Aller au contenu

pepermint23

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    6

  • Inscription

  • Dernière visite

Autres informations

  • Mes langues
    français,anglais

pepermint23's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. pepermint23
    Merci beaucoup pour votre aide et le temps que vous m'avez consacré Pear, me voilà rassurée ! Bravo pour ce forum et bonne continuation
  2. pepermint23
    Et l'analyse d'antivir en mode sans echec ( désolée de ne répondre que maintenant, ça a quand même pris 8 heures, c'est normal ?) Avira AntiVir Personal Date de création du fichier de rapport : lundi 14 septembre 2009 19:24 La recherche porte sur 1706803 souches de virus. Détenteur de la licence : Avira AntiVir Personal - FREE Antivirus Numéro de série : 0000149996-ADJIE-0000001 Plateforme : Windows XP Version de Windows : (Service Pack 3) [5.1.2600] Mode Boot : Mode sans échec Identifiant : vru Nom de l'ordinateur : Mokono Informations de version : BUILD.DAT : 9.0.0.67 17958 Bytes 04/08/2009 14:47:00 AVSCAN.EXE : 9.0.3.7 466689 Bytes 14/09/2009 05:46:21 AVSCAN.DLL : 9.0.3.0 49409 Bytes 03/03/2009 09:21:02 LUKE.DLL : 9.0.3.2 209665 Bytes 20/02/2009 10:35:11 LUKERES.DLL : 9.0.2.0 13569 Bytes 03/03/2009 09:21:31 ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 27/10/2008 11:30:36 ANTIVIR1.VDF : 7.1.4.132 5707264 Bytes 24/06/2009 05:46:21 ANTIVIR2.VDF : 7.1.5.201 3414528 Bytes 03/09/2009 05:46:21 ANTIVIR3.VDF : 7.1.5.236 347136 Bytes 11/09/2009 05:46:21 Version du moteur : 8.2.1.14 AEVDF.DLL : 8.1.1.1 106868 Bytes 14/09/2009 05:46:21 AESCRIPT.DLL : 8.1.2.31 475513 Bytes 14/09/2009 05:46:21 AESCN.DLL : 8.1.2.5 127346 Bytes 14/09/2009 05:46:21 AERDL.DLL : 8.1.2.4 430452 Bytes 14/09/2009 05:46:21 AEPACK.DLL : 8.1.3.18 401783 Bytes 14/09/2009 05:46:21 AEOFFICE.DLL : 8.1.0.38 196987 Bytes 14/09/2009 05:46:21 AEHEUR.DLL : 8.1.0.155 1921400 Bytes 14/09/2009 05:46:21 AEHELP.DLL : 8.1.7.0 237940 Bytes 14/09/2009 05:46:21 AEGEN.DLL : 8.1.1.62 364916 Bytes 14/09/2009 05:46:21 AEEMU.DLL : 8.1.0.9 393588 Bytes 09/10/2008 13:32:40 AECORE.DLL : 8.1.7.8 184692 Bytes 14/09/2009 05:46:21 AEBB.DLL : 8.1.0.3 53618 Bytes 09/10/2008 13:32:40 AVWINLL.DLL : 9.0.0.3 18177 Bytes 12/12/2008 07:47:30 AVPREF.DLL : 9.0.0.1 43777 Bytes 03/12/2008 10:39:26 AVREP.DLL : 8.0.0.3 155905 Bytes 20/01/2009 13:34:28 AVREG.DLL : 9.0.0.0 36609 Bytes 07/11/2008 14:24:42 AVARKT.DLL : 9.0.0.3 292609 Bytes 24/03/2009 14:05:22 AVEVTLOG.DLL : 9.0.0.7 167169 Bytes 30/01/2009 09:36:37 SQLITE3.DLL : 3.6.1.0 326401 Bytes 28/01/2009 14:03:49 SMTPLIB.DLL : 9.2.0.25 28417 Bytes 02/02/2009 07:20:57 NETNT.DLL : 9.0.0.0 11521 Bytes 07/11/2008 14:40:59 RCIMAGE.DLL : 9.0.0.25 2438913 Bytes 14/09/2009 05:46:21 RCTEXT.DLL : 9.0.37.0 88321 Bytes 15/04/2009 09:07:05 Configuration pour la recherche actuelle : Nom de la tâche...............................: Contrôle intégral du système Fichier de configuration......................: c:\program files\avira\antivir desktop\sysscan.avp Documentation.................................: bas Action principale.............................: interactif Action secondaire.............................: ignorer Recherche sur les secteurs d'amorçage maître..: marche Recherche sur les secteurs d'amorçage.........: marche Secteurs d'amorçage...........................: C:, D:, Recherche dans les programmes actifs..........: marche Recherche en cours sur l'enregistrement.......: marche Recherche de Rootkits.........................: marche Contrôle d'intégrité de fichiers système......: arrêt Fichier mode de recherche.....................: Tous les fichiers Recherche sur les archives....................: marche Limiter la profondeur de récursivité..........: 20 Archive Smart Extensions......................: marche Heuristique de macrovirus.....................: marche Heuristique fichier...........................: moyen Catégories de dangers divergentes.............: +SPR, Début de la recherche : lundi 14 septembre 2009 19:24 La recherche d'objets cachés commence. Impossible d'initialiser le pilote. La recherche sur les processus démarrés commence : Processus de recherche 'avscan.exe' - '1' module(s) sont contrôlés Processus de recherche 'avcenter.exe' - '1' module(s) sont contrôlés Processus de recherche 'explorer.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés Processus de recherche 'lsass.exe' - '1' module(s) sont contrôlés Processus de recherche 'services.exe' - '1' module(s) sont contrôlés Processus de recherche 'winlogon.exe' - '1' module(s) sont contrôlés Processus de recherche 'csrss.exe' - '1' module(s) sont contrôlés Processus de recherche 'smss.exe' - '1' module(s) sont contrôlés '11' processus ont été contrôlés avec '11' modules La recherche sur les secteurs d'amorçage maître commence : Secteur d'amorçage maître HD0 [iNFO] Aucun virus trouvé ! La recherche sur les secteurs d'amorçage commence : Secteur d'amorçage 'C:\' [iNFO] Aucun virus trouvé ! Secteur d'amorçage 'D:\' [iNFO] Aucun virus trouvé ! La recherche sur les renvois aux fichiers exécutables (registre) commence : Le registre a été contrôlé ( '66' fichiers). La recherche sur les fichiers sélectionnés commence : Recherche débutant dans 'C:\' <HDD> C:\pagefile.sys [AVERTISSEMENT] Impossible d'ouvrir le fichier ! [REMARQUE] Ce fichier est un fichier système Windows. [REMARQUE] Il est correct que ce fichier ne puisse pas être ouvert pour la recherche. C:\Program Files\MSDE2000\MSI\INSTMSIW.EXE [0] Type d'archive: RSRC --> Object [1] Type d'archive: CAB (Microsoft) --> msi.dll [AVERTISSEMENT] Aucun autre fichier n'a pu être décompressé de cette archive. L'archive est refermée. [AVERTISSEMENT] Aucun autre fichier n'a pu être décompressé de cette archive. L'archive est refermée. C:\Program Files\OFFICE\Microsoft Office XP Pro - Word,Excell,Powerpoint,Frontpage,Access,Outlook Express.zip [0] Type d'archive: ZIP --> MSDE2000/MSI/INSTMSIW.EXE [1] Type d'archive: RSRC --> Object [2] Type d'archive: CAB (Microsoft) --> msi.dll [AVERTISSEMENT] Aucun autre fichier n'a pu être décompressé de cette archive. L'archive est refermée. C:\Program Files\OFFICE\MSDE2000\MSI\INSTMSIW.EXE [0] Type d'archive: RSRC --> Object [1] Type d'archive: CAB (Microsoft) --> msi.dll [AVERTISSEMENT] Aucun autre fichier n'a pu être décompressé de cette archive. L'archive est refermée. [AVERTISSEMENT] Aucun autre fichier n'a pu être décompressé de cette archive. L'archive est refermée. Recherche débutant dans 'D:\' <DATA> D:\Documents and Settings\vru\Local Settings\Application Data\Mozilla\Firefox\Profiles\q9zfa3xz.default\Cache\42C89364d01 [RESULTAT] Contient le code suspect : HEUR/HTML.Malware Début de la désinfection : D:\Documents and Settings\vru\Local Settings\Application Data\Mozilla\Firefox\Profiles\q9zfa3xz.default\Cache\42C89364d01 [RESULTAT] Contient le code suspect : HEUR/HTML.Malware [REMARQUE] Le résultat positif a été classé comme suspect. [REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4af2313b.qua' ! Fin de la recherche : mardi 15 septembre 2009 08:15 Temps nécessaire: 8:04:49 Heure(s) La recherche a été effectuée intégralement 16074 Les répertoires ont été contrôlés 734562 Des fichiers ont été contrôlés 0 Des virus ou programmes indésirables ont été trouvés 1 Des fichiers ont été classés comme suspects 0 Des fichiers ont été supprimés 0 Des virus ou programmes indésirables ont été réparés 1 Les fichiers ont été déplacés dans la quarantaine 0 Les fichiers ont été renommés 1 Impossible de contrôler des fichiers 734560 Fichiers non infectés 11685 Les archives ont été contrôlées 6 Avertissements 2 Consignes Il a trouvé :HEUR/HTML.Malware que j'ai mis en quarantaine .
