Se connecter / S'enregistrer
Votre question

Probleme CID

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
10 Janvier 2010 14:33:39

Bonjour voila depuis quelque temps j ai un probleme de Pub CID et j aimerais qu on m aide a m en debarasser...
Voici mon rapport lop si ca px aider...
Merci d avance...

Rapport lopxpMH2 version 2.0 fait à 14:29:11,28 le dim. 10/01/2010
I:\Documents and Settings\nico\Bureau\lopxpMH2

******************************************
## Répertoires Application Data

Le volume dans le lecteur I n'a pas de nom.
Le numéro de série du volume est D473-8B34

Répertoire de I:\Documents and Settings\All Users\Application Data

01/02/2007 18:44 <REP> .
01/02/2007 18:44 <REP> ..
15/09/2008 16:17 <REP> {3276BE95_AF08_429F_A64F_CA64CB79BCF6}
05/02/2007 00:34 <REP> Adobe
23/08/2009 12:42 <REP> Age of Empires 3
22/05/2008 17:30 <REP> Apple
05/06/2007 21:54 <REP> Apple Computer
09/02/2008 12:47 <REP> ATI
07/02/2007 21:46 <REP> AVG7
01/06/2007 17:04 <REP> AVS4YOU
14/01/2008 16:24 <REP> BitDefender
15/11/2009 19:05 <REP> CA
29/10/2008 16:22 <REP> Corel
24/03/2007 11:27 <REP> Google
03/01/2008 11:37 <REP> InstallShield
19/11/2007 19:54 <REP> Kaspersky Lab Setup Files
05/05/2008 20:43 <REP> Link Axis Bat Wave
06/01/2010 22:19 <REP> Malwarebytes
01/02/2007 18:44 <REP> Microsoft
26/03/2008 14:19 <REP> Microsoft Help
13/12/2007 12:25 <REP> MSN6
17/01/2008 22:10 <REP> Nero
03/07/2007 21:04 <REP> NVIDIA
05/07/2007 00:18 <REP> nView_Profiles
05/02/2009 12:50 <REP> Office Genuine Advantage
23/03/2007 07:41 <REP> QuickTime
07/05/2008 20:53 <REP> Spybot - Search & Destroy
07/05/2007 14:38 <REP> Symantec
03/09/2007 17:49 <REP> TEMP
07/02/2007 14:55 <REP> Windows Genuine Advantage
14/06/2009 20:51 <REP> WinZip
26/02/2008 01:15 <REP> WLInstaller
29/10/2008 16:35 88 8BD653B675.sys
01/02/2007 18:45 62 desktop.ini
29/10/2008 16:35 2.516 KGyGaAvL.sys
3 fichier(s) 2.666 octets
32 Rép(s) 39.722.139.648 octets libres
Le volume dans le lecteur I n'a pas de nom.
Le numéro de série du volume est D473-8B34

Répertoire de I:\Documents and Settings\Default User\Application Data

01/02/2007 18:44 <REP> .
01/02/2007 18:44 <REP> ..
17/05/2009 09:53 <REP> Macromedia
01/02/2007 18:44 <REP> Microsoft
01/02/2007 18:45 62 desktop.ini
1 fichier(s) 62 octets
4 Rép(s) 39.722.139.648 octets libres
Le volume dans le lecteur I n'a pas de nom.
Le numéro de série du volume est D473-8B34

Répertoire de I:\Documents and Settings\Default User\Local Settings\Application Data

01/02/2007 18:45 <REP> .
01/02/2007 18:45 <REP> ..
10/08/2008 00:54 <REP> Microsoft Help
0 fichier(s) 0 octets
3 Rép(s) 39.722.139.648 octets libres
Le volume dans le lecteur I n'a pas de nom.
Le numéro de série du volume est D473-8B34

Répertoire de I:\Documents and Settings\LocalService\Application Data

01/02/2007 18:54 <REP> .
01/02/2007 18:54 <REP> ..
07/02/2007 21:46 <REP> AVG7
01/02/2007 18:54 <REP> Microsoft
0 fichier(s) 0 octets
4 Rép(s) 39.722.156.032 octets libres
Le volume dans le lecteur I n'a pas de nom.
Le numéro de série du volume est D473-8B34

Répertoire de I:\Documents and Settings\LocalService\Local Settings\Application Data

01/02/2007 18:54 <REP> .
01/02/2007 18:54 <REP> ..
19/03/2009 09:09 <REP> Google
01/02/2007 18:54 <REP> Microsoft
0 fichier(s) 0 octets
4 Rép(s) 39.722.139.648 octets libres
Le volume dans le lecteur I n'a pas de nom.
Le numéro de série du volume est D473-8B34

Répertoire de I:\Documents and Settings\NetworkService\Application Data

01/02/2007 18:54 <REP> .
01/02/2007 18:54 <REP> ..
01/02/2007 18:54 <REP> Microsoft
0 fichier(s) 0 octets
3 Rép(s) 39.722.135.552 octets libres
Le volume dans le lecteur I n'a pas de nom.
Le numéro de série du volume est D473-8B34

Répertoire de I:\Documents and Settings\NetworkService\Local Settings\Application Data

01/02/2007 18:54 <REP> .
01/02/2007 18:54 <REP> ..
15/11/2007 17:39 <REP> Apple
22/03/2009 12:13 <REP> Google
01/02/2007 18:54 <REP> Microsoft
0 fichier(s) 0 octets
5 Rép(s) 39.722.135.552 octets libres
Le volume dans le lecteur I n'a pas de nom.
Le numéro de série du volume est D473-8B34

Répertoire de I:\Documents and Settings\nico\Application Data

01/02/2007 18:55 <REP> .
01/02/2007 18:55 <REP> ..
05/02/2007 00:34 <REP> Adobe
05/02/2007 00:35 <REP> AdobeUM
28/02/2007 21:03 <REP> Ahead
11/02/2008 14:16 <REP> Anuman Interactive
05/06/2007 21:56 <REP> Apple Computer
01/03/2007 18:08 <REP> ATI
07/02/2007 21:46 <REP> AVG7
05/02/2007 00:54 <REP> Azureus
14/01/2008 16:25 <REP> BitDefender
01/03/2009 18:44 <REP> BOWSSLOWNOUN
29/10/2008 16:29 <REP> Corel
04/06/2008 21:20 <REP> DeepBurner
14/05/2007 23:02 <REP> DivX
28/06/2007 20:37 <REP> DMCache
24/02/2008 23:03 <REP> Filmotech
23/03/2007 16:09 <REP> FreeCall
19/03/2009 09:17 <REP> Google
12/10/2008 20:00 <REP> GoPal Assistant
01/02/2007 18:56 <REP> Identities
28/06/2007 20:37 <REP> IDM
23/04/2007 20:52 <REP> InstallShield
03/03/2007 08:55 <REP> InterTrust
05/02/2007 00:36 <REP> Leadertech
01/02/2007 20:20 <REP> Macromedia
06/01/2010 22:19 <REP> Malwarebytes
14/05/2007 22:55 <REP> Media Player Classic
23/04/2007 20:52 <REP> Megaupload
01/02/2007 18:55 <REP> Microsoft
31/10/2008 16:58 <REP> MidiLogic
01/02/2007 22:04 <REP> Mozilla
13/12/2007 12:25 <REP> MSN6
17/01/2008 22:16 <REP> Nero
07/06/2007 20:31 <REP> Real
01/10/2007 20:19 <REP> Samsung
19/03/2007 18:21 <REP> Screenshot Sender
16/05/2007 00:15 <REP> SecondLife
20/11/2007 12:38 <REP> SecuROM
21/05/2007 16:11 <REP> SoundSpectrum
01/02/2007 23:05 <REP> Sun
14/03/2007 21:36 <REP> teamspeak2
30/05/2007 20:12 <REP> U3
15/05/2007 23:16 <REP> vlc
12/10/2008 19:59 2.528 $_hpcst$.hpc
01/02/2007 18:55 62 desktop.ini
24/04/2008 23:36 1.092 filterclsid.dat
3 fichier(s) 3.682 octets
44 Rép(s) 39.722.135.552 octets libres
Le volume dans le lecteur I n'a pas de nom.
Le numéro de série du volume est D473-8B34

Répertoire de I:\Documents and Settings\nico\Local Settings\Application Data

01/02/2007 18:55 <REP> .
01/02/2007 18:55 <REP> ..
28/02/2007 21:05 <REP> Ahead
09/11/2007 15:42 <REP> Apple
05/06/2007 21:56 <REP> Apple Computer
01/03/2007 18:08 <REP> ATI
29/06/2007 02:54 <REP> Codemasters
29/10/2008 16:39 <REP> Corel
24/03/2007 11:27 <REP> Google
01/02/2007 18:55 <REP> Microsoft
26/03/2008 14:19 <REP> Microsoft Help
01/02/2007 22:04 <REP> Mozilla
26/02/2008 02:31 <REP> PCHealth
24/08/2009 01:16 <REP> Shareaza
12/02/2007 20:04 <REP> Stardock
14/09/2007 06:43 <REP> Steam
19/07/2009 18:49 <REP> Temp
24/04/2008 21:39 <REP> WMTools Downloaded Files
04/02/2007 22:18 17.920 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
07/02/2007 16:35 85.384 GDIPFONTCACHEV1.DAT
07/06/2007 23:57 1.580.212 IconCache.db
3 fichier(s) 1.683.516 octets
18 Rép(s) 39.722.131.456 octets libres
Le volume dans le lecteur I n'a pas de nom.
Le numéro de série du volume est D473-8B34

Répertoire de I:\WINDOWS\system32\config\systemprofile\Application Data

01/02/2007 18:53 <REP> .
01/02/2007 18:53 <REP> ..
01/02/2007 18:53 <REP> Microsoft
01/02/2007 18:53 62 desktop.ini
1 fichier(s) 62 octets
3 Rép(s) 39.722.131.456 octets libres
Le volume dans le lecteur I n'a pas de nom.
Le numéro de série du volume est D473-8B34

Répertoire de I:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data

01/02/2007 18:53 <REP> .
01/02/2007 18:53 <REP> ..
17/05/2009 09:54 <REP> Google
07/02/2007 16:35 <REP> Microsoft
0 fichier(s) 0 octets
4 Rép(s) 39.722.131.456 octets libres

******************************************
Recherche des taches planifiées dans I:\WINDOWS\tasks


I:\WINDOWS\Tasks\AEEB23E69068DC5E.job
5?„'ÆAƒ¹{T¥êHJF Ì <
3 i : \ d o c u m e ~ 1 \ n i c o \ a p p l i c ~ 1 \ b o w s s l ~ 1 \ v c r e c t h e a r t . e x e n i c o 0 Ì   <

I:\WINDOWS\Tasks\AppleSoftwareUpdate.job
s ˆ! : I : \ P r o g r a m F i l e s \ A p p l e S o f t w a r e U p d a t e \ S o f t w a r e U p d a t e . e x e - t a s k S Y S T E M € 0 Ø

I:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
Êšd!ºfCÞˆfÀÅáF ¸ <
6 0 I : \ P r o g r a m F i l e s \ G o o g l e \ U p d a t e \ G o o g l e U p d a t e . e x e / c S Y S T E M tP e r m e t d e m a i n t e n i r v o t r e l o g i c i e l G o o g l e à j o u r . S i c e t t e t â c h e e s t d é s a c t i v é e o u i n t e r r o m p u e , v o t r e l o g i c i e l G o o g l e n e s e r a p l u s m i s à j o u r . T o u t e f a i l l e d e s é c u r i t é s u s c e p t i b l e d ' a p p a r a î t r e n e p o u r r a i t a l o r s p a s ê t r e r é p a r é e e t c e r t a i n e s f o n c t i o n n a l i t é s p o u r r a i e n t ê t r e e n d o m m a g é e s . C e t t e t â c h e s e d é s i n s t a l l e a u t o m a t i q u e m e n t l o r s q u ' a u c u n l o g i c i e l G o o g l e n e l ' u t i l i s e . 0 Ï 0 Ù 6

I:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
X°éù%˜L¥ÉîKÛMø‚F ì <

6 0 I : \ P r o g r a m F i l e s \ G o o g l e \ U p d a t e \ G o o g l e U p d a t e . e x e / u a / i n s t a l l s o u r c e s c h e d u l e r S Y S T E M tP e r m e t d e m a i n t e n i r v o t r e l o g i c i e l G o o g l e à j o u r . S i c e t t e t â c h e e s t d é s a c t i v é e o u i n t e r r o m p u e , v o t r e l o g i c i e l G o o g l e n e s e r a p l u s m i s à j o u r . T o u t e f a i l l e d e s é c u r i t é s u s c e p t i b l e d ' a p p a r a î t r e n e p o u r r a i t a l o r s p a s ê t r e r é p a r é e e t c e r t a i n e s f o n c t i o n n a l i t é s p o u r r a i e n t ê t r e e n d o m m a g é e s . C e t t e t â c h e s e d é s i n s t a l l e a u t o m a t i q u e m e n t l o r s q u ' a u c u n l o g i c i e l G o o g l e n e l ' u t i l i s e . 0 Ù 6   <
******************************************
## Répertoires de I:\Program Files

Le volume dans le lecteur I n'a pas de nom.
Le numéro de série du volume est D473-8B34

