLANIE~1\APPLIC~1\Sun
[10/03/2007|18:16] C:\DOCUME~1\MLANIE~1\APPLIC~1\Talkback
[06/03/2007|16:35] C:\DOCUME~1\MLANIE~1\APPLIC~1\Template
[20/07/2007|10:10] C:\DOCUME~1\MLANIE~1\APPLIC~1\vlc
[20/07/2007|14:59] C:\DOCUME~1\MLANIE~1\APPLIC~1\WildBit Viewer
[24/10/2004|18:30] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[23/10/2008 08:39][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[10/11/2008 12:51][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
[10/11/2008 09:31][--a------] C:\WINDOWS\tasks\Scheduled scanning task.job
[05/08/2004 20:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[10/11/2008 09:31][--ah-----] C:\WINDOWS\tasks\SA.DAT
--------------------\\ Listing des dossiers dans C:\Program Files
[19/07/2008|09:00] C:\Program Files\Adobe
[22/11/2006|13:11] C:\Program Files\AntivirusFirewall
[13/10/2007|18:21] C:\Program Files\Apple Software Update
[14/09/2006|11:56] C:\Program Files\BigFix
[06/03/2007|20:34] C:\Program Files\BingoCafe
[14/01/2007|20:43] C:\Program Files\Boonty
[16/01/2007|10:15] C:\Program Files\BoontyGames
[04/02/2008|19:08] C:\Program Files\Canon
[04/02/2008|19:00] C:\Program Files\CanonBJ
[24/10/2004|18:22] C:\Program Files\ComPlus Applications
[23/10/2008|10:16] C:\Program Files\CyberLink
[14/09/2006|11:32] C:\Program Files\DIFX
[14/09/2006|11:46] C:\Program Files\Digital Media Reader
[04/03/2007|18:38] C:\Program Files\directx
[21/01/2007|12:04] C:\Program Files\EBP
[19/01/2007|12:13] C:\Program Files\e-Carte Bleue
[20/07/2008|12:09] C:\Program Files\e-Carte Bleue Soci‚t‚ G‚n‚rale
[29/10/2008|17:21] C:\Program Files\eMule
[02/05/2007|18:01] C:\Program Files\ESRI
[15/10/2008|15:31] C:\Program Files\Fichiers communs
[04/03/2008|21:46] C:\Program Files\FinePixViewer
[28/02/2008|20:57] C:\Program Files\Fugawi
[23/10/2008|10:59] C:\Program Files\Google
[14/09/2006|11:56] C:\Program Files\gtw_logo
[07/03/2008|22:40] C:\Program Files\Gunner 2
[19/06/2008|20:15] C:\Program Files\IKEA HomePlanner
[23/10/2008|10:16] C:\Program Files\InstallShield Installation Information
[07/11/2008|20:44] C:\Program Files\Internet Explorer
[08/08/2008|13:24] C:\Program Files\Java
[15/11/2006|22:54] C:\Program Files\Lavasoft
[11/05/2004|08:57] C:\Program Files\MAPS
[18/11/2006|21:14] C:\Program Files\McAfee.com
[24/09/2008|19:52] C:\Program Files\Messenger
[06/11/2006|21:44] C:\Program Files\Micro Application
[14/09/2006|11:52] C:\Program Files\Microsoft Digital Image 2006
[24/10/2004|18:26] C:\Program Files\microsoft frontpage
[01/02/2007|17:47] C:\Program Files\Microsoft Office
[14/09/2006|11:53] C:\Program Files\Microsoft Works
[01/02/2007|17:46] C:\Program Files\Microsoft.NET
[24/09/2008|19:49] C:\Program Files\Movie Maker
[11/03/2007|12:54] C:\Program Files\Mozilla Firefox
[12/11/2006|11:20] C:\Program Files\MSN
[24/10/2004|18:21] C:\Program Files\MSN Gaming Zone
[04/02/2007|18:30] C:\Program Files\MSXML 4.0
[14/11/2007|13:55] C:\Program Files\Nero
[24/09/2008|19:46] C:\Program Files\NetMeeting
[24/10/2004|18:21] C:\Program Files\Online Services
[19/06/2008|21:01] C:\Program Files\Orange
[24/09/2008|19:46] C:\Program Files\Outlook Express
[09/10/2008|20:45] C:\Program Files\Paint.NET
[28/08/2008|12:47] C:\Program Files\PhotoCite Collection
[28/08/2008|12:49] C:\Program Files\Photocite Collection 4
[06/03/2007|20:07] C:\Program Files\PopCap Games
[01/09/2007|16:51] C:\Program Files\QuickTime
[15/11/2006|23:00] C:\Program Files\Real
[14/09/2006|11:55] C:\Program Files\Realtek
[11/01/2007|14:28] C:\Program Files\ReflexiveArcade
[21/07/2007|10:20] C:\Program Files\REGSHAVE
[14/01/2007|13:18] C:\Program Files\River Raider II
[28/09/2007|13:02] C:\Program Files\SAGEM
[15/11/2006|10:36] C:\Program Files\SAGEM(2)
[04/02/2008|19:04] C:\Program Files\ScanSoft
[11/11/2006|10:02] C:\Program Files\Securitoo
[24/10/2004|18:23] C:\Program Files\Services en ligne
[06/03/2007|20:36] C:\Program Files\TrackMaker
[10/11/2008|10:02] C:\Program Files\trend micro
[04/02/2007|22:00] C:\Program Files\Ubisoft
[24/10/2004|18:30] C:\Program Files\Uninstall Information
[20/07/2007|10:08] C:\Program Files\VideoLAN
[10/11/2008|10:34] C:\Program Files\Wanadoo
[06/01/2007|15:49] C:\Program Files\Windows Live Toolbar
[08/04/2007|13:14] C:\Program Files\Windows Media Connect 2
[24/09/2008|19:46] C:\Program Files\Windows Media Player
[24/09/2008|19:46] C:\Program Files\Windows NT
[24/10/2004|18:23] C:\Program Files\WindowsUpdate
[20/03/2008|21:13] C:\Program Files\WinRAR
[15/11/2006|10:36] C:\Program Files\WinZip
[24/10/2004|18:26] C:\Program Files\xerox
[15/11/2006|10:35] C:\Program Files\Yahoo!
[08/03/2007|15:04] C:\Program Files\Zone Labs
[06/03/2007|20:44] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[13/02/2008|22:57] C:\Program Files\Fichiers communs\Adobe
[19/05/2008|18:49] C:\Program Files\Fichiers communs\Ahead
[01/09/2007|16:28] C:\Program Files\Fichiers communs\Apple
[07/03/2008|22:39] C:\Program Files\Fichiers communs\AVSMedia
[12/01/2007|18:34] C:\Program Files\Fichiers communs\BOONTY Shared
[04/02/2008|19:03] C:\Program Files\Fichiers communs\CANON
[01/02/2007|17:47] C:\Program Files\Fichiers communs\DESIGNER
[07/03/2008|22:40] C:\Program Files\Fichiers communs\Fugawi
[15/10/2008|15:31] C:\Program Files\Fichiers communs\InstallShield
[14/09/2006|11:49] C:\Program Files\Fichiers communs\Java
[13/01/2007|13:38] C:\Program Files\Fichiers communs\Macrovision Shared
[28/08/2008|13:04] C:\Program Files\Fichiers communs\Microsoft Shared
[24/10/2004|18:23] C:\Program Files\Fichiers communs\MSSoap
[14/09/2006|11:31] C:\Program Files\Fichiers communs\New Boundary
[24/10/2004|20:16] C:\Program Files\Fichiers communs\ODBC
[19/05/2008|18:50] C:\Program Files\Fichiers communs\Real
[04/02/2008|19:04] C:\Program Files\Fichiers communs\ScanSoft Shared
[24/10/2004|18:23] C:\Program Files\Fichiers communs\Services
[24/10/2004|20:16] C:\Program Files\Fichiers communs\SpeechEngines
[24/09/2008|19:46] C:\Program Files\Fichiers communs\System
[07/03/2008|22:40] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 59 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-10 13:19:45
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\MLANIE~1\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\crack.au-143c79f9-1e7fbdea.au
C:\DOCUME~1\MLANIE~1\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\crack.au-143c79f9-1e7fbdea.idx
[F:1472][D:246]-> C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp
[F:122][D:0]-> C:\DOCUME~1\MLANIE~1\Cookies
[F:12765][D:36]-> C:\DOCUME~1\MLANIE~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 10/11/2008|10:39 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 10/11/2008|13:20 - Option : [2]
--------------------\\ Fin du rapport a 13:20:30
--------------------\\ Lop S&D 4.2.4-9c XP/Vista
"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [2] ( 10/11/2008|13:18 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsd35.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsgFD.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsj1AF1.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsk10A.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsl84.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsm112.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsm1B1.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsp36.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsr11.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsr1B6.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nstmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsv15B.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsw233.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\APPLIC~1\BitDownload\Data
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload\BitDownload.lnk
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload\Uninstall BitDownload.lnk
Supprime! - C:\Program Files\BitDownload\BITDOWNLOAD.0XE
Supprime! - C:\Program Files\BitDownload\BitDownload.TRC
Supprime! - C:\Program Files\BitDownload\BitDownload_1.TRC
Supprime! - C:\Program Files\BitDownload\BitDownload_2.TRC
Supprime! - C:\Program Files\BitDownload\settings.ini
Supprime! - C:\Program Files\BitDownload\settings.stp
Supprime! - C:\Program Files\BitDownload\SkinCrafterDll.dll
Supprime! - C:\Program Files\BitDownload\Skins
Supprime! - C:\Program Files\BitDownload\Support
Supprime! - C:\Program Files\BitDownload\unins000.dat
Supprime! - C:\Program Files\BitDownload\unins000.exe
Supprime! - C:\Program Files\BitDownload\ZM
Supprime! - C:\DOCUME~1\MLANIE~1\Cookies\mélanie_et_gérald@2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\MLANIE~1\Cookies\mélanie_et_gérald@www.2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\MLANIE~1\APPLIC~1\Bitdownload
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload
Supprime! - C:\Program Files\BitDownload
Supprime! - C:\Program Files\Multi_Media
Supprime! - C:\Program Files\Multi_Media_France
Supprime! - C:\DOCUME~1\MLANIE~1\APPLIC~1\LOVELO~1
Supprime! - C:\Program Files\LOVELO~1
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[24/10/2004|18:30] C:\DOCUME~1\ADMINI~2\APPLIC~1\Identities
[14/09/2006|11:56] C:\DOCUME~1\ADMINI~2\APPLIC~1\Microsoft
[14/09/2006|11:54] C:\DOCUME~1\ADMINI~2\APPLIC~1\SampleView
[13/02/2008|22:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/09/2007|16:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[01/09/2007|16:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[12/01/2007|18:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[04/02/2008|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
[31/12/2006|17:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[13/11/2006|20:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[07/03/2008|22:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugawi
[23/10/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[28/08/2008|14:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hps
[04/02/2008|19:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[13/01/2007|12:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[14/09/2006|11:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[14/09/2006|11:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
[18/11/2006|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com Personal Firewall
[12/06/2007|19:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/09/2006|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Prism Deploy
[04/02/2008|19:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[06/12/2006|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[20/03/2007|14:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Up itch time 4
[13/11/2006|18:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[11/11/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[09/12/2006|22:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[24/10/2004|18:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[19/04/2008|23:48] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[14/09/2006|11:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[02/11/2006|11:28] C:\DOCUME~1\LOCALS~1\APPLIC~1\McAfee.com Personal Firewall
[21/04/2007|11:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[16/06/2008|07:59] C:\DOCUME~1\MLANIE~1\APPLIC~1\Adobe
[07/02/2007|21:32] C:\DOCUME~1\MLANIE~1\APPLIC~1\AdobeUM
[18/11/2007|11:48] C:\DOCUME~1\MLANIE~1\APPLIC~1\Ahead
[01/09/2007|16:28] C:\DOCUME~1\MLANIE~1\APPLIC~1\Apple Computer
[31/12/2007|17:38] C:\DOCUME~1\MLANIE~1\APPLIC~1\AVSMedia
[04/02/2008|19:16] C:\DOCUME~1\MLANIE~1\APPLIC~1\Canon
[31/12/2006|17:43] C:\DOCUME~1\MLANIE~1\APPLIC~1\CyberLink
[22/11/2006|13:19] C:\DOCUME~1\MLANIE~1\APPLIC~1\F-Secure
[28/02/2008|21:01] C:\DOCUME~1\MLANIE~1\APPLIC~1\Fugawi
[04/03/2008|21:46] C:\DOCUME~1\MLANIE~1\APPLIC~1\FUJIFILM
[15/11/2006|23:00] C:\DOCUME~1\MLANIE~1\APPLIC~1\Google
[10/12/2006|23:02] C:\DOCUME~1\MLANIE~1\APPLIC~1\Help
[24/10/2004|18:30] C:\DOCUME~1\MLANIE~1\APPLIC~1\Identities
[22/11/2006|13:14] C:\DOCUME~1\MLANIE~1\APPLIC~1\ispnews
[06/03/2007|20:37] C:\DOCUME~1\MLANIE~1\APPLIC~1\Leadertech
[18/12/2006|20:04] C:\DOCUME~1\MLANIE~1\APPLIC~1\Macromedia
[15/11/2006|22:33] C:\DOCUME~1\MLANIE~1\APPLIC~1\McAfee.com Personal Firewall
[19/06/2008|21:35] C:\DOCUME~1\MLANIE~1\APPLIC~1\Media Player
[31/07/2008|22:38] C:\DOCUME~1\MLANIE~1\APPLIC~1\Microsoft
[10/03/2007|18:16] C:\DOCUME~1\MLANIE~1\APPLIC~1\Mozilla
[15/11/2006|10:37] C:\DOCUME~1\MLANIE~1\APPLIC~1\MSNInstaller
[13/11/2006|20:07] C:\DOCUME~1\MLANIE~1\APPLIC~1\PEX
[18/04/2008|20:44] C:\DOCUME~1\MLANIE~1\APPLIC~1\Player Orange
[19/05/2008|18:50] C:\DOCUME~1\MLANIE~1\APPLIC~1\Real
[14/09/2006|11:54] C:\DOCUME~1\MLANIE~1\APPLIC~1\SampleView
[04/02/2008|19:04] C:\DOCUME~1\MLANIE~1\APPLIC~1\ScanSoft
[30/11/2006|15:30] C:\DOCUME~1\MLANIE~1\APPLIC~1\Seven Zip
[01/01/2008|16:18] C:\DOCUME~1\MLANIE~1\APPLIC~1\Skype
[02/11/2006|21:22] C:\DOCUME~1\MLANIE~1\APPLIC~1\Sun
[10/03/2007|18:16] C:\DOCUME~1\MLANIE~1\APPLIC~1\Talkback
[06/03/2007|16:35] C:\DOCUME~1\MLANIE~1\APPLIC~1\Template
[20/07/2007|10:10] C:\DOCUME~1\MLANIE~1\APPLIC~1\vlc
[20/07/2007|14:59] C:\DOCUME~1\MLANIE~1\APPLIC~1\WildBit Viewer
[24/10/2004|18:30] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[23/10/2008 08:39][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[10/11/2008 12:51][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
[10/11/2008 09:31][--a------] C:\WINDOWS\tasks\Scheduled scanning task.job
[05/08/2004 20:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[10/11/2008 09:31][--ah-----] C:\WINDOWS\tasks\SA.DAT
--------------------\\ Listing des dossiers dans C:\Program Files
[19/07/2008|09:00] C:\Program Files\Adobe
[22/11/2006|13:11] C:\Program Files\AntivirusFirewall
[13/10/2007|18:21] C:\Program Files\Apple Software Update
[14/09/2006|11:56] C:\Program Files\BigFix
[06/03/2007|20:34] C:\Program Files\BingoCafe
[14/01/2007|20:43] C:\Program Files\Boonty
[16/01/2007|10:15] C:\Program Files\BoontyGames
[04/02/2008|19:08] C:\Program Files\Canon
[04/02/2008|19:00] C:\Program Files\CanonBJ
[24/10/2004|18:22] C:\Program Files\ComPlus Applications
[23/10/2008|10:16] C:\Program Files\CyberLink
[14/09/2006|11:32] C:\Program Files\DIFX
[14/09/2006|11:46] C:\Program Files\Digital Media Reader
[04/03/2007|18:38] C:\Program Files\directx
[21/01/2007|12:04] C:\Program Files\EBP
[19/01/2007|12:13] C:\Program Files\e-Carte Bleue
[20/07/2008|12:09] C:\Program Files\e-Carte Bleue Soci‚t‚ G‚n‚rale
[29/10/2008|17:21] C:\Program Files\eMule
[02/05/2007|18:01] C:\Program Files\ESRI
[15/10/2008|15:31] C:\Program Files\Fichiers communs
[04/03/2008|21:46] C:\Program Files\FinePixViewer
[28/02/2008|20:57] C:\Program Files\Fugawi
[23/10/2008|10:59] C:\Program Files\Google
[14/09/2006|11:56] C:\Program Files\gtw_logo
[07/03/2008|22:40] C:\Program Files\Gunner 2
[19/06/2008|20:15] C:\Program Files\IKEA HomePlanner
[23/10/2008|10:16] C:\Program Files\InstallShield Installation Information
[07/11/2008|20:44] C:\Program Files\Internet Explorer
[08/08/2008|13:24] C:\Program Files\Java
[15/11/2006|22:54] C:\Program Files\Lavasoft
[11/05/2004|08:57] C:\Program Files\MAPS
[18/11/2006|21:14] C:\Program Files\McAfee.com