  3. pepermint23
    Voilà l'analyse de Virus total : Antivirus Version Dernière mise à jour Résultat a-squared 4.5.0.24 2009.09.14 - AhnLab-V3 5.0.0.2 2009.09.14 - AntiVir 7.9.1.14 2009.09.14 - Antiy-AVL 2.0.3.7 2009.09.14 - Authentium 5.1.2.4 2009.09.14 - Avast 4.8.1351.0 2009.09.14 - AVG 8.5.0.412 2009.09.14 - BitDefender 7.2 2009.09.14 - CAT-QuickHeal 10.00 2009.09.14 - ClamAV 0.94.1 2009.09.14 - Comodo 2317 2009.09.14 - DrWeb 5.0.0.12182 2009.09.14 - eSafe 7.0.17.0 2009.09.14 Suspicious File eTrust-Vet 31.6.6736 2009.09.14 - F-Prot 4.5.1.85 2009.09.14 - F-Secure 8.0.14470.0 2009.09.13 - Fortinet 3.120.0.0 2009.09.14 - GData 19 2009.09.14 - Ikarus T3.1.1.72.0 2009.09.14 - Jiangmin 11.0.800 2009.09.14 - K7AntiVirus 7.10.844 2009.09.14 - Kaspersky 7.0.0.125 2009.09.14 - McAfee 5741 2009.09.14 - McAfee+Artemis 5740 2009.09.13 - McAfee-GW-Edition 6.8.5 2009.09.14 - Microsoft 1.5005 2009.09.14 - NOD32 4425 2009.09.14 - Norman 6.01.09 2009.09.14 - nProtect 2009.1.8.0 2009.09.14 - Panda 10.0.2.2 2009.09.13 - PCTools 4.4.2.0 2009.09.14 - Prevx 3.0 2009.09.14 - Rising 21.47.04.00 2009.09.14 - Sophos 4.45.0 2009.09.14 - Sunbelt 3.2.1858.2 2009.09.13 - Symantec 1.4.4.12 2009.09.14 - TheHacker 6.3.4.4.402 2009.09.12 - TrendMicro 8.950.0.1094 2009.09.14 - VBA32 3.12.10.10 2009.09.13 - ViRobot 2009.9.14.1934 2009.09.14 - VirusBuster 4.6.5.0 2009.09.13 - Information additionnelle File size: 401720 bytes MD5...: e8269245566be948f6a219135b434160 SHA1..: 1ac255b76ef692ea6c09d4840dcd28c67c5d6bfe SHA256: 3c253bfd385c7f245f3c6131e58cbe22c0d03073a828b9938f923f00562d7c2d ssdeep: 6144:KCjUfQ7DbE66sVHdkyUkEYn+nVewn+ob/xIytqi20dcUSGreicGGSzMZY:K CjUSbEAVG95YnNsr2ytL2cc3Gr1 PEiD..: - PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x142830 timedatestamp.....: 0x466838c1 (Thu Jun 07 16:56:33 2007) machinetype.......: 0x14c (I386) ( 3 sections ) name viradd virsiz rawdsiz ntrpy md5 UPX0 0x1000 0xfc000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e UPX1 0xfd000 0x46000 0x45a00 7.93 8764d7eac0301131e6c79e4aa30317bf .rsrc 0x143000 0x1b000 0x1ae00 4.69 5f1a0873640fcdb4a281dbf91049814f ( 2 imports ) > KERNEL32.DLL: LoadLibraryA, GetProcAddress, VirtualProtect, ExitProcess > MSVBVM60.DLL: - ( 0 exports ) RDS...: NSRL Reference Data Set - pdfid.: - trid..: UPX compressed Win32 Executable (39.5%) Win32 EXE Yoda's Crypter (34.3%) Win32 Executable Generic (11.0%) Win32 Dynamic Link Library (generic) (9.8%) Generic Win/DOS Executable (2.5%) ThreatExpert info: <a href='http://www.threatexpert.com/report.aspx?md5=e8269245566be948f6a219135b434160' target='_blank'>http://www.threatexpert.com/report.aspx?md5=e8269245566be948f6a219135b434160</a> packers (Kaspersky): PE_Patch.UPX, UPX packers (F-Prot): UPX Et celui de Lop: --------------------\\ Lop S&D 4.2.5-0 XP/Vista Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : AMD Athlon 64 Processor 3500+ ) BIOS : BIOS Date: 01/23/06 18:27:22 Ver: 08.00.12 USER : vru ( Administrator ) BOOT : Normal boot Antivirus : AntiVir Desktop 9.0.1.32 (Not Activated) Firewall : COMODO Firewall 3.9 (Activated) C:\ (Local Disk) - NTFS - Total:29 Go (Free:7 Go) D:\ (Local Disk) - NTFS - Total:195 Go (Free:84 Go) E:\ (CD or DVD) "C:\Lop SD" ( MAJ : 19-12-2008|23:40 ) Option : [2] ( 14/09/2009|18:38 ) \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION Supprime! - D:\DOCUME~1\vru\APPLIC~1\TOOLBE~1 Supprime! - C:\Program Files\TOOLBE~1 - [ Fichier Hosts ] .. Restaure! \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Supprime! - C:\Program Files\Viewpoint Supprime! - D:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ --------------------\\ Listing des dossiers dans APPLIC~1 [27/04/2009|10:58] D:\DOCUME~1\ALLUSE~1\APPLIC~1\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} [14/09/2009|14:42] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [13/09/2009|21:11] D:\DOCUME~1\ALLUSE~1\APPLIC~1\ALM [10/06/2008|14:56] D:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL [18/01/2007|21:30] D:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL Downloads [07/07/2009|16:43] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple [18/05/2008|12:09] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [14/09/2009|02:04] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira [14/09/2008|14:34] D:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software [14/09/2009|01:32] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Comodo [22/01/2007|16:45] D:\DOCUME~1\ALLUSE~1\APPLIC~1\curbloveholdnoun [05/11/2006|15:14] D:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink [03/04/2008|17:09] D:\DOCUME~1\ALLUSE~1\APPLIC~1\EPSON [13/09/2009|21:43] D:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet [05/09/2007|10:04] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [14/09/2009|16:36] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft [20/06/2008|22:01] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia [09/10/2006|18:40] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision [13/09/2009|22:30] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes [19/01/2007|00:53] D:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee [19/01/2007|00:08] D:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com [05/09/2007|14:05] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [01/06/2006|08:45] D:\DOCUME~1\ALLUSE~1\APPLIC~1\OD2 [01/06/2006|08:45] D:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime [01/06/2006|08:45] D:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI [21/12/2006|19:31] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype [14/09/2009|16:40] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy [19/01/2007|00:50] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec [19/01/2007|00:49] D:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP [01/06/2006|08:45] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems [27/04/2007|13:52] D:\DOCUME~1\ALLUSE~1\APPLIC~1\VadeRetro [12/09/2006|14:09] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [15/10/2006|10:43] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar [25/05/2009|12:38] D:\DOCUME~1\bilou\APPLIC~1\Adobe [04/02/2007|16:22] D:\DOCUME~1\bilou\APPLIC~1\AdobeUM [16/09/2006|14:46] D:\DOCUME~1\bilou\APPLIC~1\AOL [09/04/2007|18:50] D:\DOCUME~1\bilou\APPLIC~1\Help [01/06/2006|08:45] D:\DOCUME~1\bilou\APPLIC~1\Identities [22/12/2006|09:20] D:\DOCUME~1\bilou\APPLIC~1\Leadertech [30/03/2007|15:09] D:\DOCUME~1\bilou\APPLIC~1\Macromedia [01/04/2007|10:45] D:\DOCUME~1\bilou\APPLIC~1\Microsoft [25/05/2009|12:44] D:\DOCUME~1\bilou\APPLIC~1\Mozilla [18/12/2006|12:39] D:\DOCUME~1\bilou\APPLIC~1\OD2 [29/01/2007|18:31] D:\DOCUME~1\bilou\APPLIC~1\Real [22/12/2006|09:20] D:\DOCUME~1\bilou\APPLIC~1\Sonic [31/05/2006|15:07] D:\DOCUME~1\bilou\APPLIC~1\Symantec [31/03/2007|17:33] D:\DOCUME~1\bilou\APPLIC~1\vlc [01/06/2006|08:45] D:\DOCUME~1\bilou\APPLIC~1\You've Got Pictures Screensaver [01/06/2006|08:45] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities [01/06/2006|08:45] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia [01/06/2006|08:45] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [01/06/2006|08:45] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Real [31/05/2006|15:07] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec [01/06/2006|08:45] D:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver [14/09/2009|09:31] D:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe [01/06/2006|08:45] D:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [21/12/2006|23:34] D:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec [16/09/2006|14:42] D:\DOCUME~1\maman\APPLIC~1\AOL [01/06/2006|08:45] D:\DOCUME~1\maman\APPLIC~1\Identities [01/06/2006|08:45] D:\DOCUME~1\maman\APPLIC~1\Macromedia [06/10/2007|16:14] D:\DOCUME~1\maman\APPLIC~1\Microsoft [18/04/2007|16:27] D:\DOCUME~1\maman\APPLIC~1\Mozilla [01/06/2006|08:45] D:\DOCUME~1\maman\APPLIC~1\Real [31/05/2006|15:07] D:\DOCUME~1\maman\APPLIC~1\Symantec [01/06/2006|08:45] D:\DOCUME~1\maman\APPLIC~1\You've Got Pictures Screensaver [01/06/2006|08:45] D:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft [12/09/2006|08:40] D:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec [30/09/2008|09:21] D:\DOCUME~1\papa\APPLIC~1\Adobe [12/03/2007|19:25] D:\DOCUME~1\papa\APPLIC~1\AdobeUM [12/09/2006|08:42] D:\DOCUME~1\papa\APPLIC~1\AOL [03/05/2009|15:03] D:\DOCUME~1\papa\APPLIC~1\Apple Computer [13/11/2006|14:00] D:\DOCUME~1\papa\APPLIC~1\Help [01/06/2006|08:45] D:\DOCUME~1\papa\APPLIC~1\Identities [01/06/2006|08:45] D:\DOCUME~1\papa\APPLIC~1\Macromedia [18/10/2006|09:17] D:\DOCUME~1\papa\APPLIC~1\Microsoft [29/09/2008|16:02] D:\DOCUME~1\papa\APPLIC~1\Mozilla [21/12/2006|20:08] D:\DOCUME~1\papa\APPLIC~1\OD2 [07/10/2006|17:19] D:\DOCUME~1\papa\APPLIC~1\Real [03/05/2009|21:30] D:\DOCUME~1\papa\APPLIC~1\Skype [29/11/2006|13:29] D:\DOCUME~1\papa\APPLIC~1\Sun [29/11/2006|13:44] D:\DOCUME~1\papa\APPLIC~1\Symantec [17/04/2007|16:13] D:\DOCUME~1\papa\APPLIC~1\VadeRetro [01/06/2006|08:45] D:\DOCUME~1\papa\APPLIC~1\You've Got Pictures Screensaver [15/02/2007|17:09] D:\DOCUME~1\PROPRI~1\APPLIC~1\You've Got Pictures Screensaver [14/09/2009|14:42] D:\DOCUME~1\vru\APPLIC~1\Adobe [21/02/2009|17:05] D:\DOCUME~1\vru\APPLIC~1\AdobeUM [05/04/2007|15:03] D:\DOCUME~1\vru\APPLIC~1\AOL [18/03/2009|09:44] D:\DOCUME~1\vru\APPLIC~1\Apple Computer [02/01/2007|22:56] D:\DOCUME~1\vru\APPLIC~1\CyberLink [04/08/2008|11:36] D:\DOCUME~1\vru\APPLIC~1\EoRezo [16/07/2007|15:31] D:\DOCUME~1\vru\APPLIC~1\EPSON [04/11/2008|17:35] D:\DOCUME~1\vru\APPLIC~1\FileZilla [17/07/2009|17:15] D:\DOCUME~1\vru\APPLIC~1\GetRightToGo [20/08/2006|10:47] D:\DOCUME~1\vru\APPLIC~1\Help [27/09/2006|13:19] D:\DOCUME~1\vru\APPLIC~1\Hewlett-Packard [01/06/2006|08:45] D:\DOCUME~1\vru\APPLIC~1\Identities [14/09/2008|14:38] D:\DOCUME~1\vru\APPLIC~1\InstallShield [11/09/2006|15:52] D:\DOCUME~1\vru\APPLIC~1\Leadertech [05/05/2007|12:30] D:\DOCUME~1\vru\APPLIC~1\Macromedia [13/09/2009|22:30] D:\DOCUME~1\vru\APPLIC~1\Malwarebytes [20/06/2008|19:02] D:\DOCUME~1\vru\APPLIC~1\Microsoft [04/09/2008|19:27] D:\DOCUME~1\vru\APPLIC~1\Mozilla [15/10/2006|10:20] D:\DOCUME~1\vru\APPLIC~1\MSNInstaller [18/08/2006|21:47] D:\DOCUME~1\vru\APPLIC~1\OD2 [14/09/2009|16:43] D:\DOCUME~1\vru\APPLIC~1\OpenOffice.org2 [12/09/2006|13:53] D:\DOCUME~1\vru\APPLIC~1\Real [01/11/2008|21:50] D:\DOCUME~1\vru\APPLIC~1\Skype [11/09/2006|15:52] D:\DOCUME~1\vru\APPLIC~1\Sonic [13/10/2006|17:23] D:\DOCUME~1\vru\APPLIC~1\Sun [19/08/2006|13:19] D:\DOCUME~1\vru\APPLIC~1\Symantec [16/01/2007|18:02] D:\DOCUME~1\vru\APPLIC~1\Ulead Systems [05/09/2009|16:39] D:\DOCUME~1\vru\APPLIC~1\uTorrent [25/04/2007|22:52] D:\DOCUME~1\vru\APPLIC~1\VadeRetro [05/04/2007|12:48] D:\DOCUME~1\vru\APPLIC~1\vlc [01/06/2006|08:45] D:\DOCUME~1\vru\APPLIC~1\You've Got Pictures Screensaver --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks [31/08/2009 19:54][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job [14/09/2009 18:20][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job [14/09/2009 08:48][--a------] C:\WINDOWS\tasks\WebReg 20061014084836.job [14/09/2009 18:30][--a------] C:\WINDOWS\tasks\Extension de garantie.job [14/09/2009 18:30][--a------] C:\WINDOWS\tasks\Master CD_DVD Creator.job [14/09/2009 16:41][--ah-----] C:\WINDOWS\tasks\SA.DAT [05/08/2004 14:00][-rah-----] C:\WINDOWS\tasks\desktop.ini --------------------\\ Listing des dossiers dans C:\Program Files [13/09/2009|21:15] C:\Program Files\Adobe [16/09/2008|18:10] C:\Program Files\Alwil Software [01/06/2006|08:39] C:\Program Files\AMD [30/12/2008|20:24] C:\Program Files\Apple Software Update [17/07/2009|17:17] C:\Program Files\APSR [14/09/2008|14:38] C:\Program Files\Avanquest update [18/10/2006|09:13] C:\Program Files\AvantGo Connect [16/09/2008|18:08] C:\Program Files\avast antivirus [14/09/2009|02:04] C:\Program Files\Avira [01/06/2006|08:40] C:\Program Files\AvRack [14/09/2009|01:49] C:\Program Files\CCleaner [18/10/2006|09:13] C:\Program Files\Common Files [14/09/2009|01:22] C:\Program Files\COMODO [01/06/2006|08:39] C:\Program Files\ComPlus Applications [10/10/2006|14:15] C:\Program Files\Corel [01/06/2006|08:39] C:\Program Files\CyberLink [05/09/2007|09:25] C:\Program Files\Dossier d'archivage AOL sauvegard‚ [01/04/2007|17:08] C:\Program Files\EA GAMES [04/08/2008|11:36] C:\Program Files\EoRezo [03/04/2008|17:11] C:\Program Files\EPSON [13/09/2009|21:14] C:\Program Files\Fichiers communs [04/04/2001|18:15] C:\Program Files\FILES [16/06/2008|17:40] C:\Program Files\FileZilla FTP Client [12/11/2006|14:55] C:\Program Files\Fnacmusic [05/05/2006|00:44] C:\Program Files\FROTV.1.0-inst [07/08/2007|16:59] C:\Program Files\Gizmo Project [01/06/2006|08:39] C:\Program Files\GMixon [01/06/2006|08:39] C:\Program Files\Goto Software [27/09/2006|13:16] C:\Program Files\Hewlett-Packard [26/09/2006|17:53] C:\Program Files\HP [22/10/2008|23:20] C:\Program Files\InstallShield Installation Information [29/07/2009|21:54] C:\Program Files\Internet Explorer [29/07/2009|17:23] C:\Program Files\iPod [29/07/2009|17:24] C:\Program Files\iTunes [29/07/2008|16:50] C:\Program Files\Java [14/09/2009|16:36] C:\Program Files\Lavasoft [01/06/2006|08:39] C:\Program Files\Learn2.com [26/02/2007|20:11] C:\Program Files\Locator [20/06/2008|22:00] C:\Program Files\Macromedia [12/11/2007|13:26] C:\Program Files\Macromedia fr [13/09/2009|22:30] C:\Program Files\Malwarebytes' Anti-Malware [19/01/2007|00:53] C:\Program Files\McAfee [04/09/2008|08:19] C:\Program Files\Messenger [07/09/2007|23:02] C:\Program Files\Microsoft ActiveSync [01/06/2006|08:39] C:\Program Files\microsoft frontpage [05/09/2007|14:05] C:\Program Files\Microsoft Office [14/09/2008|14:34] C:\Program Files\Motorola Phone Tools [04/09/2008|08:16] C:\Program Files\Movie Maker [14/09/2009|16:44] C:\Program Files\Mozilla Firefox [04/04/2001|18:09] C:\Program Files\MSDE2000 [11/04/2007|09:17] C:\Program Files\MSECache [14/10/2006|19:46] C:\Program Files\MSN [01/06/2006|08:39] C:\Program Files\MSN Gaming Zone [04/09/2008|09:32] C:\Program Files\MSN Messenger [29/11/2006|13:47] C:\Program Files\MSXML 4.0 [04/09/2008|08:14] C:\Program Files\NetMeeting [16/10/2007|09:39] C:\Program Files\Nouveau dossier [05/09/2007|14:03] C:\Program Files\OFFICE [01/06/2006|08:41] C:\Program Files\Online Services [12/06/2008|11:27] C:\Program Files\OpenOffice.org 2.4 [13/06/2008|09:13] C:\Program Files\OpenOffice.org 2.4 (fr) Installation Files [28/04/2008|10:00] C:\Program Files\Orange [04/04/2001|18:09] C:\Program Files\ORK [13/08/2009|12:40] C:\Program Files\Outlook Express [05/01/2008|22:19] C:\Program Files\Packard Bell [22/01/2007|16:07] C:\Program Files\Panda Software [12/06/2009|09:26] C:\Program Files\Proxomitron Naoko v4.5 [07/07/2009|16:45] C:\Program Files\QuickTime [01/06/2006|08:39] C:\Program Files\Real [01/06/2006|08:42] C:\Program Files\Realtek AC97 [01/06/2006|08:39] C:\Program Files\Realtek Sound Manager [27/04/2009|10:51] C:\Program Files\Safari [02/10/2008|15:45] C:\Program Files\SAGEM [02/10/2008|15:44] C:\Program Files\Securitoo [01/06/2006|08:42] C:\Program Files\Services en ligne [04/04/2001|18:10] C:\Program Files\SHAREPT [01/06/2006|08:42] C:\Program Files\ShowTime [01/06/2006|08:39] C:\Program Files\Sonic [14/09/2009|16:41] C:\Program Files\Spybot - Search & Destroy [20/11/2008|01:46] C:\Program Files\StepMania [19/01/2007|00:53] C:\Program Files\Symantec [10/10/2006|14:00] C:\Program Files\Tablet [10/10/2006|14:00] C:\Program Files\Tablette [01/06/2006|08:39] C:\Program Files\Ulead Systems [01/06/2006|08:39] C:\Program Files\Uninstall Information [06/01/2007|15:41] C:\Program Files\UTHSCSA [26/09/2006|18:12] C:\Program Files\uTorrent [18/10/2006|09:10] C:\Program Files\ViaMichelin [31/03/2007|17:31] C:\Program Files\VideoLAN [28/01/2008|13:31] C:\Program Files\Wanadoo [07/09/2007|19:20] C:\Program Files\Windows Live Toolbar [01/06/2006|08:39] C:\Program Files\Windows Media Components [13/12/2006|11:58] C:\Program Files\Windows Media Connect 2 [04/09/2008|08:14] C:\Program Files\Windows Media Player [04/09/2008|08:14] C:\Program Files\Windows NT [01/06/2006|08:39] C:\Program Files\WindowsUpdate [05/09/2007|14:02] C:\Program Files\WinRAR [04/08/2008|10:38] C:\Program Files\WiPen [01/06/2006|08:39] C:\Program Files\xerox --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs [14/09/2009|01:57] C:\Program Files\Fichiers communs\Adobe [09/10/2006|18:40] C:\Program Files\Fichiers communs\Adobe Systems Shared [10/06/2008|14:56] C:\Program Files\Fichiers communs\AOL [12/09/2006|08:42] C:\Program Files\Fichiers communs\aolback [29/07/2009|17:23] C:\Program Files\Fichiers communs\Apple [13/09/2009|21:14] C:\Program Files\Fichiers communs\Control Panels [05/09/2007|14:06] C:\Program Files\Fichiers communs\Designer [28/01/2008|13:30] C:\Program Files\Fichiers communs\France Telecom [27/09/2006|13:16] C:\Program Files\Fichiers communs\Hewlett-Packard [30/03/2007|15:04] C:\Program Files\Fichiers communs\InstallShield [14/05/2008|17:03] C:\Program Files\Fichiers communs\Java [13/09/2009|20:48] C:\Program Files\Fichiers communs\Macrovision Shared [14/09/2009|02:02] C:\Program Files\Fichiers communs\Microsoft Shared [01/06/2006|08:39] C:\Program Files\Fichiers communs\MSSoap [01/06/2006|08:39] C:\Program Files\Fichiers communs\Nullsoft [01/06/2006|08:39] C:\Program Files\Fichiers communs\ODBC [07/09/2007|23:07] C:\Program Files\Fichiers communs\Panda Software [01/06/2006|08:39] C:\Program Files\Fichiers communs\Real [18/01/2007|21:40] C:\Program Files\Fichiers communs\Scanner [01/06/2006|08:41] C:\Program Files\Fichiers communs\Services [21/12/2006|19:31] C:\Program Files\Fichiers communs\Skype [01/06/2006|08:41] C:\Program Files\Fichiers communs\Sonic Shared [01/06/2006|08:39] C:\Program Files\Fichiers communs\SpeechEngines [13/09/2009|18:33] C:\Program Files\Fichiers communs\SureThing Shared [19/01/2007|00:53] C:\Program Files\Fichiers communs\Symantec Shared [04/09/2008|08:14] C:\Program Files\Fichiers communs\System [01/06/2006|08:39] C:\Program Files\Fichiers communs\Ulead Systems [12/12/2006|22:21] C:\Program Files\Fichiers communs\Vbox [01/06/2006|08:39] C:\Program Files\Fichiers communs\xing shared --------------------\\ Process ( 52 Processes ) ... OK ! --------------------\\ Recherche avec S_Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Recherche de Fichiers / Dossiers Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Verification du Registre ..... OK ! --------------------\\ Verification du fichier Hosts Fichier Hosts PROPRE --------------------\\ Recherche de fichiers avec Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-09-14 18:39:59 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden files ... folder error: D:\DOCUME~1\vru\LOCALS~1\APPLIC~1 --------------------\\ Recherche d'autres infections --------------------\\ Cracks & Keygens .. D:\DOCUME~1\vru\Bureau\… v‚rifier et jeter\dossier ernest\ernest crack.txt D:\DOCUME~1\vru\Bureau\… v‚rifier et jeter\dossier ernest\ernest\ERNEST_LE_LINETESET_20\ERNEST_CRACK D:\DOCUME~1\vru\Bureau\… v‚rifier et jeter\dossier ernest\ernest\ERNEST_LE__LINETEST_19\ERNEST_CRACK [F:74][D:19]-> D:\DOCUME~1\vru\LOCALS~1\Temp [F:2][D:0]-> D:\DOCUME~1\vru\Cookies [F:9][D:4]-> D:\DOCUME~1\vru\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - 14/09/2009|16:49 - Option : [1] 2 - "C:\Lop SD\LopR_2.txt" - 14/09/2009|18:41 - Option : [2] --------------------\\ Fin du rapport a 18:41:09
  4. pepermint23
    Voilà le rapport de Lop (j'ai juste lancé l'option 1, je préfère avoir votre avis avant de lancer la supression ...): --------------------\\ Lop S&D 4.2.5-0 XP/Vista Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : AMD Athlon 64 Processor 3500+ ) BIOS : BIOS Date: 01/23/06 18:27:22 Ver: 08.00.12 USER : vru ( Administrator ) BOOT : Normal boot Antivirus : AntiVir Desktop 9.0.1.32 (Not Activated) Firewall : COMODO Firewall 3.9 (Activated) C:\ (Local Disk) - NTFS - Total:29 Go (Free:7 Go) D:\ (Local Disk) - NTFS - Total:195 Go (Free:84 Go) E:\ (CD or DVD) "C:\Lop SD" ( MAJ : 19-12-2008|23:40 ) Option : [1] ( 14/09/2009|16:47 ) --------------------\\ Listing des dossiers dans APPLIC~1 [27/04/2009|10:58] D:\DOCUME~1\ALLUSE~1\APPLIC~1\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} [14/09/2009|14:42] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [13/09/2009|21:11] D:\DOCUME~1\ALLUSE~1\APPLIC~1\ALM [10/06/2008|14:56] D:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL [18/01/2007|21:30] D:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL Downloads [07/07/2009|16:43] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple [18/05/2008|12:09] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [14/09/2009|02:04] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira [14/09/2008|14:34] D:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software [14/09/2009|01:32] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Comodo [22/01/2007|16:45] D:\DOCUME~1\ALLUSE~1\APPLIC~1\curbloveholdnoun [05/11/2006|15:14] D:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink [03/04/2008|17:09] D:\DOCUME~1\ALLUSE~1\APPLIC~1\EPSON [13/09/2009|21:43] D:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet [05/09/2007|10:04] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [14/09/2009|16:36] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft [20/06/2008|22:01] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia [09/10/2006|18:40] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision [13/09/2009|22:30] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes [19/01/2007|00:53] D:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee [19/01/2007|00:08] D:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com [05/09/2007|14:05] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [01/06/2006|08:45] D:\DOCUME~1\ALLUSE~1\APPLIC~1\OD2 [01/06/2006|08:45] D:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime [01/06/2006|08:45] D:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI [21/12/2006|19:31] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype [14/09/2009|16:40] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy [19/01/2007|00:50] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec [19/01/2007|00:49] D:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP [01/06/2006|08:45] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems [27/04/2007|13:52] D:\DOCUME~1\ALLUSE~1\APPLIC~1\VadeRetro [01/06/2006|08:45] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint [12/09/2006|14:09] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [15/10/2006|10:43] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar [25/05/2009|12:38] D:\DOCUME~1\bilou\APPLIC~1\Adobe [04/02/2007|16:22] D:\DOCUME~1\bilou\APPLIC~1\AdobeUM [16/09/2006|14:46] D:\DOCUME~1\bilou\APPLIC~1\AOL [09/04/2007|18:50] D:\DOCUME~1\bilou\APPLIC~1\Help [01/06/2006|08:45] D:\DOCUME~1\bilou\APPLIC~1\Identities [22/12/2006|09:20] D:\DOCUME~1\bilou\APPLIC~1\Leadertech [30/03/2007|15:09] D:\DOCUME~1\bilou\APPLIC~1\Macromedia [01/04/2007|10:45] D:\DOCUME~1\bilou\APPLIC~1\Microsoft [25/05/2009|12:44] D:\DOCUME~1\bilou\APPLIC~1\Mozilla [18/12/2006|12:39] D:\DOCUME~1\bilou\APPLIC~1\OD2 [29/01/2007|18:31] D:\DOCUME~1\bilou\APPLIC~1\Real [22/12/2006|09:20] D:\DOCUME~1\bilou\APPLIC~1\Sonic [31/05/2006|15:07] D:\DOCUME~1\bilou\APPLIC~1\Symantec [31/03/2007|17:33] D:\DOCUME~1\bilou\APPLIC~1\vlc [01/06/2006|08:45] D:\DOCUME~1\bilou\APPLIC~1\You've Got Pictures Screensaver [01/06/2006|08:45] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities [01/06/2006|08:45] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia [01/06/2006|08:45] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [01/06/2006|08:45] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Real [31/05/2006|15:07] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec [01/06/2006|08:45] D:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver [14/09/2009|09:31] D:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe [01/06/2006|08:45] D:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [21/12/2006|23:34] D:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec [16/09/2006|14:42] D:\DOCUME~1\maman\APPLIC~1\AOL [01/06/2006|08:45] D:\DOCUME~1\maman\APPLIC~1\Identities [01/06/2006|08:45] D:\DOCUME~1\maman\APPLIC~1\Macromedia [06/10/2007|16:14] D:\DOCUME~1\maman\APPLIC~1\Microsoft [18/04/2007|16:27] D:\DOCUME~1\maman\APPLIC~1\Mozilla [01/06/2006|08:45] D:\DOCUME~1\maman\APPLIC~1\Real [31/05/2006|15:07] D:\DOCUME~1\maman\APPLIC~1\Symantec [01/06/2006|08:45] D:\DOCUME~1\maman\APPLIC~1\You've Got Pictures Screensaver [01/06/2006|08:45] D:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft [12/09/2006|08:40] D:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec [30/09/2008|09:21] D:\DOCUME~1\papa\APPLIC~1\Adobe [12/03/2007|19:25] D:\DOCUME~1\papa\APPLIC~1\AdobeUM [12/09/2006|08:42] D:\DOCUME~1\papa\APPLIC~1\AOL [03/05/2009|15:03] D:\DOCUME~1\papa\APPLIC~1\Apple Computer [13/11/2006|14:00] D:\DOCUME~1\papa\APPLIC~1\Help [01/06/2006|08:45] D:\DOCUME~1\papa\APPLIC~1\Identities [01/06/2006|08:45] D:\DOCUME~1\papa\APPLIC~1\Macromedia [18/10/2006|09:17] D:\DOCUME~1\papa\APPLIC~1\Microsoft [29/09/2008|16:02] D:\DOCUME~1\papa\APPLIC~1\Mozilla [21/12/2006|20:08] D:\DOCUME~1\papa\APPLIC~1\OD2 [07/10/2006|17:19] D:\DOCUME~1\papa\APPLIC~1\Real [03/05/2009|21:30] D:\DOCUME~1\papa\APPLIC~1\Skype [29/11/2006|13:29] D:\DOCUME~1\papa\APPLIC~1\Sun [29/11/2006|13:44] D:\DOCUME~1\papa\APPLIC~1\Symantec [17/04/2007|16:13] D:\DOCUME~1\papa\APPLIC~1\VadeRetro [01/06/2006|08:45] D:\DOCUME~1\papa\APPLIC~1\You've Got Pictures Screensaver [15/02/2007|17:09] D:\DOCUME~1\PROPRI~1\APPLIC~1\You've Got Pictures Screensaver [14/09/2009|14:42] D:\DOCUME~1\vru\APPLIC~1\Adobe [21/02/2009|17:05] D:\DOCUME~1\vru\APPLIC~1\AdobeUM [05/04/2007|15:03] D:\DOCUME~1\vru\APPLIC~1\AOL [18/03/2009|09:44] D:\DOCUME~1\vru\APPLIC~1\Apple Computer [02/01/2007|22:56] D:\DOCUME~1\vru\APPLIC~1\CyberLink [04/08/2008|11:36] D:\DOCUME~1\vru\APPLIC~1\EoRezo [16/07/2007|15:31] D:\DOCUME~1\vru\APPLIC~1\EPSON [04/11/2008|17:35] D:\DOCUME~1\vru\APPLIC~1\FileZilla [17/07/2009|17:15] D:\DOCUME~1\vru\APPLIC~1\GetRightToGo [20/08/2006|10:47] D:\DOCUME~1\vru\APPLIC~1\Help [27/09/2006|13:19] D:\DOCUME~1\vru\APPLIC~1\Hewlett-Packard [01/06/2006|08:45] D:\DOCUME~1\vru\APPLIC~1\Identities [14/09/2008|14:38] D:\DOCUME~1\vru\APPLIC~1\InstallShield [11/09/2006|15:52] D:\DOCUME~1\vru\APPLIC~1\Leadertech [05/05/2007|12:30] D:\DOCUME~1\vru\APPLIC~1\Macromedia [13/09/2009|22:30] D:\DOCUME~1\vru\APPLIC~1\Malwarebytes [20/06/2008|19:02] D:\DOCUME~1\vru\APPLIC~1\Microsoft [04/09/2008|19:27] D:\DOCUME~1\vru\APPLIC~1\Mozilla [15/10/2006|10:20] D:\DOCUME~1\vru\APPLIC~1\MSNInstaller [18/08/2006|21:47] D:\DOCUME~1\vru\APPLIC~1\OD2 [14/09/2009|16:43] D:\DOCUME~1\vru\APPLIC~1\OpenOffice.org2 [12/09/2006|13:53] D:\DOCUME~1\vru\APPLIC~1\Real [01/11/2008|21:50] D:\DOCUME~1\vru\APPLIC~1\Skype [11/09/2006|15:52] D:\DOCUME~1\vru\APPLIC~1\Sonic [13/10/2006|17:23] D:\DOCUME~1\vru\APPLIC~1\Sun [19/08/2006|13:19] D:\DOCUME~1\vru\APPLIC~1\Symantec [01/02/2008|12:04] D:\DOCUME~1\vru\APPLIC~1\Tool beep bows [16/01/2007|18:02] D:\DOCUME~1\vru\APPLIC~1\Ulead Systems [05/09/2009|16:39] D:\DOCUME~1\vru\APPLIC~1\uTorrent [25/04/2007|22:52] D:\DOCUME~1\vru\APPLIC~1\VadeRetro [05/04/2007|12:48] D:\DOCUME~1\vru\APPLIC~1\vlc [01/06/2006|08:45] D:\DOCUME~1\vru\APPLIC~1\You've Got Pictures Screensaver --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks [31/08/2009 19:54][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job [14/09/2009 16:20][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job [14/09/2009 08:48][--a------] C:\WINDOWS\tasks\WebReg 20061014084836.job [14/09/2009 16:30][--a------] C:\WINDOWS\tasks\Extension de garantie.job [14/09/2009 16:30][--a------] C:\WINDOWS\tasks\Master CD_DVD Creator.job [14/09/2009 16:41][--ah-----] C:\WINDOWS\tasks\SA.DAT [05/08/2004 14:00][-rah-----] C:\WINDOWS\tasks\desktop.ini --------------------\\ Listing des dossiers dans C:\Program Files [13/09/2009|21:15] C:\Program Files\Adobe [16/09/2008|18:10] C:\Program Files\Alwil Software [01/06/2006|08:39] C:\Program Files\AMD [30/12/2008|20:24] C:\Program Files\Apple Software Update [17/07/2009|17:17] C:\Program Files\APSR [14/09/2008|14:38] C:\Program Files\Avanquest update [18/10/2006|09:13] C:\Program Files\AvantGo Connect [16/09/2008|18:08] C:\Program Files\avast antivirus [14/09/2009|02:04] C:\Program Files\Avira [01/06/2006|08:40] C:\Program Files\AvRack [14/09/2009|01:49] C:\Program Files\CCleaner [18/10/2006|09:13] C:\Program Files\Common Files [14/09/2009|01:22] C:\Program Files\COMODO [01/06/2006|08:39] C:\Program Files\ComPlus Applications [10/10/2006|14:15] C:\Program Files\Corel [01/06/2006|08:39] C:\Program Files\CyberLink [05/09/2007|09:25] C:\Program Files\Dossier d'archivage AOL sauvegard‚ [01/04/2007|17:08] C:\Program Files\EA GAMES [04/08/2008|11:36] C:\Program Files\EoRezo [03/04/2008|17:11] C:\Program Files\EPSON [13/09/2009|21:14] C:\Program Files\Fichiers communs [04/04/2001|18:15] C:\Program Files\FILES [16/06/2008|17:40] C:\Program Files\FileZilla FTP Client [12/11/2006|14:55] C:\Program Files\Fnacmusic [05/05/2006|00:44] C:\Program Files\FROTV.1.0-inst [07/08/2007|16:59] C:\Program Files\Gizmo Project [01/06/2006|08:39] C:\Program Files\GMixon [01/06/2006|08:39] C:\Program Files\Goto Software [27/09/2006|13:16] C:\Program Files\Hewlett-Packard [26/09/2006|17:53] C:\Program Files\HP [22/10/2008|23:20] C:\Program Files\InstallShield Installation Information [29/07/2009|21:54] C:\Program Files\Internet Explorer [29/07/2009|17:23] C:\Program Files\iPod [29/07/2009|17:24] C:\Program Files\iTunes [29/07/2008|16:50] C:\Program Files\Java [14/09/2009|16:36] C:\Program Files\Lavasoft [01/06/2006|08:39] C:\Program Files\Learn2.com [26/02/2007|20:11] C:\Program Files\Locator [20/06/2008|22:00] C:\Program Files\Macromedia [12/11/2007|13:26] C:\Program Files\Macromedia fr [13/09/2009|22:30] C:\Program Files\Malwarebytes' Anti-Malware [19/01/2007|00:53] C:\Program Files\McAfee [04/09/2008|08:19] C:\Program Files\Messenger [07/09/2007|23:02] C:\Program Files\Microsoft ActiveSync [01/06/2006|08:39] C:\Program Files\microsoft frontpage [05/09/2007|14:05] C:\Program Files\Microsoft Office [14/09/2008|14:34] C:\Program Files\Motorola Phone Tools [04/09/2008|08:16] C:\Program Files\Movie Maker [14/09/2009|16:44] C:\Program Files\Mozilla Firefox [04/04/2001|18:09] C:\Program Files\MSDE2000 [11/04/2007|09:17] C:\Program Files\MSECache [14/10/2006|19:46] C:\Program Files\MSN [01/06/2006|08:39] C:\Program Files\MSN Gaming Zone [04/09/2008|09:32] C:\Program Files\MSN Messenger [29/11/2006|13:47] C:\Program Files\MSXML 4.0 [04/09/2008|08:14] C:\Program Files\NetMeeting [16/10/2007|09:39] C:\Program Files\Nouveau dossier [05/09/2007|14:03] C:\Program Files\OFFICE [01/06/2006|08:41] C:\Program Files\Online Services [12/06/2008|11:27] C:\Program Files\OpenOffice.org 2.4 [13/06/2008|09:13] C:\Program Files\OpenOffice.org 2.4 (fr) Installation Files [28/04/2008|10:00] C:\Program Files\Orange [04/04/2001|18:09] C:\Program Files\ORK [13/08/2009|12:40] C:\Program Files\Outlook Express [05/01/2008|22:19] C:\Program Files\Packard Bell [22/01/2007|16:07] C:\Program Files\Panda Software [12/06/2009|09:26] C:\Program Files\Proxomitron Naoko v4.5 [07/07/2009|16:45] C:\Program Files\QuickTime [01/06/2006|08:39] C:\Program Files\Real [01/06/2006|08:42] C:\Program Files\Realtek AC97 [01/06/2006|08:39] C:\Program Files\Realtek Sound Manager [27/04/2009|10:51] C:\Program Files\Safari [02/10/2008|15:45] C:\Program Files\SAGEM [02/10/2008|15:44] C:\Program Files\Securitoo [01/06/2006|08:42] C:\Program Files\Services en ligne [04/04/2001|18:10] C:\Program Files\SHAREPT [01/06/2006|08:42] C:\Program Files\ShowTime [01/06/2006|08:39] C:\Program Files\Sonic [14/09/2009|16:41] C:\Program Files\Spybot - Search & Destroy [20/11/2008|01:46] C:\Program Files\StepMania [19/01/2007|00:53] C:\Program Files\Symantec [10/10/2006|14:00] C:\Program Files\Tablet [10/10/2006|14:00] C:\Program Files\Tablette [13/04/2007|14:00] C:\Program Files\Tool beep bows [01/06/2006|08:39] C:\Program Files\Ulead Systems [01/06/2006|08:39] C:\Program Files\Uninstall Information [06/01/2007|15:41] C:\Program Files\UTHSCSA [26/09/2006|18:12] C:\Program Files\uTorrent [18/10/2006|09:10] C:\Program Files\ViaMichelin [31/03/2007|17:31] C:\Program Files\VideoLAN [01/06/2006|08:39] C:\Program Files\Viewpoint [28/01/2008|13:31] C:\Program Files\Wanadoo [07/09/2007|19:20] C:\Program Files\Windows Live