M'expliquer mes rapport RSIT

Tiito0x · le 20 juin 2010

Bonjour, voila mon problème, j'ai déjà fait un post mais pas dans le bon endroit donc on ma dit d'en rouvrir un autre.On m'a aussi conseillé d'installer RSIT et de copier les rapports ici.Mon premier post parlais du problème de lenteur de mon pc et de savoir si il était infecté. Voici les rapports :

Logfile of random's system information tool 1.07 (written by random/random)

Run by Tiitoox at 2010-06-18 18:06:17

Microsoft Windows XP Édition familiale Service Pack 2

System drive C: has 70 GB (38%) free of 184 GB

Total RAM: 510 MB (16% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 18:07:07, on 18/06/2010

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe

C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\UAService7.exe

C:\WINDOWS\system32\wbem\wmiapsrv.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe

C:\WINDOWS\system32\wuauclt.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\WINDOWS\System32\svchost.exe

C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Documents and Settings\Tiitoox\Mes documents\Téléchargements\RSIT.exe

C:\Program Files\trend micro\Tiitoox.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - (no file)

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O2 - BHO: (no name) - {F156768E-81EF-470C-9057-481BA8380DBA} - (no file)

O3 - Toolbar: Vue HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll

O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll

O3 - Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)

O4 - HKLM\..\Run: [bDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"

O4 - HKLM\..\Run: [bitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')

O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')

O4 - Startup: Logitech . Enregistrement du produit.lnk = C:\Program Files\Fichiers communs\LogiShrd\eReg\SetPoint\eReg.exe

O8 - Extra context menu item: &Tout télécharger avec FlashGet - C:\Program Files\FlashGet\jc_all.htm

O8 - Extra context menu item: &Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm

O9 - Extra button: Livre de reliures HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll

O9 - Extra button: Sélection intelligente HP - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll

O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe (file missing)

O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe (file missing)

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {50DC58D0-C870-4BE6-BC41-971ED2D5F022} (HookWlmEx Control) - http://www.s uper-me s s enger.fr/tab/Hoo k WlmEx.cab

O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: BitDefender Arrakis Server (Arrakis3) - Unknown owner - C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe

O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe

O23 - Service: Fax - Unknown owner - C:\WINDOWS\system32\fxssvc.exe

O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe

O23 - Service: iPod Service (iPodService) - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\LogiShrd\Bluetooth\lbtserv.exe

O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe

O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfservice.exe

O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe

O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe

O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe

O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe

O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe

O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe

O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe

O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe

O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe

--

End of file - 7450 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job

C:\WINDOWS\tasks\WebReg Photosmart C4200 series.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]

HP Print Enhancer - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll [2007-03-02 1298024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}]

HP Print Clips - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll [2007-03-02 177768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-16 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]

JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-06-16 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F156768E-81EF-470C-9057-481BA8380DBA}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - Vue HP - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll [2003-11-21 98304]

{381FFDE8-2394-4f90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll [2009-03-24 95536]

{D4027C7F-154A-4066-A1AD-4243D8127440}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"BDAgent"=C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe [2009-11-16 782336]

"BitDefender Antiphishing Helper"=C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe [2009-02-23 69632]

"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2007-04-16 577536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [2010-03-24 952768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGRSMMSG]

C:\WINDOWS\AGRSMMSG.exe [2004-06-29 88363]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcxMonitor]

C:\WINDOWS\ALCXMNTR.EXE [2004-09-07 57344]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]

C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2004-11-04 344064]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EoEngine]

[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EvtMgr6]

C:\Program Files\Logitech\SetPointP\SetPoint.exe [2010-01-27 1312848]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flashget]

C:\Program Files\FlashGet\FlashGet.exe /min []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPHmon06]

C:\WINDOWS\system32\hphmon06.exe [2004-06-07 659456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPHUPD06]

c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe [2004-06-07 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv]

c:\windows\system\hpsysdrv.exe [1998-05-07 52736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IcoSet]

c:\hp\bin\cloaker.exe [1999-11-07 27136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

C:\Program Files\iTunes\iTunesHelper.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KBD]

C:\HP\KBD\KBD.EXE [2003-02-11 61440]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Load]

C:\WINDOWS\svchost.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LSBWatcher]

c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe [2004-10-14 253952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]

C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PS2]

C:\WINDOWS\system32\ps2.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Recguard]

C:\WINDOWS\SMINST\RECGUARD.EXE [2004-04-14 233472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Reminder]

C:\Windows\Creator\Remind_XP.exe [2004-12-14 663552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]

C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^HP Digital Imaging Monitor.lnk]

C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2007-03-11 210520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk]

C:\PROGRA~1\MICROS~2\Office\OSA9.EXE [1999-02-17 65588]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Symantec Fax Starter Edition Port.lnk]

C:\PROGRA~1\MICROS~2\Office\1036\OLFSNT40.EXE [1999-04-06 46080]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Tiitoox^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 3.2.lnk]

C:\PROGRA~1\OPENOF~1.ORG\program\QUICKS~1.EXE [2009-12-15 384000]

C:\Documents and Settings\Tiitoox\Menu Démarrer\Programmes\Démarrage

Logitech . Enregistrement du produit.lnk - C:\Program Files\Fichiers communs\LogiShrd\eReg\SetPoint\eReg.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]

C:\WINDOWS\system32\Ati2evxx.dll [2004-11-04 90112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]

c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll [2010-01-29 64592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\Program Files\AOL 9.0\waol.exe"="C:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL France"

"C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\WZSE0.TMP\SymNRT.exe"="C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\WZSE0.TMP\SymNRT.exe:*:Enabled:Norton Removal Tool"

"C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\7zS29.tmp\SymNRT.exe"="C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\7zS29.tmp\SymNRT.exe:*:Enabled:Norton Removal Tool"

"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

"C:\Program Files\FlashGet\flashget.exe"="C:\Program Files\FlashGet\flashget.exe:*:Enabled:Flashget"

"C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"

"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"

"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"

"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"%ProgramFiles%\iTunes\iTunes.exe"="%ProgramFiles%\iTunes\iTunes.exe:*:enabled:iTunes"

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9dfa1752-f6c7-11de-8a41-001109087a23}]

shell\AutoRun\command - J:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ

shell\open\command - J:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9dfa1753-f6c7-11de-8a41-001109087a23}]

shell\AutoRun\command - K:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ

shell\open\command - K:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ

======List of files/folders created in the last 1 months======

2010-06-18 18:06:22 ----D---- C:\Program Files\trend micro

2010-06-18 18:06:17 ----D---- C:\rsit

2010-06-17 19:39:43 ----D---- C:\Program Files\VirtualDJ

2010-06-16 18:01:53 ----A---- C:\WINDOWS\system32\javaws.exe

2010-06-16 18:01:53 ----A---- C:\WINDOWS\system32\deployJava1.dll

2010-06-16 18:01:52 ----A---- C:\WINDOWS\system32\javaw.exe

2010-06-16 18:01:52 ----A---- C:\WINDOWS\system32\java.exe

2010-06-16 18:00:47 ----D---- C:\Program Files\Java

2010-06-16 17:59:30 ----A---- C:\WINDOWS\system32\REN132.tmp

2010-06-16 17:59:30 ----A---- C:\WINDOWS\system32\REN131.tmp

2010-06-16 17:32:29 ----D---- C:\Documents and Settings\Tiitoox\Application Data\Malwarebytes

2010-06-16 17:29:42 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes

2010-06-16 17:29:39 ----D---- C:\Program Files\Malwarebytes' Anti-Malware

2010-06-13 23:12:12 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$

2010-06-13 23:11:57 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$

2010-06-13 23:09:34 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$

2010-06-13 23:05:17 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$

2010-06-13 23:05:08 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$

2010-06-13 23:04:54 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$

2010-06-13 22:53:39 ----HDC---- C:\WINDOWS\$NtUninstallKB982381$

2010-06-06 11:41:48 ----D---- C:\Documents and Settings\Tiitoox\Application Data\QuickScan

2010-06-05 22:31:05 ----D---- C:\Documents and Settings\Tiitoox\Application Data\Leadertech

2010-06-05 22:26:18 ----A---- C:\WINDOWS\imsins.BAK

2010-06-05 22:23:25 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll

2010-06-05 22:21:36 ----HDC---- C:\WINDOWS\$NtUninstallWdf01009$

2010-06-05 22:07:17 ----D---- C:\Documents and Settings\All Users\Application Data\Logishrd

2010-06-05 22:06:33 ----D---- C:\Program Files\Logitech

2010-06-05 22:00:50 ----D---- C:\Program Files\AMD

2010-06-05 21:59:09 ----D---- C:\Program Files\Fichiers communs\LogiShrd

2010-06-05 21:59:04 ----D---- C:\Documents and Settings\Tiitoox\Application Data\InstallShield

2010-06-05 21:57:49 ----D---- C:\Documents and Settings\Tiitoox\Application Data\Logitech

2010-06-05 21:57:40 ----D---- C:\Documents and Settings\Tiitoox\Application Data\Logishrd

2010-06-05 21:54:56 ----D---- C:\Pilotes-pciv92v4v4l

2010-06-02 21:08:33 ----D---- C:\WINDOWS\Prefetch

2010-06-02 21:06:21 ----D---- C:\Program Files\Neffy

2010-06-02 21:06:15 ----D---- C:\Program Files\AutoWebCam

2010-06-02 21:02:42 ----D---- C:\WINDOWS\system32\CatRoot_bak

2010-06-02 20:53:26 ----DC---- C:\WINDOWS\$NtUninstallKB951698$(4)

2010-06-02 20:51:17 ----DC---- C:\WINDOWS\$NtUninstallKB951376-v2$(4)

2010-06-02 20:49:02 ----DC---- C:\WINDOWS\$NtUninstallKB951066$(4)

2010-06-02 20:46:53 ----DC---- C:\WINDOWS\$NtUninstallKB950974$(4)

2010-06-02 20:44:45 ----DC---- C:\WINDOWS\$NtUninstallKB950762$(4)

2010-06-02 20:42:38 ----DC---- C:\WINDOWS\$NtUninstallKB946648$(4)

2010-06-02 20:39:39 ----DC---- C:\WINDOWS\$NtUninstallKB938759$(4)

2010-06-02 20:35:55 ----DC---- C:\WINDOWS\$NtUninstallKB923561$(4)