[24/09/2008|19:52] C:\Program Files\Messenger
[06/11/2006|21:44] C:\Program Files\Micro Application
[14/09/2006|11:52] C:\Program Files\Microsoft Digital Image 2006
[24/10/2004|18:26] C:\Program Files\microsoft frontpage
[01/02/2007|17:47] C:\Program Files\Microsoft Office
[14/09/2006|11:53] C:\Program Files\Microsoft Works
[01/02/2007|17:46] C:\Program Files\Microsoft.NET
[24/09/2008|19:49] C:\Program Files\Movie Maker
[11/03/2007|12:54] C:\Program Files\Mozilla Firefox
[12/11/2006|11:20] C:\Program Files\MSN
[24/10/2004|18:21] C:\Program Files\MSN Gaming Zone
[04/02/2007|18:30] C:\Program Files\MSXML 4.0
[14/11/2007|13:55] C:\Program Files\Nero
[24/09/2008|19:46] C:\Program Files\NetMeeting
[24/10/2004|18:21] C:\Program Files\Online Services
[19/06/2008|21:01] C:\Program Files\Orange
[24/09/2008|19:46] C:\Program Files\Outlook Express
[09/10/2008|20:45] C:\Program Files\Paint.NET
[28/08/2008|12:47] C:\Program Files\PhotoCite Collection
[28/08/2008|12:49] C:\Program Files\Photocite Collection 4
[06/03/2007|20:07] C:\Program Files\PopCap Games
[01/09/2007|16:51] C:\Program Files\QuickTime
[15/11/2006|23:00] C:\Program Files\Real
[14/09/2006|11:55] C:\Program Files\Realtek
[11/01/2007|14:28] C:\Program Files\ReflexiveArcade
[21/07/2007|10:20] C:\Program Files\REGSHAVE
[14/01/2007|13:18] C:\Program Files\River Raider II
[28/09/2007|13:02] C:\Program Files\SAGEM
[15/11/2006|10:36] C:\Program Files\SAGEM(2)
[04/02/2008|19:04] C:\Program Files\ScanSoft
[11/11/2006|10:02] C:\Program Files\Securitoo
[24/10/2004|18:23] C:\Program Files\Services en ligne
[06/03/2007|20:36] C:\Program Files\TrackMaker
[10/11/2008|10:02] C:\Program Files\trend micro
[04/02/2007|22:00] C:\Program Files\Ubisoft
[24/10/2004|18:30] C:\Program Files\Uninstall Information
[20/07/2007|10:08] C:\Program Files\VideoLAN
[10/11/2008|10:34] C:\Program Files\Wanadoo
[06/01/2007|15:49] C:\Program Files\Windows Live Toolbar
[08/04/2007|13:14] C:\Program Files\Windows Media Connect 2
[24/09/2008|19:46] C:\Program Files\Windows Media Player
[24/09/2008|19:46] C:\Program Files\Windows NT
[24/10/2004|18:23] C:\Program Files\WindowsUpdate
[20/03/2008|21:13] C:\Program Files\WinRAR
[15/11/2006|10:36] C:\Program Files\WinZip
[24/10/2004|18:26] C:\Program Files\xerox
[15/11/2006|10:35] C:\Program Files\Yahoo!
[08/03/2007|15:04] C:\Program Files\Zone Labs
[06/03/2007|20:44] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[13/02/2008|22:57] C:\Program Files\Fichiers communs\Adobe
[19/05/2008|18:49] C:\Program Files\Fichiers communs\Ahead
[01/09/2007|16:28] C:\Program Files\Fichiers communs\Apple
[07/03/2008|22:39] C:\Program Files\Fichiers communs\AVSMedia
[12/01/2007|18:34] C:\Program Files\Fichiers communs\BOONTY Shared
[04/02/2008|19:03] C:\Program Files\Fichiers communs\CANON
[01/02/2007|17:47] C:\Program Files\Fichiers communs\DESIGNER
[07/03/2008|22:40] C:\Program Files\Fichiers communs\Fugawi
[15/10/2008|15:31] C:\Program Files\Fichiers communs\InstallShield
[14/09/2006|11:49] C:\Program Files\Fichiers communs\Java
[13/01/2007|13:38] C:\Program Files\Fichiers communs\Macrovision Shared
[28/08/2008|13:04] C:\Program Files\Fichiers communs\Microsoft Shared
[24/10/2004|18:23] C:\Program Files\Fichiers communs\MSSoap
[14/09/2006|11:31] C:\Program Files\Fichiers communs\New Boundary
[24/10/2004|20:16] C:\Program Files\Fichiers communs\ODBC
[19/05/2008|18:50] C:\Program Files\Fichiers communs\Real
[04/02/2008|19:04] C:\Program Files\Fichiers communs\ScanSoft Shared
[24/10/2004|18:23] C:\Program Files\Fichiers communs\Services
[24/10/2004|20:16] C:\Program Files\Fichiers communs\SpeechEngines
[24/09/2008|19:46] C:\Program Files\Fichiers communs\System
[07/03/2008|22:40] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 59 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-10 13:19:45
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\MLANIE~1\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\crack.au-143c79f9-1e7fbdea.au
C:\DOCUME~1\MLANIE~1\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\crack.au-143c79f9-1e7fbdea.idx
[F:1472][D:246]-> C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp
[F:122][D:0]-> C:\DOCUME~1\MLANIE~1\Cookies
[F:12765][D:36]-> C:\DOCUME~1\MLANIE~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 10/11/2008|10:39 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 10/11/2008|13:20 - Option : [2]
--------------------\\ Fin du rapport a 13:20:30
Et voici !!!
--------------------\\ Lop S&D 4.2.4-9c XP/Vista
"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [2] ( 10/11/2008|13:18 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsd35.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsgFD.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsj1AF1.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsk10A.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsl84.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsm112.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsm1B1.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsp36.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsr11.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsr1B6.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nstmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsv15B.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsw233.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\APPLIC~1\BitDownload\Data
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload\BitDownload.lnk
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload\Uninstall BitDownload.lnk
Supprime! - C:\Program Files\BitDownload\BITDOWNLOAD.0XE
Supprime! - C:\Program Files\BitDownload\BitDownload.TRC
Supprime! - C:\Program Files\BitDownload\BitDownload_1.TRC
Supprime! - C:\Program Files\BitDownload\BitDownload_2.TRC
Supprime! - C:\Program Files\BitDownload\settings.ini
Supprime! - C:\Program Files\BitDownload\settings.stp
Supprime! - C:\Program Files\BitDownload\SkinCrafterDll.dll
Supprime! - C:\Program Files\BitDownload\Skins
Supprime! - C:\Program Files\BitDownload\Support
Supprime! - C:\Program Files\BitDownload\unins000.dat
Supprime! - C:\Program Files\BitDownload\unins000.exe
Supprime! - C:\Program Files\BitDownload\ZM
Supprime! - C:\DOCUME~1\MLANIE~1\Cookies\mélanie_et_gérald@2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\MLANIE~1\Cookies\mélanie_et_gérald@www.2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\MLANIE~1\APPLIC~1\Bitdownload
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload
Supprime! - C:\Program Files\BitDownload
Supprime! - C:\Program Files\Multi_Media
Supprime! - C:\Program Files\Multi_Media_France
Supprime! - C:\DOCUME~1\MLANIE~1\APPLIC~1\LOVELO~1
Supprime! - C:\Program Files\LOVELO~1
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[24/10/2004|18:30] C:\DOCUME~1\ADMINI~2\APPLIC~1\Identities
[14/09/2006|11:56] C:\DOCUME~1\ADMINI~2\APPLIC~1\Microsoft
[14/09/2006|11:54] C:\DOCUME~1\ADMINI~2\APPLIC~1\SampleView
[13/02/2008|22:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/09/2007|16:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[01/09/2007|16:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[12/01/2007|18:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[04/02/2008|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
[31/12/2006|17:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[13/11/2006|20:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[07/03/2008|22:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugawi
[23/10/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[28/08/2008|14:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hps
[04/02/2008|19:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[13/01/2007|12:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[14/09/2006|11:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[14/09/2006|11:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
[18/11/2006|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com Personal Firewall
[12/06/2007|19:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/09/2006|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Prism Deploy
[04/02/2008|19:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[06/12/2006|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[20/03/2007|14:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Up itch time 4
[13/11/2006|18:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[11/11/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[09/12/2006|22:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[24/10/2004|18:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[19/04/2008|23:48] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[14/09/2006|11:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[02/11/2006|11:28] C:\DOCUME~1\LOCALS~1\APPLIC~1\McAfee.com Personal Firewall
[21/04/2007|11:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[16/06/2008|07:59] C:\DOCUME~1\MLANIE~1\APPLIC~1\Adobe
[07/02/2007|21:32] C:\DOCUME~1\MLANIE~1\APPLIC~1\AdobeUM
[18/11/2007|11:48] C:\DOCUME~1\MLANIE~1\APPLIC~1\Ahead
[01/09/2007|16:28] C:\DOCUME~1\MLANIE~1\APPLIC~1\Apple Computer
[31/12/2007|17:38] C:\DOCUME~1\MLANIE~1\APPLIC~1\AVSMedia
[04/02/2008|19:16] C:\DOCUME~1\MLANIE~1\APPLIC~1\Canon
[31/12/2006|17:43] C:\DOCUME~1\MLANIE~1\APPLIC~1\CyberLink
[22/11/2006|13:19] C:\DOCUME~1\MLANIE~1\APPLIC~1\F-Secure
[28/02/2008|21:01] C:\DOCUME~1\MLANIE~1\APPLIC~1\Fugawi
[04/03/2008|21:46] C:\DOCUME~1\MLANIE~1\APPLIC~1\FUJIFILM
[15/11/2006|23:00] C:\DOCUME~1\MLANIE~1\APPLIC~1\Google
[10/12/2006|23:02] C:\DOCUME~1\MLANIE~1\APPLIC~1\Help
[24/10/2004|18:30] C:\DOCUME~1\MLANIE~1\APPLIC~1\Identities
[22/11/2006|13:14] C:\DOCUME~1\MLANIE~1\APPLIC~1\ispnews
[06/03/2007|20:37] C:\DOCUME~1\MLANIE~1\APPLIC~1\Leadertech
[18/12/2006|20:04] C:\DOCUME~1\MLANIE~1\APPLIC~1\Macromedia
[15/11/2006|22:33] C:\DOCUME~1\MLANIE~1\APPLIC~1\McAfee.com Personal Firewall
[19/06/2008|21:35] C:\DOCUME~1\MLANIE~1\APPLIC~1\Media Player
[31/07/2008|22:38] C:\DOCUME~1\MLANIE~1\APPLIC~1\Microsoft
[10/03/2007|18:16] C:\DOCUME~1\MLANIE~1\APPLIC~1\Mozilla
[15/11/2006|10:37] C:\DOCUME~1\MLANIE~1\APPLIC~1\MSNInstaller
[13/11/2006|20:07] C:\DOCUME~1\MLANIE~1\APPLIC~1\PEX
[18/04/2008|20:44] C:\DOCUME~1\MLANIE~1\APPLIC~1\Player Orange
[19/05/2008|18:50] C:\DOCUME~1\MLANIE~1\APPLIC~1\Real
[14/09/2006|11:54] C:\DOCUME~1\MLANIE~1\APPLIC~1\SampleView
[04/02/2008|19:04] C:\DOCUME~1\MLANIE~1\APPLIC~1\ScanSoft
[30/11/2006|15:30] C:\DOCUME~1\MLANIE~1\APPLIC~1\Seven Zip
[01/01/2008|16:18] C:\DOCUME~1\MLANIE~1\APPLIC~1\Skype
[02/11/2006|21:22] C:\DOCUME~1\MLANIE~1\APPLIC~1\Sun
[10/03/2007|18:16] C:\DOCUME~1\MLANIE~1\APPLIC~1\Talkback
[06/03/2007|16:35] C:\DOCUME~1\MLANIE~1\APPLIC~1\Template
[20/07/2007|10:10] C:\DOCUME~1\MLANIE~1\APPLIC~1\vlc
[20/07/2007|14:59] C:\DOCUME~1\MLANIE~1\APPLIC~1\WildBit Viewer
[24/10/2004|18:30] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[23/10/2008 08:39][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[10/11/2008 12:51][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
[10/11/2008 09:31][--a------] C:\WINDOWS\tasks\Scheduled scanning task.job
[05/08/2004 20:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[10/11/2008 09:31][--ah-----] C:\WINDOWS\tasks\SA.DAT
--------------------\\ Listing des dossiers dans C:\Program Files
[19/07/2008|09:00] C:\Program Files\Adobe
[22/11/2006|13:11] C:\Program Files\AntivirusFirewall
[13/10/2007|18:21] C:\Program Files\Apple Software Update
[14/09/2006|11:56] C:\Program Files\BigFix
[06/03/2007|20:34] C:\Program Files\BingoCafe
[14/01/2007|20:43] C:\Program Files\Boonty
[16/01/2007|10:15] C:\Program Files\BoontyGames
[04/02/2008|19:08] C:\Program Files\Canon
[04/02/2008|19:00] C:\Program Files\CanonBJ
[24/10/2004|18:22] C:\Program Files\ComPlus Applications
[23/10/2008|10:16] C:\Program Files\CyberLink
[14/09/2006|11:32] C:\Program Files\DIFX
[14/09/2006|11:46] C:\Program Files\Digital Media Reader
[04/03/2007|18:38] C:\Program Files\directx
[21/01/2007|12:04] C:\Program Files\EBP
[19/01/2007|12:13] C:\Program Files\e-Carte Bleue
[20/07/2008|12:09] C:\Program Files\e-Carte Bleue Soci‚t‚ G‚n‚rale
[29/10/2008|17:21] C:\Program Files\eMule
[02/05/2007|18:01] C:\Program Files\ESRI
[15/10/2008|15:31] C:\Program Files\Fichiers communs
[04/03/2008|21:46] C:\Program Files\FinePixViewer
[28/02/2008|20:57] C:\Program Files\Fugawi
[23/10/2008|10:59] C:\Program Files\Google
[14/09/2006|11:56] C:\Program Files\gtw_logo
[07/03/2008|22:40] C:\Program Files\Gunner 2
[19/06/2008|20:15] C:\Program Files\IKEA HomePlanner
[23/10/2008|10:16] C:\Program Files\InstallShield Installation Information
[07/11/2008|20:44] C:\Program Files\Internet Explorer
[08/08/2008|13:24] C:\Program Files\Java
[15/11/2006|22:54] C:\Program Files\Lavasoft
[11/05/2004|08:57] C:\Program Files\MAPS
[18/11/2006|21:14] C:\Program Files\McAfee.com
[24/09/2008|19:52] C:\Program Files\Messenger
[06/11/2006|21:44] C:\Program Files\Micro Application
[14/09/2006|11:52] C:\Program Files\Microsoft Digital Image 2006
[24/10/2004|18:26] C:\Program Files\microsoft frontpage
[01/02/2007|17:47] C:\Program Files\Microsoft Office
[14/09/2006|11:53] C:\Program Files\Microsoft Works
[01/02/2007|17:46] C:\Program Files\Microsoft.NET
[24/09/2008|19:49] C:\Program Files\Movie Maker
[11/03/2007|12:54] C:\Program Files\Mozilla Firefox
[12/11/2006|11:20] C:\Program Files\MSN
[24/10/2004|18:21] C:\Program Files\MSN Gaming Zone
[04/02/2007|18:30] C:\Program Files\MSXML 4.0
[14/11/2007|13:55] C:\Program Files\Nero
[24/09/2008|19:46] C:\Program Files\NetMeeting
[24/10/2004|18:21] C:\Program Files\Online Services
[19/06/2008|21:01] C:\Program Files\Orange
[24/09/2008|19:46] C:\Program Files\Outlook Express
[09/10/2008|20:45] C:\Program Files\Paint.NET
[28/08/2008|12:47] C:\Program Files\PhotoCite Collection
[28/08/2008|12:49] C:\Program Files\Photocite Collection 4
[06/03/2007|20:07] C:\Program Files\PopCap Games
[01/09/2007|16:51] C:\Program Files\QuickTime
[15/11/2006|23:00] C:\Program Files\Real
[14/09/2006|11:55] C:\Program Files\Realtek
[11/01/2007|14:28] C:\Program Files\ReflexiveArcade
[21/07/2007|10:20] C:\Program Files\REGSHAVE
[14/01/2007|13:18] C:\Program Files\River Raider II
[28/09/2007|13:02] C:\Program Files\SAGEM
[15/11/2006|10:36] C:\Program Files\SAGEM(2)
[04/02/2008|19:04] C:\Program Files\ScanSoft
[11/11/2006|10:02] C:\Program Files\Securitoo
[24/10/2004|18:23] C:\Program Files\Services en ligne
[06/03/2007|20:36] C:\Program Files\TrackMaker
[10/11/2008|10:02] C:\Program Files\trend micro
[04/02/2007|22:00] C:\Program Files\Ubisoft
[24/10/2004|18:30] C:\Program Files\Uninstall Information
[20/07/2007|10:08] C:\Program Files\VideoLAN
[10/11/2008|10:34] C:\Program Files\Wanadoo
[06/01/2007|15:49] C:\Program Files\Windows Live Toolbar
[08/04/2007|13:14] C:\Program Files\Windows Media Connect 2
[24/09/2008|19:46] C:\Program Files\Windows Media Player
[24/09/2008|19:46] C:\Program Files\Windows NT
[24/10/2004|18:23] C:\Program Files\WindowsUpdate
[20/03/2008|21:13] C:\Program Files\WinRAR
[15/11/2006|10:36] C:\Program Files\WinZip
[24/10/2004|18:26] C:\Program Files\xerox
[15/11/2006|10:35] C:\Program Files\Yahoo!