Toolbar [01/06/2006|08:39] C:\Program Files\Windows Media Components [13/12/2006|11:58] C:\Program Files\Windows Media Connect 2 [04/09/2008|08:14] C:\Program Files\Windows Media Player [04/09/2008|08:14] C:\Program Files\Windows NT [01/06/2006|08:39] C:\Program Files\WindowsUpdate [05/09/2007|14:02] C:\Program Files\WinRAR [04/08/2008|10:38] C:\Program Files\WiPen [01/06/2006|08:39] C:\Program Files\xerox --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs [14/09/2009|01:57] C:\Program Files\Fichiers communs\Adobe [09/10/2006|18:40] C:\Program Files\Fichiers communs\Adobe Systems Shared [10/06/2008|14:56] C:\Program Files\Fichiers communs\AOL [12/09/2006|08:42] C:\Program Files\Fichiers communs\aolback [29/07/2009|17:23] C:\Program Files\Fichiers communs\Apple [13/09/2009|21:14] C:\Program Files\Fichiers communs\Control Panels [05/09/2007|14:06] C:\Program Files\Fichiers communs\Designer [28/01/2008|13:30] C:\Program Files\Fichiers communs\France Telecom [27/09/2006|13:16] C:\Program Files\Fichiers communs\Hewlett-Packard [30/03/2007|15:04] C:\Program Files\Fichiers communs\InstallShield [14/05/2008|17:03] C:\Program Files\Fichiers communs\Java [13/09/2009|20:48] C:\Program Files\Fichiers communs\Macrovision Shared [14/09/2009|02:02] C:\Program Files\Fichiers communs\Microsoft Shared [01/06/2006|08:39] C:\Program Files\Fichiers communs\MSSoap [01/06/2006|08:39] C:\Program Files\Fichiers communs\Nullsoft [01/06/2006|08:39] C:\Program Files\Fichiers communs\ODBC [07/09/2007|23:07] C:\Program Files\Fichiers communs\Panda Software [01/06/2006|08:39] C:\Program Files\Fichiers communs\Real [18/01/2007|21:40] C:\Program Files\Fichiers communs\Scanner [01/06/2006|08:41] C:\Program Files\Fichiers communs\Services [21/12/2006|19:31] C:\Program Files\Fichiers communs\Skype [01/06/2006|08:41] C:\Program Files\Fichiers communs\Sonic Shared [01/06/2006|08:39] C:\Program Files\Fichiers communs\SpeechEngines [13/09/2009|18:33] C:\Program Files\Fichiers communs\SureThing Shared [19/01/2007|00:53] C:\Program Files\Fichiers communs\Symantec Shared [04/09/2008|08:14] C:\Program Files\Fichiers communs\System [01/06/2006|08:39] C:\Program Files\Fichiers communs\Ulead Systems [12/12/2006|22:21] C:\Program Files\Fichiers communs\Vbox [01/06/2006|08:39] C:\Program Files\Fichiers communs\xing shared --------------------\\ Process ( 54 Processes ) ... OK ! --------------------\\ Recherche avec S_Lop D:\DOCUME~1\vru\APPLIC~1\TOOLBE~1 --------------------\\ Recherche de Fichiers / Dossiers Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Verification du Registre [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ante Surf Less] "DisplayName"="CiD Help" "UninstallString"="D:\\DOCUME~1\\vru\\APPLIC~1\\TOOLBE~1\\debug copy drive.exe -uninstall" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] --------------------\\ Verification du fichier Hosts Fichier Hosts MODIFIE 127.0.0.1 bin.errorprotector.com ## added by CiD 127.0.0.1 br.errorsafe.com ## added by CiD 127.0.0.1 br.winantivirus.com ## added by CiD 127.0.0.1 br.winfixer.com ## added by CiD 127.0.0.1 cdn.drivecleaner.com ## added by CiD 127.0.0.1 cdn.errorsafe.com ## added by CiD 127.0.0.1 cdn.winsoftware.com ## added by CiD 127.0.0.1 de.errorsafe.com ## added by CiD 127.0.0.1 de.winantivirus.com ## added by CiD 127.0.0.1 download.cdn.drivecleaner.com ## added by CiD 127.0.0.1 download.cdn.errorsafe.com ## added by CiD 127.0.0.1 download.cdn.winsoftware.com ## added by CiD 127.0.0.1 download.errorsafe.com ## added by CiD 127.0.0.1 download.systemdoctor.com ## added by CiD 127.0.0.1 download.winantispyware.com ## added by CiD 127.0.0.1 download.windrivecleaner.com ## added by CiD 127.0.0.1 download.winfixer.com ## added by CiD 127.0.0.1 drivecleaner.com ## added by CiD 127.0.0.1 dynamique.drivecleaner.com ## added by CiD 127.0.0.1 errorprotector.com ## added by CiD 127.0.0.1 errorsafe.com ## added by CiD 127.0.0.1 es.winantivirus.com ## added by CiD 127.0.0.1 fr.winantivirus.com ## added by CiD 127.0.0.1 fr.winfixer.com ## added by CiD 127.0.0.1 go.drivecleaner.com ## added by CiD 127.0.0.1 go.errorsafe.com ## added by CiD 127.0.0.1 go.winantispyware.com ## added by CiD 127.0.0.1 go.winantivirus.com ## added by CiD 127.0.0.1 hk.winantivirus.com ## added by CiD 127.0.0.1 instlog.errorsafe.com ## added by CiD 127.0.0.1 instlog.winantivirus.com ## added by CiD 127.0.0.1 instlog.winfixer.com ## added by CiD 127.0.0.1 jsp.drivecleaner.com ## added by CiD 127.0.0.1 kb.errorsafe.com ## added by CiD 127.0.0.1 kb.winantivirus.com ## added by CiD 127.0.0.1 nl.errorsafe.com ## added by CiD 127.0.0.1 se.errorsafe.com ## added by CiD 127.0.0.1 secure.drivecleaner.com ## added by CiD 127.0.0.1 secure.errorsafe.com ## added by CiD 127.0.0.1 secure.winantispam.com ## added by CiD 127.0.0.1 secure.winantispy.com ## added by CiD 127.0.0.1 secure.winantivirus.com ## added by CiD 127.0.0.1 support.winantivirus.com ## added by CiD 127.0.0.1 trial.updates.winsoftware.com ## added by CiD 127.0.0.1 ulog.winantivirus.com ## added by CiD 127.0.0.1 utils.errorsafe.com ## added by CiD 127.0.0.1 utils.winantivirus.com ## added by CiD 127.0.0.1 utils.winfixer.com ## added by CiD 127.0.0.1 winantispyware.com ## added by CiD 127.0.0.1 winantivirus.com ## added by CiD 127.0.0.1 winfixer.com ## added by CiD 127.0.0.1 winfixer2006.com ## added by CiD 127.0.0.1 winsoftware.com ## added by CiD 127.0.0.1 www.drivecleaner.com ## added by CiD 127.0.0.1 www.errorprotector.com ## added by CiD 127.0.0.1 www.errorsafe.com ## added by CiD 127.0.0.1 www.systemdoctor.com ## added by CiD 127.0.0.1 www.utils.winfixer.com ## added by CiD 127.0.0.1 www.win-anti-virus-pro.com ## added by CiD 127.0.0.1 www.win-virus-pro.com ## added by CiD 127.0.0.1 www.winantispam.com ## added by CiD 127.0.0.1 www.winantispy.com ## added by CiD 127.0.0.1 www.winantispyware.com ## added by CiD 127.0.0.1 www.winantivirus.com ## added by CiD 127.0.0.1 www.winantiviruspro.com ## added by CiD 127.0.0.1 www.windrivecleaner.com ## added by CiD 127.0.0.1 www.windrivesafe.com ## added by CiD 127.0.0.1 www.winfixer.com ## added by CiD 127.0.0.1 www.winfixer2006.com ## added by CiD 127.0.0.1 www.winsoftware.com ## added by CiD -> 72 [ 70 ## added by CiD ] --------------------\\ Recherche de fichiers avec Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-09-14 16:48:18 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden files ... folder error: D:\DOCUME~1\vru\LOCALS~1\APPLIC~1 --------------------\\ Recherche d'autres infections --------------------\\ Cracks & Keygens .. D:\DOCUME~1\vru\Bureau\… v‚rifier et jeter\dossier ernest\ernest crack.txt D:\DOCUME~1\vru\Bureau\… v‚rifier et jeter\dossier ernest\ernest\ERNEST_LE_LINETESET_20\ERNEST_CRACK D:\DOCUME~1\vru\Bureau\… v‚rifier et jeter\dossier ernest\ernest\ERNEST_LE__LINETEST_19\ERNEST_CRACK [F:70][D:18]-> D:\DOCUME~1\vru\LOCALS~1\Temp [F:2][D:0]-> D:\DOCUME~1\vru\Cookies [F:9][D:4]-> D:\DOCUME~1\vru\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - 14/09/2009|16:49 - Option : [1] --------------------\\ Fin du rapport a 16:49:58 Et le rapport de Mbam: Malwarebytes' Anti-Malware 1.41 Version de la base de données: 2792 Windows 5.1.2600 Service Pack 3 14/09/2009 17:54:22 mbam-log-2009-09-14 (17-54-22).txt Type de recherche: Examen complet (C:\|D:\|) Eléments examinés: 319331 Temps écoulé: 52 minute(s), 46 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté)
  5. pepermint23
    Mille merci pour la rapidité de votre réponse ! Voici les rapports: - log.txt: Logfile of random's system information tool 1.06 (written by random/random) Run by vru at 2009-09-14 13:11:03 Microsoft Windows XP Édition familiale Service Pack 3 System drive C: has 8 GB (24%) free of 31 GB Total RAM: 1023 MB (32% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 13:11:25, on 14/09/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16876) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\SYSTEM32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe c:\APPS\HIDSERVICE\HIDSERVICE.exe C:\Program Files\Packard Bell\Packard Bell Software Suite\PowerSave\HDPBSSS.exe C:\WINDOWS\system32\Tablet.exe C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe c:\APPS\Powercinema\Kernel\TV\CLSched.exe C:\WINDOWS\SYSTEM32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe C:\Program Files\COMODO\COMODO Internet Security\cfp.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\WINDOWS\system32\ctfmon.exe C:\APPS\SMP\SmpSys.exe C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE C:\Program Files\Packard Bell\Packard Bell Software Suite\Launcher.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\WTablet\TabUserW.exe C:\Program Files\OpenOffice.org 2.4\program\soffice.exe C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe C:\Program Files\Proxomitron Naoko v4.5\Proxomitron.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\svchost.exe D:\Documents and Settings\vru\Bureau\HiJackThis.exe C:\WINDOWS\system32\NOTEPAD.EXE D:\Documents and Settings\vru\Bureau\RSIT.exe D:\Documents and Settings\vru\Bureau\vru.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS02 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - c:\apps\skype\phone\IEPlugin\SKYPEI~1.DLL O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [smpcSys] C:\APPS\SMP\SmpSys.exe O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE" O4 - HKCU\..\Run: [Packard Bell Software Suite] C:\Program Files\Packard Bell\Packard Bell Software Suite\Launcher.exe /run O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: TabUserW.exe.lnk = C:\WINDOWS\system32\WTablet\TabUserW.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra button: Créer un Favori de l'appareil mobile - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\apps\skype\phone\IEPlugin\SKYPEI~1.DLL O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU) O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://signup.msn.com/pages/MsnInstC.cab O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (Installer Class) - http://www.nanoscan.com/as/v1/cabs/ascinstie.cab O16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) - http://www.nanoscan.com/cabs/nanoinst.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - http://www.fnacmusic.com/telechargementFna...acComposant.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe O23 - Service: Convar task manager (ctm) - Unknown owner - F:\ctm.exe (file missing) O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: Packard Bell Software Suite Service 1 (Service1) - Packard Bell Services - C:\Program Files\Packard Bell\Packard Bell Software Suite\PowerSave\HDPBSSS.exe O23 - Service: TabletService - Wacom Technology, Corp. - C:\WINDOWS\system32\Tablet.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe -- End of file - 13214 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job C:\WINDOWS\tasks\Extension de garantie.job C:\WINDOWS\tasks\Master CD_DVD Creator.job C:\WINDOWS\tasks\WebReg 20061014084836.