2010-06-02 20:05:27 ----A---- C:\WINDOWS\005442_.tmp

2010-05-30 19:19:37 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$

======List of files/folders modified in the last 1 months======

2010-06-18 18:06:25 ----D---- C:\WINDOWS\system32\CatRoot2

2010-06-18 18:06:22 ----D---- C:\Program Files

2010-06-18 18:03:53 ----D---- C:\WINDOWS\system32

2010-06-18 18:03:50 ----D---- C:\WINDOWS\Temp

2010-06-18 07:48:58 ----A---- C:\WINDOWS\SchedLgU.Txt

2010-06-18 07:47:02 ----RASH---- C:\boot.ini

2010-06-18 07:47:02 ----A---- C:\WINDOWS\win.ini

2010-06-18 07:47:02 ----A---- C:\WINDOWS\system.ini

2010-06-18 07:20:24 ----D---- C:\WINDOWS\system32\drivers

2010-06-18 07:17:45 ----D---- C:\WINDOWS

2010-06-16 19:47:22 ----D---- C:\WINDOWS\system32\Restore

2010-06-16 19:47:21 ----SHD---- C:\System Volume Information

2010-06-16 19:19:55 ----HDC---- C:\WINDOWS\$NtUninstallKB977165$

2010-06-16 18:18:47 ----SHD---- C:\WINDOWS\Installer

2010-06-16 18:02:48 ----D---- C:\Program Files\Fichiers communs\Java

2010-06-15 20:38:35 ----A---- C:\WINDOWS\bdagent.INI

2010-06-14 17:44:19 ----D---- C:\WINDOWS\Microsoft.NET

2010-06-14 17:44:12 ----RSD---- C:\WINDOWS\assembly

2010-06-14 17:35:10 ----HD---- C:\WINDOWS\inf

2010-06-13 23:12:16 ----D---- C:\WINDOWS\system32\dllcache

2010-06-13 23:11:54 ----HD---- C:\WINDOWS\$hf_mig$

2010-06-13 23:05:39 ----D---- C:\WINDOWS\Debug

2010-06-13 23:02:54 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI

2010-06-13 23:02:12 ----D---- C:\WINDOWS\WinSxS

2010-06-13 22:53:49 ----D---- C:\Program Files\Internet Explorer

2010-06-13 22:33:00 ----D---- C:\WINDOWS\system32\FxsTmp

2010-06-13 22:30:11 ----D---- C:\WINDOWS\Tasks

2010-06-05 22:26:31 ----D---- C:\WINDOWS\system32\ReinstallBackups

2010-06-05 22:17:42 ----DC---- C:\WINDOWS\system32\DRVSTORE

2010-06-05 22:17:14 ----D---- C:\WINDOWS\system32\CatRoot

2010-06-05 22:00:39 ----HD---- C:\Program Files\InstallShield Installation Information

2010-06-05 21:59:09 ----D---- C:\Program Files\Fichiers communs

2010-06-05 21:47:57 ----D---- C:\Program Files\ma-config.com

2010-06-05 21:47:53 ----D---- C:\Documents and Settings\All Users\Application Data\ma-config.com

2010-06-04 07:36:15 ----D---- C:\Documents and Settings\Tiitoox\Application Data\dvdcss

2010-06-02 21:07:58 ----D---- C:\WINDOWS\system32\wbem

2010-06-02 21:07:56 ----RSD---- C:\WINDOWS\Fonts

2010-06-02 21:07:55 ----D---- C:\WINDOWS\AppPatch

2010-06-02 21:07:16 ----D---- C:\WINDOWS\system32\config

2010-06-02 21:06:54 ----D---- C:\WINDOWS\Registration

2010-06-02 21:03:39 ----D---- C:\WINDOWS\system32\usmt

2010-06-02 21:03:39 ----D---- C:\WINDOWS\system

2010-06-02 21:03:38 ----D---- C:\WINDOWS\system32\oobe

2010-06-02 21:03:37 ----D---- C:\WINDOWS\system32\Setup

2010-06-02 21:03:33 ----D---- C:\WINDOWS\Help

2010-06-02 21:03:33 ----D---- C:\Program Files\Outlook Express

2010-06-02 21:03:33 ----D---- C:\Program Files\Fichiers communs\System

2010-06-02 21:03:32 ----D---- C:\Program Files\Windows NT

2010-06-02 21:03:32 ----D---- C:\Program Files\Windows Media Player

2010-06-02 21:03:31 ----D---- C:\WINDOWS\system32\Com

2010-06-02 21:03:31 ----D---- C:\Program Files\NetMeeting

2010-06-02 21:03:29 ----D---- C:\WINDOWS\srchasst

2010-06-02 21:03:29 ----D---- C:\WINDOWS\msagent

2010-06-02 21:03:29 ----D---- C:\WINDOWS\ime

2010-06-02 21:03:28 ----D---- C:\WINDOWS\system32\npp

2010-06-02 21:03:01 ----D---- C:\WINDOWS\PeerNet

2010-06-02 21:03:01 ----D---- C:\Program Files\Movie Maker

2010-06-02 21:02:54 ----D---- C:\WINDOWS\network diagnostic

2010-06-02 21:02:51 ----D---- C:\Program Files\Messenger

2010-06-02 20:57:44 ----D---- C:\WINDOWS\security

2010-06-02 20:39:40 ----D---- C:\Program Files\Mozilla Firefox

2010-06-02 20:25:29 ----AD---- C:\WINDOWS\system32\fr

2010-06-02 20:24:30 ----D---- C:\WINDOWS\Downloaded Program Files

2010-06-02 20:16:12 ----D---- C:\Documents and Settings

2010-06-02 20:05:04 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$

2010-06-01 20:25:06 ----D---- C:\Documents and Settings\Tiitoox\Application Data\vlc

2010-06-01 18:48:46 ----D---- C:\WINDOWS\pss

2010-05-28 21:37:34 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;Pilote de processeur AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43520]

R1 bdftdif;bdftdif; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Firewall\bdftdif.sys []

R2 BDVEDISK;BDVEDISK; \??\C:\Program Files\BitDefender\BitDefender 2009\BDVEDISK.sys []

R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2004-06-29 1268204]

R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-09-24 4122368]

R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-05 60800]

R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-11-04 821248]

R3 bdfm;BDFM; C:\WINDOWS\system32\drivers\bdfm.sys [2008-09-18 111112]

R3 Bdfndisf;BitDefender Firewall NDIS Filter Service; C:\WINDOWS\system32\DRIVERS\bdfndisf.sys [2009-10-13 104456]

R3 bdfsfltr;bdfsfltr; C:\WINDOWS\system32\drivers\bdfsfltr.sys [2008-12-10 242184]

R3 BDSelfPr;BDSelfPr; \??\C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys []

R3 GEARAspiWDM;GEAR CDRom Filter; C:\WINDOWS\SYSTEM32\DRIVERS\GEARAspiWDM.sys [2004-09-14 13872]

R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]

R3 Iviaspi;IVI ASPI Shell; C:\WINDOWS\system32\drivers\iviaspi.sys [2003-09-11 21060]

R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2009-11-10 35984]

R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2009-11-10 37392]

R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2009-11-10 28560]

R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]

R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-05 61824]

R3 P1110VID;Creative WebCam NX; C:\WINDOWS\system32\DRIVERS\P1110VID.sys [2003-05-14 90357]

R3 Pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-09-19 10368]

R3 Ps2;PS2; C:\WINDOWS\system32\DRIVERS\PS2.sys [2001-06-04 14112]

R3 rtl8139;Realtek RTL8139/810x Family Fast Ethernet NIC NT Driver; C:\WINDOWS\system32\DRIVERS\R8139n51.SYS [2002-10-04 46976]

R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-05 26624]

R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-05 57600]

R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-04 17024]

R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]

R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]

S1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys []

S3 Bridge;Pont MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2004-08-05 71552]

S3 BridgeMP;Miniport de pont MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2004-08-05 71552]

S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]

S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []

S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2007-03-06 49920]

S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2007-03-06 16496]

S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2007-03-06 21568]

S3 ltmodem5;LT Modem Driver; C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys [2004-08-04 607452]

S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]

S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]

S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]

S3 Profos;Profos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\profos.sys []

S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]

S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]

S3 Trufos;Trufos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\trufos.sys []

S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]

S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]

S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]

S3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-05 20480]

S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]

S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]

S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

S4 IntelIde;IntelIde; C:\WINDOWS\system32\DRIVERS\intelide.sys [2004-08-04 5504]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2004-11-04 413696]

R2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2004-08-05 14336]

R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-06-16 153376]

R2 LIVESRV;BitDefender Desktop Update Service; C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe [2009-10-13 413696]

R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2004-08-05 14336]

R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2004-08-05 14336]

R2 UserAccess7;SecuROM User Access Service (V7); C:\WINDOWS\system32\UAService7.exe [2010-04-06 126976]

R2 VSSERV;BitDefender Virus Shield; C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe [2009-11-16 1638240]

R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-05 14336]

R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2004-08-05 14336]

S3 Arrakis3;BitDefender Arrakis Server; C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe [2009-01-20 172032]

S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]

S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]

S3 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2004-08-05 268800]

S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]

S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]

S3 iPodService;iPod Service; C:\Program Files\iPod\bin\iPodService.exe []

S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Fichiers communs\LogiShrd\Bluetooth\lbtserv.exe [2010-01-29 292944]

S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2010-05-11 271728]

S3 scan;BitDefender Threat Scanner; C:\WINDOWS\System32\svchost.exe [2004-08-05 14336]

S4 NetTcpPortSharing;Service de partage de ports Net.Tcp; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

info.txt logfile of random's system information tool 1.06 2010-06-18 18:07:17

======Uninstall list======

-->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu

-->c:\WINDOWS\system32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19}

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf

32 Bit HP CIO Components Installer-->MsiExec.exe /I{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}

Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -maintain plugin

Adobe Reader 9.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A93000000001}

Agere Systems PCI Soft Modem-->agrsmdel

AMD Processor Driver-->C:\Program Files\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe -runfromtemp -l0x040c -removeonly

Ask Toolbar-->MsiExec.exe /I{86D4B82A-ABED-442A-BE86-96357B70F4FE}

Assistant de connexion Windows Live-->MsiExec.exe /I{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}

ATI Control Panel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"

ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean

AutoWebCam-->C:\Program Files\AutoWebCam\uninstall.exe

BitDefender Internet Security 2009-->MsiExec.exe /X{27148014-3B0A-402B-8130-6B056357D12D}

CCleaner-->"C:\Program Files\CCleaner\uninst.exe"

Connexion Facile à Internet-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{8105684D-8CA6-440D-8F58-7E5FD67A499D} /l1036

Correctif pour Windows XP (KB938759)-->"C:\WINDOWS\$NtUninstallKB938759$\spuninst\spuninst.exe"

Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"

Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"

Correctif pour Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"

Correctif pour Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe"

Correctif pour Windows XP (KB979306)-->"C:\WINDOWS\$NtUninstallKB979306$\spuninst\spuninst.exe"

Correctif pour Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe"

Correctif Windows XP - KB873339-->C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe

Correctif Windows XP - KB883667-->C:\WINDOWS\$NtUninstallKB883667$\spuninst\spuninst.exe

Correctif Windows XP - KB885835-->C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe

Correctif Windows XP - KB885836-->C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe

Correctif Windows XP - KB887742-->C:\WINDOWS\$NtUninstallKB887742$\spuninst\spuninst.exe

Correctif Windows XP - KB890175-->C:\WINDOWS\$NtUninstallKB890175$\spuninst\spuninst.exe

Creative WebCam NX Driver (1.02.01.0827)-->C:\WINDOWS\CtDrvIns.exe -uninstall -script P1110.uns -unsext NT -plugin p1110pin.dll -pluginres p1110pin.crl

eReg-->MsiExec.exe /I{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}

Help and Support Additions-->C:\PROGRA~1\HELPAN~1\UNWISE.EXE C:\PROGRA~1\HELPAN~1\INSTALL.LOG

HijackThis 2.0.2-->"C:\Documents and Settings\Tiitoox\Mes documents\Téléchargements\HijackThis.exe" /uninstall

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""

Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"

Hotfix for Windows XP (KB926239)-->"C:\WINDOWS\$NtUninstallKB926239$\spuninst\spuninst.exe"

HP Appareils photos Photosmart 4.0-->C:\Program Files\HP\Digital Imaging\{4C04DF1B-6A39-4299-9DD1-1FA60000266E}\setup\hpzscr01.exe -datfile hpiscr01.dat

HP Customer Participation Program 9.0-->C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat

HP Deskjet Preloaded Printer Drivers-->MsiExec.exe /X{F419D20A-7719-4639-8E30-C073A040D878}

HP Image Zone 4.5.3-->C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat

HP Image Zone Plus 4.5.3-->C:\Program Files\HP\Digital Imaging\{D0420D64-8D33-4374-A2B2-9225C7925CA6}\setup\hpzscr01.exe -datfile hpdscr01.dat

HP Imaging Device Functions 9.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat

HP OCR Software 9.0-->C:\Program Files\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat

HP Photosmart All-In-One Software 9.0-->C:\Program Files\HP\Digital Imaging\{B09BCBF6-87EE-4403-A336-3A9510856535}\setup\hpzscr01.exe -datfile hposcr15.dat

HP Photosmart Essential 2.01-->C:\Program Files\HP\Digital Imaging\PhotoSmartEssential\hpzscr01.exe -datfile hpqbud13.dat

HP PSC & OfficeJet 4.0-->"C:\Program Files\HP\Digital Imaging\{A1062847-0846-427A-92A1-BB8251A91E91}\setup\hpzscr01.exe" -datfile hposcr04.dat

HP Smart Web Printing-->MsiExec.exe /X{415CDA53-9100-476F-A7B2-476691E117C7}

HP Solution Center 9.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat

HP Update-->MsiExec.exe /X{AB40272D-92AB-4F30-B36B-22EDE16F8FE5}

HPIZplus450-->MsiExec.exe /X{7B98685A-4E21-4A4F-A2D6-DC557042BADA}

HPSSupply-->MsiExec.exe /X{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}

Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe

Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}

InterVideo DiscLabel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C3F058C0-A21C-452D-8D99-95B1A45F417D}\setup.exe" REMOVEALL

InterVideo WinDVD Creator-->"C:\Program Files\InstallShield Installation Information\{2FCE4FC5-6930-40E7-A4F1-F862207424EF}\setup.exe" REMOVEALL

InterVideo WinDVD Player-->"C:\Program Files\InstallShield Installation Information\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}\setup.exe" REMOVEALL

iTunes-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{BE20E2F5-1903-4AAE-B1AF-2046E586C925}

Java 2 Runtime Environment, SE v1.4.2_03-->MsiExec.exe /I{7148F0A8-6813-11D6-A77B-00B0D0142030}

Java 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020FF}

Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}

KBD-->C:\HP\KBD\KBD.EXE uninstalled

Les Sims 2-->C:\Program Files\EA GAMES\Les Sims 2\EAUninstall.exe

Logiciel d'archivage WinRAR-->C:\Program Files\WinRAR\uninstall.exe

Logitech SetPoint 6.0-->C:\Program Files\Fichiers communs\LogiShrd\SP6_Uninstall\setup.exe

Ma-Config.com-->MsiExec.exe /X{14E3D14B-7852-477D-ACE2-895AF4322804}

Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"

Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"

Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}

Microsoft .NET Framework 1.1 Security Update (KB979906)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp"

Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}

Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}

Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}

Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}

Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe

Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}

Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}

Microsoft Kernel-Mode Driver Framework Feature Pack 1.9-->"C:\WINDOWS\$NtUninstallWdf01009$\spuninst\spuninst.exe"

Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}

Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}

Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Lecteur Windows Media (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Lecteur Windows Media (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Lecteur Windows Media (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9L$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Lecteur Windows Media (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Lecteur Windows Media (KB979402)-->"C:\WINDOWS\$NtUninstallKB979402_WM9L$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB958470)-->"C:\WINDOWS\$NtUninstallKB958470$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB961371-v2)-->"C:\WINDOWS\$NtUninstallKB961371-v2$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB974455)-->"C:\WINDOWS\$NtUninstallKB974455$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB976325)-->"C:\WINDOWS\$NtUninstallKB976325$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB977165)-->"C:\WINDOWS\$NtUninstallKB977165$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB978251)-->"C:\WINDOWS\$NtUninstallKB978251$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB978262)-->"C:\WINDOWS\$NtUninstallKB978262$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB981350)-->"C:\WINDOWS\$NtUninstallKB981350$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB982381)-->"C:\WINDOWS\$NtUninstallKB982381$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB925720)-->"C:\WINDOWS\$NtUninstallKB925720$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB961503)-->"C:\WINDOWS\$NtUninstallKB961503$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB976749)-->"C:\WINDOWS\$NtUninstallKB976749$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB978207)-->"C:\WINDOWS\$NtUninstallKB978207$\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB980182)-->"C:\WINDOWS\$NtUninstallKB980182$\spuninst\spuninst.exe"

Mozilla Firefox (3.6.3)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe

MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP

MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}

MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

MSXML 6 Service Pack 2 (KB973686)-->MsiExec.exe /I{56EA8BC0-3751-4B93-BC9D-6651CC36E5AA}

OpenOffice.org 3.2-->MsiExec.exe /I{97B3824E-B2D2-4C49-A860-BCA56F10B040}

Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}

PC-Doctor for Windows-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{0C66761E-497A-4BE3-AE0D-8EC30FC9A9AA} /l1036

PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"

Photosmart 320,370,7400,8100,8400 Series (fra)-->C:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\setup\hpzscr01.exe -datfile hphscr01.dat

QuickTime-->C:\WINDOWS\unvise32qt.exe C:\WINDOWS\system32\QuickTime\Uninstall.log

Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" -l0x40c -removeonly

Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}

Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}

Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}

Sonic Express Labeler-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}

Sonic RecordNow!-->MsiExec.exe /I{9541FED0-327F-4DF0-8B96-EF57EF622F19}

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""

VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}

Virtual DJ - Atomix Productions-->C:\PROGRA~1\VIRTUA~1\UNWISE.EXE C:\PROGRA~1\VIRTUA~1\INSTALL.LOG

VLC media player 1.0.2-->C:\Program Files\VideoLAN\VLC\uninstall.exe

Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"

Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803$\spuninst\spuninst.exe"

Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"

Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}

Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}

Windows Live Mail-->MsiExec.exe /I{5DD76286-9BE7-4894-A990-E905E91AC818}

Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1}

Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll

Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"

======Security center information======

AV: Antivirus BitDefender

FW: Pare-feu BitDefender

======System event log======

Computer Name: NOM-EB85C523610

Event Code: 7035

Message: Un contrôle Démarrer a correctement été envoyé au service Service de découvertes SSDP.

Record Number: 11269

Source Name: Service Control Manager

Time Written: 20100508215926.000000+120

Event Type: Informations

User: AUTORITE NT\SYSTEM

Computer Name: NOM-EB85C523610

Event Code: 7035

Message: Un contrôle Démarrer a correctement été envoyé au service NLA (Network Location Awareness).

Record Number: 11268

Source Name: Service Control Manager

Time Written: 20100508215926.000000+120

Event Type: Informations

User: AUTORITE NT\SYSTEM

Computer Name: NOM-EB85C523610

Event Code: 7035

Message: Un contrôle Démarrer a correctement été envoyé au service Service COM de gravage de CD IMAPI.

Record Number: 11267

Source Name: Service Control Manager

Time Written: 20100508215926.000000+120

Event Type: Informations

User: AUTORITE NT\SYSTEM

Computer Name: NOM-EB85C523610

Event Code: 7036

Message: Le service hpqcxs08 est entré dans l'état : en cours d'exécution.

Record Number: 11266

Source Name: Service Control Manager

Time Written: 20100508215926.000000+120

Event Type: Informations

User:

Computer Name: NOM-EB85C523610

Event Code: 7035

Message: Un contrôle Démarrer a correctement été envoyé au service Gestionnaire de connexions d'accès distant.

Record Number: 11265

Source Name: Service Control Manager

Time Written: 20100508215926.000000+120

Event Type: Informations

User: NOM-EB85C523610\HP_Propriétaire

=====Application event log=====

Computer Name: NOM-EB85C523610

Event Code: 1000

Message: Application défaillante bu_.exe, version 0.0.0.0, module défaillant user32.dll, version 5.1.2600.2180, adresse de défaillance 0x000150ad.

Record Number: 5

Source Name: Application Error

Time Written: 20100513191501.000000+120

Event Type: erreur

User:

Computer Name: NOM-EB85C523610

Event Code: 1000

Message: Application défaillante bu_.exe, version 0.0.0.0, module défaillant user32.dll, version 5.1.2600.2180, adresse de défaillance 0x000150ad.

Record Number: 4

Source Name: Application Error

Time Written: 20100513191409.000000+120

Event Type: erreur

User:

Computer Name: NOM-EB85C523610

Event Code: 0

Message:

Record Number: 3

Source Name: hpqcxs08

Time Written: 20100513184640.000000+120

Event Type: Informations

User:

Computer Name: NOM-EB85C523610

Event Code: 1800

Message: Le service Centre de sécurité Windows a démarré.

Record Number: 2

Source Name: SecurityCenter

Time Written: 20100513184636.000000+120

Event Type: Informations

User:

Computer Name: NOM-EB85C523610

Event Code: 0

Message:

Record Number: 1

Source Name: hpqddsvc

Time Written: 20100513184618.000000+120

Event Type: Informations

User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe

"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;c:\Python22;C:\Program Files\ATI Technologies\ATI Control Panel;C:\Program Files\Fichiers communs\DivX Shared\

"windir"=%SystemRoot%

"FP_NO_HOST_CHECK"=NO

"OS"=Windows_NT

"PROCESSOR_ARCHITECTURE"=x86

"PROCESSOR_LEVEL"=15

"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 15 Stepping 0, AuthenticAMD

"PROCESSOR_REVISION"=0f00

"NUMBER_OF_PROCESSORS"=1

"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH

"TEMP"=%SystemRoot%\TEMP

"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------

Merci d'avance =)

no.ppp · le 20 juin 2010

Salut,

Il y a quelques petites infections. Allons-y !

Désinstalle Ask

Télécharge Ad-Remover sur ton Bureau.

Déconnecte-toi et ferme toutes les applications en cours
Double-clique sur le fichier téléchargé
Au menu principal, choisis l'option "Nettoyer"
Laisse travailler l'outil
Copie-colle le contenu du rapport C:\Ad-Report-SCAN.log

Télécharge Malwarebytes' Anti-Malware (MBAM)

Double clique sur le fichier téléchargé pour lancer le processus d'installation.
Dans l'onglet "Mise à jour", clique sur le bouton "Recherche de mise à jour": si le pare-feu demande l'autorisation à MBAM de se connecter, accepte.
Une fois la mise à jour terminée, rends-toi dans l'onglet "Recherche".
Sélectionne "Exécuter un examen rapide"
Clique sur "Rechercher"
L'analyse démarre, le scan est relativement long, c'est normal.
A la fin de l'analyse, un message s'affiche :
L'examen s'est terminé normalement. Clique sur 'Afficher les résultats' pour afficher tous les objets trouvés.
Clique sur "Ok" pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
Ferme tes navigateurs.
Si des malwares ont été détectés, clique sur Afficher les résultats.
Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport et poste-le dans ta prochaine réponse.