[08/03/2007|15:04] C:\Program Files\Zone Labs
[06/03/2007|20:44] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[13/02/2008|22:57] C:\Program Files\Fichiers communs\Adobe
[19/05/2008|18:49] C:\Program Files\Fichiers communs\Ahead
[01/09/2007|16:28] C:\Program Files\Fichiers communs\Apple
[07/03/2008|22:39] C:\Program Files\Fichiers communs\AVSMedia
[12/01/2007|18:34] C:\Program Files\Fichiers communs\BOONTY Shared
[04/02/2008|19:03] C:\Program Files\Fichiers communs\CANON
[01/02/2007|17:47] C:\Program Files\Fichiers communs\DESIGNER
[07/03/2008|22:40] C:\Program Files\Fichiers communs\Fugawi
[15/10/2008|15:31] C:\Program Files\Fichiers communs\InstallShield
[14/09/2006|11:49] C:\Program Files\Fichiers communs\Java
[13/01/2007|13:38] C:\Program Files\Fichiers communs\Macrovision Shared
[28/08/2008|13:04] C:\Program Files\Fichiers communs\Microsoft Shared
[24/10/2004|18:23] C:\Program Files\Fichiers communs\MSSoap
[14/09/2006|11:31] C:\Program Files\Fichiers communs\New Boundary
[24/10/2004|20:16] C:\Program Files\Fichiers communs\ODBC
[19/05/2008|18:50] C:\Program Files\Fichiers communs\Real
[04/02/2008|19:04] C:\Program Files\Fichiers communs\ScanSoft Shared
[24/10/2004|18:23] C:\Program Files\Fichiers communs\Services
[24/10/2004|20:16] C:\Program Files\Fichiers communs\SpeechEngines
[24/09/2008|19:46] C:\Program Files\Fichiers communs\System
[07/03/2008|22:40] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 59 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-10 13:19:45
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\MLANIE~1\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\crack.au-143c79f9-1e7fbdea.au
C:\DOCUME~1\MLANIE~1\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\crack.au-143c79f9-1e7fbdea.idx
[F:1472][D:246]-> C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp
[F:122][D:0]-> C:\DOCUME~1\MLANIE~1\Cookies
[F:12765][D:36]-> C:\DOCUME~1\MLANIE~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 10/11/2008|10:39 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 10/11/2008|13:20 - Option : [2]
--------------------\\ Fin du rapport a 13:20:30
--------------------\\ Lop S&D 4.2.4-9c XP/Vista
"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [2] ( 10/11/2008|13:18 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsd35.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsgFD.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsj1AF1.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsk10A.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsl84.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsm112.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsm1B1.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsp36.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsr11.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsr1B6.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nstmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsv15B.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsw233.tmp
Supprime! - C:\DOCUME~1\MLANIE~1\APPLIC~1\BitDownload\Data
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload\BitDownload.lnk
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload\Uninstall BitDownload.lnk
Supprime! - C:\Program Files\BitDownload\BITDOWNLOAD.0XE
Supprime! - C:\Program Files\BitDownload\BitDownload.TRC
Supprime! - C:\Program Files\BitDownload\BitDownload_1.TRC
Supprime! - C:\Program Files\BitDownload\BitDownload_2.TRC
Supprime! - C:\Program Files\BitDownload\settings.ini
Supprime! - C:\Program Files\BitDownload\settings.stp
Supprime! - C:\Program Files\BitDownload\SkinCrafterDll.dll
Supprime! - C:\Program Files\BitDownload\Skins
Supprime! - C:\Program Files\BitDownload\Support
Supprime! - C:\Program Files\BitDownload\unins000.dat
Supprime! - C:\Program Files\BitDownload\unins000.exe
Supprime! - C:\Program Files\BitDownload\ZM
Supprime! - C:\DOCUME~1\MLANIE~1\Cookies\mélanie_et_gérald@2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\MLANIE~1\Cookies\mélanie_et_gérald@www.2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\MLANIE~1\APPLIC~1\Bitdownload
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload
Supprime! - C:\Program Files\BitDownload
Supprime! - C:\Program Files\Multi_Media
Supprime! - C:\Program Files\Multi_Media_France
Supprime! - C:\DOCUME~1\MLANIE~1\APPLIC~1\LOVELO~1
Supprime! - C:\Program Files\LOVELO~1
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[24/10/2004|18:30] C:\DOCUME~1\ADMINI~2\APPLIC~1\Identities
[14/09/2006|11:56] C:\DOCUME~1\ADMINI~2\APPLIC~1\Microsoft
[14/09/2006|11:54] C:\DOCUME~1\ADMINI~2\APPLIC~1\SampleView
[13/02/2008|22:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/09/2007|16:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[01/09/2007|16:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[12/01/2007|18:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[04/02/2008|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
[31/12/2006|17:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[13/11/2006|20:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[07/03/2008|22:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugawi
[23/10/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[28/08/2008|14:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hps
[04/02/2008|19:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[13/01/2007|12:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[14/09/2006|11:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[14/09/2006|11:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
[18/11/2006|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com Personal Firewall
[12/06/2007|19:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/09/2006|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Prism Deploy
[04/02/2008|19:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[06/12/2006|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[20/03/2007|14:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Up itch time 4
[13/11/2006|18:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[11/11/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[09/12/2006|22:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[24/10/2004|18:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[19/04/2008|23:48] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[14/09/2006|11:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[02/11/2006|11:28] C:\DOCUME~1\LOCALS~1\APPLIC~1\McAfee.com Personal Firewall
[21/04/2007|11:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[16/06/2008|07:59] C:\DOCUME~1\MLANIE~1\APPLIC~1\Adobe
[07/02/2007|21:32] C:\DOCUME~1\MLANIE~1\APPLIC~1\AdobeUM
[18/11/2007|11:48] C:\DOCUME~1\MLANIE~1\APPLIC~1\Ahead
[01/09/2007|16:28] C:\DOCUME~1\MLANIE~1\APPLIC~1\Apple Computer
[31/12/2007|17:38] C:\DOCUME~1\MLANIE~1\APPLIC~1\AVSMedia
[04/02/2008|19:16] C:\DOCUME~1\MLANIE~1\APPLIC~1\Canon
[31/12/2006|17:43] C:\DOCUME~1\MLANIE~1\APPLIC~1\CyberLink
[22/11/2006|13:19] C:\DOCUME~1\MLANIE~1\APPLIC~1\F-Secure
[28/02/2008|21:01] C:\DOCUME~1\MLANIE~1\APPLIC~1\Fugawi
[04/03/2008|21:46] C:\DOCUME~1\MLANIE~1\APPLIC~1\FUJIFILM
[15/11/2006|23:00] C:\DOCUME~1\MLANIE~1\APPLIC~1\Google
[10/12/2006|23:02] C:\DOCUME~1\MLANIE~1\APPLIC~1\Help
[24/10/2004|18:30] C:\DOCUME~1\MLANIE~1\APPLIC~1\Identities
[22/11/2006|13:14] C:\DOCUME~1\MLANIE~1\APPLIC~1\ispnews
[06/03/2007|20:37] C:\DOCUME~1\MLANIE~1\APPLIC~1\Leadertech
[18/12/2006|20:04] C:\DOCUME~1\MLANIE~1\APPLIC~1\Macromedia
[15/11/2006|22:33] C:\DOCUME~1\MLANIE~1\APPLIC~1\McAfee.com Personal Firewall
[19/06/2008|21:35] C:\DOCUME~1\MLANIE~1\APPLIC~1\Media Player
[31/07/2008|22:38] C:\DOCUME~1\MLANIE~1\APPLIC~1\Microsoft
[10/03/2007|18:16] C:\DOCUME~1\MLANIE~1\APPLIC~1\Mozilla
[15/11/2006|10:37] C:\DOCUME~1\MLANIE~1\APPLIC~1\MSNInstaller
[13/11/2006|20:07] C:\DOCUME~1\MLANIE~1\APPLIC~1\PEX
[18/04/2008|20:44] C:\DOCUME~1\MLANIE~1\APPLIC~1\Player Orange
[19/05/2008|18:50] C:\DOCUME~1\MLANIE~1\APPLIC~1\Real
[14/09/2006|11:54] C:\DOCUME~1\MLANIE~1\APPLIC~1\SampleView
[04/02/2008|19:04] C:\DOCUME~1\MLANIE~1\APPLIC~1\ScanSoft
[30/11/2006|15:30] C:\DOCUME~1\MLANIE~1\APPLIC~1\Seven Zip
[01/01/2008|16:18] C:\DOCUME~1\MLANIE~1\APPLIC~1\Skype
[02/11/2006|21:22] C:\DOCUME~1\MLANIE~1\APPLIC~1\Sun
[10/03/2007|18:16] C:\DOCUME~1\MLANIE~1\APPLIC~1\Talkback
[06/03/2007|16:35] C:\DOCUME~1\MLANIE~1\APPLIC~1\Template
[20/07/2007|10:10] C:\DOCUME~1\MLANIE~1\APPLIC~1\vlc
[20/07/2007|14:59] C:\DOCUME~1\MLANIE~1\APPLIC~1\WildBit Viewer
[24/10/2004|18:30] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[23/10/2008 08:39][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[10/11/2008 12:51][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
[10/11/2008 09:31][--a------] C:\WINDOWS\tasks\Scheduled scanning task.job
[05/08/2004 20:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[10/11/2008 09:31][--ah-----] C:\WINDOWS\tasks\SA.DAT
--------------------\\ Listing des dossiers dans C:\Program Files
[19/07/2008|09:00] C:\Program Files\Adobe
[22/11/2006|13:11] C:\Program Files\AntivirusFirewall
[13/10/2007|18:21] C:\Program Files\Apple Software Update
[14/09/2006|11:56] C:\Program Files\BigFix
[06/03/2007|20:34] C:\Program Files\BingoCafe
[14/01/2007|20:43] C:\Program Files\Boonty
[16/01/2007|10:15] C:\Program Files\BoontyGames
[04/02/2008|19:08] C:\Program Files\Canon
[04/02/2008|19:00] C:\Program Files\CanonBJ
[24/10/2004|18:22] C:\Program Files\ComPlus Applications
[23/10/2008|10:16] C:\Program Files\CyberLink
[14/09/2006|11:32] C:\Program Files\DIFX
[14/09/2006|11:46] C:\Program Files\Digital Media Reader
[04/03/2007|18:38] C:\Program Files\directx
[21/01/2007|12:04] C:\Program Files\EBP
[19/01/2007|12:13] C:\Program Files\e-Carte Bleue
[20/07/2008|12:09] C:\Program Files\e-Carte Bleue Soci‚t‚ G‚n‚rale
[29/10/2008|17:21] C:\Program Files\eMule
[02/05/2007|18:01] C:\Program Files\ESRI
[15/10/2008|15:31] C:\Program Files\Fichiers communs
[04/03/2008|21:46] C:\Program Files\FinePixViewer
[28/02/2008|20:57] C:\Program Files\Fugawi
[23/10/2008|10:59] C:\Program Files\Google
[14/09/2006|11:56] C:\Program Files\gtw_logo
[07/03/2008|22:40] C:\Program Files\Gunner 2
[19/06/2008|20:15] C:\Program Files\IKEA HomePlanner
[23/10/2008|10:16] C:\Program Files\InstallShield Installation Information
[07/11/2008|20:44] C:\Program Files\Internet Explorer
[08/08/2008|13:24] C:\Program Files\Java
[15/11/2006|22:54] C:\Program Files\Lavasoft
[11/05/2004|08:57] C:\Program Files\MAPS
[18/11/2006|21:14] C:\Program Files\McAfee.com
[24/09/2008|19:52] C:\Program Files\Messenger
[06/11/2006|21:44] C:\Program Files\Micro Application
[14/09/2006|11:52] C:\Program Files\Microsoft Digital Image 2006
[24/10/2004|18:26] C:\Program Files\microsoft frontpage
[01/02/2007|17:47] C:\Program Files\Microsoft Office
[14/09/2006|11:53] C:\Program Files\Microsoft Works
[01/02/2007|17:46] C:\Program Files\Microsoft.NET
[24/09/2008|19:49] C:\Program Files\Movie Maker
[11/03/2007|12:54] C:\Program Files\Mozilla Firefox
[12/11/2006|11:20] C:\Program Files\MSN
[24/10/2004|18:21] C:\Program Files\MSN Gaming Zone
[04/02/2007|18:30] C:\Program Files\MSXML 4.0
[14/11/2007|13:55] C:\Program Files\Nero
[24/09/2008|19:46] C:\Program Files\NetMeeting
[24/10/2004|18:21] C:\Program Files\Online Services
[19/06/2008|21:01] C:\Program Files\Orange
[24/09/2008|19:46] C:\Program Files\Outlook Express
[09/10/2008|20:45] C:\Program Files\Paint.NET
[28/08/2008|12:47] C:\Program Files\PhotoCite Collection
[28/08/2008|12:49] C:\Program Files\Photocite Collection 4
[06/03/2007|20:07] C:\Program Files\PopCap Games
[01/09/2007|16:51] C:\Program Files\QuickTime
[15/11/2006|23:00] C:\Program Files\Real
[14/09/2006|11:55] C:\Program Files\Realtek
[11/01/2007|14:28] C:\Program Files\ReflexiveArcade
[21/07/2007|10:20] C:\Program Files\REGSHAVE
[14/01/2007|13:18] C:\Program Files\River Raider II
[28/09/2007|13:02] C:\Program Files\SAGEM
[15/11/2006|10:36] C:\Program Files\SAGEM(2)
[04/02/2008|19:04] C:\Program Files\ScanSoft
[11/11/2006|10:02] C:\Program Files\Securitoo
[24/10/2004|18:23] C:\Program Files\Services en ligne
[06/03/2007|20:36] C:\Program Files\TrackMaker
[10/11/2008|10:02] C:\Program Files\trend micro
[04/02/2007|22:00] C:\Program Files\Ubisoft
[24/10/2004|18:30] C:\Program Files\Uninstall Information
[20/07/2007|10:08] C:\Program Files\VideoLAN
[10/11/2008|10:34] C:\Program Files\Wanadoo
[06/01/2007|15:49] C:\Program Files\Windows Live Toolbar
[08/04/2007|13:14] C:\Program Files\Windows Media Connect 2
[24/09/2008|19:46] C:\Program Files\Windows Media Player
[24/09/2008|19:46] C:\Program Files\Windows NT
[24/10/2004|18:23] C:\Program Files\WindowsUpdate
[20/03/2008|21:13] C:\Program Files\WinRAR
[15/11/2006|10:36] C:\Program Files\WinZip
[24/10/2004|18:26] C:\Program Files\xerox
[15/11/2006|10:35] C:\Program Files\Yahoo!