Répertoire de I:\Program Files

07/01/2010 11:56 <REP> .
07/01/2010 11:56 <REP> ..
07/02/2007 20:26 <REP> 7-1_xp_dd_40211
09/02/2008 12:39 <REP> 8-1_xp32_dd_57717
29/10/2003 00:16 211.456 a3dapi.dll
11/02/2008 23:37 <REP> Activision
03/03/2007 08:55 <REP> Adobe
05/03/2007 17:29 <REP> Alwil Software
18/12/2009 11:04 <REP> Antipub
11/02/2008 14:10 <REP> Anuman Interactive
15/09/2008 16:19 <REP> Apple Software Update
05/06/2008 10:06 <REP> Astonsoft
09/02/2008 12:43 <REP> ATI Technologies
31/07/2001 12:53 34.051 autorun.exe
25/04/2008 10:13 <REP> AviSynth 2.5
09/11/2009 08:56 <REP> Azureus
28/02/2007 19:24 <REP> BACKUP
14/01/2008 16:24 <REP> BitDefender
06/12/2009 18:16 <REP> Bonjour
17/12/2009 16:44 <REP> BOWSSLOWNOUN
15/11/2009 19:06 <REP> CA
11/06/2007 11:23 <REP> CamStudio
29/06/2007 02:18 <REP> Codemasters
01/02/2007 18:49 <REP> ComPlus Applications
12/12/2003 23:37 225.280 core.dll
29/10/2008 16:22 <REP> Corel
16/05/2007 15:29 <REP> cstrike
16/05/2007 15:33 <REP> cstrike_french
12/12/2003 23:37 16.240 Customer_Support.htm
28/02/2007 19:25 <REP> czero
23/12/2003 21:18 1.818.624 czero.exe
28/02/2007 19:11 <REP> czero_french
28/02/2007 19:19 <REP> czeror
28/02/2007 19:20 <REP> czeror_french
07/05/2007 18:03 <REP> DAEMON Tools
30/05/2007 01:33 <REP> DaemonTools_WhenUSave_Installer
12/12/2003 23:37 61.440 dbg.dll
12/12/2003 23:37 90.112 DemoPlayer.dll
15/05/2007 23:13 <REP> DivX
15/03/2009 21:13 <REP> Dollcevita
14/05/2008 21:26 <REP> Driver
09/04/2007 21:43 <REP> Eidos
16/01/2008 23:26 <REP> Electronic Arts
26/08/2009 22:46 <REP> eMule
14/01/2008 16:19 <REP> ESET
12/12/2003 23:37 12.939 eula.txt
03/01/2008 23:19 <REP> Feuvert
14/05/2007 22:58 <REP> ffvfw
08/11/2009 19:04 <REP> Fichiers communs
12/12/2003 23:37 118.881 FileSystem_Stdio.dll
25/02/2008 22:16 <REP> Filmotech
18/12/2009 11:16 <REP> Free Easy Burner
03/07/2007 16:20 <REP> geforce
28/02/2007 19:24 <REP> gldrv
21/12/2009 16:56 <REP> Google
07/03/2007 19:19 <REP> Gravity
19/11/2007 19:51 <REP> Grisoft
24/04/2008 23:17 <REP> Haali
12/12/2003 23:37 385.024 hlds.exe
29/10/2003 00:16 1.569 hltv.cfg
12/12/2003 23:37 221.184 hltv.exe
29/10/2003 00:16 24.705 HLTV-Readme.txt
12/12/2003 23:37 2.004.538 hw.dll
10/06/2009 21:46 <REP> Internet Explorer
15/09/2008 16:17 <REP> iPod
15/09/2008 16:17 <REP> iTunes
09/03/2008 14:45 <REP> Jasc Software Inc
06/07/2009 16:43 <REP> Java
18/12/2009 10:58 <REP> JCA2000
14/12/2007 21:53 <REP> Karasoft
14/05/2007 22:54 <REP> K-Lite Codec Pack
20/11/2007 12:51 <REP> KONAMI
29/10/2003 00:16 816 kver.kp
29/10/2003 00:16 63 language.inf
09/04/2003 09:52 14.119 Léame.doc
09/11/2009 14:43 <REP> Learning Essentials
08/04/2003 16:05 14.024 Leesmij.doc
08/04/2003 16:04 14.373 Leggimi.doc
09/04/2003 09:27 13.737 Leiame.doc
08/04/2003 16:07 14.232 Liesmich.doc
08/04/2003 16:03 14.410 Lisezmoi.doc
04/05/2007 20:08 <REP> m
25/04/2008 10:14 <REP> m4ng
25/04/2008 10:13 <REP> m4ng codec pack
07/02/2007 16:37 <REP> Macromedia
13/10/2008 20:12 <REP> Medion GoPal Assistant
23/04/2007 20:52 <REP> Megaupload
26/10/2008 17:12 <REP> Messenger
10/07/2007 02:14 <REP> Metin2_France
08/11/2009 19:25 <REP> Microsoft
12/10/2008 19:57 <REP> Microsoft ActiveSync
27/02/2008 00:43 <REP> Microsoft CAPICOM 2.1.0.2
09/11/2009 14:47 <REP> Microsoft Etudes
01/02/2007 18:52 <REP> microsoft frontpage
15/06/2009 13:32 <REP> Microsoft Games
26/03/2008 14:28 <REP> Microsoft Office
08/11/2009 19:25 <REP> Microsoft Office Outlook Connector
08/11/2009 19:25 <REP> Microsoft Silverlight
08/11/2009 19:23 <REP> Microsoft SQL Server Compact Edition
08/11/2009 19:24 <REP> Microsoft Sync Framework
26/03/2008 14:28 <REP> Microsoft Visual Studio
26/03/2008 14:20 <REP> Microsoft Visual Studio 8
26/03/2008 14:29 <REP> Microsoft Works
26/03/2008 14:27 <REP> Microsoft.NET
31/10/2008 16:58 <REP> MidiLogic
02/04/2007 16:24 <REP> mIRC
04/07/2007 21:46 <REP> MixVibes6
19/06/2009 11:24 <REP> Mobistar
26/10/2008 17:01 <REP> Movie Maker
10/01/2010 14:10 <REP> Mozilla Firefox
29/10/2003 00:16 125.952 Mp3dec.asi
29/03/2007 15:53 <REP> mp3DirectCut
26/03/2008 14:29 <REP> MSBuild
02/01/2008 21:25 <REP> MSN
01/02/2007 18:49 <REP> MSN Gaming Zone
05/05/2008 20:41 <REP> MSN Messenger
29/10/2003 00:16 351.744 Mss32.dll
29/10/2003 00:16 142.848 Mssv12.asi
29/10/2003 00:16 161.792 Mssv29.asi
02/10/2007 06:44 <REP> MSXML 4.0
04/06/2008 21:15 <REP> Nero
26/10/2008 16:56 <REP> NetMeeting
03/03/2007 20:57 <REP> NovaLogic
26/10/2008 16:55 <REP> Outlook Express
28/04/2003 14:07 90.287 PCTV.CAB
01/02/2007 21:17 <REP> Pinnacle
28/02/2007 19:10 <REP> platform
21/07/2008 20:19 <REP> PopCap Games
12/12/2003 23:37 606.208 proxy.dll
15/09/2008 16:08 <REP> QuickTime
08/04/2003 16:08 12.254 Readme.doc
10/04/2003 10:17 28.565 ReadmeCHS.doc
10/04/2003 10:24 129.051 ReadmeCHT.doc
10/04/2003 10:22 178.302 ReadmeKOR.doc
07/06/2007 20:31 <REP> Real
12/12/2003 23:37 112 register.url
14/05/2007 22:59 <REP> RM-X Player V4.2
01/10/2007 20:04 <REP> Samsung
30/05/2007 01:24 <REP> SecondLife
21/02/2008 13:05 <REP> Sega
01/02/2007 18:49 <REP> Services en ligne
14/05/2008 21:27 <REP> Setup
12/12/2003 23:37 98 sierra.inf
24/06/2007 16:42 <REP> SLD Codec Pack
11/06/2009 19:53 <REP> Smart Projects
03/07/2007 15:34 <REP> SoundSpectrum
15/11/2009 23:39 <REP> Spybot - Search & Destroy
12/12/2003 23:37 3.387.392 steam.dll
12/12/2003 23:37 663.307 steaminstall.exe
12/12/2003 23:37 1.888.221 sw.dll
12/12/2003 23:37 2.068.480 swds.dll
14/03/2007 21:36 <REP> Teamspeak2_RC2
12/02/2007 19:55 <REP> TGTSoft
29/10/2003 00:16 102.400 TrackerNET.dll
14/01/2008 22:31 <REP> UBISOFT
26/07/2002 17:02 153.088 UNWISE.EXE
26/07/2002 17:02 6.752 UNWISE.INI
28/02/2007 19:25 <REP> valve
29/10/2003 00:16 4.710 valve.ico
28/02/2007 19:24 <REP> valve_french
12/12/2003 23:37 352.256 vgui.dll
12/12/2003 23:37 241.732 vgui2.dll
01/02/2007 20:49 <REP> VIA
13/04/2007 12:54 <REP> VideoLAN
29/10/2003 00:16 53.248 voice_miles.dll
29/10/2003 00:16 139.264 voice_speex.dll
29/10/2003 00:16 176.128 voice_tweak.exe
22/04/2008 13:51 <REP> WinamaxPoker
04/02/2008 17:39 <REP> Winamp
18/12/2009 11:19 <REP> Windows Live
08/11/2009 19:21 <REP> Windows Live SkyDrive
21/05/2007 13:00 <REP> Windows Media Connect 2
26/10/2008 16:55 <REP> Windows Media Player
26/10/2008 16:55 <REP> Windows NT
03/02/2007 18:40 <REP> WinRAR
01/02/2007 18:52 <REP> xerox
30/05/2007 01:30 <REP> Yahoo!
21/07/2008 20:48 <REP> Zuma Deluxe
47 fichier(s) 16.376.008 octets
131 Rép(s) 39.722.115.072 octets libres

******************************************
## Popups autorisées

* Internet Explorer

! REG.EXE VERSION 3.0

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow
www.q-dance.be REG_BINARY
zonenxt.msn-int.com REG_BINARY
zonenxt.msn-ppe.com REG_BINARY
zone.msn.com REG_BINARY
PopupMgr REG_SZ yes
*.vvu.vw.be REG_BINARY
support.acer-euro.com REG_BINARY
*.wawa-mania.ws REG_BINARY

* Mozilla Firefox (1 autorisé 2 interdit)

---------- I:\DOCUMENTS AND SETTINGS\NICO\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\02BAJ793.DEFAULT\HOSTPERM.1
host popup 1 www.lagoa.be
host popup 1 www.actualite-de-stars.com
host popup 1 www.id-t.be
host popup 1 img232.imageshack.us
host popup 1 events.q-dance.nl
host popup 1 telechargement.journaldunet.com
host popup 1 www.bassevents.be
host popup 1 muevamueva.com
host popup 1 angenfersopsg.free.fr
host popup 1 www.jeuxvideo-flash.com
host popup 1 www.dikkenek.com
host popup 1 www.sottos.be
host popup 1 www.belgian-jumpstyle.com
host popup 1 mademoiselle-x.over-blog.com
host popup 1 www.q-dance.be
host popup 1 www.netevents.be


host popup 1 www.complex.be
host popup 1 gigistudio.over-blog.com
host popup 1 www.wipub.com
host popup 1 www.cityparade.be
host popup 1 scheme:file
host popup 1 www.rexclub.com
host popup 1 www.francepartage.com
host popup 1 www.tancrede.com

host popup 1 www.01net.com
host popup 1 www.reverze.be
host popup 1 game.amd.com
host popup 1 www.coeuracoeur.net
host popup 1 amat-paradise.com
host popup 1 www.oh.be
host popup 1 www.news-torrent.com
host popup 1 www.infos-du-net.com

******************************************
## Registre

* [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
JunkUpload REG_SZ I:\DOCUME~1\nico\APPLIC~1\BOWSSL~1\Bytedeaf.exe

******************************************
## Zones de sécurité

* HKCU Domains (4)

* P3P History (5)

******************************************
## Recherche I:\WINDOWS\*.htm, "I:\WINDOWS\*.gif"


*************** Fin du rapport ****************

Autres pages sur : probleme cid

10 Janvier 2010 14:41:42

Salut, utilise plutôt LOPS&D:

Télécharger et enregistrer sur le Bureau LopSD.exe

* Double-clic « Lop S&D »
* Faire l'installation
Fermer toutes les applications
* Le lancer par un double-clic sur le raccourci qui est sur le bureau
(Avec VISTA > clic-droit et > Exécuter en tant qu'administrateur)
* Taper « F » pour français , puis presser entrée
* Taper « 1 »
* Presser « Entrée »
* Le PC va redémarrer
** Note: si l'antivirus annonce une infection dans TEMP , l'ignorer
* Attendre l'apparition du rapport
* Copier le rapport et le coller dans la réponse(le rapport se trouve aussi à « C:\lopR »)
10 Janvier 2010 14:49:39

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3000+ )
BIOS : Rev 2.00
USER : nico ( Administrator )
BOOT : Normal boot
Antivirus : Bitdefender Antivirus 8.0 (Activated)
Firewall : Bitdefender Firewall 8.0 (Activated)
A:\ (USB)
D:\ (CD or DVD)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
F:\ (CD or DVD)
G:\ (CD or DVD)
H:\ (CD or DVD)
I:\ (Local Disk) - NTFS - Total:233 Go (Free:36 Go)

"I:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( dim. 10/01/2010|14:45 )

--------------------\\ Listing des dossiers dans APPLIC~1

[15/09/2008|16:17] I:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[05/02/2007|00:34] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[23/08/2009|12:42] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Age of Empires 3
[22/05/2008|17:30] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[15/06/2007|14:32] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[09/02/2008|12:47] I:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI
[19/11/2007|19:51] I:\DOCUME~1\ALLUSE~1\APPLIC~1\AVG7
[01/06/2007|17:04] I:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[14/01/2008|19:05] I:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[15/11/2009|19:05] I:\DOCUME~1\ALLUSE~1\APPLIC~1\CA
[06/01/2010|22:37] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[24/03/2007|11:27] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[03/01/2008|11:37] I:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[19/11/2007|19:54] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
[17/12/2009|16:45] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave
[06/01/2010|22:19] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[09/11/2009|14:47] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[10/06/2009|21:46] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[13/12/2007|12:25] I:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[04/06/2008|21:15] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[03/07/2007|21:04] I:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[05/07/2007|00:18] I:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[05/02/2009|12:50] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[23/03/2007|07:43] I:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
Contenus similaires
10 Janvier 2010 14:51:40


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3000+ )
BIOS : Rev 2.00
USER : nico ( Administrator )
BOOT : Normal boot
Antivirus : Bitdefender Antivirus 8.0 (Activated)
Firewall : Bitdefender Firewall 8.0 (Activated)
A:\ (USB)
D:\ (CD or DVD)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
F:\ (CD or DVD)
G:\ (CD or DVD)
H:\ (CD or DVD)
I:\ (Local Disk) - NTFS - Total:233 Go (Free:36 Go)

"I:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( dim. 10/01/2010|14:45 )