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] Adobe PDF Reader Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}] Skype add-on (mastermind) - c:\apps\skype\phone\IEPlugin\SKYPEI~1.DLL [2006-12-18 726568] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}] Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Sign-in Helper - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-07-07 324416] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}] Adobe PDF Conversion Toolbar Helper - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-10 321120] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}] Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2006-07-07 493856] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2006-07-07 493856] {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-10 321120] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k [] "AppleSyncNotifier"=C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2009-05-13 177472] "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696] "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-07-13 292128] "Acrobat Assistant 8.0"=C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [2007-05-10 624248] ""= [] "Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080] "COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2009-09-14 1796368] "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "SmpcSys"=C:\APPS\SMP\SmpSys.exe [2005-11-17 975360] "H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE [2005-01-19 405583] "Packard Bell Software Suite"=C:\Program Files\Packard Bell\Packard Bell Software Suite\Launcher.exe [2007-10-19 1790776] "SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480] D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE TabUserW.exe.lnk - C:\WINDOWS\system32\WTablet\TabUserW.exe D:\Documents and Settings\vru\Menu Démarrer\Programmes\Démarrage OpenOffice.org 2.4.lnk - C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINDOWS\SYSTEM32\Ati2evxx.dll [2005-06-07 46080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\SYSTEM32\WgaLogon.dll [2007-03-15 236928] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=95000000 "NofolderOptions"=0 "NoFind"=0 "NoRun"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= "NoFolderOptions"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%ProgramFiles%\AOL 9.0\aol.exe"="%ProgramFiles%\AOL 9.0\aol.exe:*:Enabled:AOL" "%ProgramFiles%\UBISOFT\Splinter Cell Pandora Tomorrow\logo_ubi.exe"="%ProgramFiles%\UBISOFT\Splinter Cell Pandora Tomorrow\logo_ubi.exe:*:Enabled:SPLINTER CELL PANDORA" "%ProgramFiles%\UBISOFT\Splinter Cell Pandora Tomorrow\pandora.exe"="%ProgramFiles%\UBISOFT\Splinter Cell Pandora Tomorrow\pandora.exe:*:Enabled:PANDORA" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\APPS\Inventime\my.exe"="C:\APPS\Inventime\my.exe:*:Enabled:INVENTIME" "C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent" "C:\Program Files\Hewlett-Packard\HP Deskjet 9800 Series\Toolbox\HPWQTBX.exe"="C:\Program Files\Hewlett-Packard\HP Deskjet 9800 Series\Toolbox\HPWQTBX.exe:*:Enabled:Toolbox for HP Printing System for Windows" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "C:\APPS\skype\phone\Skype.exe"="C:\APPS\skype\phone\Skype.exe:*:Enabled:Skype" "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{607728da-9d8a-11db-b445-0016ae658d5b}] shell\AutoRun\command - cqxj.exe shell\open\command - cqxj.exe ======List of files/folders created in the last 1 months====== 2009-09-14 13:11:03 ----D---- C:\rsit 2009-09-14 02:04:04 ----D---- D:\Documents and Settings\All Users\Application Data\Avira 2009-09-14 02:04:04 ----D---- C:\Program Files\Avira 2009-09-14 01:49:54 ----D---- C:\Program Files\CCleaner 2009-09-14 01:22:39 ----D---- D:\Documents and Settings\All Users\Application Data\Comodo 2009-09-14 01:22:36 ----A---- C:\WINDOWS\system32\guard32.dll 2009-09-14 01:22:30 ----D---- C:\Program Files\COMODO 2009-09-14 00:26:47 ----D---- D:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2009-09-14 00:26:47 ----D---- C:\Program Files\Spybot - Search & Destroy 2009-09-13 22:30:29 ----D---- D:\Documents and Settings\vru\Application Data\Malwarebytes 2009-09-13 22:30:23 ----D---- D:\Documents and Settings\All Users\Application Data\Malwarebytes 2009-09-13 22:30:23 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2009-09-13 21:43:25 ----D---- D:\Documents and Settings\All Users\Application Data\FLEXnet 2009-09-13 21:14:02 ----D---- C:\Program Files\Fichiers communs\Control Panels 2009-09-13 21:11:43 ----D---- D:\Documents and Settings\All Users\Application Data\ALM 2009-09-13 21:01:41 ----A---- C:\WINDOWS\system32\NPSWF32_FlashUtil.exe 2009-09-13 21:01:41 ----A---- C:\WINDOWS\system32\NPSWF32.dll 2009-09-13 20:48:03 ----D---- C:\Program Files\Fichiers communs\Macrovision Shared 2009-09-09 15:19:15 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$ 2009-09-09 15:19:11 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$ 2009-09-09 15:19:00 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$ 2009-08-26 16:16:59 ----HDC---- C:\WINDOWS\$NtUninstallKB970653-v3$ 2009-08-15 21:54:49 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$ ======List of files/folders modified in the last 1 months====== 2009-09-14 11:49:40 ----D---- C:\WINDOWS\Temp 2009-09-14 11:49:36 ----HD---- C:\WINDOWS\inf 2009-09-14 11:28:33 ----D---- C:\Program Files\Mozilla Firefox 2009-09-14 11:23:08 ----D---- D:\Documents and Settings\vru\Application Data\OpenOffice.org2 2009-09-14 11:12:14 ----AD---- C:\WINDOWS\system32 2009-09-14 11:11:52 ----D---- C:\WINDOWS\system32\CatRoot2 2009-09-14 09:45:28 ----A---- C:\WINDOWS\SchedLgU.Txt 2009-09-14 07:33:28 ----D---- C:\WINDOWS 2009-09-14 02:04:12 ----D---- C:\WINDOWS\system32\drivers 2009-09-14 02:04:04 ----RD---- C:\Program Files 2009-09-14 02:02:54 ----SHD---- C:\WINDOWS\Installer 2009-09-14 02:02:52 ----D---- C:\WINDOWS\WinSxS 2009-09-14 02:02:52 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared 2009-09-14 01:58:31 ----D---- C:\WINDOWS\Prefetch 2009-09-14 01:57:17 ----D---- C:\Program Files\Fichiers communs\Adobe 2009-09-14 01:53:32 ----D---- C:\WINDOWS\Minidump 2009-09-14 01:53:32 ----D---- C:\WINDOWS\Debug 2009-09-13 21:48:15 ----D---- D:\Documents and Settings\vru\Application Data\Adobe 2009-09-13 21:43:01 ----D---- D:\Documents and Settings\All Users\Application Data\Adobe 2009-09-13 21:15:15 ----D---- C:\Program Files\Adobe 2009-09-13 21:14:02 ----D---- C:\Program Files\Fichiers communs 2009-09-13 21:02:25 ----RSD---- C:\WINDOWS\Fonts 2009-09-13 18:33:34 ----D---- C:\Program Files\Fichiers communs\SureThing Shared 2009-09-09 15:19:19 ----RSHD---- C:\WINDOWS\system32\dllcache 2009-09-09 15:19:11 ----HD---- C:\WINDOWS\$hf_mig$ 2009-09-07 13:11:34 ----D---- C:\WINDOWS\twain_32 2009-09-05 16:39:50 ----D---- D:\Documents and Settings\vru\Application Data\uTorrent 2009-08-28 23:38:20 ----A---- C:\WINDOWS\system32\MRT.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 AmdK8;Pilote de processeur AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 43008] R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104] R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2009-09-14 132168] R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2009-09-14 25160] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-09-14 28520] R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-05 12032] R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-09-14 55656] R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-10-26 3786944] R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800] R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-06-07 1235968] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2009-03-19 23400] R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288] R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824] R3 RTL8023xp;Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2004-12-02 70912] R3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-06-05 39424] R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152] R3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] S3 Bridge;Pont MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552] S3 BridgeMP;Miniport de pont MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552] S3 Cisa154p;Cisa154p; C:\WINDOWS\system32\drivers\Cisa154p.sys [] S3 DSDrv4;DSDrv4; \??\C:\PROGRA~1\K!TV\Plugins\S_Bt8x8\DSDrv4.sys [] S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS [] S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2003-03-09 51024] S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2003-03-09 16080] S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2003-03-09 21456] S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS [] S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS [] S3 PCASp50;PCASp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\PCASp50.sys [2004-05-17 17536] S3 RT73;Packard Bell WiPen 802.11b/g Driver; C:\WINDOWS\system32\DRIVERS\rt73.sys [2005-08-03 232192] S3 SetupNTGLM7X;SetupNTGLM7X; \??\E:\NTGLM7X.sys [] S3 tunmp;Pilote de carte miniport Tun Microsoft; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288] S3 USB_RNDIS;AOLbox; C:\WINDOWS\system32\DRIVERS\usb8023.sys [2008-04-13 12800] S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 usbser;Motorola A1000 USB Modem Driver; C:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-13 26112] S3 wanatw;WAN Miniport (ATW); C:\WINDOWS\system32\DRIVERS\wanatw4.sys [2003-01-10 33588] S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2003-09-01 104064] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-09-14 108289] R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-09-14 185089] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-06-05 144712] R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-06-07 376832] R2 CLCapSvc;CyberLink Background Capture Service (CBCS); c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe [2005-05-11 221266] R2 CLSched;CyberLink Task Scheduler (CTS); c:\APPS\Powercinema\Kernel\TV\CLSched.exe [2005-05-11 110672] R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2009-09-14 715392] R2 CyberLink Media Library Service;CyberLink Media Library Service; C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe [2005-05-11 61440] R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [2007-09-25 65536] R2 GenericHidService;Generic Service for HID Keyboard Input Collections; c:\APPS\HIDSERVICE\HIDSERVICE.exe [2005-01-07 49152] R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2009-07-03 1029456] R2 Service1;Packard Bell Software Suite Service 1; C:\Program Files\Packard Bell\Packard Bell Software Suite\PowerSave\HDPBSSS.exe [2007-09-17 976184] R2 