[08/03/2007|15:04] C:\Program Files\Zone Labs
[06/03/2007|20:44] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[13/02/2008|22:57] C:\Program Files\Fichiers communs\Adobe
[19/05/2008|18:49] C:\Program Files\Fichiers communs\Ahead
[01/09/2007|16:28] C:\Program Files\Fichiers communs\Apple
[07/03/2008|22:39] C:\Program Files\Fichiers communs\AVSMedia
[12/01/2007|18:34] C:\Program Files\Fichiers communs\BOONTY Shared
[04/02/2008|19:03] C:\Program Files\Fichiers communs\CANON
[01/02/2007|17:47] C:\Program Files\Fichiers communs\DESIGNER
[07/03/2008|22:40] C:\Program Files\Fichiers communs\Fugawi
[15/10/2008|15:31] C:\Program Files\Fichiers communs\InstallShield
[14/09/2006|11:49] C:\Program Files\Fichiers communs\Java
[13/01/2007|13:38] C:\Program Files\Fichiers communs\Macrovision Shared
[28/08/2008|13:04] C:\Program Files\Fichiers communs\Microsoft Shared
[24/10/2004|18:23] C:\Program Files\Fichiers communs\MSSoap
[14/09/2006|11:31] C:\Program Files\Fichiers communs\New Boundary
[24/10/2004|20:16] C:\Program Files\Fichiers communs\ODBC
[19/05/2008|18:50] C:\Program Files\Fichiers communs\Real
[04/02/2008|19:04] C:\Program Files\Fichiers communs\ScanSoft Shared
[24/10/2004|18:23] C:\Program Files\Fichiers communs\Services
[24/10/2004|20:16] C:\Program Files\Fichiers communs\SpeechEngines
[24/09/2008|19:46] C:\Program Files\Fichiers communs\System
[07/03/2008|22:40] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 59 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-10 13:19:45
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\MLANIE~1\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\crack.au-143c79f9-1e7fbdea.au
C:\DOCUME~1\MLANIE~1\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\crack.au-143c79f9-1e7fbdea.idx
[F:1472][D:246]-> C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp
[F:122][D:0]-> C:\DOCUME~1\MLANIE~1\Cookies
[F:12765][D:36]-> C:\DOCUME~1\MLANIE~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 10/11/2008|10:39 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 10/11/2008|13:20 - Option : [2]
--------------------\\ Fin du rapport a 13:20:30
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 297
10 nov. 2008 à 13:36
10 nov. 2008 à 13:36
- Télécharge AD-Remover (de Cyrildu17 / C_XX) sur ton Bureau.
/!\ Déconnecte-toi et ferme toutes applications en cours /!\
- Double-clique sur le programme d'installation, installe-le dans son emplacement par défaut (C:\Program files).
- Double-clique sur l'icône Ad-remover située sur ton Bureau.
- Au menu principal, choisis l'option "A".
- Poste le rapport qui apparaît à la fin.
(Le rapport est sauvegardé aussi sous C:\Ad-report(date).log)
(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)
Note :
"Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
/!\ Déconnecte-toi et ferme toutes applications en cours /!\
- Double-clique sur le programme d'installation, installe-le dans son emplacement par défaut (C:\Program files).
- Double-clique sur l'icône Ad-remover située sur ton Bureau.
- Au menu principal, choisis l'option "A".
- Poste le rapport qui apparaît à la fin.
(Le rapport est sauvegardé aussi sous C:\Ad-report(date).log)
(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)
Note :
"Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
Voici la suite !!!!
F --------- Logfile of AD-Remover 1.0.3.2 by C_XX ---------
START at: 13:41:11 | 10/11/2008
ON: Microsoft Windows XP [version 5.1.2600] ( Windows XP )
Internet Explorer: 7.0.5730.13
OPTION: Scan
EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat
USER: M‚lanie et G‚rald | PC: YOUR-725C3F37DE
BOOT MODE: Normal
DRIVE(S): C:\
~> Systemdrive: C:\
--------- [ PROCESSES ] ---------
\SystemRoot\System32\smss.exe [468]
\??\C:\WINDOWS\system32\csrss.exe [532]
\??\C:\WINDOWS\system32\winlogon.exe [556]
C:\WINDOWS\system32\services.exe [600]
C:\WINDOWS\system32\lsass.exe [612]
C:\WINDOWS\system32\svchost.exe [772]
C:\WINDOWS\system32\svchost.exe [820]
C:\WINDOWS\System32\svchost.exe [860]
C:\WINDOWS\system32\svchost.exe [900]
C:\WINDOWS\system32\svchost.exe [948]
C:\WINDOWS\system32\svchost.exe [996]
C:\WINDOWS\system32\spoolsv.exe [1100]
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [1276]
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE [1288]
C:\WINDOWS\system32\bgsvcgen.exe [1308]
C:\WINDOWS\system32\drivers\CDAC11BA.EXE [1332]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe [1380]
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe [1396]
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE [1436]
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe [1500]
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE [1636]
C:\WINDOWS\System32\FTRTSVC.exe [1740]
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE [1760]
C:\WINDOWS\system32\nvsvc32.exe [1796]
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe [1820]
C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS [1864]
C:\WINDOWS\system32\svchost.exe [1928]
C:\WINDOWS\Explorer.EXE [168]
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE [320]
C:\WINDOWS\System32\alg.exe [616]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe [1180]
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE [1148]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe [1360]
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe [1560]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe [2340]
C:\Program Files\AntivirusFirewall\Common\FSM32.EXE [2744]
C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe [2792]
C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe [2920]
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe [2940]
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2976]
C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [3048]
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe [3064]
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [3144]
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [3212]
C:\WINDOWS\system32\ctfmon.exe [3304]
C:\program files\orange\media player\Media Player.exe [3320]
C:\Program Files\BigFix\bigfix.exe [3372]
C:\Program Files\e-Carte Bleue Société Générale\ecbl-sg.exe [3384]
---------------------------- [~> 48]
+---------------------------------------------------------------------------+
+------------------------------- SERVICES FOUND
+---------------------------------------------------------------------------+
Found ! - "Boonty Games"
+---------------------------------------------------------------------------+
+------------------------------- REGISTRY ELEMENTS FOUND
+---------------------------------------------------------------------------+
"HKEY_LOCAL_MACHINE\Software\Boonty"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar" /v "{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}"
"HKEY_LOCAL_MACHINE\Software\Classes\boontybox"
"HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Boonty Games"
"HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Boonty Games"
"HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Boonty Games"
"HKEY_CURRENT_USER\SOFTWARE\Boonty"
"HKEY_CLASSES_ROOT\boontybox"
+---------------------------------------------------------------------------+
+------------------------------- FILES\FOLDERS FOUND
+---------------------------------------------------------------------------+
[14/01/2007 20:43|d--------] C:\Program Files\Boonty
[16/01/2007 10:15|d--------] C:\Program Files\BoontyGames
[12/01/2007 18:34|d--------] C:\Program Files\Fichiers communs\BOONTY Shared
[12/01/2007 18:34|d--------] C:\Documents and Settings\All Users\Application Data\BOONTY
[29/01/2007 21:29|d--------] C:\Documents and Settings\All Users\MENUDM~1\PROGRA~1\BoontyGames
+---------- Scanning prefs.js ... ( # Mozilla User Preferences )
...\se1l3rgj.default\prefs.js :
~~~~ Mozilla FireFox version 2.0.0.1 ~~~~
Start Page : "https://start.mozilla.org/en-us/"
+----------+
+---------------------------------------------------------------------------+
+---------- Added scan ...
+-----[HKLM\...\Run]
NvCplDaemon REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
F-Secure Manager REG_SZ "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
F-Secure TNB REG_SZ "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
F-Secure Startup Wizard REG_SZ "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
News Service REG_SZ "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
WOOTASKBARICON REG_SZ C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
Time41bias REG_SZ C:\Documents and Settings\All Users\Application Data\Up itch time 4\Blah mess.exe
REGSHAVE REG_SZ C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
QuickTime Task REG_SZ "C:\Program Files\QuickTime\qttask.exe" -atboottime
WOOWATCH REG_SZ C:\PROGRA~1\Wanadoo\Watch.exe
CanonSolutionMenu REG_SZ C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
CanonMyPrinter REG_SZ C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
SSBkgdUpdate REG_SZ "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
OpwareSE4 REG_SZ "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
SunJavaUpdateSched REG_SZ "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
RemoteControl REG_SZ "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
+-----[HKCU\...\Run]
WOOKIT REG_SZ C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
ctfmon.exe REG_SZ C:\WINDOWS\system32\ctfmon.exe
BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} REG_SZ "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
MsgCenterExe REG_SZ "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
OrangePlayer REG_SZ c:\program files\orange\media player\Media Player.exe /systray
Power2GoExpress REG_SZ NA
+-----[HKLM\...\Internet Explorer\MAIN]
Start Page : hxxp://go.microsoft.com/fwlink/?LinkId=69157
+-----[HKCU\...\Internet Explorer\MAIN]
Start Page : hxxp://www.orange.fr
+---------------------------------------------------------------------------+
+------------------------------- [ EOF - 131 lines ]
+---------------------------------------------------------------------------+
[ END at: 13:41:28 | 10/11/2008 ] - [ Time elapsed: 17.3 seconds ]
F --------- Logfile of AD-Remover 1.0.3.2 by C_XX ---------
START at: 13:41:11 | 10/11/2008
ON: Microsoft Windows XP [version 5.1.2600] ( Windows XP )
Internet Explorer: 7.0.5730.13
OPTION: Scan
EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat
USER: M‚lanie et G‚rald | PC: YOUR-725C3F37DE
BOOT MODE: Normal
DRIVE(S): C:\
~> Systemdrive: C:\
--------- [ PROCESSES ] ---------
\SystemRoot\System32\smss.exe [468]
\??\C:\WINDOWS\system32\csrss.exe [532]
\??\C:\WINDOWS\system32\winlogon.exe [556]
C:\WINDOWS\system32\services.exe [600]
C:\WINDOWS\system32\lsass.exe [612]
C:\WINDOWS\system32\svchost.exe [772]
C:\WINDOWS\system32\svchost.exe [820]
C:\WINDOWS\System32\svchost.exe [860]
C:\WINDOWS\system32\svchost.exe [900]
C:\WINDOWS\system32\svchost.exe [948]
C:\WINDOWS\system32\svchost.exe [996]
C:\WINDOWS\system32\spoolsv.exe [1100]
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [1276]
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE [1288]
C:\WINDOWS\system32\bgsvcgen.exe [1308]
C:\WINDOWS\system32\drivers\CDAC11BA.EXE [1332]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe [1380]
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe [1396]
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE [1436]
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe [1500]
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE [1636]
C:\WINDOWS\System32\FTRTSVC.exe [1740]
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE [1760]
C:\WINDOWS\system32\nvsvc32.exe [1796]
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe [1820]
C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS [1864]
C:\WINDOWS\system32\svchost.exe [1928]
C:\WINDOWS\Explorer.EXE [168]
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE [320]
C:\WINDOWS\System32\alg.exe [616]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe [1180]
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE [1148]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe [1360]
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe [1560]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe [2340]
C:\Program Files\AntivirusFirewall\Common\FSM32.EXE [2744]
C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe [2792]
C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe [2920]
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe [2940]
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2976]
C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [3048]
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe [3064]
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [3144]
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [3212]
C:\WINDOWS\system32\ctfmon.exe [3304]
C:\program files\orange\media player\Media Player.exe [3320]
C:\Program Files\BigFix\bigfix.exe [3372]
C:\Program Files\e-Carte Bleue Société Générale\ecbl-sg.exe [3384]
---------------------------- [~> 48]
+---------------------------------------------------------------------------+
+------------------------------- SERVICES FOUND
+---------------------------------------------------------------------------+
Found ! - "Boonty Games"
+---------------------------------------------------------------------------+
+------------------------------- REGISTRY ELEMENTS FOUND
+---------------------------------------------------------------------------+
"HKEY_LOCAL_MACHINE\Software\Boonty"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar" /v "{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}"
"HKEY_LOCAL_MACHINE\Software\Classes\boontybox"
"HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Boonty Games"
"HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Boonty Games"
"HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Boonty Games"
"HKEY_CURRENT_USER\SOFTWARE\Boonty"
"HKEY_CLASSES_ROOT\boontybox"
+---------------------------------------------------------------------------+
+------------------------------- FILES\FOLDERS FOUND
+---------------------------------------------------------------------------+
[14/01/2007 20:43|d--------] C:\Program Files\Boonty
[16/01/2007 10:15|d--------] C:\Program Files\BoontyGames
[12/01/2007 18:34|d--------] C:\Program Files\Fichiers communs\BOONTY Shared
[12/01/2007 18:34|d--------] C:\Documents and Settings\All Users\Application Data\BOONTY
[29/01/2007 21:29|d--------] C:\Documents and Settings\All Users\MENUDM~1\PROGRA~1\BoontyGames
+---------- Scanning prefs.js ... ( # Mozilla User Preferences )
...\se1l3rgj.default\prefs.js :
~~~~ Mozilla FireFox version 2.0.0.1 ~~~~
Start Page : "https://start.mozilla.org/en-us/"
+----------+
+---------------------------------------------------------------------------+
+---------- Added scan ...