--------------------\\ Listing des dossiers dans APPLIC~1

[15/09/2008|16:17] I:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[05/02/2007|00:34] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[23/08/2009|12:42] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Age of Empires 3
[22/05/2008|17:30] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[15/06/2007|14:32] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[09/02/2008|12:47] I:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI
[19/11/2007|19:51] I:\DOCUME~1\ALLUSE~1\APPLIC~1\AVG7
[01/06/2007|17:04] I:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[14/01/2008|19:05] I:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[15/11/2009|19:05] I:\DOCUME~1\ALLUSE~1\APPLIC~1\CA
[06/01/2010|22:37] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[24/03/2007|11:27] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[03/01/2008|11:37] I:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[19/11/2007|19:54] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
[17/12/2009|16:45] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave
[06/01/2010|22:19] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[09/11/2009|14:47] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[10/06/2009|21:46] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[13/12/2007|12:25] I:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[04/06/2008|21:15] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[03/07/2007|21:04] I:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[05/07/2007|00:18] I:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[05/02/2009|12:50] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[23/03/2007|07:43] I:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[16/11/2009|00:09] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[13/06/2007|19:32] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[03/09/2007|17:54] I:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[07/02/2007|14:55] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[18/12/2009|11:20] I:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[26/02/2008|01:15] I:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[17/05/2009|09:53] I:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[01/02/2007|18:51] I:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[07/02/2007|21:46] I:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[19/11/2007|19:50] I:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[19/11/2007|19:50] I:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[24/04/2008|15:57] I:\DOCUME~1\nico\APPLIC~1\Adobe
[05/02/2007|00:35] I:\DOCUME~1\nico\APPLIC~1\AdobeUM
[14/03/2007|20:30] I:\DOCUME~1\nico\APPLIC~1\Ahead
[11/02/2008|14:16] I:\DOCUME~1\nico\APPLIC~1\Anuman Interactive
[05/06/2007|21:56] I:\DOCUME~1\nico\APPLIC~1\Apple Computer
[20/12/2007|21:26] I:\DOCUME~1\nico\APPLIC~1\ATI
[19/11/2007|19:50] I:\DOCUME~1\nico\APPLIC~1\AVG7
[09/11/2009|12:08] I:\DOCUME~1\nico\APPLIC~1\Azureus
[14/01/2008|16:25] I:\DOCUME~1\nico\APPLIC~1\BitDefender
[06/01/2010|23:36] I:\DOCUME~1\nico\APPLIC~1\BOWSSLOWNOUN
[29/10/2008|16:36] I:\DOCUME~1\nico\APPLIC~1\Corel
[04/06/2008|21:20] I:\DOCUME~1\nico\APPLIC~1\DeepBurner
[15/05/2007|12:39] I:\DOCUME~1\nico\APPLIC~1\DivX
[28/06/2007|20:54] I:\DOCUME~1\nico\APPLIC~1\DMCache
[24/03/2008|19:31] I:\DOCUME~1\nico\APPLIC~1\Filmotech
[13/04/2007|02:18] I:\DOCUME~1\nico\APPLIC~1\FreeCall
[19/03/2009|09:17] I:\DOCUME~1\nico\APPLIC~1\Google
[12/10/2008|20:00] I:\DOCUME~1\nico\APPLIC~1\GoPal Assistant
[01/02/2007|18:56] I:\DOCUME~1\nico\APPLIC~1\Identities
[28/06/2007|20:55] I:\DOCUME~1\nico\APPLIC~1\IDM
[23/04/2007|20:52] I:\DOCUME~1\nico\APPLIC~1\InstallShield
[03/03/2007|08:55] I:\DOCUME~1\nico\APPLIC~1\InterTrust
[05/02/2007|00:36] I:\DOCUME~1\nico\APPLIC~1\Leadertech
[19/04/2007|23:06] I:\DOCUME~1\nico\APPLIC~1\Macromedia
[06/01/2010|22:19] I:\DOCUME~1\nico\APPLIC~1\Malwarebytes
[14/05/2007|22:55] I:\DOCUME~1\nico\APPLIC~1\Media Player Classic
[23/04/2007|20:52] I:\DOCUME~1\nico\APPLIC~1\Megaupload
[09/11/2009|16:45] I:\DOCUME~1\nico\APPLIC~1\Microsoft
[31/10/2008|16:59] I:\DOCUME~1\nico\APPLIC~1\MidiLogic
[03/02/2009|13:48] I:\DOCUME~1\nico\APPLIC~1\Mozilla
[02/01/2008|22:21] I:\DOCUME~1\nico\APPLIC~1\MSN6
[17/01/2008|22:16] I:\DOCUME~1\nico\APPLIC~1\Nero
[24/04/2008|07:54] I:\DOCUME~1\nico\APPLIC~1\Real
[01/10/2007|20:19] I:\DOCUME~1\nico\APPLIC~1\Samsung
[03/04/2007|17:02] I:\DOCUME~1\nico\APPLIC~1\Screenshot Sender
[16/05/2007|00:18] I:\DOCUME~1\nico\APPLIC~1\SecondLife
[20/11/2007|12:38] I:\DOCUME~1\nico\APPLIC~1\SecuROM
[21/05/2007|16:58] I:\DOCUME~1\nico\APPLIC~1\SoundSpectrum
[01/02/2007|23:05] I:\DOCUME~1\nico\APPLIC~1\Sun
[02/06/2008|21:05] I:\DOCUME~1\nico\APPLIC~1\teamspeak2
[02/08/2007|20:36] I:\DOCUME~1\nico\APPLIC~1\U3
[15/05/2007|23:16] I:\DOCUME~1\nico\APPLIC~1\vlc

--------------------\\ Tâches planifiées dans I:\WINDOWS\tasks

[10/01/2010 14:00][--ah-----] I:\WINDOWS\tasks\AEEB23E69068DC5E.job
[10/01/2010 13:54][--a------] I:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[10/01/2010 12:54][--a------] I:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[24/12/2009 22:27][--a------] I:\WINDOWS\tasks\AppleSoftwareUpdate.job
[10/01/2010 12:42][--ah-----] I:\WINDOWS\tasks\SA.DAT
[30/08/2002 13:00][-r-h-----] I:\WINDOWS\tasks\desktop.ini

( AEEB23E69068DC5E.job )=( i:\docume~1\nico\applic~1\bowssl~1\vcrectheart.exe )

--------------------\\ Listing des dossiers dans I:\Program Files

[07/02/2007|20:26] I:\Program Files\7-1_xp_dd_40211
[09/02/2008|12:39] I:\Program Files\8-1_xp32_dd_57717
[11/02/2008|23:37] I:\Program Files\Activision
[03/03/2007|08:55] I:\Program Files\Adobe
[05/03/2007|17:29] I:\Program Files\Alwil Software
[18/12/2009|11:04] I:\Program Files\Antipub
[11/02/2008|14:10] I:\Program Files\Anuman Interactive
[15/09/2008|16:19] I:\Program Files\Apple Software Update
[05/06/2008|10:06] I:\Program Files\Astonsoft
[09/02/2008|12:43] I:\Program Files\ATI Technologies
[25/04/2008|10:13] I:\Program Files\AviSynth 2.5
[09/11/2009|08:56] I:\Program Files\Azureus
[28/02/2007|19:24] I:\Program Files\BACKUP
[14/01/2008|16:24] I:\Program Files\BitDefender
[06/12/2009|18:16] I:\Program Files\Bonjour
[17/12/2009|16:44] I:\Program Files\BOWSSLOWNOUN
[15/11/2009|19:06] I:\Program Files\CA
[11/06/2007|11:23] I:\Program Files\CamStudio
[29/06/2007|02:18] I:\Program Files\Codemasters
[01/02/2007|18:49] I:\Program Files\ComPlus Applications
[29/10/2008|16:22] I:\Program Files\Corel
[16/05/2007|15:29] I:\Program Files\cstrike
[16/05/2007|15:33] I:\Program Files\cstrike_french
[28/02/2007|19:25] I:\Program Files\czero
[28/02/2007|19:11] I:\Program Files\czero_french
[28/02/2007|19:19] I:\Program Files\czeror
[28/02/2007|19:20] I:\Program Files\czeror_french
[07/05/2007|18:03] I:\Program Files\DAEMON Tools
[30/05/2007|01:33] I:\Program Files\DaemonTools_WhenUSave_Installer
[15/05/2007|23:13] I:\Program Files\DivX
[15/03/2009|21:13] I:\Program Files\Dollcevita
[14/05/2008|21:26] I:\Program Files\Driver
[09/04/2007|21:43] I:\Program Files\Eidos
[16/01/2008|23:26] I:\Program Files\Electronic Arts
[26/08/2009|22:46] I:\Program Files\eMule
[14/01/2008|16:19] I:\Program Files\ESET
[03/01/2008|23:19] I:\Program Files\Feuvert
[14/05/2007|22:58] I:\Program Files\ffvfw
[08/11/2009|19:04] I:\Program Files\Fichiers communs
[25/02/2008|22:16] I:\Program Files\Filmotech
[18/12/2009|11:16] I:\Program Files\Free Easy Burner
[03/07/2007|16:20] I:\Program Files\geforce
[28/02/2007|19:24] I:\Program Files\gldrv
[21/12/2009|16:56] I:\Program Files\Google
[07/03/2007|19:19] I:\Program Files\Gravity
[19/11/2007|19:51] I:\Program Files\Grisoft
[24/04/2008|23:17] I:\Program Files\Haali
[21/02/2008|13:46] I:\Program Files\InstallShield Installation Information
[10/06/2009|21:46] I:\Program Files\Internet Explorer
[15/09/2008|16:17] I:\Program Files\iPod
[15/09/2008|16:17] I:\Program Files\iTunes
[09/03/2008|14:45] I:\Program Files\Jasc Software Inc
[06/07/2009|16:43] I:\Program Files\Java
[18/12/2009|10:58] I:\Program Files\JCA2000
[14/12/2007|21:53] I:\Program Files\Karasoft
[14/05/2007|22:54] I:\Program Files\K-Lite Codec Pack
[20/11/2007|12:51] I:\Program Files\KONAMI
[09/11/2009|14:43] I:\Program Files\Learning Essentials
[04/05/2007|20:08] I:\Program Files\m
[25/04/2008|10:14] I:\Program Files\m4ng
[25/04/2008|10:13] I:\Program Files\m4ng codec pack
[07/02/2007|16:37] I:\Program Files\Macromedia
[13/10/2008|20:12] I:\Program Files\Medion GoPal Assistant
[23/04/2007|20:52] I:\Program Files\Megaupload
[26/10/2008|17:12] I:\Program Files\Messenger
[10/07/2007|02:14] I:\Program Files\Metin2_France
[08/11/2009|19:25] I:\Program Files\Microsoft
[12/10/2008|19:57] I:\Program Files\Microsoft ActiveSync
[27/02/2008|00:43] I:\Program Files\Microsoft CAPICOM 2.1.0.2
[09/11/2009|14:47] I:\Program Files\Microsoft Etudes
[01/02/2007|18:52] I:\Program Files\microsoft frontpage
[15/06/2009|13:32] I:\Program Files\Microsoft Games
[26/03/2008|14:28] I:\Program Files\Microsoft Office
[08/11/2009|19:25] I:\Program Files\Microsoft Office Outlook Connector
[08/11/2009|19:25] I:\Program Files\Microsoft Silverlight
[08/11/2009|19:23] I:\Program Files\Microsoft SQL Server Compact Edition
[08/11/2009|19:24] I:\Program Files\Microsoft Sync Framework
[26/03/2008|14:28] I:\Program Files\Microsoft Visual Studio
[26/03/2008|14:20] I:\Program Files\Microsoft Visual Studio 8
[26/03/2008|14:29] I:\Program Files\Microsoft Works
[26/03/2008|14:27] I:\Program Files\Microsoft.NET
[31/10/2008|16:58] I:\Program Files\MidiLogic
[02/04/2007|16:24] I:\Program Files\mIRC
[04/07/2007|21:46] I:\Program Files\MixVibes6
[19/06/2009|11:24] I:\Program Files\Mobistar
[26/10/2008|17:01] I:\Program Files\Movie Maker
[10/01/2010|14:10] I:\Program Files\Mozilla Firefox
[29/03/2007|15:53] I:\Program Files\mp3DirectCut
[26/03/2008|14:29] I:\Program Files\MSBuild
[02/01/2008|21:25] I:\Program Files\MSN
[01/02/2007|18:49] I:\Program Files\MSN Gaming Zone
[05/05/2008|20:41] I:\Program Files\MSN Messenger
[02/10/2007|06:44] I:\Program Files\MSXML 4.0
[04/06/2008|21:15] I:\Program Files\Nero
[26/10/2008|16:56] I:\Program Files\NetMeeting
[03/03/2007|20:57] I:\Program Files\NovaLogic
[26/10/2008|16:55] I:\Program Files\Outlook Express
[01/02/2007|21:17] I:\Program Files\Pinnacle
[28/02/2007|19:10] I:\Program Files\platform
[21/07/2008|20:19] I:\Program Files\PopCap Games
[15/09/2008|16:08] I:\Program Files\QuickTime
[07/06/2007|20:31] I:\Program Files\Real
[14/05/2007|22:59] I:\Program Files\RM-X Player V4.2
[01/10/2007|20:04] I:\Program Files\Samsung
[30/05/2007|01:24] I:\Program Files\SecondLife
[21/02/2008|13:05] I:\Program Files\Sega
[01/02/2007|18:49] I:\Program Files\Services en ligne
[14/05/2008|21:27] I:\Program Files\Setup
[24/06/2007|16:42] I:\Program Files\SLD Codec Pack
[11/06/2009|19:53] I:\Program Files\Smart Projects
[03/07/2007|15:34] I:\Program Files\SoundSpectrum
[15/11/2009|23:39] I:\Program Files\Spybot - Search & Destroy
[14/03/2007|21:36] I:\Program Files\Teamspeak2_RC2
[12/02/2007|19:55] I:\Program Files\TGTSoft
[14/01/2008|22:31] I:\Program Files\UBISOFT
[01/02/2007|18:56] I:\Program Files\Uninstall Information
[28/02/2007|19:25] I:\Program Files\valve
[28/02/2007|19:24] I:\Program Files\valve_french
[01/02/2007|20:49] I:\Program Files\VIA
[13/04/2007|12:54] I:\Program Files\VideoLAN
[22/04/2008|13:51] I:\Program Files\WinamaxPoker
[04/02/2008|17:39] I:\Program Files\Winamp
[18/12/2009|11:19] I:\Program Files\Windows Live
[08/11/2009|19:21] I:\Program Files\Windows Live SkyDrive
[21/05/2007|13:00] I:\Program Files\Windows Media Connect 2
[26/10/2008|16:55] I:\Program Files\Windows Media Player
[26/10/2008|16:55] I:\Program Files\Windows NT
[01/02/2007|19:45] I:\Program Files\WindowsUpdate
[03/02/2007|18:40] I:\Program Files\WinRAR
[01/02/2007|18:52] I:\Program Files\xerox
[30/05/2007|01:30] I:\Program Files\Yahoo!
[21/07/2008|20:48] I:\Program Files\Zuma Deluxe