TabletService;TabletService; C:\WINDOWS\system32\Tablet.exe [2005-06-17 749568] R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe [2004-02-26 49152] R3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-09-13 654848] R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-07-13 542496] S2 ctm;Convar task manager; F:\ctm.exe [] S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2006-10-09 68096] S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768] S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136] S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2003-03-09 65795] S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136] S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] -----------------EOF----------------- -ifo.txt: info.txt logfile of random's system information tool 1.06 2009-09-14 13:11:32 ======Uninstall list====== -->C:\PROGRA~1\GOTOSO~1\VADERE~1\UNWISE.EXE C:\PROGRA~1\GOTOSO~1\VADERE~1\INSTALL.LOG -->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 -->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 -->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19} -->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E} -->MsiExec.exe /I{8B543A39-9401-44F4-B572-069E64C15189} -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe" -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\Setup.EXE" -uninstall -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3F9CFBD8-8F77-4DCD-8CB5-CDD5F653C872}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4F1DA6BF-3614-48A1-9970-9E90F646789E}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5A065EA0-0EEC-4E94-A2A0-40812576C122}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5AFA4872-16B2-419E-ADCA-8E96E739115D}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe" -l0x40c -->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf µTorrent-->"C:\Program Files\uTorrent\uninstall.exe" Ad-Aware-->"D:\Documents and Settings\All Users\Application Data\{EF63305C-BAD7-4144-9208-D65528260864}\Ad-AwareAE.exe" REMOVE=TRUE MODIFY=FALSE Ad-Aware-->D:\Documents and Settings\All Users\Application Data\{EF63305C-BAD7-4144-9208-D65528260864}\Ad-AwareAE.exe Add or Remove Adobe Creative Suite 3 Master Collection-->C:\Program Files\Fichiers communs\Adobe\Installers\4dcfd9b7e901b57f81f667144603236\Setup.exe Adobe After Effects CS3 Presets-->MsiExec.exe /I{193EAFD0-1BAF-4FB4-B18F-79D5D6A4B285} Adobe Anchor Service CS3-->MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95} Adobe Asset Services CS3-->MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61} Adobe Bridge CS3-->MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394} Adobe Bridge Start Meeting-->MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23} Adobe BridgeTalk Plugin CS3-->MsiExec.exe /I{B73CFB12-C814-4638-AFFD-7E3AAFAF0B4E} Adobe Camera Raw 4.0-->MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C} Adobe CMaps-->MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C} Adobe Color - Photoshop Specific-->MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E} Adobe Color Common Settings-->MsiExec.exe /I{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9} Adobe Color EU Extra Settings-->MsiExec.exe /I{51846830-E7B2-4218-8968-B77F0FF475B8} Adobe Color JA Extra Settings-->MsiExec.exe /I{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029} Adobe Color NA Recommended Settings-->MsiExec.exe /I{95655ED4-7CA5-46DF-907F-7144877A32E5} Adobe Creative Suite 3 Master Collection-->MsiExec.exe /I{8718DC03-D066-4957-94E5-50C3C5042E8E} Adobe Default Language CS3-->MsiExec.exe /I{B9B35331-B7E4-4E5C-BF4C-7BC87856124D} Adobe Device Central CS3-->MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD} Adobe ExtendScript Toolkit 2-->MsiExec.exe /I{C2D69781-F392-4118-A5A7-C7E9C38DBFC2} Adobe Extension Manager CS3-->MsiExec.exe /I{BE5F3842-8309-4754-92D5-83E02E6077A3} Adobe Flash CS3-->MsiExec.exe /I{6B52140A-F189-4945-BFFC-DB3F00B8C589} Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Flash Player 9 ActiveX-->MsiExec.exe /X{BC4F8E84-5E29-49EC-B4E7-E6F9CB50986C} Adobe Flash Player 9 Plugin-->MsiExec.exe /X{88D422DB-E9C7-4E16-9D80-2999F4FD6AD9} Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe Adobe Flash Video Encoder-->MsiExec.exe /I{2EFFFC71-1E66-454E-A6E6-CEEC800B96D2} Adobe Fonts All-->MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B} Adobe Help Viewer CS3-->MsiExec.exe /I{7ACFB90E-8FD0-4397-AD3A-5195412623A3} Adobe Illustrator CS3-->MsiExec.exe /I{F08E8D2E-F132-4742-9C87-D5FF223A016A} Adobe InDesign CS3 Icon Handler-->MsiExec.exe /I{EA7B3CC4-366D-4CF6-8350-FD7A7034116E} Adobe InDesign CS3-->MsiExec.exe /I{CB3F8375-B600-4B9F-83C9-238ED1E583FD} Adobe Linguistics CS3-->MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078} Adobe MotionPicture Color Files-->MsiExec.exe /I{6B708481-748A-4EB4-97C1-CD386244FF77} Adobe PDF Library Files-->MsiExec.exe /I{D2559B88-CC9D-4B48-81BB-F492BAA9C48C} Adobe Photoshop CS-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}\setup.exe" -l0x40c Adobe Photoshop CS3-->MsiExec.exe /I{0046FA01-C5B9-4985-BACB-398DC480FC05} Adobe Reader 7.1.0 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A71000000002} Adobe Setup-->MsiExec.exe /I{4458C442-7376-4CF9-AF58-E8CEA6722363} Adobe SING CS3-->MsiExec.exe /I{B671CBFD-4109-4D35-9252-3062D3CCB7B2} Adobe Stock Photos CS3-->MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183} Adobe SVG Viewer 3.0-->C:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Winstall.exe -u -fC:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Install.log Adobe Type Support-->MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312} Adobe Update Manager CS3-->MsiExec.exe /I{E69AE897-9E0B-485C-8552-7841F48D42D8} Adobe Version Cue CS3 Client-->MsiExec.exe /I{D0DFF92A-492E-4C40-B862-A74A173C25C5} Adobe Video Profiles-->MsiExec.exe /I{845A8DB9-8802-4FD3-9FE3-938A6C46A2EC} Adobe WAS CS3-->MsiExec.exe /I{C5BD220A-EFE8-48A5-B70E-9503D535FACE} Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6} Adobe XMP DVA Panels CS3-->MsiExec.exe /I{0224CACC-994D-45F8-B973-D65056EA9C2F} Adobe XMP Panels CS3-->MsiExec.exe /I{D5A31AB1-345D-47C7-A87B-036A669F6DF1} Advanced PSD Repair v1.2-->C:\PROGRA~1\APSR\UNWISE.EXE C:\PROGRA~1\APSR\INSTALL.LOG AHV content for Acrobat and Flash-->MsiExec.exe /I{6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD} AOL - Assistant de désinstallation-->C:\Program Files\Fichiers communs\AOL\uninstaller.exe Apple Mobile Device Support-->MsiExec.exe /I{C337BDAF-CB4E-47E2-BE1A-CB31BB7DD0E3} Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033} Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe Avanquest update-->C:\Program Files\InstallShield Installation Information\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\Setup.exe -runfromtemp -l0x0009 -removeonly Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe" Codeur Windows Media Série 9-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E} COMODO Internet Security-->C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe -u Corel Painter Essentials 2-->MsiExec.exe /X{B946D46E-1302-48B4-84EE-B74C3191D975} Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe" Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe" Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe" Correctif pour Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe" CX4300_5500_DX4400 Manuel-->C:\Program Files\EPSON\TPMANUAL\CX4300_5500_DX4400\FRA\USE_G\DOCUNINS.EXE Ecran de veille AOL Photos-->C:\Program Files\Fichiers communs\AOL\Screensaver\uninst_ygpss.exe EPSON Logiciel imprimante-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r FileZilla Client 3.0.11-->C:\Program Files\FileZilla FTP Client\uninstall.exe GetDataBack for NTFS-->"F:\GetDataBack for NTFS\Uninstall.exe" "F:\GetDataBack for NTFS\install.log" -u Gizmo Project 2.0-->C:\Program Files\Gizmo Project\uninst.exe HijackThis 2.0.2-->"D:\Documents and Settings\vru\Bureau\HijackThis.exe" /uninstall Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe" HP Deskjet 9800 Series-->C:\Program Files\Hewlett-Packard\hp deskjet 9800 series\Installer\setup.exe /x HP Deskjet 9800-->msiexec /x{CE33EC58-5DFB-4560-9D33-1E7942E0554F} HP Photo Printing-->MsiExec.exe /I{A1545143-DD7A-4D6B-BBDD-0A9D93764B0E} ImageTool-->C:\WINDOWS\uninst.exe -f"C:\Program Files\UTHSCSA\ImageTool\DeIsL1.isu" -c"C:\Program Files\UTHSCSA\ImageTool\_ISREG32.DLL" iTunes-->MsiExec.exe /I{99ECF41F-5CCA-42BD-B8B8-A8333E2E2944} Java 6 Update 4-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160040} Java 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050} Java 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070} L&H TTS3000 Français-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\LHTTSFRF.inf, Uninstall Learn2 Player (Uninstall Only)-->C:\Program Files\Learn2.com\StRunner\stuninst.exe Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall Les Sims 2-->C:\Program Files\EA GAMES\Les Sims 2\EAUninstall.exe livebox-->C:\Program Files\InstallShield Installation Information\{17342E3B-0818-4A6F-BFF8-99476605ADD6}\Setup.exe -runfromtemp -l0x040c -removeonly Macromedia Flash Player 8 Plugin-->MsiExec.exe /X{91057632-CA70-413C-B628-2D3CDBBB906B} Macromedia Flash Player 8-->MsiExec.exe /X{885A63EA-382B-4DD4-A755-14809B8557D6} Macromedia Shockwave Player-->MsiExec.exe /X{7D1D6A24-65D4-454C-8815-4F08A5FFF12C} Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe" Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700} Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft ActiveSync 3.8-->"C:\WINDOWS\ISUN040C.EXE" -f"C:\Program Files\Microsoft ActiveSync\DeIsL1.isu" -c"C:\Program Files\Microsoft ActiveSync\ceuninst.dll" Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe" Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe" Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe" Microsoft Office Excel Viewer 2003-->MsiExec.exe /I{9084040C-6000-11D3-8CFE-0150048383C9} Microsoft Office PowerPoint Viewer 2007 (French)-->MsiExec.exe /X{95120000-00AF-040C-0000-0000000FF1CE} Microsoft Office Word Viewer 2003-->MsiExec.exe /I{9085040C-6000-11D3-8CFE-0150048383C9} Microsoft Office XP Professional with FrontPage-->MsiExec.exe /I{90280409-6000-11D3-8CFE-0050048383C9} Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe" Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe" Mise à jour de sécurité pour le Codeur Windows Media (KB954156)-->"C:\WINDOWS\$NtUninstallKB954156_WM9L$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe" Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)-->"C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe" Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)-->"C:\WINDOWS\ie7updates\KB929969\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB969897)-->"C:\WINDOWS\ie7updates\KB969897-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB972260)-->"C:\WINDOWS\ie7updates\KB972260-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe" MobileMe