+-----[HKLM\...\Run]
NvCplDaemon REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
F-Secure Manager REG_SZ "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
F-Secure TNB REG_SZ "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
F-Secure Startup Wizard REG_SZ "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
News Service REG_SZ "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
WOOTASKBARICON REG_SZ C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
Time41bias REG_SZ C:\Documents and Settings\All Users\Application Data\Up itch time 4\Blah mess.exe
REGSHAVE REG_SZ C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
QuickTime Task REG_SZ "C:\Program Files\QuickTime\qttask.exe" -atboottime
WOOWATCH REG_SZ C:\PROGRA~1\Wanadoo\Watch.exe
CanonSolutionMenu REG_SZ C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
CanonMyPrinter REG_SZ C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
SSBkgdUpdate REG_SZ "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
OpwareSE4 REG_SZ "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
SunJavaUpdateSched REG_SZ "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
RemoteControl REG_SZ "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
+-----[HKCU\...\Run]
WOOKIT REG_SZ C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
ctfmon.exe REG_SZ C:\WINDOWS\system32\ctfmon.exe
BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} REG_SZ "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
MsgCenterExe REG_SZ "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
OrangePlayer REG_SZ c:\program files\orange\media player\Media Player.exe /systray
Power2GoExpress REG_SZ NA
+-----[HKLM\...\Internet Explorer\MAIN]
Start Page : hxxp://go.microsoft.com/fwlink/?LinkId=69157
+-----[HKCU\...\Internet Explorer\MAIN]
Start Page : hxxp://www.orange.fr
+---------------------------------------------------------------------------+
+------------------------------- [ EOF - 131 lines ]
+---------------------------------------------------------------------------+
[ END at: 13:41:28 | 10/11/2008 ] - [ Time elapsed: 17.3 seconds ]
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 297
10 nov. 2008 à 13:45
10 nov. 2008 à 13:45
/!\ Déconnecte-toi et ferme toutes applications en cours /!\
- Clique droit sur AD-Remover et choisis Exécuter en tant qu'administrateur : au menu principal choisi l'option "B".
--> Le programme va travailler...
- Poste le rapport qui apparaît à la fin.
(Le rapport est sauvegardé aussi sous C:\Ad-report.log)
/!\ Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr, Onglet "Fichier", "Nouvelle tâche", tape explorer.exe et valide) /!\
- Clique droit sur AD-Remover et choisis Exécuter en tant qu'administrateur : au menu principal choisi l'option "B".
--> Le programme va travailler...
- Poste le rapport qui apparaît à la fin.
(Le rapport est sauvegardé aussi sous C:\Ad-report.log)
/!\ Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr, Onglet "Fichier", "Nouvelle tâche", tape explorer.exe et valide) /!\
F --------- Logfile of AD-Remover 1.0.3.2 by C_XX ---------
START at: 13:57:11 | 10/11/2008
ON: Microsoft Windows XP [version 5.1.2600] ( Windows XP )
Internet Explorer: 7.0.5730.13
OPTION: Clean
EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat
USER: M‚lanie et G‚rald | PC: YOUR-725C3F37DE
BOOT MODE: Normal
DRIVE(S): C:\
~> Systemdrive: C:\
--------- [ PROCESSES ] ---------
\SystemRoot\System32\smss.exe [468]
\??\C:\WINDOWS\system32\csrss.exe [532]
\??\C:\WINDOWS\system32\winlogon.exe [556]
C:\WINDOWS\system32\services.exe [600]
C:\WINDOWS\system32\lsass.exe [612]
C:\WINDOWS\system32\svchost.exe [772]
C:\WINDOWS\system32\svchost.exe [820]
C:\WINDOWS\System32\svchost.exe [860]
C:\WINDOWS\system32\svchost.exe [900]
C:\WINDOWS\system32\svchost.exe [948]
C:\WINDOWS\system32\svchost.exe [996]
C:\WINDOWS\system32\spoolsv.exe [1100]
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [1276]
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE [1288]
C:\WINDOWS\system32\bgsvcgen.exe [1308]
C:\WINDOWS\system32\drivers\CDAC11BA.EXE [1332]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe [1380]
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe [1396]
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE [1436]
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe [1500]
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE [1636]
C:\WINDOWS\System32\FTRTSVC.exe [1740]
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE [1760]
C:\WINDOWS\system32\nvsvc32.exe [1796]
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe [1820]
C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS [1864]
C:\WINDOWS\system32\svchost.exe [1928]
C:\WINDOWS\Explorer.EXE [168]
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE [320]
C:\WINDOWS\System32\alg.exe [616]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe [1180]
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE [1148]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe [1360]
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe [1560]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe [2340]
C:\Program Files\AntivirusFirewall\Common\FSM32.EXE [2744]
C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe [2792]
C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe [2920]
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe [2940]
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2976]
C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [3048]
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe [3064]
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [3144]
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [3212]
C:\WINDOWS\system32\ctfmon.exe [3304]
C:\program files\orange\media player\Media Player.exe [3320]
C:\Program Files\BigFix\bigfix.exe [3372]
C:\Program Files\e-Carte Bleue Société Générale\ecbl-sg.exe [3384]
---------------------------- [~> 48]
+---------------------------------------------------------------------------+
+------------------------------- SERVICES DELETED
+---------------------------------------------------------------------------+
Deleted successfully ! - "Boonty Games"
+---------------------------------------------------------------------------+
+------------------------------- REGISTRY ELEMENTS DELETED
+---------------------------------------------------------------------------+
"HKEY_LOCAL_MACHINE\Software\Boonty"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar" /v "{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}"
"HKEY_LOCAL_MACHINE\Software\Classes\boontybox"
"HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Boonty Games"
"HKEY_CURRENT_USER\SOFTWARE\Boonty"
+---------------------------------------------------------------------------+
+------------------------------- FILES\FOLDERS DELETED
+---------------------------------------------------------------------------+
[14/01/2007 20:43|d--------] C:\Program Files\Boonty
[16/01/2007 10:15|d--------] C:\Program Files\BoontyGames
[12/01/2007 18:34|d--------] C:\Program Files\Fichiers communs\BOONTY Shared
[12/01/2007 18:34|d--------] C:\Documents and Settings\All Users\Application Data\BOONTY
[29/01/2007 21:29|d--------] C:\Documents and Settings\All Users\MENUDM~1\PROGRA~1\BoontyGames
(!) ---- Temp files deleted.
(!) ---- Recycle bin emptied in all drives.
+---------- Scanning prefs.js ... ( # Mozilla User Preferences )
...\se1l3rgj.default\prefs.js :
~~~~ Mozilla FireFox version 2.0.0.1 ~~~~
Start Page : "https://start.mozilla.org/en-us/"
+----------+
+---------- Added scan ...
+-----[HKLM\...\Run]
NvCplDaemon REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
F-Secure Manager REG_SZ "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
F-Secure TNB REG_SZ "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
F-Secure Startup Wizard REG_SZ "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
News Service REG_SZ "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
WOOTASKBARICON REG_SZ C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
Time41bias REG_SZ C:\Documents and Settings\All Users\Application Data\Up itch time 4\Blah mess.exe
REGSHAVE REG_SZ C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
QuickTime Task REG_SZ "C:\Program Files\QuickTime\qttask.exe" -atboottime
WOOWATCH REG_SZ C:\PROGRA~1\Wanadoo\Watch.exe
CanonSolutionMenu REG_SZ C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
CanonMyPrinter REG_SZ C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
SSBkgdUpdate REG_SZ "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
OpwareSE4 REG_SZ "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
SunJavaUpdateSched REG_SZ "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
RemoteControl REG_SZ "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
+-----[HKCU\...\Run]
WOOKIT REG_SZ C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
ctfmon.exe REG_SZ C:\WINDOWS\system32\ctfmon.exe
BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} REG_SZ "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
MsgCenterExe REG_SZ "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
OrangePlayer REG_SZ c:\program files\orange\media player\Media Player.exe /systray
Power2GoExpress REG_SZ NA
+-----[HKLM\...\Internet Explorer\MAIN]
Start Page : hxxp://fr.msn.com/
+-----[HKCU\...\Internet Explorer\MAIN]
Start Page : hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
+---------------------------------------------------------------------------+
+------------------------------- [ EOF - 127 lines ]
+---------------------------------------------------------------------------+
[ END at: 14:11:06 | 10/11/2008 ] - [ Time elapsed: 13
START at: 13:57:11 | 10/11/2008
ON: Microsoft Windows XP [version 5.1.2600] ( Windows XP )
Internet Explorer: 7.0.5730.13
OPTION: Clean
EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat
USER: M‚lanie et G‚rald | PC: YOUR-725C3F37DE
BOOT MODE: Normal
DRIVE(S): C:\
~> Systemdrive: C:\
--------- [ PROCESSES ] ---------
\SystemRoot\System32\smss.exe [468]
\??\C:\WINDOWS\system32\csrss.exe [532]
\??\C:\WINDOWS\system32\winlogon.exe [556]
C:\WINDOWS\system32\services.exe [600]
C:\WINDOWS\system32\lsass.exe [612]
C:\WINDOWS\system32\svchost.exe [772]
C:\WINDOWS\system32\svchost.exe [820]
C:\WINDOWS\System32\svchost.exe [860]
C:\WINDOWS\system32\svchost.exe [900]
C:\WINDOWS\system32\svchost.exe [948]
C:\WINDOWS\system32\svchost.exe [996]
C:\WINDOWS\system32\spoolsv.exe [1100]
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [1276]
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE [1288]
C:\WINDOWS\system32\bgsvcgen.exe [1308]
C:\WINDOWS\system32\drivers\CDAC11BA.EXE [1332]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe [1380]
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe [1396]
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE [1436]
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe [1500]
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE [1636]
C:\WINDOWS\System32\FTRTSVC.exe [1740]
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE [1760]
C:\WINDOWS\system32\nvsvc32.exe [1796]
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe [1820]
C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS [1864]
C:\WINDOWS\system32\svchost.exe [1928]
C:\WINDOWS\Explorer.EXE [168]
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE [320]
C:\WINDOWS\System32\alg.exe [616]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe [1180]
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE [1148]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe [1360]
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe [1560]
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe [2340]
C:\Program Files\AntivirusFirewall\Common\FSM32.EXE [2744]
C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe [2792]
C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe [2920]
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe [2940]
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2976]
C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [3048]
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe [3064]
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [3144]
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [3212]
C:\WINDOWS\system32\ctfmon.exe [3304]
C:\program files\orange\media player\Media Player.exe [3320]
C:\Program Files\BigFix\bigfix.exe [3372]
C:\Program Files\e-Carte Bleue Société Générale\ecbl-sg.exe [3384]
---------------------------- [~> 48]
+---------------------------------------------------------------------------+
+------------------------------- SERVICES DELETED
+---------------------------------------------------------------------------+
Deleted successfully ! - "Boonty Games"
+---------------------------------------------------------------------------+
+------------------------------- REGISTRY ELEMENTS DELETED
+---------------------------------------------------------------------------+
"HKEY_LOCAL_MACHINE\Software\Boonty"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar" /v "{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}"
"HKEY_LOCAL_MACHINE\Software\Classes\boontybox"
"HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Boonty Games"
"HKEY_CURRENT_USER\SOFTWARE\Boonty"
+---------------------------------------------------------------------------+
+------------------------------- FILES\FOLDERS DELETED
+---------------------------------------------------------------------------+
[14/01/2007 20:43|d--------] C:\Program Files\Boonty
[16/01/2007 10:15|d--------] C:\Program Files\BoontyGames
[12/01/2007 18:34|d--------] C:\Program Files\Fichiers communs\BOONTY Shared
[12/01/2007 18:34|d--------] C:\Documents and Settings\All Users\Application Data\BOONTY
[29/01/2007 21:29|d--------] C:\Documents and Settings\All Users\MENUDM~1\PROGRA~1\BoontyGames
(!) ---- Temp files deleted.
(!) ---- Recycle bin emptied in all drives.
+---------- Scanning prefs.js ... ( # Mozilla User Preferences )
...\se1l3rgj.default\prefs.js :
~~~~ Mozilla FireFox version 2.0.0.1 ~~~~
Start Page : "https://start.mozilla.org/en-us/"
+----------+
+---------- Added scan ...
+-----[HKLM\...\Run]
NvCplDaemon REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
F-Secure Manager REG_SZ "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
F-Secure TNB REG_SZ "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
F-Secure Startup Wizard REG_SZ "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
News Service REG_SZ "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
WOOTASKBARICON REG_SZ C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
Time41bias REG_SZ C:\Documents and Settings\All Users\Application Data\Up itch time 4\Blah mess.exe
REGSHAVE REG_SZ C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
QuickTime Task REG_SZ "C:\Program Files\QuickTime\qttask.exe" -atboottime
WOOWATCH REG_SZ C:\PROGRA~1\Wanadoo\Watch.exe
CanonSolutionMenu REG_SZ C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
CanonMyPrinter REG_SZ C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
SSBkgdUpdate REG_SZ "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
OpwareSE4 REG_SZ "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
SunJavaUpdateSched REG_SZ "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
RemoteControl REG_SZ "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
+-----[HKCU\...\Run]
WOOKIT REG_SZ C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
ctfmon.exe REG_SZ C:\WINDOWS\system32\ctfmon.exe
BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} REG_SZ "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
MsgCenterExe REG_SZ "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
OrangePlayer REG_SZ c:\program files\orange\media player\Media Player.exe /systray
Power2GoExpress REG_SZ NA
+-----[HKLM\...\Internet Explorer\MAIN]
Start Page : hxxp://fr.msn.com/
+-----[HKCU\...\Internet Explorer\MAIN]
Start Page : hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
+---------------------------------------------------------------------------+
+------------------------------- [ EOF - 127 lines ]
+---------------------------------------------------------------------------+
[ END at: 14:11:06 | 10/11/2008 ] - [ Time elapsed: 13
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 297
10 nov. 2008 à 18:58
10 nov. 2008 à 18:58
---> Télécharge OTMoveIt3 (OldTimer) sur ton Bureau :
http://oldtimer.geekstogo.com/OTMoveIt3.exe
---> Double-clique sur OTMoveIt3.exe afin de le lancer.
---> Copie (Ctrl+C) le texte suivant ci-dessous :
:processes
explorer.exe
:files
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Up itch time 4
:commands
[emptytemp]
[start explorer]
[reboot]
---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.
---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
http://oldtimer.geekstogo.com/OTMoveIt3.exe
---> Double-clique sur OTMoveIt3.exe afin de le lancer.
---> Copie (Ctrl+C) le texte suivant ci-dessous :
:processes
explorer.exe
:files
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Up itch time 4
:commands
[emptytemp]
[start explorer]
[reboot]
---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.
---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== FILES ==========
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Up itch time 4 moved successfully.
========== COMMANDS ==========
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
Java cache emptied.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully
OTMoveIt3 by OldTimer - Version 1.0.7.0 log created on 11112008_001447
Files moved on Reboot...
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be moved on reboot.
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be moved on reboot.
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be moved on reboot.
Process explorer.exe killed successfully.
========== FILES ==========
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Up itch time 4 moved successfully.
========== COMMANDS ==========
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
Java cache emptied.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully
OTMoveIt3 by OldTimer - Version 1.0.7.0 log created on 11112008_001447
Files moved on Reboot...
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be moved on reboot.
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be moved on reboot.
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be moved on reboot.
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 297
11 nov. 2008 à 01:08
11 nov. 2008 à 01:08
1/
---> Mets à jour Adobe Reader :
https://get2.adobe.com/reader/otherversions/
---> Désinstalle via Ajout/Suppression de Programmes (si présents) :
- J2SE Runtime Environment 5.0 Update 2
- J2SE Runtime Environment 5.0 Update 9
- Java 6 Update 5
2/
--> Télécharge UsbFix (de Chiquitine29) sur ton Bureau :
http://sd-1.archive-host.com/membres/up/116615172019703188/UsbFix.exe
--> Lance l'installation avec les paramètres par défaut.