--------------------\\ Listing des dossiers dans I:\Program Files\Fichiers communs

[03/03/2007|20:41] I:\Program Files\Fichiers communs\Adobe
[13/06/2007|19:34] I:\Program Files\Fichiers communs\Ahead
[15/09/2008|16:07] I:\Program Files\Fichiers communs\Apple
[01/06/2007|17:07] I:\Program Files\Fichiers communs\AVSMedia
[11/06/2009|21:11] I:\Program Files\Fichiers communs\BitDefender
[29/10/2008|16:24] I:\Program Files\Fichiers communs\Corel
[26/03/2008|14:28] I:\Program Files\Fichiers communs\DESIGNER
[03/01/2008|11:36] I:\Program Files\Fichiers communs\InstallShield
[01/02/2007|23:04] I:\Program Files\Fichiers communs\Java
[09/11/2009|14:47] I:\Program Files\Fichiers communs\Microsoft Shared
[01/02/2007|18:50] I:\Program Files\Fichiers communs\MSSoap
[01/02/2007|18:45] I:\Program Files\Fichiers communs\ODBC
[29/10/2008|16:22] I:\Program Files\Fichiers communs\Protexis
[07/06/2007|20:32] I:\Program Files\Fichiers communs\Real
[01/02/2007|18:50] I:\Program Files\Fichiers communs\Services
[01/02/2007|18:45] I:\Program Files\Fichiers communs\SpeechEngines
[13/06/2007|19:32] I:\Program Files\Fichiers communs\Symantec Shared
[08/11/2009|19:25] I:\Program Files\Fichiers communs\System
[07/02/2007|16:38] I:\Program Files\Fichiers communs\Vbox
[08/11/2009|19:04] I:\Program Files\Fichiers communs\Windows Live
[26/02/2008|01:16] I:\Program Files\Fichiers communs\WindowsLiveInstaller
[07/06/2007|20:32] I:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 62 Processes )

IEXPLORE.EXE ~ [PID:1164]
IEXPLORE.EXE ~ [PID:1976]
iexplore.exe ~ [PID:2940]
iexplore.exe ~ [PID:2160]
iexplore.exe ~ [PID:1128]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

I:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave
I:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave\aim jump.dat
I:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave\aim jump.exe
I:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave\Flaw keep.dat
I:\DOCUME~1\nico\APPLIC~1\bowssl~1
I:\DOCUME~1\nico\APPLIC~1\bowssl~1\Bytedeaf.exe
I:\DOCUME~1\nico\APPLIC~1\bowssl~1\drawdrnt.exe
I:\DOCUME~1\nico\APPLIC~1\bowssl~1\gxdulhyv.exe
I:\DOCUME~1\nico\APPLIC~1\bowssl~1\vcrectheart.exe
I:\Program Files\bowssl~1
I:\DOCUME~1\nico\Cookies\nico@advertstream[1].txt
I:\DOCUME~1\nico\Cookies\nico@d2.advertserve[1].txt
I:\DOCUME~1\nico\Cookies\nico@www.adserver5[1].txt
I:\DOCUME~1\nico\Cookies\nico@be.seafight.bigpoint[1].txt
I:\DOCUME~1\nico\Cookies\nico@bigpoint[1].txt
I:\DOCUME~1\nico\Cookies\nico@fr.seafight.bigpoint[1].txt
I:\DOCUME~1\nico\Cookies\nico@nl.darkorbit.bigpoint[2].txt
I:\DOCUME~1\nico\Cookies\nico@fr.partypoker[1].txt
I:\DOCUME~1\nico\Cookies\nico@partypoker[2].txt
I:\DOCUME~1\nico\Cookies\nico@www.partypoker[1].txt
I:\DOCUME~1\nico\Cookies\nico@be.seafight.bigpoint[1].txt
I:\DOCUME~1\nico\Cookies\nico@fr.seafight.bigpoint[1].txt
I:\WINDOWS\Tasks\AEEB23E69068DC5E.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"JunkUpload"="I:\\DOCUME~1\\nico\\APPLIC~1\\BOWSSL~1\\Bytedeaf.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-10 14:47:33
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 258

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

I:\DOCUME~1\nico\Bureau\aoe\Crack
I:\DOCUME~1\nico\Bureau\aoe\Crack\Serial.nfo
I:\DOCUME~1\nico\Bureau\Raccourcis Bureau non utilis‚s\Nouveau dossier (2)\keygen.nfo
I:\DOCUME~1\nico\Cookies\nico@crackfound[2].txt
I:\DOCUME~1\nico\Cookies\nico@forum.keygen-team[1].txt
I:\DOCUME~1\nico\Favoris\SeriAll.Com - Serials, Keys, Keygen, Cracks.url
I:\DOCUME~1\nico\Favoris\Wawa-Mania - [MU] Age of Empire III + Extention, Crack, Patch.url
I:\DOCUME~1\nico\Local Settings\Temp\ReVOLVeR\age3.1.12update.crack
I:\DOCUME~1\nico\Local Settings\Temp\ReVOLVeR\age3.1.12update.crack\age3.exe
I:\DOCUME~1\nico\Mes documents\Ma musique\hip-hop\Alibi Montana Mandat De Depot\09 - alibi montana - le monde a crack‚ - Ra2To.mp3
I:\DOCUME~1\nico\Mes documents\Ma musique\hip-hop\alpha5.20\ghetto fabulous presente 93 etendard\07-93_etendard-crackure.mp3
I:\DOCUME~1\nico\Mes documents\Ma musique\hip-hop\Notorious Big - Life After Death\Disc 2\Notorious B.I.G. - Ten Crack Commandments.mp3
I:\DOCUME~1\nico\Mes documents\Ma musique\hip-hop\The_Game_Presents-The_Black_Wall_Street_Journal_Volume_1-(Bootleg)-2006-WHOA\08-ya_boy-100_bars_of_crack-whoa.mp3
I:\DOCUME~1\nico\Mes documents\My Downloads\Nouveau dossier\AOE3Y\ReVOLVeR\age3.1.12update.crack
I:\DOCUME~1\nico\Mes documents\My Downloads\Nouveau dossier\AOE3Y\ReVOLVeR\age3.1.12update.crack\age3.exe
I:\DOCUME~1\nico\Mes documents\Pro_Evolution_Soccer_2008-FLT\serial\Pro Evolution Soccer 2008 Serial key.not keygen.pes2008 pc.txt
I:\DOCUME~1\nico\Mes documents\telechargement\Age Of Empires 3 full DVD +crack + serial.iso
I:\DOCUME~1\nico\Mes documents\telechargement\[PC Game] Zuma deluxe FULL Game + Crack (GREAT solitaire game).zip
I:\DOCUME~1\nico\Recent\Age Of Empires 3 full DVD +crack + serial.lnk
I:\DOCUME~1\ALLUSE~1\Documents\office\Keygen Office 2007.exe


[F:865][D:17]-> I:\DOCUME~1\nico\LOCALS~1\Temp
[F:1324][D:0]-> I:\DOCUME~1\nico\Cookies
[F:4072][D:30]-> I:\DOCUME~1\nico\LOCALS~1\TEMPOR~1\content.IE5

1 - "I:\Lop SD\LopR_1.txt" - dim. 10/01/2010|14:48 - Option : [1]

--------------------\\ Fin du rapport a 14:48:59
10 Janvier 2010 14:52:30

Ok, en effet infection lop!

Relancer « Lop S&D »

* Choisir cette fois « 2 »
* Poster le rapport

Note:
Si le Bureau ne réapparait pas
* Presser Ctrl Alt Suppr
* Dans Fichier - Nouvelle tâche
* Ecrire: « explorer » - entrée


+

Télécharge sur le bureau « RSIT »
* Double-clic dessus
(Avec VISTA > clic-droit et > Exécuter en tant qu'administrateur)
* Laisser « 1 month »
* Cliquer sur « Continue »
* À la fin du scan 2 rapports sont créés: « log.txt » et « info.txt »
* Copier/coller les deux rapports dans la réponse
** Note: les rapports se situent aussi dans « C:\rsit\log.txt » et « C:\rsit\info.txt »
10 Janvier 2010 14:59:51

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3000+ )
BIOS : Rev 2.00
USER : nico ( Administrator )
BOOT : Normal boot
Antivirus : Bitdefender Antivirus 8.0 (Activated)
Firewall : Bitdefender Firewall 8.0 (Activated)
A:\ (USB)
D:\ (CD or DVD)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
F:\ (CD or DVD)
G:\ (CD or DVD)
H:\ (CD or DVD)
I:\ (Local Disk) - NTFS - Total:233 Go (Free:36 Go)

"I:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( dim. 10/01/2010|14:54 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - I:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave\aim jump.dat
Supprime! - I:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave\aim jump.exe
Supprime! - I:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave\Flaw keep.dat
Supprime! - I:\DOCUME~1\nico\APPLIC~1\bowssl~1\Bytedeaf.exe
Supprime! - I:\DOCUME~1\nico\APPLIC~1\bowssl~1\drawdrnt.exe
Supprime! - I:\DOCUME~1\nico\APPLIC~1\bowssl~1\gxdulhyv.exe
Supprime! - I:\DOCUME~1\nico\APPLIC~1\bowssl~1\vcrectheart.exe
Supprime! - I:\DOCUME~1\nico\Cookies\nico@advertstream[1].txt
Supprime! - I:\DOCUME~1\nico\Cookies\nico@d2.advertserve[1].txt
Supprime! - I:\DOCUME~1\nico\Cookies\nico@www.adserver5[1].txt
Supprime! - I:\DOCUME~1\nico\Cookies\nico@be.seafight.bigpoint[1].txt
Supprime! - I:\DOCUME~1\nico\Cookies\nico@bigpoint[1].txt
Supprime! - I:\DOCUME~1\nico\Cookies\nico@fr.seafight.bigpoint[1].txt
Supprime! - I:\DOCUME~1\nico\Cookies\nico@nl.darkorbit.bigpoint[2].txt
Supprime! - I:\DOCUME~1\nico\Cookies\nico@fr.partypoker[1].txt
Supprime! - I:\DOCUME~1\nico\Cookies\nico@partypoker[2].txt
Supprime! - I:\DOCUME~1\nico\Cookies\nico@www.partypoker[1].txt
Supprime! - I:\WINDOWS\Tasks\AEEB23E69068DC5E.job
Supprime! - I:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave
Supprime! - I:\DOCUME~1\nico\APPLIC~1\bowssl~1
Supprime! - I:\Program Files\bowssl~1

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[15/09/2008|16:17] I:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[05/02/2007|00:34] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[23/08/2009|12:42] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Age of Empires 3
[22/05/2008|17:30] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[15/06/2007|14:32] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[09/02/2008|12:47] I:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI
[19/11/2007|19:51] I:\DOCUME~1\ALLUSE~1\APPLIC~1\AVG7
[01/06/2007|17:04] I:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[14/01/2008|19:05] I:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[15/11/2009|19:05] I:\DOCUME~1\ALLUSE~1\APPLIC~1\CA
[06/01/2010|22:37] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[24/03/2007|11:27] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[03/01/2008|11:37] I:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[19/11/2007|19:54] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
[06/01/2010|22:19] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[09/11/2009|14:47] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[10/06/2009|21:46] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[13/12/2007|12:25] I:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[04/06/2008|21:15] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[03/07/2007|21:04] I:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[05/07/2007|00:18] I:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[05/02/2009|12:50] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[23/03/2007|07:43] I:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[16/11/2009|00:09] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[13/06/2007|19:32] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[03/09/2007|17:54] I:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[07/02/2007|14:55] I:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[18/12/2009|11:20] I:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[26/02/2008|01:15] I:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[17/05/2009|09:53] I:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[01/02/2007|18:51] I:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[07/02/2007|21:46] I:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[19/11/2007|19:50] I:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[19/11/2007|19:50] I:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[24/04/2008|15:57] I:\DOCUME~1\nico\APPLIC~1\Adobe
[05/02/2007|00:35] I:\DOCUME~1\nico\APPLIC~1\AdobeUM
[14/03/2007|20:30] I:\DOCUME~1\nico\APPLIC~1\Ahead
[11/02/2008|14:16] I:\DOCUME~1\nico\APPLIC~1\Anuman Interactive
[05/06/2007|21:56] I:\DOCUME~1\nico\APPLIC~1\Apple Computer
[20/12/2007|21:26] I:\DOCUME~1\nico\APPLIC~1\ATI
[19/11/2007|19:50] I:\DOCUME~1\nico\APPLIC~1\AVG7
[09/11/2009|12:08] I:\DOCUME~1\nico\APPLIC~1\Azureus
[14/01/2008|16:25] I:\DOCUME~1\nico\APPLIC~1\BitDefender
[29/10/2008|16:36] I:\DOCUME~1\nico\APPLIC~1\Corel
[04/06/2008|21:20] I:\DOCUME~1\nico\APPLIC~1\DeepBurner
[15/05/2007|12:39] I:\DOCUME~1\nico\APPLIC~1\DivX
[28/06/2007|20:54] I:\DOCUME~1\nico\APPLIC~1\DMCache
[24/03/2008|19:31] I:\DOCUME~1\nico\APPLIC~1\Filmotech
[13/04/2007|02:18] I:\DOCUME~1\nico\APPLIC~1\FreeCall
[19/03/2009|09:17] I:\DOCUME~1\nico\APPLIC~1\Google
[12/10/2008|20:00] I:\DOCUME~1\nico\APPLIC~1\GoPal Assistant
[01/02/2007|18:56] I:\DOCUME~1\nico\APPLIC~1\Identities
[28/06/2007|20:55] I:\DOCUME~1\nico\APPLIC~1\IDM
[23/04/2007|20:52] I:\DOCUME~1\nico\APPLIC~1\InstallShield
[03/03/2007|08:55] I:\DOCUME~1\nico\APPLIC~1\InterTrust
[05/02/2007|00:36] I:\DOCUME~1\nico\APPLIC~1\Leadertech
[19/04/2007|23:06] I:\DOCUME~1\nico\APPLIC~1\Macromedia
[06/01/2010|22:19] I:\DOCUME~1\nico\APPLIC~1\Malwarebytes
[14/05/2007|22:55] I:\DOCUME~1\nico\APPLIC~1\Media Player Classic
[23/04/2007|20:52] I:\DOCUME~1\nico\APPLIC~1\Megaupload
[09/11/2009|16:45] I:\DOCUME~1\nico\APPLIC~1\Microsoft
[31/10/2008|16:59] I:\DOCUME~1\nico\APPLIC~1\MidiLogic
[03/02/2009|13:48] I:\DOCUME~1\nico\APPLIC~1\Mozilla
[02/01/2008|22:21] I:\DOCUME~1\nico\APPLIC~1\MSN6
[17/01/2008|22:16] I:\DOCUME~1\nico\APPLIC~1\Nero
[24/04/2008|07:54] I:\DOCUME~1\nico\APPLIC~1\Real
[01/10/2007|20:19] I:\DOCUME~1\nico\APPLIC~1\Samsung
[03/04/2007|17:02] I:\DOCUME~1\nico\APPLIC~1\Screenshot Sender
[16/05/2007|00:18] I:\DOCUME~1\nico\APPLIC~1\SecondLife
[20/11/2007|12:38] I:\DOCUME~1\nico\APPLIC~1\SecuROM
[21/05/2007|16:58] I:\DOCUME~1\nico\APPLIC~1\SoundSpectrum
[01/02/2007|23:05] I:\DOCUME~1\nico\APPLIC~1\Sun
[02/06/2008|21:05] I:\DOCUME~1\nico\APPLIC~1\teamspeak2
[02/08/2007|20:36] I:\DOCUME~1\nico\APPLIC~1\U3
[15/05/2007|23:16] I:\DOCUME~1\nico\APPLIC~1\vlc