Modifié le 20 juin 2010 par no.ppp

Tiito0x · le 21 juin 2010

Rapport de MalawareBytes :

Malwarebytes' Anti-Malware 1.46

www.malwarebytes.org

Version de la base de données: 4219

Windows 5.1.2600 Service Pack 2

Internet Explorer 6.0.2900.2180

20/06/2010 22:28:13

mbam-log-2010-06-20 (22-28-13).txt

Type d'examen: Examen rapide

Elément(s) analysé(s): 161895

Temps écoulé: 27 minute(s), 0 seconde(s)

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 0

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 0

Fichier(s) infecté(s): 0

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

Dossier(s) infecté(s):

(Aucun élément nuisible détecté)

Fichier(s) infecté(s):

(Aucun élément nuisible détecté)

Rapports AD-Remover :

Malwarebytes' Anti-Malware 1.46

www.malwarebytes.org

Version de la base de données: 4219

Windows 5.1.2600 Service Pack 2

Internet Explorer 6.0.2900.2180

20/06/2010 22:28:13

mbam-log-2010-06-20 (22-28-13).txt

Type d'examen: Examen rapide

Elément(s) analysé(s): 161895

Temps écoulé: 27 minute(s), 0 seconde(s)

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 0

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 0

Fichier(s) infecté(s): 0

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

Dossier(s) infecté(s):

(Aucun élément nuisible détecté)

Fichier(s) infecté(s):

(Aucun élément nuisible détecté)

Tiito0x · le 21 juin 2010

======= RAPPORT D'AD-REMOVER 2.0.0.1,C | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par C_XX le 17/06/10 à 18:00

Contact: AdRemover.contact@gmail.com

Site web: Ad_Remover

C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 21:42:45 le 20/06/2010, Mode normal

Microsoft Windows XP Édition familiale Service Pack 2 (X86)

Tiitoox, NOM-EB85C523610 ( )

============== ACTION(S) ==============

0,Dossier supprimé: C:\WINDOWS\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

0,Fichier supprimé: C:\Program Files\Mozilla FireFox\Components\AskSearch.js

0,Fichier supprimé: C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job

0,Dossier supprimé: C:\Documents and Settings\Magalie\Application Data\Mozilla\FireFox\Profiles\orwkvrjz.default\extensions\toolbar@ask.com

0,Fichier supprimé: C:\Documents and Settings\Magalie\Application Data\Mozilla\FireFox\Profiles\orwkvrjz.default\searchplugins\askcom.xml

0,Dossier supprimé: C:\Documents and Settings\Tiitoox\Local Settings\Application Data\AskToolbar

3,Fichier supprimé: C:\WINDOWS\Installer\1eacd68.msi

(!) -- Fichiers temporaires supprimés.

-- Fichier ouvert: C:\Documents and Settings\Magalie\Application Data\Mozilla\FireFox\Profiles\orwkvrjz.default\Prefs.js --

Ligne supprimée: user_pref("browser.search.defaultengine", "Ask.com");

Ligne supprimée: user_pref("browser.search.defaultenginename", "Ask.com");

Ligne supprimée: user_pref("browser.search.order.1", "Ask.com");

Ligne supprimée: user_pref("extensions.asktb.cbid", "OF");

Ligne supprimée: user_pref("extensions.asktb.default-channel-url-mask", "hxxp://fr.ask.com/web?q={query}&o={o}&l={l}&...

Ligne supprimée: user_pref("extensions.asktb.dtid", "VIN001NTFR");

Ligne supprimée: user_pref("extensions.asktb.fresh-install", false);

Ligne supprimée: user_pref("extensions.asktb.l", "dis");

Ligne supprimée: user_pref("extensions.asktb.last-config-req", "1275760845783");

Ligne supprimée: user_pref("extensions.asktb.locale", "fr_FR");

Ligne supprimée: user_pref("extensions.asktb.o", "16050");

Ligne supprimée: user_pref("extensions.asktb.overlay-reloaded-using-restart", true);

Ligne supprimée: user_pref("extensions.asktb.qsrc", "2871");

Ligne supprimée: user_pref("extensions.asktb.r", "3");

Ligne supprimée: user_pref("extensions.asktb.to", "16105");

Ligne supprimée: user_pref("extensions.enabledItems", "{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}:6.0.14,{85E85FF9-E50C-4...

Ligne supprimée: user_pref("keyword.URL", "hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=LMW2&o=16050&locale=...

-- Fichier Fermé --

1,Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}

1,Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}

1,Clé supprimée: HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}

1,Clé supprimée: HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}

1,Clé supprimée: HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}

1,Clé supprimée: HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}

0,Clé supprimée: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd

0,Clé supprimée: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1

0,Clé supprimée: HKLM\Software\Classes\AppID\GenericAskToolbar.DLL

1,Clé supprimée: HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}

0,Clé supprimée: HKCU\Software\AskToolbar

0,Clé supprimée: HKCU\Software\EoRezo

0,Clé supprimée: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Eoengine

3,Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}

0,Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

0,Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{D4027C7F-154A-4066-A1AD-4243D8127440}

0,Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440}

============== SCAN ADDITIONNEL ==============

** Mozilla Firefox Version [3.6.3 (fr)] **

-- C:\Documents and Settings\Tiitoox\Application Data\Mozilla\FireFox\Profiles\bj6d01r4.default\Prefs.js --

browser.download.lastDir, J:\\PSP\\PHOTO

browser.startup.homepage, hxxp://fr.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:fr:official

browser.startup.homepage_override.mstone, rv:1.9.2.3

keyword.URL, hxxp://www.shareware-fr.com/fr/index.php?rvs=hompag

privacy.popups.showBrowserMessage, false

-- C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\FireFox\Profiles\fdkl7qs2.default\Prefs.js --

browser.startup.homepage, hxxp://www.google.fr/

browser.startup.homepage_override.mstone, rv:1.9.2.3

-- C:\Documents and Settings\Magalie\Application Data\Mozilla\FireFox\Profiles\orwkvrjz.default\Prefs.js --

browser.download.lastDir, C:\\Documents and Settings\\Magalie\\Mes documents\\Mes images\\18 Cam' et Elo' (17.04.10)

browser.search.defaulturl, hxxp://www.bing.com/search?FORM=IEFM1&q=

browser.search.selectedEngine, Google

browser.startup.homepage, hxxp://go.microsoft.com/fwlink/?LinkId=69157

browser.startup.homepage_override.mstone, rv:1.9.2.3

========================================

** Internet Explorer Version [6.0.2900.2180] **

[HKCU\Software\Microsoft\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Do404Search: 0x01000000

Local Page: C:\WINDOWS\system32\blank.htm

Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896

Show_ToolBar: yes

Start Page: hxxp://fr.msn.com/

Use Search Asst: no

[HKLM\Software\Microsoft\Internet Explorer\Main]

Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896

Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Search bar: hxxp://search.msn.com/spbasic.htm

Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

Start Page: hxxp://fr.msn.com/

[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]

Tabs: res://ieframe.dll/tabswelcome.htm

Blank: res://mshtml.dll/blank.htm

========================================

C:\Program Files\Ad-Remover\Quarantine: 192 Fichier(s)

C:\Program Files\Ad-Remover\Backup: 15 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 20/06/2010 (2646 Octet(s))

Fin à: 21:49:31, 20/06/2010

============== E.O.F ==============

no.ppp · le 21 juin 2010

Re,

Relance Ad-Remover, clique sur "Désinstaller".

Télécharge OTL sur ton Bureau

Double-clique sur OTL.exe pour le lancer.
Coche la case Tous les utilisateurs
Fais de même avec Recherche Lop et Recherche Purity.
Clique ensuite sur Analyse puis patiente pendant qu'il scanne le registre et les fichiers.
Quand l'analyse est terminée, deux fenêtres du Bloc-notes vont s'ouvrir. OTL.Txt et Extras.Txt. Ces fichiers sont sauvegardés au même endroit que OTL.
Copie-colle les dans ta prochaine réponse.

Tiito0x · le 22 juin 2010

OLT.Txt :

OTL logfile created on: 22/06/2010 18:04:21 - Run 1

OTL by OldTimer - Version 3.2.6.1 Folder = C:\Documents and Settings\Tiitoox\Bureau

Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 6.0.2900.2180)

Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

510,00 Mb Total Physical Memory | 205,00 Mb Available Physical Memory | 40,00% Memory free

1,00 Gb Paging File | 1,00 Gb Available in Paging File | 61,00% Paging File free

Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 179,33 Gb Total Space | 68,67 Gb Free Space | 38,29% Space Free | Partition Type: NTFS

Drive D: | 6,96 Gb Total Space | 3,23 Gb Free Space | 46,36% Space Free | Partition Type: FAT32

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: NOM-EB85C523610

Current User Name: Tiitoox

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: All users

Company Name Whitelist: Off

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/06/22 18:01:09 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tiitoox\Bureau\OTL.exe

PRC - [2010/04/06 18:41:59 | 000,126,976 | ---- | M] () -- C:\WINDOWS\system32\UAService7.exe

PRC - [2010/04/05 11:01:07 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2009/11/16 19:20:27 | 000,442,368 | ---- | M] () -- C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe

PRC - [2009/11/16 19:20:26 | 000,782,336 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe

PRC - [2009/11/16 19:20:25 | 001,638,240 | ---- | M] (BitDefender S. R. L.) -- C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe

PRC - [2009/10/13 17:56:30 | 000,413,696 | ---- | M] (BitDefender SRL) -- C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe

PRC - [2007/04/16 16:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe

PRC - [2004/08/05 20:00:00 | 001,036,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

========== Modules (SafeList) ==========

MOD - [2010/06/22 18:01:09 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tiitoox\Bureau\OTL.exe

MOD - [2009/10/13 17:03:21 | 000,155,648 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2009\BitDefender InnerFire\midas32-v1_17\plugin_fragments.m32

MOD - [2008/09/13 00:13:04 | 000,106,496 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2009\BitDefender InnerFire\midas32-v1_17\plugin_extra.m32

MOD - [2008/09/12 23:30:24 | 000,073,728 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2009\BitDefender InnerFire\midas32-v1_17\plugin_net.m32

MOD - [2008/09/12 22:13:36 | 000,098,304 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2009\BitDefender InnerFire\midas32-v1_17\plugin_registry.m32

MOD - [2008/09/12 21:52:16 | 000,077,824 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2009\BitDefender InnerFire\midas32-v1_17\plugin_base.m32

MOD - [2008/09/12 15:06:56 | 000,143,360 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) -- C:\Program Files\BitDefender\BitDefender 2009\BitDefender InnerFire\midas32-v1_17\midas32.dll

MOD - [2004/08/05 20:00:00 | 001,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

MOD - [2004/08/05 20:00:00 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx

========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (iPodService)

SRV - [2010/05/11 11:34:36 | 000,271,728 | ---- | M] (CybelSoft) [On_Demand | Stopped] -- C:\Program Files\ma-config.com\maconfservice.exe -- (maconfservice)

SRV - [2010/04/06 18:41:59 | 000,126,976 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\UAService7.exe -- (UserAccess7) SecuROM User Access Service (V7)

SRV - [2010/01/29 23:17:14 | 000,292,944 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ)

SRV - [2009/11/16 19:20:25 | 001,638,240 | ---- | M] (BitDefender S. R. L.) [Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe -- (VSSERV)

SRV - [2009/10/13 17:56:30 | 000,413,696 | ---- | M] (BitDefender SRL) [Auto | Running] -- C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe -- (LIVESRV)

SRV - [2009/10/13 17:56:01 | 000,323,584 | ---- | M] (S.C. BitDefender S.R.L) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\scan.dll -- (scan)

SRV - [2009/01/20 19:16:20 | 000,172,032 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe -- (Arrakis3)

========== Driver Services (SafeList) ==========

DRV - [2010/05/01 14:05:04 | 000,014,336 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys -- (driverhardwarev2)

DRV - [2009/11/10 13:55:32 | 000,028,560 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt)

DRV - [2009/11/10 13:55:08 | 000,037,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)