--> Branche tes sources de données externes à ton PC (clé USB, disque dur externe, etc...) sans les ouvrir.
--> Double-clique sur le raccourci UsbFix sur ton Bureau.
--> Le PC va redémarrer.
--> Après redémarrage, poste le rapport UsbFix.txt
Note : le rapport UsbFix.txt est sauvegardé à la racine du disque.
(Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet "Fichier", "Nouvelle tâche", tape explorer.exe et valide)
3/
---> Relance RSIT et poste les deux rapports.
---> Mets à jour Adobe Reader :
https://get2.adobe.com/reader/otherversions/
---> Désinstalle via Ajout/Suppression de Programmes (si présents) :
- J2SE Runtime Environment 5.0 Update 2
- J2SE Runtime Environment 5.0 Update 9
- Java 6 Update 5
2/
--> Télécharge UsbFix (de Chiquitine29) sur ton Bureau :
http://sd-1.archive-host.com/membres/up/116615172019703188/UsbFix.exe
--> Lance l'installation avec les paramètres par défaut.
--> Branche tes sources de données externes à ton PC (clé USB, disque dur externe, etc...) sans les ouvrir.
--> Double-clique sur le raccourci UsbFix sur ton Bureau.
--> Le PC va redémarrer.
--> Après redémarrage, poste le rapport UsbFix.txt
Note : le rapport UsbFix.txt est sauvegardé à la racine du disque.
(Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet "Fichier", "Nouvelle tâche", tape explorer.exe et valide)
3/
---> Relance RSIT et poste les deux rapports.
Alors voici dans l'ordre le rapport USB fix (à plusieurs moment il m'a mis qu'il ne trouver pas de disque, j'ai mis ignorer)
-------------- UsbFix V2.402 ---------------
* User : M‚lanie et G‚rald - YOUR-725C3F37DE
* Outils mis a jours le 10/11/2008 par Chiquitine29 et Chimay8
* Recherche effectuée à 10:28:55 le 11/11/2008
* Windows Xp - Internet Explorer 7.0.5730.13
--------------- [ Processus actifs ] ----------------
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
C:\WINDOWS\system32\bgsvcgen.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\1.tmp\b2e.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
--------------- [ Informations lecteurs ] ----------------
C: - Lecteur fixe
D: - Lecteur fixe
+- Contenu de l'autorun : D:\autorun.inf
--------------- [ Registre / Startup ] ----------------
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
NvCplDaemon REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
F-Secure Manager REG_SZ "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
F-Secure TNB REG_SZ "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
F-Secure Startup Wizard REG_SZ "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
News Service REG_SZ "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
WOOTASKBARICON REG_SZ C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
Time41bias REG_SZ C:\Documents and Settings\All Users\Application Data\Up itch time 4\Blah mess.exe
REGSHAVE REG_SZ C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
QuickTime Task REG_SZ "C:\Program Files\QuickTime\qttask.exe" -atboottime
WOOWATCH REG_SZ C:\PROGRA~1\Wanadoo\Watch.exe
CanonSolutionMenu REG_SZ C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
CanonMyPrinter REG_SZ C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
SSBkgdUpdate REG_SZ "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
OpwareSE4 REG_SZ "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
RemoteControl REG_SZ "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
SunJavaUpdateSched REG_SZ "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents
! REG.EXE VERSION 3.0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
WOOKIT REG_SZ C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
ctfmon.exe REG_SZ C:\WINDOWS\system32\ctfmon.exe
BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} REG_SZ "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
MsgCenterExe REG_SZ "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
OrangePlayer REG_SZ c:\program files\orange\media player\Media Player.exe /systray
Power2GoExpress REG_SZ NA
--------------- [ Registre / Mountpoint2 ] ----------------
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3f3a4671-43db-11db-ad8c-806d6172696f}\Shell\AutoRun\command
--------------- [ Nettoyage des disques ] ----------------
Supprimé ! - [13/09/2004 12:15] D:\autorun.inf
Supprimé ! - [17/09/2004 12:31] D:\Folder.htt
Supprimé ! - [10/09/2002 15:54] D:\info.exe
--------------- [ Listing des fichiers présents ] ----------------
-> /!\ Le resultat doit etre interprété par un spécialiste /!\
[24/10/2004 18:25][--a------] C:\AUTOEXEC.BAT
[05/08/2004 20:00][-rahs----] C:\NTDETECT.COM
[01/09/2008 07:25][--a------] C:\Photocite Collection 4.exe
[01/09/2008 07:25][--a------] C:\uninstall.exe
[01/09/2008 07:25][--a------] C:\vcredist_x86.exe
[22/11/2006 12:22][-rahs----] C:\boot.ini
[29/08/2002 13:00][---hs----] D:\NTDETECT.COM
[13/09/2001 20:29][---hs----] D:\winbom.ini
[13/09/2001 20:29][---hs----] D:\Desktop.ini
--------------- [ Vaccination ] ----------------
C:\autorun.inf - Dossier autorun.inf crée par UsbFix !
D:\autorun.inf - Dossier autorun.inf crée par UsbFix !
--------------- ! Fin du rapport ! ----------------
nfo.txt logfile of random's system information tool 1.04 2008-11-11 10:51:46
======Uninstall list======
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Spyware Scanner"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Spyware"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Virus Client Security Installer"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Virus"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure DAAS"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Diagnostics"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure E-mail Scanning"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure FWES"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure GUI"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Help"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Internet Shield"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Management Agent"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Spam Control"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Spam Scanner"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure TNB"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"News Service"
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9c.exe -uninstallUnlock
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Ad-remover-->C:\Program Files\Ad-remover\Uninstal.exe
AntiVirus Firewall-->C:\PROGRA~1\ANTIVI~1\Common\fsbwih.exe /uninstall
Apple Mobile Device Support-->MsiExec.exe /I{3EBD3749-304E-4A4C-9575-C00E5F015217}
Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
BigFix-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34FF0741-EC67-4C05-AC2A-6D257123DF2E}\setup.exe" -l0x40c -uninst -f"C:\Program Files\BigFix\Uninst.isu" -c"C:\Program Files\BigFix\Lib\UninstallHelper.dll"
Browser Address Error Redirector-->regsvr32 /u /s "c:\windows\system32\BAE.dll"
Canon MP Navigator EX 1.0-->"C:\Program Files\Canon\MP Navigator EX 1.0\Maint.exe" /UninstallRemove C:\Program Files\Canon\MP Navigator EX 1.0\uninst.ini
Canon MP210 series-->"C:\WINDOWS\system32\CanonIJ Uninstaller Information\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP210_series\DelDrv.exe" /U:{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP210_series /L0x000c
Canon My Printer-->C:\Program Files\Canon\MyPrinter\uninst.exe uninst.ini
Canon Utilities Easy-PhotoPrint EX-->C:\Program Files\Canon\Easy-PhotoPrint EX\uninst.exe uninst.ini
Canon Utilities Solution Menu-->C:\Program Files\Canon\SolutionMenu\uninst.exe uninst.ini
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Détecteur de flux Windows Live Toolbar-->MsiExec.exe /X{B9C5669B-4705-4046-A3EE-0BFD08D7B668}
Digital Media Reader-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{4AC55A61-BA20-4DF5-ABFF-8F4819E0C875} /l1033
DVD Solution-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\setup.exe" -uninstall
EBP Comptes Bancaires 2005-->"C:\Program Files\EBP\Comptes Bancaires\unins000.exe"
e-Carte Bleue Société Générale-->"C:\Program Files\InstallShield Installation Information\{EC3CAFA6-1CDC-46D1-AD8D-B66CFDE59EE0}\setup.exe" -runfromtemp -l0x040c -removeonly
Empereur : L'Empire du Milieu-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{821DABD6-26F2-49E5-AE55-40A589ADBE6D}\setup.exe" -l0x40c
Enregistrement utilisateur de Canon MP210 series-->C:\Program Files\Canon\IJEREG\MP210 series\UNINST.EXE
ESRI ArcExplorer 1.1.5-->C:\Program Files\ESRI\ArcExplorer\UNWISE32.EXE C:\PROGRA~1\ESRI\ARCEXP~1\INSTALL.LOG "ESRI ArcExplorer 1.1.5"
Extension MSN pour Windows Live Toolbar-->MsiExec.exe /X{0C858954-92B6-40C8-84D0-D095070C263C}
FUJIFILM USB Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5490882C-6961-11D5-BAE5-00E0188E010B}\SETUP.EXE"
GalleryPlayer Images-->C:\WINDOWS\GalleryPlayer Images Uninstaller.exe
Gestionnaire Internet-->C:\PROGRA~1\Wanadoo\uninstall.exe
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
IKEA Home Planner-->MsiExec.exe /I{A987FEC8-5616-49BD-BCA6-ACFFFE7403FE}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
king.com (remove only)-->"C:\WINDOWS\king-uninstall.exe"
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Media Player-->"C:\Program Files\Orange\Media Player\uninstall.exe"
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Small Business Edition 2003-->MsiExec.exe /I{91CA040C-6000-11D3-8CFE-0150048383C9}
Microsoft Photo 2006 Starter Edition-->"C:\Program Files\Fichiers communs\Microsoft Shared\Picture It!\RmvSuite.exe" ADDREMOVE=1 SKU=TRIAL VERSION=11
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Works-->MsiExec.exe /I{6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
Multimedia Keyboard Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6E66ECBD-FCA7-4AE1-A8C5-1CA78BEEB057}\Setup.exe" -l0x40c
Navigateur Orange-->C:\PROGRA~1\Wanadoo\Shell.exe inst\uninst_FTBrowser.shl
Navigation par onglets (Windows Live Toolbar)-->MsiExec.exe /X{C087CD39-A5D9-4F1A-9BC6-3670C54A0912}
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
Pacific Fighters-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{E149E957-F289-45E3-8645-1794A173F5AB} /l1036
Package de pilotes Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)-->C:\PROGRA~1\DIFX\7B44739871F4D539FA473F57A832EA4B6A59EF06\DPInst.exe /d /u C:\WINDOWS\system32\DRVSTORE\amdk8_C7A451815AD6A55564D6F47B5A12C61D8B4DCFD1\amdk8.inf
Paint.NET v3.31-->MsiExec.exe /X{51AFB69C-1C54-4C77-A888-2860F8CD3E7D}
Photocite Collection 4-->"C:\uninstall.exe"
Power2Go 4.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\setup.exe" -uninstall
PowerDVD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall
QuickTime-->MsiExec.exe /I{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}
REALTEK GbE & FE Ethernet PCI NIC Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}\setup.exe" -l0x40c -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
SafeCast Shared Components-->C:\Program Files\Fichiers communs\Macrovision Shared\SafeCast\Install\CDAC13BA.EXE /uninstall
SAGEM F@st 800-840-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}\setup.exe" -l0x40c
ScanSoft OmniPage SE 4-->MsiExec.exe /I{DEE88727-779B-47A9-ACEF-F87CA5F92A65}
Super Casse-Tête-->MsiExec.exe /X{1F6EA582-6AF3-4FD3-AC28-731CD2664CE4}
Update for Windows XP (KB953356)-->"C:\WINDOWS\$NtUninstallKB953356$\spuninst\spuninst.exe"
UsbFix-->C:\Program Files\UsbFix\Uninstal.exe
Utilitaire de sauvegarde Windows-->MsiExec.exe /I{76EFFC7C-17A6-479D-9E47-8E658C1695AE}
VideoLAN VLC media player 0.8.6c-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live Toolbar-->C:\Program Files\Windows Live Toolbar\UnInstall.exe {DE56FE92-9AD5-4DCB-9111-DDDF73EA5E5E}
Windows Live Toolbar-->MsiExec.exe /X{DE56FE92-9AD5-4DCB-9111-DDDF73EA5E5E}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Format SDK Hotfix - KB891122-->"C:\WINDOWS\$NtUninstallKB891122$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
Zuma Deluxe! 1.0-->C:\WINDOWS\iun6002.exe "C:\Documents and Settings\Mélanie et Gérald\Mes documents\exterieur\irunin.ini"
======Security center information======
AV: AntiVirus Firewall 6.15
FW: AntiVirus Firewall 6.15
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 75 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=4b02
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre1.5.0_09\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.5.0_09\lib\ext\QTJava.zip
-----------------EOF-----------------
Logfile of random's system information tool 1.04 (written by random/random)
Run by Mélanie et Gérald at 2008-11-11 10:51:44
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 154 GB (83%) free of 187 GB
Total RAM: 894 MB (52% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:51:45, on 11/11/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
C:\WINDOWS\system32\bgsvcgen.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Wanadoo\Watch.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Mélanie et Gérald\Bureau\RSIT.exe
C:\Program Files\trend micro\Mélanie et Gérald.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.gateway.com/g/startpage.html?Ch=Retail&Br=EM&Loc=FRN_FR&Sys=DTP&M=E4092
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: (no name) - {41D68ED8-4CFF-4115-88A6-6EBB8AF19000} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\windows\system32\BAE.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [Time41bias] C:\Documents and Settings\All Users\Application Data\Up itch time 4\Blah mess.exe
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MsgCenterExe] "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
O4 - HKCU\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray
O4 - HKCU\..\Run: [Power2GoExpress] NA
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: BigFix.lnk = C:\Program Files\BigFix\bigfix.exe
O4 - Global Startup: e-Carte Bleue Société Générale.lnk = ?
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: (no name) - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - (no file)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {45A0A292-ECC6-4D8F-9EA9-A4BD411D24C1} (king.com) - http://fr.midas.games.yahoo.net/ctl/kingcomie.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.extrafilm.fr/ImageUploader4.cab
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx
O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IPSUploader Control) - http://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{F38FDCCB-8175-4062-A865-B6A583EABE1D}: NameServer = 81.253.149.9 80.10.246.132
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
-------------- UsbFix V2.402 ---------------
* User : M‚lanie et G‚rald - YOUR-725C3F37DE
* Outils mis a jours le 10/11/2008 par Chiquitine29 et Chimay8
* Recherche effectuée à 10:28:55 le 11/11/2008
* Windows Xp - Internet Explorer 7.0.5730.13
--------------- [ Processus actifs ] ----------------
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
C:\WINDOWS\system32\bgsvcgen.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\1.tmp\b2e.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
--------------- [ Informations lecteurs ] ----------------
C: - Lecteur fixe
D: - Lecteur fixe
+- Contenu de l'autorun : D:\autorun.inf
--------------- [ Registre / Startup ] ----------------
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
NvCplDaemon REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
F-Secure Manager REG_SZ "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
F-Secure TNB REG_SZ "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
F-Secure Startup Wizard REG_SZ "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
News Service REG_SZ "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
WOOTASKBARICON REG_SZ C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
Time41bias REG_SZ C:\Documents and Settings\All Users\Application Data\Up itch time 4\Blah mess.exe
REGSHAVE REG_SZ C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
QuickTime Task REG_SZ "C:\Program Files\QuickTime\qttask.exe" -atboottime
WOOWATCH REG_SZ C:\PROGRA~1\Wanadoo\Watch.exe
CanonSolutionMenu REG_SZ C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
CanonMyPrinter REG_SZ C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
SSBkgdUpdate REG_SZ "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
OpwareSE4 REG_SZ "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
RemoteControl REG_SZ "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
SunJavaUpdateSched REG_SZ "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents
! REG.EXE VERSION 3.0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
WOOKIT REG_SZ C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
ctfmon.exe REG_SZ C:\WINDOWS\system32\ctfmon.exe
BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} REG_SZ "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
MsgCenterExe REG_SZ "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
OrangePlayer REG_SZ c:\program files\orange\media player\Media Player.exe /systray
Power2GoExpress REG_SZ NA
--------------- [ Registre / Mountpoint2 ] ----------------
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3f3a4671-43db-11db-ad8c-806d6172696f}\Shell\AutoRun\command
--------------- [ Nettoyage des disques ] ----------------
Supprimé ! - [13/09/2004 12:15] D:\autorun.inf
Supprimé ! - [17/09/2004 12:31] D:\Folder.htt
Supprimé ! - [10/09/2002 15:54] D:\info.exe
--------------- [ Listing des fichiers présents ] ----------------
-> /!\ Le resultat doit etre interprété par un spécialiste /!\
[24/10/2004 18:25][--a------] C:\AUTOEXEC.BAT
[05/08/2004 20:00][-rahs----] C:\NTDETECT.COM
[01/09/2008 07:25][--a------] C:\Photocite Collection 4.exe
[01/09/2008 07:25][--a------] C:\uninstall.exe
[01/09/2008 07:25][--a------] C:\vcredist_x86.exe
[22/11/2006 12:22][-rahs----] C:\boot.ini
[29/08/2002 13:00][---hs----] D:\NTDETECT.COM
[13/09/2001 20:29][---hs----] D:\winbom.ini
[13/09/2001 20:29][---hs----] D:\Desktop.ini
--------------- [ Vaccination ] ----------------
C:\autorun.inf - Dossier autorun.inf crée par UsbFix !