--------------------\\ Tâches planifiées dans I:\WINDOWS\tasks

[10/01/2010 14:54][--a------] I:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[10/01/2010 12:54][--a------] I:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[24/12/2009 22:27][--a------] I:\WINDOWS\tasks\AppleSoftwareUpdate.job
[10/01/2010 12:42][--ah-----] I:\WINDOWS\tasks\SA.DAT
[30/08/2002 13:00][-r-h-----] I:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans I:\Program Files

[07/02/2007|20:26] I:\Program Files\7-1_xp_dd_40211
[09/02/2008|12:39] I:\Program Files\8-1_xp32_dd_57717
[11/02/2008|23:37] I:\Program Files\Activision
[03/03/2007|08:55] I:\Program Files\Adobe
[05/03/2007|17:29] I:\Program Files\Alwil Software
[18/12/2009|11:04] I:\Program Files\Antipub
[11/02/2008|14:10] I:\Program Files\Anuman Interactive
[15/09/2008|16:19] I:\Program Files\Apple Software Update
[05/06/2008|10:06] I:\Program Files\Astonsoft
[09/02/2008|12:43] I:\Program Files\ATI Technologies
[25/04/2008|10:13] I:\Program Files\AviSynth 2.5
[09/11/2009|08:56] I:\Program Files\Azureus
[28/02/2007|19:24] I:\Program Files\BACKUP
[14/01/2008|16:24] I:\Program Files\BitDefender
[06/12/2009|18:16] I:\Program Files\Bonjour
[15/11/2009|19:06] I:\Program Files\CA
[11/06/2007|11:23] I:\Program Files\CamStudio
[29/06/2007|02:18] I:\Program Files\Codemasters
[01/02/2007|18:49] I:\Program Files\ComPlus Applications
[29/10/2008|16:22] I:\Program Files\Corel
[16/05/2007|15:29] I:\Program Files\cstrike
[16/05/2007|15:33] I:\Program Files\cstrike_french
[28/02/2007|19:25] I:\Program Files\czero
[28/02/2007|19:11] I:\Program Files\czero_french
[28/02/2007|19:19] I:\Program Files\czeror
[28/02/2007|19:20] I:\Program Files\czeror_french
[07/05/2007|18:03] I:\Program Files\DAEMON Tools
[30/05/2007|01:33] I:\Program Files\DaemonTools_WhenUSave_Installer
[15/05/2007|23:13] I:\Program Files\DivX
[15/03/2009|21:13] I:\Program Files\Dollcevita
[14/05/2008|21:26] I:\Program Files\Driver
[09/04/2007|21:43] I:\Program Files\Eidos
[16/01/2008|23:26] I:\Program Files\Electronic Arts
[26/08/2009|22:46] I:\Program Files\eMule
[14/01/2008|16:19] I:\Program Files\ESET
[03/01/2008|23:19] I:\Program Files\Feuvert
[14/05/2007|22:58] I:\Program Files\ffvfw
[08/11/2009|19:04] I:\Program Files\Fichiers communs
[25/02/2008|22:16] I:\Program Files\Filmotech
[18/12/2009|11:16] I:\Program Files\Free Easy Burner
[03/07/2007|16:20] I:\Program Files\geforce
[28/02/2007|19:24] I:\Program Files\gldrv
[21/12/2009|16:56] I:\Program Files\Google
[07/03/2007|19:19] I:\Program Files\Gravity
[19/11/2007|19:51] I:\Program Files\Grisoft
[24/04/2008|23:17] I:\Program Files\Haali
[21/02/2008|13:46] I:\Program Files\InstallShield Installation Information
[10/06/2009|21:46] I:\Program Files\Internet Explorer
[15/09/2008|16:17] I:\Program Files\iPod
[15/09/2008|16:17] I:\Program Files\iTunes
[09/03/2008|14:45] I:\Program Files\Jasc Software Inc
[06/07/2009|16:43] I:\Program Files\Java
[18/12/2009|10:58] I:\Program Files\JCA2000
[14/12/2007|21:53] I:\Program Files\Karasoft
[14/05/2007|22:54] I:\Program Files\K-Lite Codec Pack
[20/11/2007|12:51] I:\Program Files\KONAMI
[09/11/2009|14:43] I:\Program Files\Learning Essentials
[04/05/2007|20:08] I:\Program Files\m
[25/04/2008|10:14] I:\Program Files\m4ng
[25/04/2008|10:13] I:\Program Files\m4ng codec pack
[07/02/2007|16:37] I:\Program Files\Macromedia
[13/10/2008|20:12] I:\Program Files\Medion GoPal Assistant
[23/04/2007|20:52] I:\Program Files\Megaupload
[26/10/2008|17:12] I:\Program Files\Messenger
[10/07/2007|02:14] I:\Program Files\Metin2_France
[08/11/2009|19:25] I:\Program Files\Microsoft
[12/10/2008|19:57] I:\Program Files\Microsoft ActiveSync
[27/02/2008|00:43] I:\Program Files\Microsoft CAPICOM 2.1.0.2
[09/11/2009|14:47] I:\Program Files\Microsoft Etudes
[01/02/2007|18:52] I:\Program Files\microsoft frontpage
[15/06/2009|13:32] I:\Program Files\Microsoft Games
[26/03/2008|14:28] I:\Program Files\Microsoft Office
[08/11/2009|19:25] I:\Program Files\Microsoft Office Outlook Connector
[08/11/2009|19:25] I:\Program Files\Microsoft Silverlight
[08/11/2009|19:23] I:\Program Files\Microsoft SQL Server Compact Edition
[08/11/2009|19:24] I:\Program Files\Microsoft Sync Framework
[26/03/2008|14:28] I:\Program Files\Microsoft Visual Studio
[26/03/2008|14:20] I:\Program Files\Microsoft Visual Studio 8
[26/03/2008|14:29] I:\Program Files\Microsoft Works
[26/03/2008|14:27] I:\Program Files\Microsoft.NET
[31/10/2008|16:58] I:\Program Files\MidiLogic
[02/04/2007|16:24] I:\Program Files\mIRC
[04/07/2007|21:46] I:\Program Files\MixVibes6
[19/06/2009|11:24] I:\Program Files\Mobistar
[26/10/2008|17:01] I:\Program Files\Movie Maker
[10/01/2010|14:10] I:\Program Files\Mozilla Firefox
[29/03/2007|15:53] I:\Program Files\mp3DirectCut
[26/03/2008|14:29] I:\Program Files\MSBuild
[02/01/2008|21:25] I:\Program Files\MSN
[01/02/2007|18:49] I:\Program Files\MSN Gaming Zone
[05/05/2008|20:41] I:\Program Files\MSN Messenger
[02/10/2007|06:44] I:\Program Files\MSXML 4.0
[04/06/2008|21:15] I:\Program Files\Nero
[26/10/2008|16:56] I:\Program Files\NetMeeting
[03/03/2007|20:57] I:\Program Files\NovaLogic
[26/10/2008|16:55] I:\Program Files\Outlook Express
[01/02/2007|21:17] I:\Program Files\Pinnacle
[28/02/2007|19:10] I:\Program Files\platform
[21/07/2008|20:19] I:\Program Files\PopCap Games
[15/09/2008|16:08] I:\Program Files\QuickTime
[07/06/2007|20:31] I:\Program Files\Real
[14/05/2007|22:59] I:\Program Files\RM-X Player V4.2
[01/10/2007|20:04] I:\Program Files\Samsung
[30/05/2007|01:24] I:\Program Files\SecondLife
[21/02/2008|13:05] I:\Program Files\Sega
[01/02/2007|18:49] I:\Program Files\Services en ligne
[14/05/2008|21:27] I:\Program Files\Setup
[24/06/2007|16:42] I:\Program Files\SLD Codec Pack
[11/06/2009|19:53] I:\Program Files\Smart Projects
[03/07/2007|15:34] I:\Program Files\SoundSpectrum
[15/11/2009|23:39] I:\Program Files\Spybot - Search & Destroy
[14/03/2007|21:36] I:\Program Files\Teamspeak2_RC2
[12/02/2007|19:55] I:\Program Files\TGTSoft
[14/01/2008|22:31] I:\Program Files\UBISOFT
[01/02/2007|18:56] I:\Program Files\Uninstall Information
[28/02/2007|19:25] I:\Program Files\valve
[28/02/2007|19:24] I:\Program Files\valve_french
[01/02/2007|20:49] I:\Program Files\VIA
[13/04/2007|12:54] I:\Program Files\VideoLAN
[22/04/2008|13:51] I:\Program Files\WinamaxPoker
[04/02/2008|17:39] I:\Program Files\Winamp
[18/12/2009|11:19] I:\Program Files\Windows Live
[08/11/2009|19:21] I:\Program Files\Windows Live SkyDrive
[21/05/2007|13:00] I:\Program Files\Windows Media Connect 2
[26/10/2008|16:55] I:\Program Files\Windows Media Player
[26/10/2008|16:55] I:\Program Files\Windows NT
[01/02/2007|19:45] I:\Program Files\WindowsUpdate
[03/02/2007|18:40] I:\Program Files\WinRAR
[01/02/2007|18:52] I:\Program Files\xerox
[30/05/2007|01:30] I:\Program Files\Yahoo!
[21/07/2008|20:48] I:\Program Files\Zuma Deluxe

--------------------\\ Listing des dossiers dans I:\Program Files\Fichiers communs

[03/03/2007|20:41] I:\Program Files\Fichiers communs\Adobe
[13/06/2007|19:34] I:\Program Files\Fichiers communs\Ahead
[15/09/2008|16:07] I:\Program Files\Fichiers communs\Apple
[01/06/2007|17:07] I:\Program Files\Fichiers communs\AVSMedia
[11/06/2009|21:11] I:\Program Files\Fichiers communs\BitDefender
[29/10/2008|16:24] I:\Program Files\Fichiers communs\Corel
[26/03/2008|14:28] I:\Program Files\Fichiers communs\DESIGNER
[03/01/2008|11:36] I:\Program Files\Fichiers communs\InstallShield
[01/02/2007|23:04] I:\Program Files\Fichiers communs\Java
[09/11/2009|14:47] I:\Program Files\Fichiers communs\Microsoft Shared
[01/02/2007|18:50] I:\Program Files\Fichiers communs\MSSoap
[01/02/2007|18:45] I:\Program Files\Fichiers communs\ODBC
[29/10/2008|16:22] I:\Program Files\Fichiers communs\Protexis
[07/06/2007|20:32] I:\Program Files\Fichiers communs\Real
[01/02/2007|18:50] I:\Program Files\Fichiers communs\Services
[01/02/2007|18:45] I:\Program Files\Fichiers communs\SpeechEngines
[13/06/2007|19:32] I:\Program Files\Fichiers communs\Symantec Shared
[08/11/2009|19:25] I:\Program Files\Fichiers communs\System
[07/02/2007|16:38] I:\Program Files\Fichiers communs\Vbox
[08/11/2009|19:04] I:\Program Files\Fichiers communs\Windows Live
[26/02/2008|01:16] I:\Program Files\Fichiers communs\WindowsLiveInstaller
[07/06/2007|20:32] I:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 57 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-10 14:55:36
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 258