DRV - [2009/11/10 13:54:52 | 000,035,984 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)

DRV - [2009/10/13 17:56:15 | 000,104,456 | ---- | M] (BitDefender LLC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bdfndisf.sys -- (Bdfndisf)

DRV - [2009/10/13 17:56:01 | 000,137,224 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Fichiers communs\BitDefender\BitDefender Firewall\bdftdif.sys -- (bdftdif)

DRV - [2009/04/03 17:49:38 | 000,039,808 | ---- | M] (BitDefender S.R.L.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\trufos.sys -- (Trufos)

DRV - [2009/01/12 12:27:58 | 000,008,832 | ---- | M] (BitDefender S.R.L.) [Kernel | On_Demand | Running] -- C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys -- (BDSelfPr)

DRV - [2008/12/10 20:42:46 | 000,242,184 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bdfsfltr.sys -- (bdfsfltr)

DRV - [2008/10/06 18:16:16 | 000,082,696 | ---- | M] (BitDefender S.R.L.) [Kernel | Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2009\BDVEDISK.sys -- (BDVEDISK)

DRV - [2008/09/24 11:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)

DRV - [2008/09/18 12:09:12 | 000,111,112 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bdfm.sys -- (bdfm)

DRV - [2008/09/02 14:32:06 | 000,013,056 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\profos.sys -- (Profos)

DRV - [2006/07/01 22:42:58 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)

DRV - [2004/11/04 06:40:04 | 000,821,248 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)

DRV - [2004/08/04 08:46:46 | 000,607,452 | ---- | M] (LT) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ltmdmnt.sys -- (ltmodem5)

DRV - [2004/06/29 19:07:18 | 001,268,204 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)

DRV - [2003/09/19 09:47:00 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (Pfc)

DRV - [2003/09/11 07:36:54 | 000,021,060 | ---- | M] (InterVideo, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\iviaspi.sys -- (Iviaspi)

DRV - [2003/05/14 10:57:02 | 000,090,357 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\P1110Vid.sys -- (P1110VID)

DRV - [2002/10/04 19:04:10 | 000,046,976 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\R8139n51.sys -- (rtl8139)

DRV - [2001/06/04 15:00:00 | 000,014,112 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PS2.sys -- (Ps2)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-4058119836-2691366412-1189602214-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

IE - HKU\S-1-5-21-4058119836-2691366412-1189602214-1008\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://fr.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:fr:official"

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js..extensions.enabledItems: {e001c731-5e37-4538-a5cb-8168736a2360}:0.9.9.22

FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20

FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1.6.2.63

FF - prefs.js..keyword.URL: "http://www.shareware-fr.com/fr/index.php?rvs=hompag"

FF - prefs.js..network.proxy.backup.ftp: "localhost"

FF - prefs.js..network.proxy.backup.ftp_port: 8800

FF - prefs.js..network.proxy.backup.gopher: "localhost"

FF - prefs.js..network.proxy.backup.gopher_port: 8800

FF - prefs.js..network.proxy.backup.socks: "localhost"

FF - prefs.js..network.proxy.backup.socks_port: 8800

FF - prefs.js..network.proxy.backup.ssl: "localhost"

FF - prefs.js..network.proxy.backup.ssl_port: 8800

FF - prefs.js..network.proxy.ftp: "localhost"

FF - prefs.js..network.proxy.ftp_port: 8800

FF - prefs.js..network.proxy.gopher: "localhost"

FF - prefs.js..network.proxy.gopher_port: 8800

FF - prefs.js..network.proxy.http: "localhost"

FF - prefs.js..network.proxy.http_port: 8800

FF - prefs.js..network.proxy.share_proxy_settings: true

FF - prefs.js..network.proxy.socks: "localhost"

FF - prefs.js..network.proxy.socks_port: 8800

FF - prefs.js..network.proxy.ssl: "localhost"

FF - prefs.js..network.proxy.ssl_port: 8800

FF - prefs.js..network.proxy.type: 4

FF - HKLM\software\mozilla\Firefox\Extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2009\FFToolbar\ [2009/11/17 07:57:03 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/06/20 21:48:28 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/06/18 07:22:37 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Thunderbird\Extensions\\bdThunderbird@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2009\tbextension\ [2009/10/13 16:53:02 | 000,000,000 | ---D | M]

[2009/10/13 17:43:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tiitoox\Application Data\Mozilla\Extensions

[2010/06/20 22:21:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tiitoox\Application Data\Mozilla\Firefox\Profiles\bj6d01r4.default\extensions

[2009/11/30 20:48:57 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Tiitoox\Application Data\Mozilla\Firefox\Profiles\bj6d01r4.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}

[2010/06/16 18:15:31 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Tiitoox\Application Data\Mozilla\Firefox\Profiles\bj6d01r4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}

[2010/05/30 20:27:39 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Tiitoox\Application Data\Mozilla\Firefox\Profiles\bj6d01r4.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}

[2010/06/18 07:42:57 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Tiitoox\Application Data\Mozilla\Firefox\Profiles\bj6d01r4.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}

[2010/06/21 21:07:29 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions

[2010/03/14 13:38:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}

[2010/06/16 18:01:59 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

[2009/11/16 19:20:26 | 000,065,536 | ---- | M] () -- C:\Program Files\Mozilla Firefox\components\FFComm.dll

[2010/06/16 18:01:06 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll

[2010/03/14 13:19:36 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml

[2010/03/14 13:19:36 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml

[2010/03/14 13:19:36 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml

[2010/03/14 13:19:36 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml

[2010/03/25 19:24:20 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml

O1 HOSTS File: ([2004/08/05 20:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)

O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)

O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

O2 - BHO: (no name) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - No CLSID value found.

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.

O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)

O2 - BHO: (no name) - {F156768E-81EF-470C-9057-481BA8380DBA} - No CLSID value found.

O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.

O3 - HKLM\..\Toolbar: (BitDefender Toolbar) - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll (Bitdefender)

O3 - HKLM\..\Toolbar: (Vue HP) - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll (Hewlett-Packard Company)

O3 - HKU\S-1-5-21-4058119836-2691366412-1189602214-1008\..\Toolbar\ShellBrowser: (Vue HP) - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll (Hewlett-Packard Company)

O3 - HKU\S-1-5-21-4058119836-2691366412-1189602214-1008\..\Toolbar\WebBrowser: (Vue HP) - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll (Hewlett-Packard Company)

O4 - HKLM..\Run: [bDAgent] C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe (BitDefender S.R.L.)

O4 - HKLM..\Run: [bitDefender Antiphishing Helper] C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe (BitDefender)

O4 - HKLM..\Run: [soundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)

O4 - Startup: C:\Documents and Settings\Default User\Menu Démarrer\Programmes\Démarrage\AutoTBar.exe (Hewlett-Packard)

O4 - Startup: C:\Documents and Settings\Magalie\Menu Démarrer\Programmes\Démarrage\LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe File not found

O4 - Startup: C:\Documents and Settings\Magalie\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 3.2.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-4058119836-2691366412-1189602214-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O9 - Extra Button: Livre de reliures HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)

O9 - Extra Button: Sélection intelligente HP - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)

O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe File not found

O9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe File not found

O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.micro s oft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.)

O16 - DPF: {50DC58D0-C870-4BE6-BC41-971ED2D5F022} http://www.s uper-me s s enger.fr/tab/Hoo k WlmEx.cab (HookWlmEx Control)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.s un.com/update/1.6.0/jin s tall-1_6_0_20-window s -i586.cab (Java Plug-in 1.6.0_20)

O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} http://java.s un.com/update/1.4.2/jin s tall-1_4_2_03-window s -i586.cab (Java Plug-in 1.4.2_03)

O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.s un.com/update/1.6.0/jin s tall-1_6_0_20-window s -i586.cab (Java Plug-in 1.6.0_20)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.s un.com/update/1.6.0/jin s tall-1_6_0_20-window s -i586.cab (Java Plug-in 1.6.0_20)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)

O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll - c:\Program Files\Fichiers communs\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)

O24 - Desktop Components:0 (Ma page d'accueil) - About:Home

O24 - Desktop WallPaper: C:\Documents and Settings\Tiitoox\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\Documents and Settings\Tiitoox\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2004/11/23 23:21:48 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O32 - AutoRun File - [2006/09/02 19:02:10 | 000,000,034 | RHS- | M] () - C:\autorun.inf -- [ NTFS ]

O32 - AutoRun File - [2001/07/28 07:07:38 | 000,000,000 | -HS- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ]

O33 - MountPoints2\{9dfa1752-f6c7-11de-8a41-001109087a23}\Shell\AutoRun\command - "" = J:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ

O33 - MountPoints2\{9dfa1752-f6c7-11de-8a41-001109087a23}\Shell\open\command - "" = J:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ

O33 - MountPoints2\{9dfa1753-f6c7-11de-8a41-001109087a23}\Shell\AutoRun\command - "" = K:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ

O33 - MountPoints2\{9dfa1753-f6c7-11de-8a41-001109087a23}\Shell\open\command - "" = K:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/06/22 18:01:09 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Tiitoox\Bureau\OTL.exe

[2010/06/20 21:23:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy

[2010/06/18 18:06:22 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro

[2010/06/18 18:06:17 | 000,000,000 | ---D | C] -- C:\rsit

[2010/06/17 19:39:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tiitoox\Mes documents\VirtualDJ

[2010/06/17 19:39:43 | 000,000,000 | ---D | C] -- C:\Program Files\VirtualDJ

[2010/06/16 20:39:21 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Tiitoox\Recent

[2010/06/16 18:01:53 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll

[2010/06/16 18:01:53 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe

[2010/06/16 18:01:53 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl

[2010/06/16 18:01:52 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe

[2010/06/16 18:01:52 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe

[2010/06/16 18:00:47 | 000,000,000 | ---D | C] -- C:\Program Files\Java

[2010/06/16 17:32:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tiitoox\Application Data\Malwarebytes

[2010/06/16 17:29:50 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys

[2010/06/16 17:29:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes

[2010/06/16 17:29:40 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

[2010/06/16 17:29:39 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware

[2010/06/06 11:41:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tiitoox\Application Data\QuickScan

[2010/06/05 22:31:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tiitoox\Application Data\Leadertech

[2010/06/05 22:27:34 | 000,016,400 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LNonPnP.sys

[2010/06/05 22:23:25 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll

[2010/06/05 22:13:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\LogiShrd

[2010/06/05 22:07:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Logishrd

[2010/06/05 22:06:33 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech

[2010/06/05 22:00:50 | 000,000,000 | ---D | C] -- C:\Program Files\AMD

[2010/06/05 21:59:09 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\LogiShrd

[2010/06/05 21:59:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tiitoox\Application Data\InstallShield

[2010/06/05 21:57:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tiitoox\Application Data\Logitech

[2010/06/05 21:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tiitoox\Application Data\Logishrd

[2010/06/05 21:54:56 | 000,000,000 | ---D | C] -- C:\Pilotes-pciv92v4v4l

[2010/06/02 21:08:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch

[2010/06/02 21:06:21 | 000,000,000 | ---D | C] -- C:\Program Files\Neffy

[2010/06/02 21:06:15 | 000,000,000 | ---D | C] -- C:\Program Files\AutoWebCam

[2010/06/02 21:02:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak

[2010/05/30 18:17:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tiitoox\Mes documents\Mes Historiques de Conversation

[2005/01/02 00:13:15 | 000,192,512 | ---- | C] ( ) -- C:\WINDOWS\System32\ATIDEMGR.dll

[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/06/22 18:01:09 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tiitoox\Bureau\OTL.exe

[2010/06/22 17:40:42 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT

[2010/06/22 17:40:32 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2010/06/22 16:21:39 | 000,081,984 | ---- | M] () -- C:\WINDOWS\System32\bdod.bin

[2010/06/21 22:29:38 | 000,000,184 | -HS- | M] () -- C:\Documents and Settings\Tiitoox\ntuser.ini

[2010/06/21 22:29:37 | 004,456,448 | ---- | M] () -- C:\Documents and Settings\Tiitoox\ntuser.dat

[2010/06/21 20:34:19 | 000,000,542 | ---- | M] () -- C:\WINDOWS\win.ini

[2010/06/20 22:42:03 | 005,905,456 | -H-- | M] () -- C:\Documents and Settings\Tiitoox\Local Settings\Application Data\IconCache.db

[2010/06/20 22:30:02 | 000,000,328 | ---- | M] () -- C:\WINDOWS\tasks\WebReg Photosmart C4200 series.job

[2010/06/20 20:45:14 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2010/06/18 07:47:02 | 000,000,296 | RHS- | M] () -- C:\boot.ini

[2010/06/18 07:47:02 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini

[2010/06/17 19:40:01 | 000,000,735 | ---- | M] () -- C:\Documents and Settings\Tiitoox\Bureau\Virtual DJ Trial.lnk

[2010/06/16 18:01:02 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe

[2010/06/16 18:01:02 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe

[2010/06/16 18:01:01 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe

[2010/06/16 18:01:01 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl

[2010/06/16 18:00:59 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll

[2010/06/16 17:29:57 | 000,000,707 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk

[2010/06/16 15:04:27 | 000,088,436 | ---- | M] () -- C:\Documents and Settings\Tiitoox\Mes documents\Elodie.jpg

[2010/06/15 20:38:35 | 000,000,121 | ---- | M] () -- C:\WINDOWS\bdagent.INI

[2010/06/14 18:39:32 | 000,000,130 | ---- | M] () -- C:\Documents and Settings\Tiitoox\Local Settings\Application Data\fusioncache.dat

[2010/06/14 17:35:21 | 000,016,400 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LNonPnP.sys

[2010/06/14 17:34:27 | 000,132,480 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2010/06/13 23:12:06 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2010/06/13 23:02:54 | 001,082,048 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI

[2010/06/13 23:02:54 | 000,512,292 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat

[2010/06/13 23:02:54 | 000,442,602 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2010/06/13 23:02:54 | 000,085,636 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat

[2010/06/13 23:02:54 | 000,071,868 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2010/06/13 22:30:14 | 000,159,987 | ---- | M] () -- C:\WINDOWS\hpoins15.dat

[2010/06/06 20:50:52 | 000,000,298 | ---- | M] () -- C:\WINDOWS\System32\BDUpdateV1.xml

[2010/06/05 22:27:34 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf

[2010/06/04 18:24:08 | 000,006,666 | -HS- | M] () -- C:\Documents and Settings\Tiitoox\Bureau\Folder.jpg

[2010/06/04 18:24:08 | 000,006,666 | -HS- | M] () -- C:\Documents and Settings\Tiitoox\Bureau\AlbumArt_{15976878-811E-44C9-BE25-769B9E34A022}_Large.jpg

[2010/06/04 18:24:00 | 000,002,145 | -HS- | M] () -- C:\Documents and Settings\Tiitoox\Bureau\AlbumArtSmall.jpg

[2010/06/04 18:24:00 | 000,002,145 | -HS- | M] () -- C:\Documents and Settings\Tiitoox\Bureau\AlbumArt_{15976878-811E-44C9-BE25-769B9E34A022}_Small.jpg

[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/06/17 19:40:00 | 000,000,735 | ---- | C] () -- C:\Documents and Settings\Tiitoox\Bureau\Virtual DJ Trial.lnk

[2010/06/16 17:29:57 | 000,000,707 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk

[2010/06/16 15:04:18 | 000,088,436 | ---- | C] () -- C:\Documents and Settings\Tiitoox\Mes documents\Elodie.jpg

[2010/06/13 22:30:11 | 000,000,328 | ---- | C] () -- C:\WINDOWS\tasks\WebReg Photosmart C4200 series.job

[2010/06/10 20:45:34 | 000,005,632 | -HS- | C] () -- C:\Documents and Settings\Tiitoox\Thumbs.db

[2010/06/05 22:27:34 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf

[2010/06/05 22:26:18 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK

[2010/06/04 18:24:16 | 000,006,666 | -HS- | C] () -- C:\Documents and Settings\Tiitoox\Bureau\Folder.jpg

[2010/06/04 18:24:16 | 000,006,666 | -HS- | C] () -- C:\Documents and Settings\Tiitoox\Bureau\AlbumArt_{15976878-811E-44C9-BE25-769B9E34A022}_Large.jpg

[2010/06/04 18:24:16 | 000,002,145 | -HS- | C] () -- C:\Documents and Settings\Tiitoox\Bureau\AlbumArtSmall.jpg

[2010/06/04 18:24:16 | 000,002,145 | -HS- | C] () -- C:\Documents and Settings\Tiitoox\Bureau\AlbumArt_{15976878-811E-44C9-BE25-769B9E34A022}_Small.jpg

[2010/05/31 21:12:51 | 004,456,448 | ---- | C] () -- C:\Documents and Settings\Tiitoox\ntuser.dat

[2010/03/10 17:08:18 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll

[2010/01/13 20:02:27 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI

[2009/11/23 21:51:40 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll

[2008/10/09 16:31:54 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\txmlutil.dll

[2008/08/21 12:42:46 | 000,000,121 | ---- | C] () -- C:\WINDOWS\bdagent.INI

[2008/08/20 14:12:09 | 000,000,379 | ---- | C] () -- C:\WINDOWS\ODBC.INI

[2008/08/20 14:12:09 | 000,000,063 | ---- | C] () -- C:\WINDOWS\mdm.ini

[2008/08/20 14:12:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NSREX.INI

[2007/01/31 14:50:32 | 000,913,408 | ---- | C] () -- C:\WINDOWS\System32\xreglib.dll

[2005/01/02 01:03:26 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini

[2005/01/02 00:59:29 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll

[2005/01/02 00:59:29 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll

[2005/01/02 00:59:29 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll

[2005/01/02 00:59:29 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll

[2005/01/02 00:59:29 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll

[2005/01/02 00:59:29 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll

[2005/01/02 00:34:21 | 000,013,860 | ---- | C] () -- C:\WINDOWS\System32\CHODDI.SYS

[2005/01/02 00:34:15 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\hpreg.dll

[2005/01/02 00:16:52 | 000,003,712 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini

[2005/01/02 00:06:08 | 000,000,829 | ---- | C] () -- C:\WINDOWS\orun32.ini

[2005/01/02 00:04:57 | 000,323,584 | ---- | C] () -- C:\WINDOWS\System32\pythoncom22.dll

[2005/01/02 00:04:57 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\pywintypes22.dll

[2005/01/02 00:04:34 | 000,016,896 | ---- | C] () -- C:\WINDOWS\System32\bcbmm.dll

[2004/09/14 01:35:56 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini

[2004/08/20 03:14:46 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\PcdrKernelModeServices.dll

[2004/08/20 03:14:46 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\ProgressTrace.dll

[2004/08/05 14:00:00 | 000,028,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys

[2004/07/27 06:17:16 | 000,000,632 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini

[2003/04/10 23:04:00 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\JAWTAccessBridge.dll

========== LOP Check ==========

[2010/01/26 20:44:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrateur\Application Data\BitDefender

[2009/10/13 16:55:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BitDefender

[2010/06/05 21:47:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ma-config.com

[2009/04/28 20:40:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Martau

[2009/01/20 19:32:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Messenger Plus!

[2010/03/10 15:09:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP

[2009/02/16 00:04:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\VSO

[2009/04/28 20:09:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip

[2005/01/02 00:43:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Application Data\SampleView

[2009/10/05 19:27:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\EoRezo

[2009/10/16 18:10:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Magalie\Application Data\BitDefender

[2010/05/14 12:47:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Magalie\Application Data\LimeWire

[2009/10/16 19:33:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Magalie\Application Data\MSNInstaller

[2010/03/27 14:57:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Magalie\Application Data\OpenOffice.org

[2005/01/02 00:43:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Magalie\Application Data\SampleView

[2010/06/02 21:06:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ptite magalie\Application Data\Bitdefender

[2010/06/02 21:06:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ptite magalie\Application Data\EoRezo

[2010/06/02 21:06:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ptite magalie\Application Data\Icones

[2010/06/02 21:06:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ptite magalie\Application Data\ItsLabel

[2010/06/02 21:06:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ptite magalie\Application Data\Leadertech

[2010/06/02 21:06:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ptite magalie\Application Data\SampleView

[2009/11/24 23:05:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tiitoox\Application Data\Any Video Converter Professional

[2009/10/13 17:38:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tiitoox\Application Data\BitDefender

[2010/03/22 21:56:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tiitoox\Application Data\FreeAudioPack

[2010/05/13 19:01:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tiitoox\Application Data\Juce VST Host

[2010/06/05 22:31:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tiitoox\Application Data\Leadertech

[2009/11/25 21:02:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tiitoox\Application Data\OpenCandy

[2010/03/02 19:07:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tiitoox\Application Data\OpenOffice.org

[2010/06/06 11:42:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tiitoox\Application Data\QuickScan

[2010/05/13 19:07:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tiitoox\Application Data\Sakura

[2005/01/02 00:43:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tiitoox\Application Data\SampleView

[2010/05/13 19:03:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Tiitoox\Application Data\Sawer

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:63238B95

@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:661DFA1C

< End of report >

Extras.Txt:

OTL Extras logfile created on: 22/06/2010 18:04:21 - Run 1

OTL by OldTimer - Version 3.2.6.1 Folder = C:\Documents and Settings\Tiitoox\Bureau

Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 6.0.2900.2180)

Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

510,00 Mb Total Physical Memory | 205,00 Mb Available Physical Memory | 40,00% Memory free

1,00 Gb Paging File | 1,00 Gb Available in Paging File | 61,00% Paging File free

Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 179,33 Gb Total Space | 68,67 Gb Free Space | 38,29% Space Free | Partition Type: NTFS

Drive D: | 6,96 Gb Total Space | 3,23 Gb Free Space | 46,36% Space Free | Partition Type: FAT32

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: NOM-EB85C523610

Current User Name: Tiitoox

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: All users

Company Name Whitelist: Off

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_USERS\S-1-5-21-4058119836-2691366412-1189602214-1008\SOFTWARE\Classes\<extension>]

.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

exefile [open] -- "%1" %*

htmlfile [edit] -- Reg Error: Key error.