D:\autorun.inf - Dossier autorun.inf crée par UsbFix !
--------------- ! Fin du rapport ! ----------------
nfo.txt logfile of random's system information tool 1.04 2008-11-11 10:51:46
======Uninstall list======
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Spyware Scanner"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Spyware"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Virus Client Security Installer"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Anti-Virus"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure DAAS"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Diagnostics"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure E-mail Scanning"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure FWES"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure GUI"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Help"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Internet Shield"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Management Agent"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Spam Control"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure Spam Scanner"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"F-Secure TNB"
-->"C:\Program Files\AntivirusFirewall\fsuninst.exe" /UninstRegKey:"News Service"
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9c.exe -uninstallUnlock
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Ad-remover-->C:\Program Files\Ad-remover\Uninstal.exe
AntiVirus Firewall-->C:\PROGRA~1\ANTIVI~1\Common\fsbwih.exe /uninstall
Apple Mobile Device Support-->MsiExec.exe /I{3EBD3749-304E-4A4C-9575-C00E5F015217}
Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
BigFix-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34FF0741-EC67-4C05-AC2A-6D257123DF2E}\setup.exe" -l0x40c -uninst -f"C:\Program Files\BigFix\Uninst.isu" -c"C:\Program Files\BigFix\Lib\UninstallHelper.dll"
Browser Address Error Redirector-->regsvr32 /u /s "c:\windows\system32\BAE.dll"
Canon MP Navigator EX 1.0-->"C:\Program Files\Canon\MP Navigator EX 1.0\Maint.exe" /UninstallRemove C:\Program Files\Canon\MP Navigator EX 1.0\uninst.ini
Canon MP210 series-->"C:\WINDOWS\system32\CanonIJ Uninstaller Information\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP210_series\DelDrv.exe" /U:{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP210_series /L0x000c
Canon My Printer-->C:\Program Files\Canon\MyPrinter\uninst.exe uninst.ini
Canon Utilities Easy-PhotoPrint EX-->C:\Program Files\Canon\Easy-PhotoPrint EX\uninst.exe uninst.ini
Canon Utilities Solution Menu-->C:\Program Files\Canon\SolutionMenu\uninst.exe uninst.ini
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Détecteur de flux Windows Live Toolbar-->MsiExec.exe /X{B9C5669B-4705-4046-A3EE-0BFD08D7B668}
Digital Media Reader-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{4AC55A61-BA20-4DF5-ABFF-8F4819E0C875} /l1033
DVD Solution-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\setup.exe" -uninstall
EBP Comptes Bancaires 2005-->"C:\Program Files\EBP\Comptes Bancaires\unins000.exe"
e-Carte Bleue Société Générale-->"C:\Program Files\InstallShield Installation Information\{EC3CAFA6-1CDC-46D1-AD8D-B66CFDE59EE0}\setup.exe" -runfromtemp -l0x040c -removeonly
Empereur : L'Empire du Milieu-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{821DABD6-26F2-49E5-AE55-40A589ADBE6D}\setup.exe" -l0x40c
Enregistrement utilisateur de Canon MP210 series-->C:\Program Files\Canon\IJEREG\MP210 series\UNINST.EXE
ESRI ArcExplorer 1.1.5-->C:\Program Files\ESRI\ArcExplorer\UNWISE32.EXE C:\PROGRA~1\ESRI\ARCEXP~1\INSTALL.LOG "ESRI ArcExplorer 1.1.5"
Extension MSN pour Windows Live Toolbar-->MsiExec.exe /X{0C858954-92B6-40C8-84D0-D095070C263C}
FUJIFILM USB Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5490882C-6961-11D5-BAE5-00E0188E010B}\SETUP.EXE"
GalleryPlayer Images-->C:\WINDOWS\GalleryPlayer Images Uninstaller.exe
Gestionnaire Internet-->C:\PROGRA~1\Wanadoo\uninstall.exe
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
IKEA Home Planner-->MsiExec.exe /I{A987FEC8-5616-49BD-BCA6-ACFFFE7403FE}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
king.com (remove only)-->"C:\WINDOWS\king-uninstall.exe"
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Media Player-->"C:\Program Files\Orange\Media Player\uninstall.exe"
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Small Business Edition 2003-->MsiExec.exe /I{91CA040C-6000-11D3-8CFE-0150048383C9}
Microsoft Photo 2006 Starter Edition-->"C:\Program Files\Fichiers communs\Microsoft Shared\Picture It!\RmvSuite.exe" ADDREMOVE=1 SKU=TRIAL VERSION=11
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Works-->MsiExec.exe /I{6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
Multimedia Keyboard Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6E66ECBD-FCA7-4AE1-A8C5-1CA78BEEB057}\Setup.exe" -l0x40c
Navigateur Orange-->C:\PROGRA~1\Wanadoo\Shell.exe inst\uninst_FTBrowser.shl
Navigation par onglets (Windows Live Toolbar)-->MsiExec.exe /X{C087CD39-A5D9-4F1A-9BC6-3670C54A0912}
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
Pacific Fighters-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{E149E957-F289-45E3-8645-1794A173F5AB} /l1036
Package de pilotes Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)-->C:\PROGRA~1\DIFX\7B44739871F4D539FA473F57A832EA4B6A59EF06\DPInst.exe /d /u C:\WINDOWS\system32\DRVSTORE\amdk8_C7A451815AD6A55564D6F47B5A12C61D8B4DCFD1\amdk8.inf
Paint.NET v3.31-->MsiExec.exe /X{51AFB69C-1C54-4C77-A888-2860F8CD3E7D}
Photocite Collection 4-->"C:\uninstall.exe"
Power2Go 4.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\setup.exe" -uninstall
PowerDVD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall
QuickTime-->MsiExec.exe /I{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}
REALTEK GbE & FE Ethernet PCI NIC Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}\setup.exe" -l0x40c -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
SafeCast Shared Components-->C:\Program Files\Fichiers communs\Macrovision Shared\SafeCast\Install\CDAC13BA.EXE /uninstall
SAGEM F@st 800-840-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}\setup.exe" -l0x40c
ScanSoft OmniPage SE 4-->MsiExec.exe /I{DEE88727-779B-47A9-ACEF-F87CA5F92A65}
Super Casse-Tête-->MsiExec.exe /X{1F6EA582-6AF3-4FD3-AC28-731CD2664CE4}
Update for Windows XP (KB953356)-->"C:\WINDOWS\$NtUninstallKB953356$\spuninst\spuninst.exe"
UsbFix-->C:\Program Files\UsbFix\Uninstal.exe
Utilitaire de sauvegarde Windows-->MsiExec.exe /I{76EFFC7C-17A6-479D-9E47-8E658C1695AE}
VideoLAN VLC media player 0.8.6c-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live Toolbar-->C:\Program Files\Windows Live Toolbar\UnInstall.exe {DE56FE92-9AD5-4DCB-9111-DDDF73EA5E5E}
Windows Live Toolbar-->MsiExec.exe /X{DE56FE92-9AD5-4DCB-9111-DDDF73EA5E5E}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Format SDK Hotfix - KB891122-->"C:\WINDOWS\$NtUninstallKB891122$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
Zuma Deluxe! 1.0-->C:\WINDOWS\iun6002.exe "C:\Documents and Settings\Mélanie et Gérald\Mes documents\exterieur\irunin.ini"
======Security center information======
AV: AntiVirus Firewall 6.15
FW: AntiVirus Firewall 6.15
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 75 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=4b02
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre1.5.0_09\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.5.0_09\lib\ext\QTJava.zip
-----------------EOF-----------------
Logfile of random's system information tool 1.04 (written by random/random)
Run by Mélanie et Gérald at 2008-11-11 10:51:44
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 154 GB (83%) free of 187 GB
Total RAM: 894 MB (52% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:51:45, on 11/11/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
C:\WINDOWS\system32\bgsvcgen.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Wanadoo\Watch.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Mélanie et Gérald\Bureau\RSIT.exe
C:\Program Files\trend micro\Mélanie et Gérald.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.gateway.com/g/startpage.html?Ch=Retail&Br=EM&Loc=FRN_FR&Sys=DTP&M=E4092
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: (no name) - {41D68ED8-4CFF-4115-88A6-6EBB8AF19000} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\windows\system32\BAE.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [Time41bias] C:\Documents and Settings\All Users\Application Data\Up itch time 4\Blah mess.exe
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MsgCenterExe] "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
O4 - HKCU\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray
O4 - HKCU\..\Run: [Power2GoExpress] NA
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: BigFix.lnk = C:\Program Files\BigFix\bigfix.exe
O4 - Global Startup: e-Carte Bleue Société Générale.lnk = ?
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: (no name) - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - (no file)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {45A0A292-ECC6-4D8F-9EA9-A4BD411D24C1} (king.com) - http://fr.midas.games.yahoo.net/ctl/kingcomie.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.extrafilm.fr/ImageUploader4.cab
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx
O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IPSUploader Control) - http://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{F38FDCCB-8175-4062-A865-B6A583EABE1D}: NameServer = 81.253.149.9 80.10.246.132
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 297
11 nov. 2008 à 11:13
11 nov. 2008 à 11:13
---> Désinstalle UsbFix et AD-Remover.
---> Lance ce fichier : C:\Program Files\trend micro\Mélanie et Gérald.exe
---> Clique sur Do a system scan and save a logfile.
---> Le bloc-notes s'ouvrira, fais un copier/coller de tout son contenu ici dans ton prochain message.
Le problème principal est toujours présent ?
---> Lance ce fichier : C:\Program Files\trend micro\Mélanie et Gérald.exe
---> Clique sur Do a system scan and save a logfile.
---> Le bloc-notes s'ouvrira, fais un copier/coller de tout son contenu ici dans ton prochain message.
Le problème principal est toujours présent ?
Voici le nouveau rapport, Malheureusement j'ai toujours le même message d'erreur pour télécharger ma musique :(
Idem pour ma page e-bay
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:44:53, on 11/11/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
C:\WINDOWS\system32\bgsvcgen.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Wanadoo\Watch.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Outlook Express\msimn.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\trend micro\Mélanie et Gérald.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.gateway.com/g/startpage.html?Ch=Retail&Br=EM&Loc=FRN_FR&Sys=DTP&M=E4092
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: (no name) - {41D68ED8-4CFF-4115-88A6-6EBB8AF19000} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\windows\system32\BAE.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [Time41bias] C:\Documents and Settings\All Users\Application Data\Up itch time 4\Blah mess.exe
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MsgCenterExe] "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
O4 - HKCU\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray
O4 - HKCU\..\Run: [Power2GoExpress] NA
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: BigFix.lnk = C:\Program Files\BigFix\bigfix.exe
O4 - Global Startup: e-Carte Bleue Société Générale.lnk = ?
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: (no name) - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - (no file)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {45A0A292-ECC6-4D8F-9EA9-A4BD411D24C1} (king.com) - http://fr.midas.games.yahoo.net/ctl/kingcomie.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.extrafilm.fr/ImageUploader4.cab
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx
O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IPSUploader Control) - http://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{F38FDCCB-8175-4062-A865-B6A583EABE1D}: NameServer = 81.253.149.9 80.10.246.132
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
Idem pour ma page e-bay
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:44:53, on 11/11/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
C:\WINDOWS\system32\bgsvcgen.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Wanadoo\Watch.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Outlook Express\msimn.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\trend micro\Mélanie et Gérald.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.gateway.com/g/startpage.html?Ch=Retail&Br=EM&Loc=FRN_FR&Sys=DTP&M=E4092
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: (no name) - {41D68ED8-4CFF-4115-88A6-6EBB8AF19000} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\windows\system32\BAE.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [Time41bias] C:\Documents and Settings\All Users\Application Data\Up itch time 4\Blah mess.exe
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MsgCenterExe] "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
O4 - HKCU\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray
O4 - HKCU\..\Run: [Power2GoExpress] NA
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: BigFix.lnk = C:\Program Files\BigFix\bigfix.exe
O4 - Global Startup: e-Carte Bleue Société Générale.lnk = ?
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: (no name) - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - (no file)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {45A0A292-ECC6-4D8F-9EA9-A4BD411D24C1} (king.com) - http://fr.midas.games.yahoo.net/ctl/kingcomie.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.extrafilm.fr/ImageUploader4.cab
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx
O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IPSUploader Control) - http://as.photoprintit.de/ips-opdata/layout/default01/activex/IPSUploader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{F38FDCCB-8175-4062-A865-B6A583EABE1D}: NameServer = 81.253.149.9 80.10.246.132
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Fichiers communs\New Boundary\PrismXL\PRISMXL.SYS
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 297
12 nov. 2008 à 03:25
12 nov. 2008 à 03:25
"Malheureusement j'ai toujours le même message d'erreur pour télécharger ma musique :(
Idem pour ma page e-bay"
---> Ce problème date de quand ?
Idem pour ma page e-bay"
---> Ce problème date de quand ?
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 297
12 nov. 2008 à 19:27
12 nov. 2008 à 19:27
As-tu essayé avec Mozilla Firefox ?
Non pas encore il me semble que c'est un navigateur différent d'IE. Peux tu m'indiquer comment l'installer pour ne pas qu'il rentre en conflit avec IE ?
Merci encore pour ton aide
Merci encore pour ton aide
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 297
12 nov. 2008 à 20:04
12 nov. 2008 à 20:04
http://www.mozilla-europe.org/fr/firefox/
MERCI !!!
Le problème #2 concernant Ebay est réglé grace à Firefox !!!!
Pour le 1er le site d'Orange ne permet le téléchargement qu'à partir d'IE, ils iront donc ce faire voir !!!
Merci encore beaucoup pour ton aide, depuis les manip, j'ai l'impression que mon PC patine moins !!!
Je ne connaissait pas ce site et je vais donc vivement le conseiller dans mon entourage en cas de petits problèmes
Le problème #2 concernant Ebay est réglé grace à Firefox !!!!
Pour le 1er le site d'Orange ne permet le téléchargement qu'à partir d'IE, ils iront donc ce faire voir !!!
Merci encore beaucoup pour ton aide, depuis les manip, j'ai l'impression que mon PC patine moins !!!
Je ne connaissait pas ce site et je vais donc vivement le conseiller dans mon entourage en cas de petits problèmes
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 297
13 nov. 2008 à 21:42
13 nov. 2008 à 21:42
Tu parles de quel téléchargement d'Orange ?
Il est recommandé d'utiliser Mozilla Firefox qu'Internet Explorer.
Il est recommandé d'utiliser Mozilla Firefox qu'Internet Explorer.
10 nov. 2008 à 10:41
voici le rapport
--------------------\\ Lop S&D 4.2.4-9c XP/Vista
"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [1] ( 10/11/2008|10:37 )
--------------------\\ Listing des dossiers dans APPLIC~1
[24/10/2004|18:30] C:\DOCUME~1\ADMINI~2\APPLIC~1\Identities
[14/09/2006|11:56] C:\DOCUME~1\ADMINI~2\APPLIC~1\Microsoft
[14/09/2006|11:54] C:\DOCUME~1\ADMINI~2\APPLIC~1\SampleView
[13/02/2008|22:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/09/2007|16:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[01/09/2007|16:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[12/01/2007|18:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[04/02/2008|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
[31/12/2006|17:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[13/11/2006|20:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[07/03/2008|22:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugawi
[08/08/2008|13:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[28/08/2008|14:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hps
[04/02/2008|19:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[13/01/2007|12:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[14/09/2006|11:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[14/09/2006|11:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
[18/11/2006|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com Personal Firewall
[12/06/2007|19:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/09/2006|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Prism Deploy
[04/02/2008|19:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[06/12/2006|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[20/03/2007|14:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Up itch time 4
[13/11/2006|18:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[11/11/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[09/12/2006|22:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[24/10/2004|18:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[19/04/2008|23:48] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[14/09/2006|11:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[02/11/2006|11:28] C:\DOCUME~1\LOCALS~1\APPLIC~1\McAfee.com Personal Firewall
[21/04/2007|11:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[16/06/2008|07:59] C:\DOCUME~1\MLANIE~1\APPLIC~1\Adobe
[07/02/2007|21:32] C:\DOCUME~1\MLANIE~1\APPLIC~1\AdobeUM
[18/11/2007|11:48] C:\DOCUME~1\MLANIE~1\APPLIC~1\Ahead
[01/09/2007|16:28] C:\DOCUME~1\MLANIE~1\APPLIC~1\Apple Computer
[31/12/2007|17:38] C:\DOCUME~1\MLANIE~1\APPLIC~1\AVSMedia
[12/03/2007|21:39] C:\DOCUME~1\MLANIE~1\APPLIC~1\BitDownload
[04/02/2008|19:16] C:\DOCUME~1\MLANIE~1\APPLIC~1\Canon
[31/12/2006|17:43] C:\DOCUME~1\MLANIE~1\APPLIC~1\CyberLink
[22/11/2006|13:19] C:\DOCUME~1\MLANIE~1\APPLIC~1\F-Secure
[28/02/2008|21:01] C:\DOCUME~1\MLANIE~1\APPLIC~1\Fugawi
[04/03/2008|21:46] C:\DOCUME~1\MLANIE~1\APPLIC~1\FUJIFILM
[15/11/2006|23:00] C:\DOCUME~1\MLANIE~1\APPLIC~1\Google
[10/12/2006|23:02] C:\DOCUME~1\MLANIE~1\APPLIC~1\Help
[24/10/2004|18:30] C:\DOCUME~1\MLANIE~1\APPLIC~1\Identities
[22/11/2006|13:14] C:\DOCUME~1\MLANIE~1\APPLIC~1\ispnews
[06/03/2007|20:37] C:\DOCUME~1\MLANIE~1\APPLIC~1\Leadertech
[25/06/2007|20:14] C:\DOCUME~1\MLANIE~1\APPLIC~1\love locks team
[18/12/2006|20:04] C:\DOCUME~1\MLANIE~1\APPLIC~1\Macromedia
[15/11/2006|22:33] C:\DOCUME~1\MLANIE~1\APPLIC~1\McAfee.com Personal Firewall
[19/06/2008|21:35] C:\DOCUME~1\MLANIE~1\APPLIC~1\Media Player
[31/07/2008|22:38] C:\DOCUME~1\MLANIE~1\APPLIC~1\Microsoft
[10/03/2007|18:16] C:\DOCUME~1\MLANIE~1\APPLIC~1\Mozilla
[15/11/2006|10:37] C:\DOCUME~1\MLANIE~1\APPLIC~1\MSNInstaller
[13/11/2006|20:07] C:\DOCUME~1\MLANIE~1\APPLIC~1\PEX
[18/04/2008|20:44] C:\DOCUME~1\MLANIE~1\APPLIC~1\Player Orange
[19/05/2008|18:50] C:\DOCUME~1\MLANIE~1\APPLIC~1\Real
[14/09/2006|11:54] C:\DOCUME~1\MLANIE~1\APPLIC~1\SampleView
[04/02/2008|19:04] C:\DOCUME~1\MLANIE~1\APPLIC~1\ScanSoft
[30/11/2006|15:30] C:\DOCUME~1\MLANIE~1\APPLIC~1\Seven Zip
[01/01/2008|16:18] C:\DOCUME~1\MLANIE~1\APPLIC~1\Skype
[02/11/2006|21:22] C:\DOCUME~1\MLANIE~1\APPLIC~1\Sun
[10/03/2007|18:16] C:\DOCUME~1\MLANIE~1\APPLIC~1\Talkback
[06/03/2007|16:35] C:\DOCUME~1\MLANIE~1\APPLIC~1\Template
[20/07/2007|10:10] C:\DOCUME~1\MLANIE~1\APPLIC~1\vlc
[20/07/2007|14:59] C:\DOCUME~1\MLANIE~1\APPLIC~1\WildBit Viewer
[24/10/2004|18:30] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[23/10/2008 08:39][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[10/11/2008 09:51][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
[10/11/2008 09:31][--a------] C:\WINDOWS\tasks\Scheduled scanning task.job
[05/08/2004 20:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[10/11/2008 09:31][--ah-----] C:\WINDOWS\tasks\SA.DAT
--------------------\\ Listing des dossiers dans C:\Program Files
[19/07/2008|09:00] C:\Program Files\Adobe
[22/11/2006|13:11] C:\Program Files\AntivirusFirewall
[13/10/2007|18:21] C:\Program Files\Apple Software Update
[14/09/2006|11:56] C:\Program Files\BigFix
[06/03/2007|20:34] C:\Program Files\BingoCafe
[10/09/2008|21:59] C:\Program Files\BitDownload
[14/01/2007|20:43] C:\Program Files\Boonty
[16/01/2007|10:15] C:\Program Files\BoontyGames
[04/02/2008|19:08] C:\Program Files\Canon
[04/02/2008|19:00] C:\Program Files\CanonBJ
[24/10/2004|18:22] C:\Program Files\ComPlus Applications
[23/10/2008|10:16] C:\Program Files\CyberLink
[14/09/2006|11:32] C:\Program Files\DIFX
[14/09/2006|11:46] C:\Program Files\Digital Media Reader
[04/03/2007|18:38] C:\Program Files\directx
[21/01/2007|12:04] C:\Program Files\EBP
[19/01/2007|12:13] C:\Program Files\e-Carte Bleue
[20/07/2008|12:09] C:\Program Files\e-Carte Bleue Soci‚t‚ G‚n‚rale
[29/10/2008|17:21] C:\Program Files\eMule
[02/05/2007|18:01] C:\Program Files\ESRI
[15/10/2008|15:31] C:\Program Files\Fichiers communs
[04/03/2008|21:46] C:\Program Files\FinePixViewer
[28/02/2008|20:57] C:\Program Files\Fugawi
[23/10/2008|10:59] C:\Program Files\Google
[14/09/2006|11:56] C:\Program Files\gtw_logo
[07/03/2008|22:40] C:\Program Files\Gunner 2
[19/06/2008|20:15] C:\Program Files\IKEA HomePlanner
[23/10/2008|10:16] C:\Program Files\InstallShield Installation Information
[07/11/2008|20:44] C:\Program Files\Internet Explorer
[08/08/2008|13:24] C:\Program Files\Java
[15/11/2006|22:54] C:\Program Files\Lavasoft
[11/03/2007|20:00] C:\Program Files\love locks team
[11/05/2004|08:57] C:\Program Files\MAPS
[18/11/2006|21:14] C:\Program Files\McAfee.com
[24/09/2008|19:52] C:\Program Files\Messenger
[06/11/2006|21:44] C:\Program Files\Micro Application
[14/09/2006|11:52] C:\Program Files\Microsoft Digital Image 2006
[24/10/2004|18:26] C:\Program Files\microsoft frontpage
[01/02/2007|17:47] C:\Program Files\Microsoft Office
[14/09/2006|11:53] C:\Program Files\Microsoft Works
[01/02/2007|17:46] C:\Program Files\Microsoft.NET
[24/09/2008|19:49] C:\Program Files\Movie Maker
[11/03/2007|12:54] C:\Program Files\Mozilla Firefox
[12/11/2006|11:20] C:\Program Files\MSN
[24/10/2004|18:21] C:\Program Files\MSN Gaming Zone
[04/02/2007|18:30] C:\Program Files\MSXML 4.0
[08/03/2008|10:19] C:\Program Files\Multi_Media
[04/03/2008|21:52] C:\Program Files\Multi_Media_France
[14/11/2007|13:55] C:\Program Files\Nero
[24/09/2008|19:46] C:\Program Files\NetMeeting
[24/10/2004|18:21] C:\Program Files\Online Services
[19/06/2008|21:01] C:\Program Files\Orange
[24/09/2008|19:46] C:\Program Files\Outlook Express
[09/10/2008|20:45] C:\Program Files\Paint.NET
[28/08/2008|12:47] C:\Program Files\PhotoCite Collection
[28/08/2008|12:49] C:\Program Files\Photocite Collection 4
[06/03/2007|20:07] C:\Program Files\PopCap Games
[01/09/2007|16:51] C:\Program Files\QuickTime
[15/11/2006|23:00] C:\Program Files\Real
[14/09/2006|11:55] C:\Program Files\Realtek
[11/01/2007|14:28] C:\Program Files\ReflexiveArcade
[21/07/2007|10:20] C:\Program Files\REGSHAVE
[14/01/2007|13:18] C:\Program Files\River Raider II
[28/09/2007|13:02] C:\Program Files\SAGEM
[15/11/2006|10:36] C:\Program Files\SAGEM(2)
[04/02/2008|19:04] C:\Program Files\ScanSoft
[11/11/2006|10:02] C:\Program Files\Securitoo
[24/10/2004|18:23] C:\Program Files\Services en ligne
[06/03/2007|20:36] C:\Program Files\TrackMaker
[10/11/2008|10:02] C:\Program Files\trend micro
[04/02/2007|22:00] C:\Program Files\Ubisoft
[24/10/2004|18:30] C:\Program Files\Uninstall Information
[20/07/2007|10:08] C:\Program Files\VideoLAN
[10/11/2008|10:34] C:\Program Files\Wanadoo
[06/01/2007|15:49] C:\Program Files\Windows Live Toolbar
[08/04/2007|13:14] C:\Program Files\Windows Media Connect 2
[24/09/2008|19:46] C:\Program Files\Windows Media Player
[24/09/2008|19:46] C:\Program Files\Windows NT
[24/10/2004|18:23] C:\Program Files\WindowsUpdate
[20/03/2008|21:13] C:\Program Files\WinRAR
[15/11/2006|10:36] C:\Program Files\WinZip
[24/10/2004|18:26] C:\Program Files\xerox
[15/11/2006|10:35] C:\Program Files\Yahoo!
[08/03/2007|15:04] C:\Program Files\Zone Labs
[06/03/2007|20:44] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[13/02/2008|22:57] C:\Program Files\Fichiers communs\Adobe
[19/05/2008|18:49] C:\Program Files\Fichiers communs\Ahead
[01/09/2007|16:28] C:\Program Files\Fichiers communs\Apple
[07/03/2008|22:39] C:\Program Files\Fichiers communs\AVSMedia
[12/01/2007|18:34] C:\Program Files\Fichiers communs\BOONTY Shared
[04/02/2008|19:03] C:\Program Files\Fichiers communs\CANON
[01/02/2007|17:47] C:\Program Files\Fichiers communs\DESIGNER
[07/03/2008|22:40] C:\Program Files\Fichiers communs\Fugawi
[15/10/2008|15:31] C:\Program Files\Fichiers communs\InstallShield
[14/09/2006|11:49] C:\Program Files\Fichiers communs\Java
[13/01/2007|13:38] C:\Program Files\Fichiers communs\Macrovision Shared
[28/08/2008|13:04] C:\Program Files\Fichiers communs\Microsoft Shared
[24/10/2004|18:23] C:\Program Files\Fichiers communs\MSSoap
[14/09/2006|11:31] C:\Program Files\Fichiers communs\New Boundary
[24/10/2004|20:16] C:\Program Files\Fichiers communs\ODBC
[19/05/2008|18:50] C:\Program Files\Fichiers communs\Real
[04/02/2008|19:04] C:\Program Files\Fichiers communs\ScanSoft Shared
[24/10/2004|18:23] C:\Program Files\Fichiers communs\Services
[24/10/2004|20:16] C:\Program Files\Fichiers communs\SpeechEngines
[24/09/2008|19:46] C:\Program Files\Fichiers communs\System
[07/03/2008|22:40] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 60 Processes )
IEXPLORE.EXE ~ [PID:3576]
--------------------\\ Recherche avec S_Lop
C:\DOCUME~1\MLANIE~1\APPLIC~1\LOVELO~1
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsd35.tmp
C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsgFD.tmp
C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsj1AF1.tmp
C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsk10A.tmp
C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsl84.tmp
C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsm112.tmp
C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsm1B1.tmp
C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsp36.tmp
C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsr11.tmp
C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsr1B6.tmp
C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nstmp
C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsv15B.tmp
C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp\nsw233.tmp
C:\DOCUME~1\MLANIE~1\APPLIC~1\Bitdownload
C:\DOCUME~1\MLANIE~1\APPLIC~1\BitDownload
C:\DOCUME~1\MLANIE~1\APPLIC~1\BitDownload\Data
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload\BitDownload.lnk
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\BitDownload\Uninstall BitDownload.lnk
C:\Program Files\BitDownload
C:\Program Files\BitDownload\BITDOWNLOAD.0XE
C:\Program Files\BitDownload\BitDownload.TRC
C:\Program Files\BitDownload\BitDownload_1.TRC
C:\Program Files\BitDownload\BitDownload_2.TRC
C:\Program Files\BitDownload\settings.ini
C:\Program Files\BitDownload\settings.stp
C:\Program Files\BitDownload\SkinCrafterDll.dll
C:\Program Files\BitDownload\Skins
C:\Program Files\BitDownload\Support
C:\Program Files\BitDownload\unins000.dat
C:\Program Files\BitDownload\unins000.exe
C:\Program Files\BitDownload\ZM
C:\Program Files\Multi_Media
C:\Program Files\Multi_Media_France
C:\Program Files\Multi_Media_France
C:\DOCUME~1\MLANIE~1\Cookies\mélanie_et_gérald@2xmoinscher[1].txt
C:\DOCUME~1\MLANIE~1\Cookies\mélanie_et_gérald@www.2xmoinscher[2].txt
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Softmanagerref]
"DisplayName"="CiD Help"
"UninstallString"="C:\\DOCUME~1\\MLANIE~1\\APPLIC~1\\LOVELO~1\\Forksoap.exe -uninstall"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MediaAmok"="C:\\DOCUME~1\\MLANIE~1\\APPLIC~1\\LOVELO~1\\Forksoap.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
--------------------\\ Verification du fichier Hosts
Fichier Hosts MODIFIE
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD
-> 72 [ 70 ## added by CiD ]
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-10 10:38:33
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\MLANIE~1\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\crack.au-143c79f9-1e7fbdea.au
C:\DOCUME~1\MLANIE~1\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\crack.au-143c79f9-1e7fbdea.idx
[F:1494][D:259]-> C:\DOCUME~1\MLANIE~1\LOCALS~1\Temp
[F:122][D:0]-> C:\DOCUME~1\MLANIE~1\Cookies
[F:12484][D:36]-> C:\DOCUME~1\MLANIE~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 10/11/2008|10:39 - Option : [1]
--------------------\\ Fin du rapport a 10:39