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

I:\DOCUME~1\nico\Bureau\aoe\Crack
I:\DOCUME~1\nico\Bureau\aoe\Crack\Serial.nfo
I:\DOCUME~1\nico\Bureau\Raccourcis Bureau non utilis‚s\Nouveau dossier (2)\keygen.nfo
I:\DOCUME~1\nico\Cookies\nico@crackfound[2].txt
I:\DOCUME~1\nico\Cookies\nico@forum.keygen-team[1].txt
I:\DOCUME~1\nico\Favoris\SeriAll.Com - Serials, Keys, Keygen, Cracks.url
I:\DOCUME~1\nico\Favoris\Wawa-Mania - [MU] Age of Empire III + Extention, Crack, Patch.url
I:\DOCUME~1\nico\Local Settings\Temp\ReVOLVeR\age3.1.12update.crack
I:\DOCUME~1\nico\Local Settings\Temp\ReVOLVeR\age3.1.12update.crack\age3.exe
I:\DOCUME~1\nico\Mes documents\Ma musique\hip-hop\Alibi Montana Mandat De Depot\09 - alibi montana - le monde a crack‚ - Ra2To.mp3
I:\DOCUME~1\nico\Mes documents\Ma musique\hip-hop\alpha5.20\ghetto fabulous presente 93 etendard\07-93_etendard-crackure.mp3
I:\DOCUME~1\nico\Mes documents\Ma musique\hip-hop\Notorious Big - Life After Death\Disc 2\Notorious B.I.G. - Ten Crack Commandments.mp3
I:\DOCUME~1\nico\Mes documents\Ma musique\hip-hop\The_Game_Presents-The_Black_Wall_Street_Journal_Volume_1-(Bootleg)-2006-WHOA\08-ya_boy-100_bars_of_crack-whoa.mp3
I:\DOCUME~1\nico\Mes documents\My Downloads\Nouveau dossier\AOE3Y\ReVOLVeR\age3.1.12update.crack
I:\DOCUME~1\nico\Mes documents\My Downloads\Nouveau dossier\AOE3Y\ReVOLVeR\age3.1.12update.crack\age3.exe
I:\DOCUME~1\nico\Mes documents\Pro_Evolution_Soccer_2008-FLT\serial\Pro Evolution Soccer 2008 Serial key.not keygen.pes2008 pc.txt
I:\DOCUME~1\nico\Mes documents\telechargement\Age Of Empires 3 full DVD +crack + serial.iso
I:\DOCUME~1\nico\Mes documents\telechargement\[PC Game] Zuma deluxe FULL Game + Crack (GREAT solitaire game).zip
I:\DOCUME~1\nico\Recent\Age Of Empires 3 full DVD +crack + serial.lnk
I:\DOCUME~1\ALLUSE~1\Documents\office\Keygen Office 2007.exe


[F:857][D:17]-> I:\DOCUME~1\nico\LOCALS~1\Temp
[F:1314][D:0]-> I:\DOCUME~1\nico\Cookies
[F:4203][D:30]-> I:\DOCUME~1\nico\LOCALS~1\TEMPOR~1\content.IE5

1 - "I:\Lop SD\LopR_1.txt" - dim. 10/01/2010|14:48 - Option : [1]
2 - "I:\Lop SD\LopR_2.txt" - dim. 10/01/2010|14:56 - Option : [2]

--------------------\\ Fin du rapport a 14:56:57
10 Janvier 2010 15:01:46

Logfile of random's system information tool 1.06 (written by random/random)
Run by nico at 2010-01-10 15:00:02
Microsoft Windows XP Édition familiale Service Pack 3
System drive I: has 38 GB (16%) free of 239 GB
Total RAM: 1535 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:01:17, on 10/01/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
I:\WINDOWS\System32\smss.exe
I:\WINDOWS\system32\winlogon.exe
I:\WINDOWS\system32\services.exe
I:\WINDOWS\system32\lsass.exe
I:\WINDOWS\system32\Ati2evxx.exe
I:\WINDOWS\system32\svchost.exe
I:\WINDOWS\System32\svchost.exe
I:\WINDOWS\system32\Ati2evxx.exe
I:\WINDOWS\system32\spoolsv.exe
I:\WINDOWS\Explorer.EXE
I:\Program Files\DAEMON Tools\daemon.exe
I:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
I:\Program Files\Winamp\winampa.exe
I:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
I:\Program Files\QuickTime\QTTask.exe
I:\Program Files\iTunes\iTunesHelper.exe
I:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
I:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
I:\Program Files\Java\jre6\bin\jusched.exe
I:\Program Files\Fichiers communs\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe
I:\WINDOWS\system32\ctfmon.exe
I:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
I:\Program Files\Messenger\MSMSGS.EXE
I:\Program Files\Microsoft ActiveSync\Wcescomm.exe
I:\Program Files\Microsoft Etudes\Microsoft Encarta 2008 - Études DVD\EDICT.EXE
I:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
I:\Program Files\Pinnacle\Shared Files\Programs\Scheduler\PCLEScheduler.exe
I:\PROGRA~1\MI3AA1~1\rapimgr.exe
I:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
I:\Program Files\Bonjour\mDNSResponder.exe
I:\Program Files\CA\CA Internet Security Suite\ccschedulersvc.exe
I:\Program Files\Java\jre6\bin\jqs.exe
I:\Program Files\Fichiers communs\Protexis\License Service\PsiService_2.exe
I:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
I:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
I:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe
I:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
I:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
I:\WINDOWS\System32\svchost.exe
I:\Program Files\iPod\bin\iPodService.exe
I:\WINDOWS\System32\svchost.exe
I:\Program Files\Windows Live\Contacts\wlcomm.exe
I:\WINDOWS\system32\WgaTray.exe
I:\WINDOWS\System32\svchost.exe
I:\WINDOWS\System32\wbem\wmiapsrv.exe
I:\Program Files\Windows Live\Toolbar\wltuser.exe
I:\WINDOWS\system32\NOTEPAD.EXE
I:\Program Files\Internet Explorer\IEXPLORE.EXE
I:\Program Files\Internet Explorer\IEXPLORE.EXE
I:\Program Files\Internet Explorer\IEXPLORE.EXE
I:\Documents and Settings\nico\Bureau\RSIT.exe
I:\Program Files\trend micro\nico.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - I:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - I:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - I:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - I:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: IeMonitorBho Class - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - I:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - I:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - I:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - I:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - (no file)
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - I:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - I:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [DAEMON Tools] "I:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "I:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [WinampAgent] I:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "I:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
O4 - HKLM\..\Run: [BDAgent] "I:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
O4 - HKLM\..\Run: [StartCCC] "I:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [QuickTime Task] "I:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "I:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Corel File Shell Monitor] I:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "I:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Corel Photo Downloader] "I:\Program Files\Fichiers communs\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" -startup
O4 - HKCU\..\Run: [CTFMON.EXE] I:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "I:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "I:\Program Files\Messenger\MSMSGS.EXE" /background
O4 - HKCU\..\Run: [H/PC Connection Agent] "I:\Program Files\Microsoft ActiveSync\Wcescomm.exe"
O4 - HKCU\..\Run: [L08FXLRD_698312] "I:\Program Files\Microsoft Etudes\Microsoft Encarta 2008 - Études DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [SpybotSD TeaTimer] I:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] I:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] I:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Anti-Pub.lnk = I:\Program Files\Antipub\antipub.exe
O4 - Global Startup: Pinnacle Scheduler.lnk = I:\Program Files\Pinnacle\Shared Files\Programs\Scheduler\PCLEScheduler.exe
O8 - Extra context menu item: Download Link Using Mega Manager... - I:\Program Files\Megaupload\Mega Manager\mm_file.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://I:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - I:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - I:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - I:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - I:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - I:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - I:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - I:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - I:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - I:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - I:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - I:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - I:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - I:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall....
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.ca...
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O23 - Service: Apple Mobile Device - Apple Inc. - I:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - I:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - I:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - I:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CaCCProvSP - CA, Inc. - I:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
O23 - Service: CA Common Scheduler Service (ccSchedulerSVC) - Computer Associates International, Inc. - I:\Program Files\CA\CA Internet Security Suite\ccschedulersvc.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - I:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Service Google Update (gupdate1c9a869feeaa8d6) (gupdate1c9a869feeaa8d6) - Google Inc. - I:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - I:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - I:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - I:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - I:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - I:\Program Files\Fichiers communs\Protexis\License Service\PsiService_2.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - I:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - I:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe

--
End of file - 11440 bytes

======Scheduled tasks folder======

I:\WINDOWS\tasks\AppleSoftwareUpdate.job
I:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
I:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - I:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx [2001-04-16 37808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - I:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - I:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - I:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf00e119-21a3-4fd1-b178-3b8537e75c92}]
IeMonitorBho Class - I:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll [2007-03-28 110592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - I:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-05-21 41368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - I:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - I:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-05-21 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}
{381FFDE8-2394-4f90-B10D-FC6124A40F8C} - BitDefender Toolbar - I:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll [2009-06-11 86016]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - I:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools"=I:\Program Files\DAEMON Tools\daemon.exe [2006-11-12 157592]
"TkBellExe"=I:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2007-06-07 185784]
"WinampAgent"=I:\Program Files\Winamp\winampa.exe [2007-05-14 35328]
"BitDefender Antiphishing Helper"=I:\Program Files\BitDefender\BitDefender 2008\IEShow.exe [2007-10-09 61440]
"BDAgent"=I:\Program Files\BitDefender\BitDefender 2008\bdagent.exe [2009-06-11 368640]
"StartCCC"=I:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"QuickTime Task"=I:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
"iTunesHelper"=I:\Program Files\iTunes\iTunesHelper.exe [2008-09-10 289576]
"Corel File Shell Monitor"=I:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe [2008-08-18 16712]
"SunJavaUpdateSched"=I:\Program Files\Java\jre6\bin\jusched.exe [2009-05-21 148888]
"Corel Photo Downloader"=I:\Program Files\Fichiers communs\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [2008-08-18 532808]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=I:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MsnMsgr"=I:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2009-07-26 3883856]
"MSMSGS"=I:\Program Files\Messenger\MSMSGS.EXE [2008-04-14 1695232]
"H/PC Connection Agent"=I:\Program Files\Microsoft ActiveSync\Wcescomm.exe [2006-11-13 1289000]
"L08FXLRD_698312"=I:\Program Files\Microsoft Etudes\Microsoft Encarta 2008 - Études DVD\EDICT.EXE [2007-06-12 351000]
"SpybotSD TeaTimer"=I:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]

I:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Pinnacle Scheduler.lnk - I:\Program Files\Pinnacle\Shared Files\Programs\Scheduler\PCLEScheduler.exe

I:\Documents and Settings\nico\Menu Démarrer\Programmes\Démarrage
Anti-Pub.lnk - I:\Program Files\Antipub\antipub.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
I:\WINDOWS\system32\Ati2evxx.dll [2007-12-21 122880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
I:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - I:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
10 Janvier 2010 15:02:45

info.txt logfile of random's system information tool 1.06 2010-01-10 15:01:19

======Uninstall list======

-->I:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->MsiExec.exe /I{0F122737-72B2-4095-8B3E-7AAE753DFD3D}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 I:\WINDOWS\INF\PCHealth.inf
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
Adobe Acrobat 5.0-->I:\WINDOWS\ISUN040C.EXE -f"I:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"I:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Flash Player 10 ActiveX-->I:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->I:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Shockwave Player-->I:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE I:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Age of Empires III - The Asian Dynasties-->I:\Program Files\InstallShield Installation Information\{C43C1415-3DFC-4089-9A32-0BECF28A6046}\install.exe -runfromtemp -l0x040c
Age of Empires III-->I:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}
Apple Mobile Device Support-->MsiExec.exe /I{AA9768AA-FF0B-4C66-A085-31E934F77841}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->I:\Program Files\WinRAR\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
ATI - Software Uninstall Utility-->I:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center-->RunDll32 I:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "I:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x0
ATI Display Driver-->rundll32 I:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:D ISPLAY -clean
Azureus Vuze-->I:\Program Files\Azureus\uninstall.exe
BitDefender Total Security 2008-->MsiExec.exe /I{C33A19F0-A3D8-45B4-B067-251D2DBABB1A}
Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}
CamStudio 2.0 Fr-->"I:\Program Files\CamStudio\unins000.exe"
Corel Paint Shop Pro Photo X2-->MsiExec.exe /X{64E72FB1-2343-4977-B4A8-262CD53D0BD3}
Correctif pour Lecteur Windows Media 11 (KB939683)-->"I:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"I:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"I:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Counter-Strike: Condition Zero-->I:\PROGRA~1\UNWISE.EXE I:\PROGRA~1\INSTALL.LOG
eMule-->"I:\Program Files\eMule\Uninstall.exe"
Filmotech v2.31-->"I:\Program Files\Filmotech\unins000.exe"
Galerie de photos Windows Live-->MsiExec.exe /X{B131E59D-202C-43C6-84C9-68F0C37541F1}
Google Chrome-->"I:\Program Files\Google\Chrome\Application\3.0.195.38\Installer\setup.exe" --uninstall --system-level
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Earth-->MsiExec.exe /X{C084BC61-E537-11DE-8616-005056806466}
HijackThis 2.0.2-->"I:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"I:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Installation Windows Live-->I:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
IsoBuster 2.5-->"I:\Program Files\Smart Projects\IsoBuster\Uninst\unins000.exe"
iTunes-->MsiExec.exe /I{41B9E2CF-0B3F-442A-B5B3-592A4A355634}
J2SE Runtime Environment 5.0 Update 10-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150100}
J2SE Runtime Environment 5.0 Update 11-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150110}
Java(TM) 6 Update 14-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(TM) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
KaraWin Std-->RunDll32 I:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "I:\Program Files\InstallShield Installation Information\{E3755EF2-5AE0-4DCB-8B36-CE44FD2C6F4F}\Setup.exe"
K-Lite Codec Pack 2.89 Full-->"I:\Program Files\K-Lite Codec Pack\unins000.exe"
Lame ACM MP3 Codec-->I:\WINDOWS\system32\rundll32.exe setupapi,InstallHinfSection Remove_LameMP3 132 I:\WINDOWS\INF\LameACM.inf
Lecteur Windows Media 11-->"I:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Les Indispensables Éducation pour Microsoft Office-->MsiExec.exe /X{75F3A4B2-F6E8-434D-A2EF-DBBC016C6CB2}
Macromedia Flash MX-->RunDll32 I:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "I:\Program Files\InstallShield Installation Information\{3BE480ED-E17A-431A-981C-5C2EDDBCD3BF}\Setup.exe" -l0x40c UNINSTALL
Medion GoPal Assistant 4.00.0044-->I:\Program Files\Medion GoPal Assistant\Uninstall.exe
Mega Manager-->I:\Program Files\InstallShield Installation Information\{3B6E3FC6-274C-4B6C-BC85-5C3B15DE18E2}\setup.exe -runfromtemp -l0x0009 -removeonly
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft ActiveSync-->MsiExec.exe /I{99052DB7-9592-4522-A558-5417BBAD48EE}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Compression Client Pack 1.0 for Windows XP-->"I:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Encarta 2008 - Études-->MsiExec.exe /I{08181881-FCA5-44A7-B863-D66037A16AAF}
Microsoft Encarta Maths-->MsiExec.exe /I{07183840-959A-4B0D-8825-2C533F0DDB19}
Microsoft Internationalized Domain Names Mitigation APIs-->"I:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"I:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB}
Microsoft Office Live Add-in 1.3-->MsiExec.exe /I{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
10 Janvier 2010 15:44:20