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1

Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()

Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)

Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"FirstRunDisabled" = 1

"AntiVirusOverride" = 0

"FirewallOverride" = 0

"AntiVirusDisableNotify" = 0

"FirewallDisableNotify" = 0

"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

"EnableFirewall" = 0

"DoNotAllowExceptions" = 0

"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007

"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

"48113:TCP" = 48113:TCP:LocalSubNet:Enabled:maconfig_tcp

"48113:UDP" = 48113:UDP:LocalSubNet:Enabled:maconfig_udp

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

"%ProgramFiles%\iTunes\iTunes.exe" = %ProgramFiles%\iTunes\iTunes.exe:*:enabled:iTunes -- File not found

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

"C:\Program Files\AOL 9.0\waol.exe" = C:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL France -- File not found

"C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\WZSE0.TMP\SymNRT.exe" = C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\WZSE0.TMP\SymNRT.exe:*:Enabled:Norton Removal Tool -- File not found

"C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\7zS29.tmp\SymNRT.exe" = C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\7zS29.tmp\SymNRT.exe:*:Enabled:Norton Removal Tool -- File not found

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)

"C:\Program Files\FlashGet\flashget.exe" = C:\Program Files\FlashGet\flashget.exe:*:Enabled:Flashget -- File not found

"C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" = C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club -- File not found

"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- File not found

"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- File not found

"C:\Program Files\ma-config.com\maconfservice.exe" = C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice -- (CybelSoft)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{001E7FB6-BB6B-4ED0-BEDC-B5404ED96D4E}" = DocProc

"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148

"{04441EE4-3631-43DB-813A-9D031380C8E5}" = MarketingReg

"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel

"{0C66761E-497A-4BE3-AE0D-8EC30FC9A9AA}" = PC-Doctor for Windows

"{10E1E87C-656C-4D08-86D6-5443D28583BE}" = TrayApp

"{13F00518-807A-4B3A-83B0-A7CD90F3A398}" = MarketResearch

"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter

"{14E3D14B-7852-477D-ACE2-895AF4322804}" = Ma-Config.com

"{1753255A-0AEB-4220-8C75-607B73F0C133}" = Copy

"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate

"{1AD5F465-8282-4DAD-B957-E09C0B783D18}" = InstantShare

"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live

"{22466889-7642-488d-AA0E-F619704CF7AB}" = DeviceDiscovery

"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT

"{267868CE-6DFF-40F7-9C58-C01119B7B117}" = Fax

"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java 6 Update 20

"{27148014-3B0A-402B-8130-6B056357D12D}" = BitDefender Internet Security 2009

"{272EC8BA-5A08-4ea1-A189-684466A06B02}" = cp_dwShrek2Albums1

"{28CFF19D-B92C-4109-A427-F75505E81688}" = cp_dwSharkTaleAlbums1

"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg

"{2E8428AD-6CD2-4031-916A-3CF9BBF2DEC9}" = Unload

"{2F28B3C9-2C89-4206-8B33-8ADC9577C49B}" = Scan

"{2FCE4FC5-6930-40E7-A4F1-F862207424EF}" = InterVideo WinDVD Creator

"{34A59AC3-6C5C-4A09-A7F5-369A37176C8A}" = AiOSoftware

"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP

"{36FCD82D-1CED-436d-B33C-874EEC666D68}" = cp_dwSharkTaleCards1

"{3762DB2D-71BD-421F-9E55-C74DA7DF4D07}" = CueTour

"{3AE681E0-4E8D-453F-950A-48534D3C0724}" = Copy

"{3AEF2F6C-F1D3-47CD-BF3B-A327F1FABE58}" = PSPrinters06

"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform

"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg

"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker

"{415CDA53-9100-476F-A7B2-476691E117C7}" = HP Smart Web Printing

"{46ABBC54-1872-4AA3-95E2-F2C063A63F31}" = Installation Windows Live

"{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}" = HPSSupply

"{4C04DF1B-6A39-4299-9DD1-1FA60000266E}" = HP Appareils photos Photosmart 4.0

"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport

"{55508A44-8225-47AB-9666-1F57A5B5CE2E}" = CP_PLSBusinessFlyers

"{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail

"{5E8D588F-307C-4250-B622-26969027319A}" = PanoStandAlone

"{644D04A2-C682-4FD5-977D-03B804C4B9C5}" = CreativeProjects

"{646A65DD-23FC-418E-B9F0-E0500FB42CB1}" = PhotoGallery

"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Sonic Express Labeler

"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder

"{6B350CA4-0031-0002-3757-34999AD85AEC}" = InterVideo WinDVD Creator

"{6E7DD182-9FC6-4651-0095-2E666CC6AF35}" = Les Sims 2

"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder

"{7148F0A8-6813-11D6-A77B-00B0D0142030}" = Java 2 Runtime Environment, SE v1.4.2_03

"{724517BD-1DE1-4986-BFCA-C1DFD379E3BC}" = cp_dwShrek2Cards1

"{725249C3-B94C-4141-8799-0D3BA43D0812}" = CameraDrivers

"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable

"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762

"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

"{770F1BEC-2871-4E70-B837-FB8525FFA3B1}" = Windows Live Messenger

"{7B98685A-4E21-4A4F-A2D6-DC557042BADA}" = HPIZplus450

"{8105684D-8CA6-440D-8F58-7E5FD67A499D}" = Connexion Facile à Internet

"{824D3839-DAA1-4315-A822-7AE3E620E528}" = VideoToolkit01

"{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}" = Windows Live Call

"{8389382B-53BA-4A87-8854-91E3D80A5AC7}" = HP Photosmart Essential2.01

"{84CDF5A8-1D57-4B69-BAB6-1F11D8923375}" = SkinsHP1

"{8777AC6D-89F9-4793-8266-DE406F343E89}" = QFolder

"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder

"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD Player

"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting

"{9541FED0-327F-4DF0-8B96-EF57EF622F19}" = Sonic RecordNow!

"{97B3824E-B2D2-4C49-A860-BCA56F10B040}" = OpenOffice.org 3.2

"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

"{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack

"{9CB2512B-3EC4-43DF-8002-46BDAB5EDD1B}" = QuickProjects

"{9EEBF8D5-8712-4D1D-88F4-4CDC2D270BC3}" = PrintScreen

"{A1062847-0846-427A-92A1-BB8251A91E91}" = HP PSC & OfficeJet 4.0

"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI

"{A2500497-FD32-493e-B8E5-28D6728DBEF5}" = Readme

"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2

"{A4EA3AB4-E78C-4286-96DF-26035507CE55}" = AiO_Scan

"{A5B9D22C-755A-4AC6-9904-875E80838BB6}" = CP_AtenaShokunin1Config

"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder

"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter

"{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}" = Photosmart 320,370,7400,8100,8400 Series (fra)

"{AB40272D-92AB-4F30-B36B-22EDE16F8FE5}" = HP Update

"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder

"{AC76BA86-7AD7-1036-7B44-A93000000001}" = Adobe Reader 9.3 - Français

"{ACA85783-8EEA-4f0a-B2A3-A8173F30209F}" = C4200_doccd

"{AEA07F97-9088-497c-8821-0F36BD5DC251}" = HPProductAssistant

"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder

"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan

"{B09BCBF6-87EE-4403-A336-3A9510856535}" = HP Photosmart All-In-One Software 9.0

"{B56D5B09-C4FB-4EA0-8EAD-7BC3E2715A2D}" = DocumentViewer

"{BCD6CD1A-0DBE-412E-9F25-3B500D1E6BA1}" = SolutionCenter

"{BE20E2F5-1903-4AAE-B1AF-2046E586C925}" = iTunes

"{BFDE4176-5DFE-4db9-AA00-8F30CB001BDA}" = c4200_Help

"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2

"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver

"{C39E671D-0528-4c5e-A034-8470C5BC393A}" = C4200

"{C3F058C0-A21C-452D-8D99-95B1A45F417D}" = InterVideo DiscLabel

"{C514C594-23AA-4F13-A070-DB8BDB27594F}" = Windows Live Mail

"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1

"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1

"{D0420D64-8D33-4374-A2B2-9225C7925CA6}" = HP Image Zone Plus 4.5.3

"{D0E39A1D-0CEE-4D85-B4A2-E3BE990D075E}" = Destination Component

"{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}" = Assistant de connexion Windows Live

"{D8B7A682-20DA-4797-8415-B1FB14D4D32B}" = PS_AIO_Software

"{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp

"{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm

"{E28750A2-45F2-4b63-99F7-9F81A94B1E2D}" = PS_AIO_Software_min

"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update

"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox

"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard

"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer

"{F419D20A-7719-4639-8E30-C073A040D878}" = HP Deskjet Preloaded Printer Drivers

"{F72E2DDC-3DB8-4190-A21D-63883D955FE7}" = PSSWCORE

"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio

"{FC22D020-3005-4715-8DF9-F3EDE81DEB3D}" = CreativeProjectsTemplates

"{FD7F242B-9AA0-40c3-941E-3A9821D19C09}" = PS_AIO_ProductContext

"{FD8D8B04-BEAD-4A55-AA1D-62D2373E7DEA}" = Status

"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin

"Agere Systems Soft Modem" = Agere Systems PCI Soft Modem

"ATI Display Driver" = ATI Display Driver

"AutoWebCam" = AutoWebCam

"CCleaner" = CCleaner

"Creative PD1110" = Creative WebCam NX Driver (1.02.01.0827)

"Help and Support Additions" = Help and Support Additions

"HijackThis" = HijackThis 2.0.2

"HP Imaging Device Functions" = HP Imaging Device Functions 9.0

"HP Photo & Imaging" = HP Image Zone 4.5.3

"HP Photosmart Essential" = HP Photosmart Essential 2.01

"HP Solution Center & Imaging Support Tools" = HP Solution Center 9.0

"HPExtendedCapabilities" = HP Customer Participation Program 9.0

"HPOCR" = HP OCR Software 9.0

"InstallShield_{0C66761E-497A-4BE3-AE0D-8EC30FC9A9AA}" = PC-Doctor for Windows

"InstallShield_{8105684D-8CA6-440D-8F58-7E5FD67A499D}" = Connexion Facile à Internet

"InstallShield_{BE20E2F5-1903-4AAE-B1AF-2046E586C925}" = iTunes

"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware

"Messenger Plus! Live" = Messenger Plus! Live

"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1

"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1

"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)

"MSNINST" = MSN

"PhotoFiltre" = PhotoFiltre

"QuickTime" = QuickTime

"SP6" = Logitech SetPoint 6.0

"Virtual DJ - Atomix Productions" = Virtual DJ - Atomix Productions

"VLC media player" = VLC media player 1.0.2

"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9

"WIC" = Windows Imaging Component

"Windows Media Format Runtime" = Windows Media Format 11 runtime

"WinLiveSuite_Wave3" = Installation Windows Live

"WinRAR archiver" = Logiciel d'archivage WinRAR

"WMFDist11" = Windows Media Format 11 runtime

"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

========== Last 10 Event Log Errors ==========

[ Application Events ]

Error - 14/05/2010 15:56:28 | Computer Name = NOM-EB85C523610 | Source = Application Hang | ID = 1002

Description = Application bloquée Allods-EU_Francais.exe, version 0.0.0.0, module

bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 16/05/2010 15:18:10 | Computer Name = NOM-EB85C523610 | Source = Application Hang | ID = 1002

Description = Application bloquée notepad.exe, version 5.1.2600.2180, module bloqué

hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 20/05/2010 15:45:18 | Computer Name = NOM-EB85C523610 | Source = Steam Client Service | ID = 1

Description =

Error - 27/05/2010 02:25:57 | Computer Name = NOM-EB85C523610 | Source = Application Error | ID = 1000

Description = Application défaillante jaucheck.exe, version 2.0.1.2, module défaillant

jaucheck.exe, version 2.0.1.2, adresse de défaillance 0x0000c8d0.

Error - 31/05/2010 12:07:46 | Computer Name = NOM-EB85C523610 | Source = Application Error | ID = 1000

Description = Application défaillante jaucheck.exe, version 2.0.1.2, module défaillant

jaucheck.exe, version 2.0.1.2, adresse de défaillance 0x0000c8d0.

Error - 01/06/2010 13:45:24 | Computer Name = NOM-EB85C523610 | Source = Application Hang | ID = 1002

Description = Application bloquée firefox.exe, version 1.9.2.3743, module bloqué

hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 07/06/2010 11:52:40 | Computer Name = NOM-EB85C523610 | Source = Application Error | ID = 1000

Description = Application défaillante jaucheck.exe, version 2.0.1.2, module défaillant

jaucheck.exe, version 2.0.1.2, adresse de défaillance 0x0000c8d0.

Error - 14/06/2010 12:44:59 | Computer Name = NOM-EB85C523610 | Source = Application Error | ID = 1000

Description = Application défaillante jaucheck.exe, version 2.0.1.2, module défaillant

jaucheck.exe, version 2.0.1.2, adresse de défaillance 0x0000c8d0.

Error - 16/06/2010 12:18:36 | Computer Name = NOM-EB85C523610 | Source = MsiInstaller | ID = 11321

Description = Produit : Adobe Reader 9.3.2 - Français -- Erreur 1321. Le programme

d'installation ne dispose pas des privilèges suffisants pour modifier le fichier

C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe.

Error - 16/06/2010 12:18:48 | Computer Name = NOM-EB85C523610 | Source = MsiInstaller | ID = 1024

Description = Produit : Adobe Reader 9.3.2 - Français - La mise à jour 'Adobe Reader

9.3.2 - CPSID_53951' n'a pas pu être installée. Code d'erreur 1603. Windows Installer

peut créer des journaux pour faciliter la résolution des éventuelles erreurs d'installation

des packages logiciels. Utilisez le lien suivant pour afficher des instructions

concernant l'activation des journaux : How to enable Windows Installer logging

[ System Events ]

Error - 06/06/2010 04:53:01 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7009

Description = Délai (30000 millisecondes) d'attente pour une connexion du service

Pml Driver HPZ12.

Error - 06/06/2010 04:53:02 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7000

Description = Le service Pml Driver HPZ12 n'a pas pu démarrer en raison de l'erreur :

%%1053

Error - 16/06/2010 13:26:47 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7009

Description = Délai (30000 millisecondes) d'attente pour une connexion du service

HTTP SSL.

Error - 16/06/2010 13:26:50 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7000

Description = Le service HTTP SSL n'a pas pu démarrer en raison de l'erreur : %%1053

Error - 20/06/2010 15:43:33 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7034

Description = Le service SecuROM User Access Service (V7) s'est terminé de façon

inattendue pour la 1ème fois.

Error - 20/06/2010 15:43:33 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7034

Description = Le service Carte de performance WMI s'est terminé de façon inattendue

pour la 1ème fois.

Error - 20/06/2010 15:43:33 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7034

Description = Le service Ati HotKey Poller s'est terminé de façon inattendue pour

la 1ème fois.

Error - 20/06/2010 15:43:33 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7034

Description = Le service Service de la passerelle de la couche Application s'est

terminé de façon inattendue pour la 1ème fois.

Error - 20/06/2010 15:43:33 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7031

Description = Le service Spouleur d'impression s'est terminé de manière inattendue.

Ceci s'est produit 1 fois. L'action corrective suivante va être effectuée dans

60000 millisecondes : Redémarrer le service.

Error - 20/06/2010 15:43:33 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7034

Description = Le service Java Quick Starter s'est terminé de façon inattendue pour

la 1ème fois.

< End of report >

no.ppp · le 22 juin 2010

Salut,

Tu connais la provenance de ceci :

O33 - MountPoints2\{9dfa1752-f6c7-11de-8a41-001109087a23}\Shell\AutoRun\command - "" = J:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ

O33 - MountPoints2\{9dfa1752-f6c7-11de-8a41-001109087a23}\Shell\open\command - "" = J:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ

O33 - MountPoints2\{9dfa1753-f6c7-11de-8a41-001109087a23}\Shell\AutoRun\command - "" = K:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ

O33 - MountPoints2\{9dfa1753-f6c7-11de-8a41-001109087a23}\Shell\open\command - "" = K:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ

Relance OTL.exe.

Copie-colle le code suivant dans la fenêtre Personnalisation

:OTL
SRV - File not found [On_Demand | Stopped] -- -- (iPodService)
O2 - BHO: (no name) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - No CLSID value found.
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (no name) - {F156768E-81EF-470C-9057-481BA8380DBA} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe File not found
O9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe File not found
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.micr...78f/wvc1dmo.cab (Reg Error: Key error.)
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:63238B95
@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:661DFA1C

:files
C:\Documents and Settings\LocalService\Application Data\EoRezo
C:\Documents and Settings\ptite magalie\Application Data\EoRezo

:services

:reg

:commands
[EmptyTemp]
[EmptyFlash]
[Purity]
[CREATERESTOREPOINT]
[ResetHosts]
[Reboot]
Clique ensuite sur Correction et patiente pendant que l'outil travaille.
Copie-colle le contenu du rapport qui s'ouvre (C\_OTL\MovedFiles) dans ta prochaine réponse.

Modifié le 22 juin 2010 par no.ppp

Tiito0x · le 23 juin 2010

All processes killed

========== OTL ==========

Service iPodService stopped successfully!

Service iPodService deleted successfully!

Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}\ not found.

Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.

Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F156768E-81EF-470C-9057-481BA8380DBA}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F156768E-81EF-470C-9057-481BA8380DBA}\ not found.

Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{D6E814A0-E0C5-11d4-8D29-0050BA6940E3}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D6E814A0-E0C5-11d4-8D29-0050BA6940E3}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{D6E814A0-E0C5-11d4-8D29-0050BA6940E3}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D6E814A0-E0C5-11d4-8D29-0050BA6940E3}\ not found.

Starting removal of ActiveX control {31435657-9980-0010-8000-00AA00389B71}

C:\WINDOWS\Downloaded Program Files\wvc1dmo.inf moved successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{31435657-9980-0010-8000-00AA00389B71}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31435657-9980-0010-8000-00AA00389B71}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{31435657-9980-0010-8000-00AA00389B71}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31435657-9980-0010-8000-00AA00389B71}\ not found.

ADS C:\Documents and Settings\All Users\Application Data\TEMP:63238B95 deleted successfully.

ADS C:\Documents and Settings\All Users\Application Data\TEMP:661DFA1C deleted successfully.

========== FILES ==========

C:\Documents and Settings\LocalService\Application Data\EoRezo\eoStats folder moved successfully.

C:\Documents and Settings\LocalService\Application Data\EoRezo\eoDesktop folder moved successfully.

C:\Documents and Settings\LocalService\Application Data\EoRezo\db folder moved successfully.

C:\Documents and Settings\LocalService\Application Data\EoRezo folder moved successfully.

C:\Documents and Settings\ptite magalie\Application Data\EoRezo\eoStats folder moved successfully.

C:\Documents and Settings\ptite magalie\Application Data\EoRezo\eoDesktop folder moved successfully.

C:\Documents and Settings\ptite magalie\Application Data\EoRezo\db folder moved successfully.

C:\Documents and Settings\ptite magalie\Application Data\EoRezo folder moved successfully.

========== SERVICES/DRIVERS ==========

========== REGISTRY ==========

========== COMMANDS ==========

[EMPTYTEMP]

User: Administrateur

User: All Users

User: Default User

->Temporary Internet Files folder emptied: 33170 bytes

User: HP_Propriétaire

->Temp folder emptied: 1805421 bytes

->Temporary Internet Files folder emptied: 87714979 bytes

->Java cache emptied: 0 bytes

->FireFox cache emptied: 60916289 bytes

->Flash cache emptied: 2805 bytes

User: LocalService

->Temp folder emptied: 115616 bytes

->Temporary Internet Files folder emptied: 980956 bytes

->Java cache emptied: 0 bytes

->Flash cache emptied: 405 bytes

User: Magalie

->Temp folder emptied: 1769357 bytes

->Temporary Internet Files folder emptied: 2923259 bytes

->Java cache emptied: 0 bytes

->FireFox cache emptied: 90286162 bytes

->Flash cache emptied: 2925 bytes

User: mimikaka

User: NetworkService

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 33170 bytes

User: ptite magalie

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 226721 bytes

->Java cache emptied: 1896960 bytes

->FireFox cache emptied: 2859327 bytes

->Flash cache emptied: 0 bytes

User: Tiitoox

->Temp folder emptied: 128555468 bytes

->Temporary Internet Files folder emptied: 1596418 bytes

->Java cache emptied: 315081 bytes

->FireFox cache emptied: 87774751 bytes

->Flash cache emptied: 19420 bytes

%systemdrive% .tmp files removed: 0 bytes

%systemroot% .tmp files removed: 58707 bytes

%systemroot%\System32 .tmp files removed: 267840 bytes

%systemroot%\System32\dllcache .tmp files removed: 0 bytes

%systemroot%\System32\drivers .tmp files removed: 0 bytes

Windows Temp folder emptied: 6077520 bytes

%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 49531921 bytes

%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes

RecycleBin emptied: 0 bytes

Total Files Cleaned = 501,00 mb

[EMPTYFLASH]

User: Administrateur

User: All Users

User: Default User

User: HP_Propriétaire

->Flash cache emptied: 0 bytes

User: LocalService

->Flash cache emptied: 0 bytes

User: Magalie

->Flash cache emptied: 0 bytes

User: mimikaka

User: NetworkService

User: ptite magalie

->Flash cache emptied: 0 bytes

User: Tiitoox

->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

Restore point Set: OTL Restore Point (0)

C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.

HOSTS file reset successfully

OTL by OldTimer - Version 3.2.6.1 log created on 06232010_072955

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

Est ce fini ou , y a t'il autre chose a faire ? =) Mais déjà je te remercie car je vois déjà des changements =)

no.ppp · le 23 juin 2010

Salut,

Tu connais la provenance de ceci :

O33 - MountPoints2\{9dfa1752-f6c7-11de-8a41-001109087a23}\Shell\AutoRun\command - "" = J:\driver\usb\–�¼‡‘Š•†‘Í€ŒŽ

O33 - MountPoints2\{9dfa1752-f6c7-11de-8a41-001109087a23}\Shell\open\command - "" = J:\driver\usb\–�¼‡‘Š•†‘Í€ŒŽ

O33 - MountPoints2\{9dfa1753-f6c7-11de-8a41-001109087a23}\Shell\AutoRun\command - "" = K:\driver\usb\–�¼‡‘Š•†‘Í€ŒŽ

O33 - MountPoints2\{9dfa1753-f6c7-11de-8a41-001109087a23}\Shell\open\command - "" = K:\driver\usb\–�¼‡‘Š•†‘Í€ŒŽ

Tiito0x · le 23 juin 2010

Je n'en ai aucune idée ^^ J'espère que c'est pas trop dangereux =/

Au fait, je peux installer le Service Pack 3 sans souci maintenant ? Car avant, quand je l'installais mon PC plantais et je devais faire une restauration du système

Modifié le 23 juin 2010 par Tiito0x

Connexion

Pas encore inscrit ?

M'expliquer mes rapport RSIT

Messages recommandés

Tiito0x

no.ppp

Tiito0x

Tiito0x

no.ppp

Tiito0x

no.ppp

Tiito0x

no.ppp

Tiito0x

Rejoindre la conversation

En ligne récemment 0 membre est en ligne

Zebulon

Outils en ligne

Naviguer