Control Panel-->MsiExec.exe /I{DDBB28C8-B2AA-45A1-8DCE-059A798509FB} Motorola Phone Tools-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BAD8CA9C-77C0-4663-B00B-A8D3B13C341B}\setup.exe" -l0x9 -removeonly Mozilla Firefox (3.0.14)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F} MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} OpenOffice.org 2.4-->MsiExec.exe /I{1E0FF527-971B-4BBF-83D1-987E8DEE437D} Packard Bell Software Suite-->C:\Program Files\Packard Bell\Packard Bell Software Suite\Uninstall.exe Packard Bell WiPen-->C:\Program Files\WiPen\Uninstall.exe Panda NanoScan-->C:\WINDOWS\system32\Panda Software\NanoScan\nanounst.exe Panda TotalScan-->C:\WINDOWS\system32\Panda Software\ActiveScan2\ascuninst.exe PC Inspector File Recovery-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0DD140D3-9563-481E-AA75-BA457CBDAEF2}\Setup.exe" -l0x40c PC Inspector smart recovery-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C9A87D86-FDFD-418B-BF96-EF09320973B3}\Setup.exe" -l0x40c PC Inspector task manager-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A14B81F-005A-4C32-A968-45165CAB4891}\Setup.exe" -l0x40c PDF Settings-->MsiExec.exe /I{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5} Proxomitron v4.5-->C:\Program Files\Proxomitron Naoko v4.5\Uninstal.exe QuickTime-->MsiExec.exe /I{C78EAC6F-7A73-452E-8134-DBB2165C5A68} QUINTEZZ Locator PC Software (C:\Program Files\Locator\)-->C:\WINDOWS\st6unst.exe -n "C:\Program Files\Locator\ST6UNST.000" QUINTEZZ Locator PC Software-->C:\WINDOWS\st6unst.exe -n "C:\Program Files\Locator\ST6UNST.LOG" Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\Setup.exe" -l0x40c -removeonly Safari-->MsiExec.exe /I{D90AFDE3-3E67-407A-ACA8-F0BAAD012F08} Skype 3.0-->"c:\apps\skype\phone\unins000.exe" Skype add-on for IE-->rundll32 "c:\apps\skype\phone\IEPlugin\SkypeIEPlugin.dll",FriendlyUnregisterServer 0 Skype Plugin Manager-->MsiExec.exe /I{3D5E5C0A-5B36-4F98-99A7-287F7DBDCE03} Sonic MyDVD-->MsiExec.exe /I{21657574-BD54-48A2-9450-EB03B2C7FC29} Sonic RecordNow!-->MsiExec.exe /I{9541FED0-327F-4DF0-8B96-EF57EF622F19} Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe" StepMania (remove only)-->"C:\Program Files\StepMania\uninstall.exe" Tablette-->C:\Program Files\Tablet\Remove.exe /u Vade Retro Outllook & Outlook Express-->C:\PROGRA~1\GOTOSO~1\VADERE~1\UNWISE.EXE C:\PROGRA~1\GOTOSO~1\VADERE~1\INSTALL.LOG ViaMichelin Navigation X-930-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{47FF921C-E834-47A6-8CE4-F0A99CDE347F}\setup.exe" -l0x40c VideoLAN VLC media player 0.8.6a-->C:\Program Files\VideoLAN\VLC\uninstall.exe Viewpoint Media Player-->C:\Program Files\Viewpoint\Viewpoint Experience Technology\mtsAxInstaller.exe /u Visual C++ 2008 x86 Runtime - (v9.0.30729)-->MsiExec.exe /X{F333A33D-125C-32A2-8DCE-5C5D14231E27} Visual C++ 2008 x86 Runtime - v9.0.30729.01-->C:\WINDOWS\system32\msiexec.exe /x {F333A33D-125C-32A2-8DCE-5C5D14231E27} /qb+ REBOOTPROMPT="" Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411} Windows Live Sign-in Assistant-->MsiExec.exe /I{22B3CC30-77B8-419C-AA4B-F571FDF5D66D} Windows Live Toolbar-->C:\Program Files\Windows Live Toolbar\UnInstall.exe {DE56FE92-9AD5-4DCB-9111-DDDF73EA5E5E} Windows Live Toolbar-->MsiExec.exe /X{DE56FE92-9AD5-4DCB-9111-DDDF73EA5E5E} Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe" Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe" Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" ======Hosts File====== 127.0.0.1 bin.errorprotector.com ## added by CiD 127.0.0.1 br.errorsafe.com ## added by CiD 127.0.0.1 br.winantivirus.com ## added by CiD 127.0.0.1 br.winfixer.com ## added by CiD 127.0.0.1 cdn.drivecleaner.com ## added by CiD 127.0.0.1 cdn.errorsafe.com ## added by CiD 127.0.0.1 cdn.winsoftware.com ## added by CiD 127.0.0.1 de.errorsafe.com ## added by CiD 127.0.0.1 de.winantivirus.com ## added by CiD 127.0.0.1 download.cdn.drivecleaner.com ## added by CiD ======Security center information====== AV: AntiVir Desktop FW: COMODO Firewall ======System event log====== Computer Name: Mokono Event Code: 7036 Message: Le service Compatibilité avec le Changement rapide d'utilisateur est entré dans l'état : en cours d'exécution. Record Number: 18380 Source Name: Service Control Manager Time Written: 20090807073408.000000+120 Event Type: Informations User: Computer Name: Mokono Event Code: 7035 Message: Un contrôle Démarrer a correctement été envoyé au service Compatibilité avec le Changement rapide d'utilisateur. Record Number: 18379 Source Name: Service Control Manager Time Written: 20090807073408.000000+120 Event Type: Informations User: AUTORITE NT\SYSTEM Computer Name: Mokono Event Code: 7036 Message: Le service Gestionnaire de connexions d'accès distant est entré dans l'état : en cours d'exécution. Record Number: 18378 Source Name: Service Control Manager Time Written: 20090807073349.000000+120 Event Type: Informations User: Computer Name: Mokono Event Code: 7035 Message: Un contrôle Démarrer a correctement été envoyé au service Gestionnaire de connexions d'accès distant. Record Number: 18377 Source Name: Service Control Manager Time Written: 20090807073349.000000+120 Event Type: Informations User: AUTORITE NT\SYSTEM Computer Name: Mokono Event Code: 7036 Message: Le service Téléphonie est entré dans l'état : en cours d'exécution. Record Number: 18376 Source Name: Service Control Manager Time Written: 20090807073349.000000+120 Event Type: Informations User: =====Application event log===== Computer Name: Mokono Event Code: 12001 Message: The Messenger Sharing USN Journal Reader service started successfully. Record Number: 15640 Source Name: usnjsvc Time Written: 20080919103002.000000+120 Event Type: User: Computer Name: Mokono Event Code: 1800 Message: Le service Centre de sécurité Windows a démarré. Record Number: 15639 Source Name: SecurityCenter Time Written: 20080919102700.000000+120 Event Type: Informations User: Computer Name: Mokono Event Code: 0 Message: Record Number: 15638 Source Name: CLSched Time Written: 20080919102700.000000+120 Event Type: Informations User: Computer Name: Mokono Event Code: 0 Message: Record Number: 15637 Source Name: CLCapSvc Time Written: 20080919102659.000000+120 Event Type: Informations User: Computer Name: Mokono Event Code: 1 Message: Record Number: 15636 Source Name: Bonjour Service Time Written: 20080919102656.000000+120 Event Type: Informations User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SYSTEMROOT%\SYSTEM32;%SYSTEMROOT%;%SYSTEMROOT%\SYSTEM32\WBEM;C:\ATI TECHNOLOGIES\ATI CONTROL PANEL;C:\PROGRAM FILES\FICHIERS COMMUNS\ULEAD SYSTEMS\MPEG;C:\PROGRA~1\FICHIE~1\SONICS~1\;C:\Program Files\QuickTime\QTSystem\ "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=15 "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 2, AuthenticAMD "PROCESSOR_REVISION"=2f02 "NUMBER_OF_PROCESSORS"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip "QTJAVA"=C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip -----------------EOF----------------- Edit :Et je dis juste ça , au cas ou...j'ai ouvert un autre sujet d'analyse hijackthis sur un autre forum MAIS il concerne un second pc, lui aussi victime de spywares.Afin de pouvoir suivre les deux résolutions correctement je me suis donc adressée à deux forums différents.Ainsi je ne me mélange pas les pinceaux et applique spécifiquement les solutions qui correspondent. En espérant avoir fait les choses correctement .....
  6. pepermint23
    Bonjour ! Hier j'ai voulu faire un peu de ménage sur mon pc et quelle ne fut pas ma ( mauvaise )surprise que de me rendre compte que j'étais infestée de spyware banker et autres dialer ....J'ai donc fait ce qu'il ne faut apparemment pas faire , à savoir analyser avec avast, ad aware, spybot, malvare bytes et pour finir antivir ( oui, tout ça ...)Ils m'ont tous trouvé différentes choses qu'ils semblent néanmoins avoir réussi à éradiquer. Donc, pour être sûre que mon pc est clean, pourriez vous me dire si le rapport suivant est sain , s'il vous plait ? (Pour info, j'ai supprimé avast au profit d'antivir et mis comodo en firewall ) Merci beaucoup pour votre aide ^__^ Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:51:43, on 14/09/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16876) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\SYSTEM32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe c:\APPS\HIDSERVICE\HIDSERVICE.exe C:\Program Files\Packard Bell\Packard Bell Software Suite\PowerSave\HDPBSSS.exe C:\WINDOWS\system32\Tablet.exe C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe c:\APPS\Powercinema\Kernel\TV\CLSched.exe C:\WINDOWS\SYSTEM32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe C:\Program Files\COMODO\COMODO Internet Security\cfp.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\WINDOWS\system32\ctfmon.exe C:\APPS\SMP\SmpSys.exe C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE C:\Program Files\Packard Bell\Packard Bell Software Suite\Launcher.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\WTablet\TabUserW.exe C:\Program Files\OpenOffice.org 2.4\program\soffice.exe C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe C:\Program Files\Proxomitron Naoko v4.5\Proxomitron.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\svchost.exe D:\Documents and Settings\vru\Bureau\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS02 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - c:\apps\skype\phone\IEPlugin\SKYPEI~1.DLL O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [smpcSys] C:\APPS\SMP\SmpSys.exe O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE" O4 - HKCU\..\Run: [Packard Bell Software Suite] C:\Program Files\Packard Bell\Packard Bell Software Suite\Launcher.exe /run O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: TabUserW.exe.lnk = C:\WINDOWS\system32\WTablet\TabUserW.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra button: Créer un Favori de l'appareil mobile - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\apps\skype\phone\IEPlugin\SKYPEI~1.DLL O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU) O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://signup.msn.com/pages/MsnInstC.cab O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (Installer Class) - http://www.nanoscan.com/as/v1/cabs/ascinstie.cab O16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) - http://www.nanoscan.com/cabs/nanoinst.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - http://www.fnacmusic.com/telechargementFna...acComposant.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe O23 - Service: Convar task manager (ctm) - Unknown owner - F:\ctm.exe (file missing) O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe Marie
×
×
  • Créer...