Ok, fais un scan malwarebytes':

Télécharger sur le bureau Malwarebyte's Anti-Malware

* Double-clic sur « mbam-setup » pour lancer l'installation
* Installer simplement sans rien modifier
* Quand le programme lancé ==> onglet « Mise à jour » cliquer sur ==> « Recherche de mise à jour »
Onglet « Recherche » ==> cocher « Exécuter un examen complet »
* Clic « Rechercher »
* Cocher tous les disque dur
* Clic « Lancer l'examen »
* En fin de scan , si infection trouvée
==> Clic « Afficher résultat »
* Fermer vos applications en cours
* Vérifier si tout est coché et clic « Supprimer la sélection »

* un rapport s'ouvre le copier et le coller dans la réponse

Et ensuite de nouveau un RSIT car l'autre n'est pas complet.
10 Janvier 2010 16:14:58

dsl j etais parti je fais sa tt de suite merci bcp pour tout se que tu fais :-)
10 Janvier 2010 18:36:07

Malwarebytes' Anti-Malware 1.44
Version de la base de données: 3533
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

10/01/2010 18:35:35
mbam-log-2010-01-10 (18-35-35).txt

Type de recherche: Examen complet (I:\|)
Eléments examinés: 287541
Temps écoulé: 1 hour(s), 49 minute(s), 16 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 14

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
I:\combotest\Combo-Fix.sys (Malware.Trace) -> Quarantined and deleted successfully.
I:\Program Files\core.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
I:\Program Files\dbg.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
I:\Program Files\DemoPlayer.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
I:\Program Files\FileSystem_Stdio.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
I:\Program Files\hw.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
I:\Program Files\proxy.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
I:\Program Files\sw.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
I:\Program Files\swds.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
I:\Program Files\TrackerNET.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
I:\Program Files\vgui.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
I:\Program Files\vgui2.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
I:\Program Files\voice_miles.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
I:\Program Files\voice_speex.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
10 Janvier 2010 18:36:48

Ok continue!
10 Janvier 2010 18:45:39

Logfile of random's system information tool 1.06 (written by random/random)
Run by nico at 2010-01-10 18:44:28
Microsoft Windows XP Édition familiale Service Pack 3
System drive I: has 38 GB (16%) free of 239 GB
Total RAM: 1535 MB (39% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:44:39, on 10/01/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
I:\WINDOWS\System32\smss.exe
I:\WINDOWS\system32\winlogon.exe
I:\WINDOWS\system32\services.exe
I:\WINDOWS\system32\lsass.exe
I:\WINDOWS\system32\Ati2evxx.exe
I:\WINDOWS\system32\svchost.exe
I:\WINDOWS\System32\svchost.exe
I:\WINDOWS\system32\Ati2evxx.exe
I:\WINDOWS\system32\spoolsv.exe
I:\WINDOWS\Explorer.EXE
I:\Program Files\DAEMON Tools\daemon.exe
I:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
I:\Program Files\Winamp\winampa.exe
I:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
I:\Program Files\QuickTime\QTTask.exe
I:\Program Files\iTunes\iTunesHelper.exe
I:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
I:\Program Files\Java\jre6\bin\jusched.exe
I:\Program Files\Fichiers communs\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe
I:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
I:\WINDOWS\system32\ctfmon.exe
I:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
I:\Program Files\Messenger\MSMSGS.EXE
I:\Program Files\Microsoft ActiveSync\Wcescomm.exe
I:\Program Files\Microsoft Etudes\Microsoft Encarta 2008 - Études DVD\EDICT.EXE
I:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
I:\Program Files\Pinnacle\Shared Files\Programs\Scheduler\PCLEScheduler.exe
I:\PROGRA~1\MI3AA1~1\rapimgr.exe
I:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
I:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
I:\Program Files\Bonjour\mDNSResponder.exe
I:\Program Files\CA\CA Internet Security Suite\ccschedulersvc.exe
I:\Program Files\Java\jre6\bin\jqs.exe
I:\Program Files\Fichiers communs\Protexis\License Service\PsiService_2.exe
I:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
I:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe
I:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
I:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
I:\WINDOWS\System32\svchost.exe
I:\Program Files\iPod\bin\iPodService.exe
I:\WINDOWS\System32\svchost.exe
I:\Program Files\Windows Live\Contacts\wlcomm.exe
I:\WINDOWS\system32\WgaTray.exe
I:\WINDOWS\System32\wbem\wmiapsrv.exe
I:\Program Files\Internet Explorer\IEXPLORE.EXE
I:\Program Files\Internet Explorer\IEXPLORE.EXE
I:\Program Files\Windows Live\Toolbar\wltuser.exe
I:\Program Files\Internet Explorer\IEXPLORE.EXE
I:\Documents and Settings\nico\Bureau\RSIT.exe
I:\Program Files\trend micro\nico.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - I:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - I:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - I:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - I:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: IeMonitorBho Class - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - I:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - I:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - I:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - I:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - (no file)
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - I:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - I:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [DAEMON Tools] "I:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "I:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [WinampAgent] I:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "I:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
O4 - HKLM\..\Run: [BDAgent] "I:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
O4 - HKLM\..\Run: [StartCCC] "I:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [QuickTime Task] "I:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "I:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Corel File Shell Monitor] I:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "I:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Corel Photo Downloader] "I:\Program Files\Fichiers communs\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" -startup
O4 - HKCU\..\Run: [CTFMON.EXE] I:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "I:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "I:\Program Files\Messenger\MSMSGS.EXE" /background
O4 - HKCU\..\Run: [H/PC Connection Agent] "I:\Program Files\Microsoft ActiveSync\Wcescomm.exe"
O4 - HKCU\..\Run: [L08FXLRD_698312] "I:\Program Files\Microsoft Etudes\Microsoft Encarta 2008 - Études DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [SpybotSD TeaTimer] I:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] I:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] I:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Anti-Pub.lnk = I:\Program Files\Antipub\antipub.exe
O4 - Global Startup: Pinnacle Scheduler.lnk = I:\Program Files\Pinnacle\Shared Files\Programs\Scheduler\PCLEScheduler.exe
O8 - Extra context menu item: Download Link Using Mega Manager... - I:\Program Files\Megaupload\Mega Manager\mm_file.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://I:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - I:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - I:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - I:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - I:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - I:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - I:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - I:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - I:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - I:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - I:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - I:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - I:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - I:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall....
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.ca...
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O23 - Service: Apple Mobile Device - Apple Inc. - I:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - I:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - I:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - I:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CaCCProvSP - CA, Inc. - I:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
O23 - Service: CA Common Scheduler Service (ccSchedulerSVC) - Computer Associates International, Inc. - I:\Program Files\CA\CA Internet Security Suite\ccschedulersvc.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - I:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Service Google Update (gupdate1c9a869feeaa8d6) (gupdate1c9a869feeaa8d6) - Google Inc. - I:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - I:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - I:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - I:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - I:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - I:\Program Files\Fichiers communs\Protexis\License Service\PsiService_2.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - I:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - I:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe

--
End of file - 11374 bytes

======Scheduled tasks folder======

I:\WINDOWS\tasks\AppleSoftwareUpdate.job
I:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
I:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - I:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx [2001-04-16 37808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - I:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - I:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - I:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf00e119-21a3-4fd1-b178-3b8537e75c92}]
IeMonitorBho Class - I:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll [2007-03-28 110592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - I:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-05-21 41368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - I:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - I:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-05-21 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}
{381FFDE8-2394-4f90-B10D-FC6124A40F8C} - BitDefender Toolbar - I:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll [2009-06-11 86016]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - I:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools"=I:\Program Files\DAEMON Tools\daemon.exe [2006-11-12 157592]
"TkBellExe"=I:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2007-06-07 185784]
"WinampAgent"=I:\Program Files\Winamp\winampa.exe [2007-05-14 35328]
"BitDefender Antiphishing Helper"=I:\Program Files\BitDefender\BitDefender 2008\IEShow.exe [2007-10-09 61440]
"BDAgent"=I:\Program Files\BitDefender\BitDefender 2008\bdagent.exe [2009-06-11 368640]
"StartCCC"=I:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"QuickTime Task"=I:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
"iTunesHelper"=I:\Program Files\iTunes\iTunesHelper.exe [2008-09-10 289576]
"Corel File Shell Monitor"=I:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe [2008-08-18 16712]
"SunJavaUpdateSched"=I:\Program Files\Java\jre6\bin\jusched.exe [2009-05-21 148888]
"Corel Photo Downloader"=I:\Program Files\Fichiers communs\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [2008-08-18 532808]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=I:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MsnMsgr"=I:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2009-07-26 3883856]
"MSMSGS"=I:\Program Files\Messenger\MSMSGS.EXE [2008-04-14 1695232]
"H/PC Connection Agent"=I:\Program Files\Microsoft ActiveSync\Wcescomm.exe [2006-11-13 1289000]
"L08FXLRD_698312"=I:\Program Files\Microsoft Etudes\Microsoft Encarta 2008 - Études DVD\EDICT.EXE [2007-06-12 351000]
"SpybotSD TeaTimer"=I:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]

I:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Pinnacle Scheduler.lnk - I:\Program Files\Pinnacle\Shared Files\Programs\Scheduler\PCLEScheduler.exe

I:\Documents and Settings\nico\Menu Démarrer\Programmes\Démarrage
Anti-Pub.lnk - I:\Program Files\Antipub\antipub.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
I:\WINDOWS\system32\Ati2evxx.dll [2007-12-21 122880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
I:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - I:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"I:\Program Files\Azureus\Azureus.exe"="I:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"I:\Program Files\Pinnacle\Pinnacle PCTV\TeleText\WebServer.exe"="I:\Program Files\Pinnacle\Pinnacle PCTV\TeleText\WebServer.exe:*:Enabled:WebServer"
"I:\Valve\Steam\steamapps\ntm1515@hotmail.com\counter-strike\hl.exe"="I:\Valve\Steam\steamapps\ntm1515@hotmail.com\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"
"I:\Program Files\mIRC\mirc.exe"="I:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC"
"I:\Program Files\Mozilla Firefox\firefox.exe"="I:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"I:\Program Files\Windows Media Player\wmplayer.exe"="I:\Program Files\Windows Media Player\wmplayer.exe:*:Enabled:Windows Media Player"
"I:\Valve\Steam\steam.exe"="I:\Valve\Steam\steam.exe:*:Enabled:Steam"
"I:\Program Files\eMule\emule.exe"="I:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"I:\Program Files\KONAMI\Pro Evolution Soccer 2008\PES2008.exe"="I:\Program Files\KONAMI\Pro Evolution Soccer 2008\PES2008.exe:*:Enabled:p ro Evolution Soccer 2008"
"I:\Documents and Settings\nico\Bureau\jeux\PES2008.exe"="I:\Documents and Settings\nico\Bureau\jeux\PES2008.exe:*:Enabled:p ro Evolution Soccer 2008"
"I:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="I:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"I:\Program Files\iTunes\iTunes.exe"="I:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"I:\Program Files\Microsoft ActiveSync\rapimgr.exe"="I:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"I:\Program Files\Microsoft ActiveSync\wcescomm.exe"="I:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"I:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="I:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"I:\Program Files\Microsoft Games\Age of Empires III\age3y.exe"="I:\Program Files\Microsoft Games\Age of Empires III\age3y.exe:*:Enabled:Age of Empires III - The Asian Dynasties"
"I:\Program Files\Windows Live\Messenger\wlcsdk.exe"="I:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"I:\Program Files\Windows Live\Messenger\msnmsgr.exe"="I:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"I:\Program Files\Bonjour\mDNSResponder.exe"="I:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"I:\Program Files\Microsoft ActiveSync\rapimgr.exe"="I:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"I:\Program Files\Microsoft ActiveSync\wcescomm.exe"="I:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"I:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="I:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"I:\Program Files\Windows Live\Messenger\wlcsdk.exe"="I:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"I:\Program Files\Windows Live\Messenger\msnmsgr.exe"="I:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

======List of files/folders created in the last 1 months======

2010-01-10 16:18:33 ----D---- I:\Program Files\Malwarebytes' Anti-Malware
2010-01-10 15:00:02 ----D---- I:\rsit
2010-01-10 15:00:02 ----D---- I:\Program Files\trend micro
2010-01-10 14:44:27 ----A---- I:\lopR.txt
2010-01-10 14:43:17 ----D---- I:\Lop SD
2010-01-06 22:19:33 ----D---- I:\Documents and Settings\nico\Application Data\Malwarebytes
2010-01-06 22:19:24 ----D---- I:\Documents and Settings\All Users\Application Data\Malwarebytes
2010-01-06 22:12:33 ----A---- I:\WINDOWS\system32\tmp.txt
2010-01-06 22:12:26 ----A---- I:\rapport.txt
2010-01-06 22:11:38 ----A---- I:\WINDOWS\system32\WS2Fix.exe
2010-01-06 22:11:38 ----A---- I:\WINDOWS\system32\VCCLSID.exe
2010-01-06 22:11:38 ----A---- I:\WINDOWS\system32\VACFix.exe
2010-01-06 22:11:38 ----A---- I:\WINDOWS\system32\swxcacls.exe
2010-01-06 22:11:38 ----A---- I:\WINDOWS\system32\swsc.exe
2010-01-06 22:11:38 ----A---- I:\WINDOWS\system32\swreg.exe
2010-01-06 22:11:38 ----A---- I:\WINDOWS\system32\SrchSTS.exe
2010-01-06 22:11:38 ----A---- I:\WINDOWS\system32\Process.exe
2010-01-06 22:11:38 ----A---- I:\WINDOWS\system32\o4Patch.exe
2010-01-06 22:11:38 ----A---- I:\WINDOWS\system32\IEDFix.exe
2010-01-06 22:11:38 ----A---- I:\WINDOWS\system32\IEDFix.C.exe
2010-01-06 22:11:38 ----A---- I:\WINDOWS\system32\dumphive.exe
2010-01-06 22:11:38 ----A---- I:\WINDOWS\system32\Agent.OMZ.Fix.exe
2010-01-06 22:11:38 ----A---- I:\WINDOWS\system32\404Fix.exe
2009-12-18 10:58:07 ----D---- I:\Program Files\JCA2000

======List of files/folders modified in the last 1 months======

2010-01-10 18:44:36 ----D---- I:\WINDOWS\Prefetch
2010-01-10 18:44:09 ----D---- I:\WINDOWS\Temp
2010-01-10 18:39:45 ----D---- I:\WINDOWS\system32
2010-01-10 18:39:00 ----D---- I:\WINDOWS\system32\ias
2010-01-10 18:37:51 ----D---- I:\WINDOWS\system32\drivers
2010-01-10 18:36:49 ----A---- I:\WINDOWS\SchedLgU.Txt
2010-01-10 18:36:23 ----A---- I:\WINDOWS\bdagent.INI
2010-01-10 18:36:17 ----HDC---- I:\WINDOWS\$NtUninstallKB929399$
2010-01-10 18:35:35 ----D---- I:\Program Files
2010-01-10 14:54:26 ----SD---- I:\WINDOWS\Tasks
2010-01-10 14:10:29 ----D---- I:\Program Files\Mozilla Firefox
2010-01-07 11:39:01 ----A---- I:\WINDOWS\ntbtlog.txt
2010-01-07 09:41:44 ----D---- I:\WINDOWS\system32\CatRoot2
2010-01-06 22:37:00 ----D---- I:\Documents and Settings\All Users\Application Data\Corel
2009-12-31 12:21:13 ----D---- I:\WINDOWS\network diagnostic
2009-12-21 16:57:00 ----SHD---- I:\WINDOWS\Installer
2009-12-21 16:56:59 ----SHD---- I:\Config.Msi
2009-12-21 16:56:33 ----D---- I:\Program Files\Google
2009-12-18 11:20:16 ----D---- I:\WINDOWS
2009-12-18 11:20:14 ----D---- I:\Documents and Settings\All Users\Application Data\WinZip
2009-12-18 11:19:27 ----D---- I:\Program Files\Windows Live
2009-12-18 11:16:42 ----D---- I:\Program Files\Free Easy Burner
2009-12-18 11:04:45 ----D---- I:\Program Files\Antipub
2009-12-17 21:46:13 ----RSD---- I:\WINDOWS\Fonts

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 bdftdif;bdftdif; \??\I:\Program Files\Fichiers communs\BitDefender\BitDefender Firewall\bdftdif.sys []
R1 kbdhid;Pilote HID de clavier; I:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R1 StarOpen;StarOpen; I:\WINDOWS\system32\drivers\StarOpen.sys [2008-05-25 5632]
R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; I:\WINDOWS\System32\drivers\ws2ifsl.sys [2002-08-30 12032]
R2 aslm75;aslm75; \??\I:\WINDOWS\system32\drivers\aslm75.sys []
R2 Fallback;Fallback; I:\WINDOWS\System32\DRIVERS\HSF_FALL.sys [2001-08-17 289887]
R2 Fsks;Fsks; I:\WINDOWS\System32\DRIVERS\HSF_FSKS.sys [2001-08-17 115807]
R2 fssfltr;FssFltr; I:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-08-05 54752]
R2 K56;K56; I:\WINDOWS\System32\DRIVERS\HSF_K56K.sys [2001-08-17 391199]
R2 mdmxsdk;mdmxsdk; I:\WINDOWS\System32\DRIVERS\mdmxsdk.sys [2004-08-04 11868]
R2 SoftFax;SoftFax; I:\WINDOWS\System32\DRIVERS\HSF_FAXX.sys [2001-08-17 199711]
R2 Tones;Tones; I:\WINDOWS\System32\DRIVERS\HSF_TONE.sys [2001-08-17 50751]
R2 V124;V124; I:\WINDOWS\System32\DRIVERS\HSF_V124.sys [2001-08-17 488383]
R3 aeaudio;aeaudio; I:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 ati2mtag;ati2mtag; I:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-12-21 2843136]
R3 Bdfndisf;BitDefender Firewall NDIS Filter Service; I:\WINDOWS\system32\DRIVERS\bdfndisf.sys [2009-06-11 86792]
R3 bdfsfltr;bdfsfltr; 730079007300740065006D00330032005C0044005200490056004500520053005C00620064006600730066006C00740072002E007300790073000000 []
R3 BDSelfPr;BDSelfPr; \??\I:\Program Files\BitDefender\BitDefender 2008\bdselfpr.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; I:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 hidusb;Pilote de classe HID Microsoft; I:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Pilote HID de souris; I:\WINDOWS\System32\DRIVERS\mouhid.sys [2002-08-30 12288]
R3 pctvvbi;PCTVVBI; I:\WINDOWS\System32\DRIVERS\pctvvbi.sys [2002-11-11 6400]
R3 Pfc;Padus ASPI Shell; I:\WINDOWS\system32\drivers\pfc.sys [2002-06-17 14604]
R3 smwdm;smwdm; I:\WINDOWS\system32\drivers\smwdm.sys [2003-07-15 578368]
R3 usbccgp;Pilote parent générique USB Microsoft; I:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur hôte amélioré USB 2.0 Microsoft; I:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; I:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; I:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Gigabit Ethernet Adapter; I:\WINDOWS\System32\DRIVERS\yukonwxp.sys [2003-11-27 174464]
S1 AmdK7;Pilote de processeur AMD K7; I:\WINDOWS\System32\DRIVERS\amdk7.sys [2008-04-14 41856]
S2 ROB_A;Pinnacle WDM PCTV Audio Capture; I:\WINDOWS\System32\DRIVERS\rob_a.sys [2003-02-10 17664]
S2 ROB_V;Pinnacle WDM PCTV Video Capture; I:\WINDOWS\system32\drivers\rob_v.sys [2003-04-11 125568]
S3 aewexwoz;aewexwoz; I:\WINDOWS\system32\drivers\aewexwoz.sys []
S3 Arp1394;Protocole client ARP 1394; I:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 basic2;basic2; I:\WINDOWS\System32\DRIVERS\HSF_BSC2.sys [2001-08-17 67167]
S3 CCDECODE;Décodeur sous-titre fermé; I:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ctljystk;Creative SBLive! Port de jeux; I:\WINDOWS\System32\DRIVERS\ctljystk.sys [2001-08-17 3712]
S3 emu10k;Creative SB Live! (WDM); I:\WINDOWS\system32\drivers\emu10k1m.sys [2001-08-17 283904]
S3 emu10k1;Pilote du Gestionnaire d'interface Creative (WDM); I:\WINDOWS\system32\drivers\ctlfacem.sys [2001-08-17 6912]
S3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; I:\WINDOWS\System32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 HSF_DP;HSF_DP; I:\WINDOWS\System32\DRIVERS\HSFDPSP2.sys [2004-08-04 1041536]
S3 hsf_msft;hsf_msft; I:\WINDOWS\System32\DRIVERS\HSF_MSFT.sys [2001-08-17 542879]
S3 HSFHWBS2;HSFHWBS2; I:\WINDOWS\System32\DRIVERS\HSFBS2S2.sys [2004-08-04 220032]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; I:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; I:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; I:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NIC1394;Pilote réseau 1394; I:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 Profos;Profos; \??\I:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\profos.sys []
S3 Rksample;Rksample; I:\WINDOWS\System32\DRIVERS\HSF_SAMP.sys [2001-08-17 57471]
S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); I:\WINDOWS\System32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
S3 sfman;Pilote du Gestionnaire SoundFont Creative (WDM); I:\WINDOWS\system32\drivers\sfmanm.sys [2001-08-17 36480]
S3 SLIP;Détrameur décalage BDA; I:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); I:\WINDOWS\system32\DRIVERS\ss_bus.sys [2005-08-30 58320]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; I:\WINDOWS\system32\DRIVERS\ss_mdfl.sys [2005-08-30 8304]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; I:\WINDOWS\system32\DRIVERS\ss_mdm.sys [2005-08-30 94000]
S3 streamip;BDA IPSink; I:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 Trufos;Trufos; \??\I:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\trufos.sys []
S3 usbstor;Pilote de stockage de masse USB; I:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 wceusbsh;Windows CE USB Serial Host Driver; I:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 winachsf;winachsf; I:\WINDOWS\System32\DRIVERS\HSFCXTS2.sys [2004-08-04 685056]
S3 WSTCODEC;Codec Teletext standard; I:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; I:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; I:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; I:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; I:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-09-10 116040]
R2 Ati HotKey Poller;Ati HotKey Poller; I:\WINDOWS\system32\Ati2evxx.exe [2007-12-21 512000]
R2 Bonjour Service;Service Bonjour; I:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 ccSchedulerSVC;CA Common Scheduler Service; I:\Program Files\CA\CA Internet Security Suite\ccschedulersvc.exe [2009-07-30 128240]
R2 JavaQuickStarterService;Java Quick Starter; I:\Program Files\Java\jre6\bin\jqs.exe [2009-05-21 152984]
R2 LIVESRV;BitDefender Desktop Update Service; I:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe [2009-06-11 1179648]
R2 PSI_SVC_2;Protexis Licensing V2; I:\Program Files\Fichiers communs\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
R2 SeaPort;SeaPort; I:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 VSSERV;BitDefender Virus Shield; I:\Program Files\BitDefender\BitDefender 2008\vsserv.exe [2009-06-11 1261568]
R2 XCOMM;BitDefender Communicator; I:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe [2007-11-27 86016]
R3 iPod Service;Service de l’iPod; I:\Program Files\iPod\bin\iPodService.exe [2008-09-10 536872]
R3 scan;BitDefender Threat Scanner; I:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S2 ATI Smart;ATI Smart; I:\WINDOWS\system32\ati2sgag.exe [2007-12-20 593920]
S2 CLTNetCnService;Symantec Lic NetConnect service; I:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe /h ccCommon []
S2 gupdate1c9a869feeaa8d6;Service Google Update (gupdate1c9a869feeaa8d6); I:\Program Files\Google\Update\GoogleUpdate.exe [2009-03-19 133104]
S3 aspnet_state;ASP.NET State Service; I:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 CaCCProvSP;CaCCProvSP; I:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe [2009-07-30 259312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; I:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 fsssvc;Service Windows Live Contrôle parental; I:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S3 IDriverT;InstallDriver Table Manager; I:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 odserv;Microsoft Office Diagnostics Service; I:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; I:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; I:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; I:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------
10 Janvier 2010 18:48:52

Télécharger sur le bureau « OTMoveIt.exe »

* Copier ce texte

:Processes
explorer.exe

:Files
I:\WINDOWS\system32\drivers\aewexwoz.sys

:Commands
[emptytemp]
[start explorer]
[Reboot]


* Double-clic sur OTMoveIt.exe

* Dans le cadre de Gauche « Paste Instructions for Items to be Moved » ==> clic-droit ==> coller
* Clic « MoveIt! »
* si redémarrage demandé==> Clic : « YES »
* Un rapport dans ==> C:\_OTMoveIt\MovedFiles\date du jour à copier/coller dans la réponse (format du type => mmjjaaaa_hhmmss.log)

===

Redémarrer et dire si encore soucis
10 Janvier 2010 19:04:08

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
File/Folder I:\WINDOWS\system32\drivers\aewexwoz.sys not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: nico
->Temp folder emptied: 71571743 bytes
->Temporary Internet Files folder emptied: 214821529 bytes
->Java cache emptied: 39768681 bytes
->FireFox cache emptied: 29640307 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2196595 bytes
%systemroot%\System32 .tmp files removed: 73249794 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 5934148 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 34286 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 417,00 mb


OTM by OldTimer - Version 3.1.5.0 log created on 01102010_185123

Files moved on Reboot...
10 Janvier 2010 19:05:45

Voila merci beaucoup pour tt ce que tu as fais tu m as beaucoup aidé :-) Je dois faire quelque chose sur le site pour dire que tu m as bien aidé ?
10 Janvier 2010 19:06:28

Oui!

1/ Pour supprimer les utilitaires téléchargés:

* Télécharge ToolsCleaner2 sur ton bureau
* Double-clique sur « Toolscleaner.exe »
* Clique sur « restauration » pour créer un point de restauration.
* Puis clique sur « recherche »
* Quand la recherche sera terminée, clique sur « suppression ».
* A la fin (il y aura des indications dans le cadre en-dessous), clique sur « quitter » et poste le rapport qui se trouve dans « C:\Tcleaner.txt »
* Clique droit sur son icône => « supprimer »


2/ Pour supprimer les fichiers temporaires (à utiliser régulièrement!):

Télécharge sur le bureau « ATF-Cleaner »
* Double-clic dessus
* Sous l'onglet « Main », choisis« Select All »
* Clique sur le bouton « Empty Selected »
* Patiente le temps du nettoyage, puis « Ok »
** Note: Le prochain démarrage du PC sera un peu plus long, le prefetch ayant été vidé

-----

3/ Désactiver et réactiver la restauration système:

- sous xp:

* Clique-Droit sur Poste de Travail
* Clique « Propriétés »
* Clique « Restauration du système »
* Cocher : « Désactiver la restauration système sur tous les lecteurs »
* Valider en cliquant sur « OK »
-> Redémarrer le pc
* Et même manoeuvre en décochant pour rétablir la restauration
* Puis Menu Démarrer ==> Tous les programmes ==> Accessoires ==> Outils système ==> Restauration système
* Clique « Créer un nouveau point de restauration »
** note => le nom donné n’a aucune importance

- sous vista:

* Clique sur Démarrer
* Clique-droit sur « Ordinateur »
* Clique « Propriétés »
* Clique « Protection du système »
* Décocher : « C »
* Valider en cliquant sur « OK »
-> Redémarrer le pc
* Et même manoeuvre en recochant pour rétablir la restauration
* Puis de même et cliquer « créer » pour établir un nouveau point de restauration

-----

4/ Garder malwarebytes' et penser à faire des scans réguliers avec ce dernier!
=> Tuto malwarebytes'

-----

5/ Un dossier sur les infections à lire si ça t'interesse => Lien

-----

6/ Problème résolu?

Alors penser à mettre le sujet en résolu en éditant ton titre! :clin: 
10 Janvier 2010 19:26:25

tu vas me prendre pour un con mais comment je fais pour éditer mon titre
10 Janvier 2010 19:29:56

Je sais pas :lol:  Tu dois avoir la possibilité de le changer quand tu réponds, ou alors une option pour l'éditer quelque part (j'ai jamais créé de fil ici ;) )
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS