Votre question

Fenêtres intempestives CID et autres. RESOLU (merci)

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
31 Décembre 2009 12:14:47

Bonjour, j'ai des fenêtres publicitaires et autres qui s'ouvrent en permanence j'ai essayé de réparer seule mais je n'y arrive pas. j'ai téléchargé lopxpl et voilà le rapport merci infiniment de m'aider.

Autres pages sur : fenetres intempestives cid resolu merci

31 Décembre 2009 15:24:38

Bonjour noune42,

*Télécharge RSIT (merci random/random) sur le Bureau : Ici
Double-clique sur RSIT.exe, il ne nécessite pas d' installation.
Clique Continue à l' écran Disclaimer si tu acceptes les conditions.
-Si HijackThis est non détecté sur ton Pc, il le téléchargera (autorise l' accès dans ton pare-feu si demandé et accepte la licence).
Lorsque l' analyse sera terminée, deux fichiers texte s' ouvriront.
Poste le contenu de log.txt (celui qui s' ouvre) ainsi que info.txt qui est dans la Barre des Tâches
Tuto : http://forum.pcastuces.com/randoms_system_information_t...

NB : Ces rapports sont enregistrés dans le dossier C:\rsit

A+
31 Décembre 2009 18:53:48

Bonsoir Frederix, merci pour ton aide et la rapidité de ta réponse. Ci-joint les 2 rapports, cordialement. Bonne fête de fin d'année.

1er rapport:

Logfile of random's system information tool 1.06 (written by random/random)
Run by Compaq_Propriétaire at 2009-12-31 18:46:22
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 108 GB (58%) free of 185 GB
Total RAM: 958 MB (30% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:47:05, on 31/12/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
C:\Program Files\Network Associates\VirusScan\Mcshield.exe
C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe
C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE
C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\HP\KBD\KBD.EXE
C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\issch.exe
C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\OrangeHSS\Launcher\Launcher.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Logitech\QuickCam10\COCIManager.exe
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\OrangeHSS\systray\systrayapp.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
c:\windows\system\hpsysdrv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\OrangeHSS\connectivity\connectivitymanager.exe
C:\Program Files\OrangeHSS\connectivity\CoreCom\CoreCom.exe
C:\Program Files\OrangeHSS\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temporary Internet Files\Content.IE5\2G7VAJA6\RSIT[1].exe
C:\Program Files\trend micro\Compaq_Propriétaire.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://orange.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: livetvbar Toolbar - {ad55c869-668e-457c-b270-0cfb2f61116f} - C:\Program Files\livetvbar\tbliv1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: livetvbar Toolbar - {ad55c869-668e-457c-b270-0cfb2f61116f} - C:\Program Files\livetvbar\tbliv1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [Network Associates Error Reporting Service] "C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe"
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\issch.exe" -start
O4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ORAHSSSessionManager] "C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [freeproc] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MEETIN~1\Lockspoke.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: Démarrage d'Office.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O4 - Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O15 - Trusted Zone: http://*.mappy.com
O15 - Trusted Zone: http://*.orange.fr
O15 - Trusted Zone: http://rw.search.ke.voila.fr
O15 - Trusted Zone: http://orange.weborama.fr
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {9DF1C00D-8426-4337-972C-DC042D19A916} (FTMediaPlayer Class) - http://webtv.guidetv.orange.fr/resources/OCS_8971.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
O18 - Protocol: bw+0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
O23 - Service: Service Framework McAfee (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\Mcshield.exe
O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe

--
End of file - 25712 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\A74C95C9918F0EC1.job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 1).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 2).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 3).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 4).job
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\Spybot - Search & Destroy - Scheduled Task.job
C:\WINDOWS\tasks\Spybot - Search & Destroy Updater - Scheduled Task.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2009-02-27 61816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2009-12-21 2436160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ad55c869-668e-457c-b270-0cfb2f61116f}]
livetvbar Toolbar - C:\Program Files\livetvbar\tbliv1.dll [2009-08-06 2215960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-19 764912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-11 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-11 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{ad55c869-668e-457c-b270-0cfb2f61116f} - livetvbar Toolbar - C:\Program Files\livetvbar\tbliv1.dll [2009-08-06 2215960]
Locked
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2009-12-21 2436160]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Recguard"=C:\WINDOWS\SMINST\RECGUARD.EXE [2005-07-22 237568]
"PCDrProfiler"= []
"HPBootOp"=C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe [2005-11-10 249856]
"McAfeeUpdaterUI"=C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe [2004-08-06 139320]
"ShStatEXE"=C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE [2004-09-22 94208]
"Network Associates Error Reporting Service"=C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe [2003-10-07 147514]
"LogitechCommunicationsManager"=C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe [2006-06-26 497200]
"LogitechQuickCamRibbon"=C:\Program Files\Logitech\QuickCam10\QuickCam10.exe [2006-06-26 614960]
"LVCOMSX"=C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe [2006-06-26 243248]
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2005-01-02 180269]
"KBD"=C:\HP\KBD\KBD.EXE [2005-02-02 61440]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
"ISUSPM Startup"=C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-07-27 221184]
"ISUSScheduler"=C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\issch.exe [2004-07-27 81920]
"Google Quick Search Box"=C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe [2009-09-01 122368]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]
""= []
"ORAHSSSessionManager"=C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe [2009-03-03 107248]
"Adobe ARM"=C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2006-11-03 866584]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-10-11 149280]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-11-10 417792]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LDM"=C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2008-03-12 36864]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"freeproc"=C:\DOCUME~1\COMPAQ~1\APPLIC~1\MEETIN~1\Lockspoke.exe [2009-12-21 512000]
"updateMgr"=C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9 []
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-06-23 39408]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Démarrage rapide de HP Photosmart Premier.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe

C:\Documents and Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Démarrage
Anti-Pub.lnk - C:\Program Files\Antipub\antipub.exe
Démarrage d'Office.lnk - C:\Program Files\Microsoft Office\Office\OSA.EXE
Microsoft Recherche accélérée.lnk - C:\Program Files\Microsoft Office\Office\FINDFAST.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-08-14 46080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\AOL 9.0\waol.exe"="C:\Program Files\AOL 9.0\waol.exe:*:D isabled:AOL France"
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\WINDOWS\system32\fxsclnt.exe"="C:\WINDOWS\system32\fxsclnt.exe:*:D isabled:Microsoft Fax Console"
"C:\Program Files\MyFreeTV\MyFreeTV.exe"="C:\Program Files\MyFreeTV\MyFreeTV.exe:*:Enabled:MyFreeTV"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe"="C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe:*:enabled:CSS"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7e2f741e-f67d-11dc-a816-00161722a909}]
shell\AutoRun\command - J:\EmDesk.exe
shell\EmDesk\command - J:\EmDesk.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c76bffe4-ff54-11dd-a918-0007cb0000ff}]
shell\AutoRun\command - J:\setupSNK.exe


======List of files/folders created in the last 1 months======

2009-12-31 18:46:28 ----D---- C:\Program Files\trend micro
2009-12-31 18:46:22 ----D---- C:\rsit
2009-12-30 15:11:19 ----HDC---- C:\Documents and Settings\All Users\Application Data\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}
2009-12-30 15:10:27 ----D---- C:\Program Files\Lavasoft
2009-12-30 15:10:27 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2009-12-30 08:16:29 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-12-29 16:38:56 ----A---- C:\WINDOWS\ntbtlog.txt
2009-12-27 23:25:16 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2009-12-25 10:46:22 ----A---- C:\WINDOWS\system32\GEARAspi.dll
2009-12-25 10:45:06 ----D---- C:\Program Files\iPod
2009-12-25 10:44:57 ----D---- C:\Program Files\iTunes
2009-12-25 10:44:57 ----D---- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-12-25 10:44:26 ----D---- C:\Program Files\Bonjour
2009-12-25 10:39:55 ----A---- C:\WINDOWS\system32\usbaaplrc.dll
2009-12-25 10:38:37 ----D---- C:\Program Files\Fichiers communs\Apple
2009-12-25 10:38:37 ----D---- C:\Documents and Settings\All Users\Application Data\Apple
2009-12-23 23:04:44 ----D---- C:\Program Files\Avira
2009-12-23 23:04:44 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2009-12-23 21:38:31 ----A---- C:\cleannavi.txt
2009-12-23 21:35:46 ----D---- C:\Program Files\Navilog1
2009-12-23 21:31:57 ----D---- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Malwarebytes
2009-12-23 21:31:22 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-12-23 21:31:20 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-12-23 15:58:53 ----D---- C:\Program Files\CCleaner
2009-12-23 15:53:48 ----D---- C:\Program Files\Lopxp
2009-12-23 10:19:56 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-12-23 10:19:56 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-12-22 22:31:07 ----D---- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
2009-12-21 18:55:32 ----D---- C:\Program Files\Meet Inside Fork
2009-12-21 08:18:32 ----D---- C:\Program Files\Messenger Plus! Live
2009-12-09 22:20:10 ----A---- C:\WINDOWS\system32\PerfStringBackup.TMP
2009-12-09 08:03:49 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2009-12-09 08:03:41 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2009-12-09 08:03:03 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2009-12-09 08:02:55 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2009-12-09 08:02:45 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$

======List of files/folders modified in the last 1 months======

2009-12-31 18:46:28 ----D---- C:\Program Files
2009-12-31 18:46:11 ----D---- C:\WINDOWS\Prefetch
2009-12-31 18:46:05 ----D---- C:\WINDOWS\Temp
2009-12-30 21:20:38 ----D---- C:\WINDOWS\Tasks
2009-12-30 20:12:34 ----AD---- C:\WINDOWS
2009-12-30 20:11:42 ----AH---- C:\WINDOWS\system32\ffastlog.txt
2009-12-30 20:10:18 ----D---- C:\WINDOWS\system32\CatRoot2
2009-12-30 15:16:28 ----D---- C:\WINDOWS\system32\drivers
2009-12-30 15:16:27 ----HD---- C:\WINDOWS\inf
2009-12-30 15:16:15 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-12-30 15:11:19 ----SHD---- C:\WINDOWS\Installer
2009-12-30 15:11:18 ----D---- C:\Config.Msi
2009-12-30 14:43:51 ----D---- C:\Program Files\Messenger
2009-12-30 10:24:02 ----D---- C:\WINDOWS\system32\CatRoot
2009-12-30 08:29:01 ----D---- C:\WINDOWS\system32\dllcache
2009-12-29 14:23:03 ----D---- C:\WINDOWS\Debug
2009-12-28 00:14:49 ----A---- C:\WINDOWS\npornap.INI
2009-12-27 23:29:34 ----D---- C:\Documents and Settings
2009-12-27 23:28:12 ----D---- C:\WINDOWS\AppPatch
2009-12-27 23:24:06 ----HD---- C:\WINDOWS\$hf_mig$
2009-12-27 16:07:23 ----D---- C:\Program Files\eMule
2009-12-25 11:04:12 ----D---- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Apple Computer
2009-12-25 10:55:38 ----D---- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft
2009-12-25 10:46:24 ----D---- C:\WINDOWS\system32
2009-12-25 10:44:57 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
2009-12-25 10:43:06 ----D---- C:\Program Files\QuickTime
2009-12-25 10:40:25 ----D---- C:\Program Files\Apple Software Update
2009-12-25 10:38:46 ----D---- C:\WINDOWS\WinSxS
2009-12-25 10:38:37 ----D---- C:\Program Files\Fichiers communs
2009-12-24 12:53:37 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2009-12-24 08:20:38 ----D---- C:\Program Files\Hewlett-Packard
2009-12-24 08:20:23 ----D---- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Meet Inside Fork
2009-12-24 08:20:19 ----D---- C:\Documents and Settings\All Users\Application Data\ford does hold option
2009-12-23 16:17:48 ----D---- C:\WINDOWS\Minidump
2009-12-23 15:30:14 ----A---- C:\WINDOWS\WININIT.INI
2009-12-23 15:29:50 ----D---- C:\WINDOWS\Downloaded Program Files
2009-12-23 09:56:03 ----D---- C:\WINDOWS\network diagnostic
2009-12-23 09:32:09 ----D---- C:\Documents and Settings\All Users\Application Data\Cast ping base frag
2009-12-22 21:43:53 ----D---- C:\Program Files\Windows Live
2009-12-22 21:43:29 ----D---- C:\WINDOWS\system32\DirectX
2009-12-22 21:34:40 ----D---- C:\Program Files\MSN Messenger
2009-12-21 12:23:12 ----D---- C:\Program Files\Google
2009-12-21 08:20:06 ----D---- C:\WINDOWS\system32\config
2009-12-21 08:19:38 ----D---- C:\WINDOWS\system32\wbem
2009-12-21 08:19:38 ----D---- C:\WINDOWS\Registration
2009-12-11 09:51:22 ----D---- C:\Program Files\OpenOffice.org 3
2009-12-09 08:03:32 ----D---- C:\Program Files\Internet Explorer
2009-12-05 10:49:59 ----D---- C:\Documents and Settings\Compaq_Propriétaire\Application Data\HpUpdate
2009-12-01 21:06:19 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;Pilote de processeur AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 43008]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 NaiAvTdi1;NaiAvTdi1; C:\WINDOWS\system32\drivers\mvstdi5x.sys [2004-09-22 58048]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-11-25 56816]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-08-29 3644928]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-08-14 1313792]
R3 EntDrv51;EntDrv51; \??\C:\WINDOWS\system32\drivers\EntDrv51.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 LVcKap;Logitech AEC Driver; C:\WINDOWS\system32\DRIVERS\LVcKap.sys [2006-06-26 1587632]
R3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys [2006-06-26 1952816]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\drivers\LVPr2Mon.sys [2006-06-26 23472]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys [2006-06-22 38960]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 NaiAvFilter1;NaiAvFilter1; C:\WINDOWS\system32\drivers\naiavf5x.sys [2004-09-22 108256]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
R3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2006-06-22 12080]
R3 PID_08A0;Logitech QuickCam IM(PID_08A0); C:\WINDOWS\system32\DRIVERS\LV302AV.SYS [2006-06-22 720176]
R3 Ps2;PS2; C:\WINDOWS\system32\DRIVERS\PS2.sys [2005-12-12 19072]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2005-09-30 78720]
R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Bridge;Pont MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 BridgeMP;Miniport de pont MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 fbxusb;Carte réseau virtuelle FreeBox USB; C:\WINDOWS\system32\DRIVERS\fbxusb32.sys [2004-10-20 21344]
S3 ltmodem5;LT Modem Driver; C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys [2004-08-04 607452]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ss_bus.sys [2005-08-30 58320]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys [2005-08-30 8304]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ss_mdm.sys [2005-08-30 94000]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-08-28 40448]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-08-14 376832]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [2009-03-03 65536]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-11 153376]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2009-12-30 1181328]
R2 LVPrcSrv;Logitech Process Monitor; c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe [2006-06-26 99888]
R2 McAfeeFramework;Service Framework McAfee; C:\Program Files\Network Associates\Common Framework\FrameworkService.exe [2004-08-06 102463]
R2 McShield;Network Associates McShield; C:\Program Files\Network Associates\VirusScan\Mcshield.exe [2004-09-22 221191]
R2 McTaskManager;Network Associates Task Manager; C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe [2004-09-22 28672]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-11-12 545568]
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe [2006-06-26 91696]
S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-23 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------
2ème rapport

info.txt logfile of random's system information tool 1.06 2009-12-31 18:47:13

======Uninstall list======

-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu
-->c:\WINDOWS\system32\\MSIEXEC.EXE /x {075473F5-846A-448B-BCB3-104AA1760205}
-->c:\WINDOWS\system32\\MSIEXEC.EXE /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
-->c:\WINDOWS\system32\\MSIEXEC.EXE /x {B12665F4-4E93-4AB4-B7FC-37053B524629}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Ad-Aware-->"C:\Documents and Settings\All Users\Application Data\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}\Ad-AwareInstallation.exe" REMOVE=TRUE MODIFY=FALSE
Ad-Aware-->C:\Documents and Settings\All Users\Application Data\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}\Ad-AwareInstallation.exe
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Reader 8.1.7 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81300000003}
Adobe Reader 9.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A92000000001}
Amélioration de nos services-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{23012310-3E05-46A5-88A9-C6CBCABCAC79} /l1036
Apple Application Support-->MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143}
Apple Mobile Device Support-->MsiExec.exe /I{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Ask.com Search Assistant 1.0.2-->C:\Program Files\Ask Search Assistant\uninst.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
Asterisk Key 8.3-->C:\Program Files\Passware\un-ariskkey.exe
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:D ISPLAY -clean
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
CD/DVD Graveur 2-->MsiExec.exe /I{389BE10D-555B-495B-A83E-E3D94B66D26A}
Connexion Facile à Internet-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{8105684D-8CA6-440D-8F58-7E5FD67A499D} /l1036
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe"
DeepBurner v1.9.0.228-->"C:\Program Files\Astonsoft\DeepBurner\Uninstall.exe" "C:\Program Files\Astonsoft\DeepBurner\install.log" -u
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Enhanced Multimedia Keyboard Solution-->C:\HP\KBD\Install.exe /u
EPSON Logiciel imprimante-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
Galerie de photos Windows Live-->MsiExec.exe /X{A70FA218-6598-4AC9-813D-63597C5DD068}
Google Earth-->MsiExec.exe /I{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"
High Definition Audio - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
HP Boot Optimizer-->C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe /uninstall
HP DVD Play 1.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{45D707E9-F3C4-11D9-A373-0050BAE317E1}\Setup.exe" -uninstall
HP Imaging Device Functions 6.0-->C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat
HP Photosmart Premier Software 6.0-->C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP Update-->MsiExec.exe /X{74DC0593-6BC6-4001-AD5F-D810AFB68D86}
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
iTunes-->MsiExec.exe /I{A6FDF86A-F541-4E7B-AEA0-8849A2A700D5}
J2SE Runtime Environment 5.0 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150050}
Java(TM) 6 Update 16-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216016F0}
Java(TM) 6 Update 17-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216015FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
LIVETV4PC-->"C:\WINDOWS\unins000.exe"
livetvbar Toolbar-->C:\PROGRA~1\LIVETV~1\UNWISE.EXE C:\PROGRA~1\LIVETV~1\INSTALL.LOG
Logiciel d'archivage WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Logitech Audio Echo Cancellation Component-->MsiExec.exe /X{BEF726DD-4037-4214-8C6A-E625C02D2870}
Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\Setup.exe" -l0x40c UNINSTALL
Logitech QuickCam-->MsiExec.exe /X{EC42ED6A-751D-45C0-A4F9-8CD00E4690FC}
Logitech Video Enumerator-->MsiExec.exe /X{EA516024-D84D-41F1-814F-83175A6188F2}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
McAfee VirusScan Enterprise-->MsiExec.exe /I{4DCA2739-9D16-4B55-808C-E72CD70A5BD3}
Media Show XP v3.5-->"C:\Program Files\Media Show XP\unins000.exe"
Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Security Update (KB953297)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Works-->MsiExec.exe /I{A059DE09-1B49-4450-B340-7AE097EC3F04}
Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->"C:\WINDOWS\ie8updates\KB972260-IE8\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB974455)-->"C:\WINDOWS\ie8updates\KB974455-IE8\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB976325)-->"C:\WINDOWS\ie8updates\KB976325-IE8\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB924496)-->"C:\WINDOWS\$NtUninstallKB924496$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WIND
Contenus similaires
1 Janvier 2010 02:58:39

Bonsoir noune42,

télécharge UsbFix (merci Chiquitine29) : Ici

# Connecte tous tes périphériques externes (clé Usb, disque dur...), sans les ouvrir
# Double-clique sur le raccourci présent sur le Bureau
# Choisis l' option 1 (Recherche) et laisse-le travailler
# Poste le rapport (également sauvegardé à la racine du disque)

process.exe est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus...) comme étant un RiskTool. Il ne s' agit pas d' un virus, mais d' un utilitaire destiné à mettre fin des processus. Mis entre de mauvaises mains cet utilitaire pourrait arrêter des logiciels de sécurité (antivirus, firewall...), d' où l' alerte émise.

A+
2 Janvier 2010 12:32:30

Bonjour Frederix voilà le rapport, meilleurs veoux 2010 et merci encore.

############################## | UsbFix V6.069 |

User : Compaq_Propriétaire (Administrateurs) # NOM-EB85C523610
Update on 01/01/2010 by El Desaparecido , C_XX & Chimay8
Start at: 09:07:57 | 02/01/2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

AMD Athlon(tm) 64 Processor 3200+
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Enabled
AV : AntiVir Desktop 9.0.1.32 [ Enabled | Updated ]
FW : Norton Internet Worm Protection[ (!) Disabled ]2006

C:\ -> Disque fixe local # 181,13 Go (105,14 Go free) [PRESARIO] # NTFS
D:\ -> Disque fixe local # 5,17 Go (630,38 Mo free) [PRESARIO_RP] # FAT32
E:\ -> Disque CD-ROM
F:\ -> Disque amovible
G:\ -> Disque amovible
H:\ -> Disque amovible
I:\ -> Disque amovible

############################## | Processus actifs |

C:\WINDOWS\System32\smss.exe 596
C:\WINDOWS\system32\csrss.exe 676
C:\WINDOWS\system32\winlogon.exe 708
C:\WINDOWS\system32\services.exe 752
C:\WINDOWS\system32\lsass.exe 764
C:\WINDOWS\system32\Ati2evxx.exe 932
C:\WINDOWS\system32\svchost.exe 948
C:\WINDOWS\system32\svchost.exe 1044
C:\Program Files\Windows Defender\MsMpEng.exe 1136
C:\WINDOWS\System32\svchost.exe 1180
C:\WINDOWS\system32\svchost.exe 1236
C:\WINDOWS\system32\svchost.exe 1368
C:\WINDOWS\system32\spoolsv.exe 1600
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe 1636
C:\Program Files\Avira\AntiVir Desktop\sched.exe 1656
C:\WINDOWS\system32\svchost.exe 1824
C:\Program Files\Avira\AntiVir Desktop\avguard.exe 360
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe 376
C:\Program Files\Bonjour\mDNSResponder.exe 392
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe 456
C:\Program Files\Java\jre6\bin\jqs.exe 500
C:\Program Files\Network Associates\Common Framework\FrameworkService.exe 644
C:\Program Files\Network Associates\VirusScan\Mcshield.exe 1124
C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe 1224
C:\PROGRA~1\NETWOR~1\COMMON~1\naPrdMgr.exe 1276
C:\WINDOWS\system32\svchost.exe 1668
C:\WINDOWS\system32\Ati2evxx.exe 1084
C:\WINDOWS\Explorer.EXE 1588
C:\WINDOWS\system32\wbem\wmiprvse.exe 2084
C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe 2624
C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE 2652
C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe 2760
C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe 2840
C:\WINDOWS\system32\wbem\wmiapsrv.exe 2872
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe 2896
C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe 2936
C:\HP\KBD\KBD.EXE 3020
C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\issch.exe 3384
C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe 3400
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe 3420
C:\Program Files\Windows Defender\MSASCui.exe 3560
C:\Program Files\Java\jre6\bin\jusched.exe 3576
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe 3592
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe 3856
C:\Program Files\OrangeHSS\Launcher\Launcher.exe 3868
C:\WINDOWS\system32\ctfmon.exe 3888
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 2040
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe 636
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe 1080
C:\Program Files\Windows Live\Messenger\msnmsgr.exe 2432
C:\Program Files\Logitech\QuickCam10\COCIManager.exe 2564
C:\Program Files\Microsoft Office\Office\OSA.EXE 1832
C:\WINDOWS\System32\svchost.exe 2408
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe 2480
C:\Program Files\OrangeHSS\systray\systrayapp.exe 4352
C:\WINDOWS\ALCXMNTR.EXE 6052
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe 6132
c:\windows\system\hpsysdrv.exe 2700
C:\Program Files\iTunes\iTunesHelper.exe 3264
C:\Program Files\iPod\bin\iPodService.exe 3536
C:\Program Files\Windows Live\Contacts\wlcomm.exe 1720
C:\Program Files\OrangeHSS\connectivity\connectivitymanager.exe 2348
C:\Program Files\OrangeHSS\connectivity\CoreCom\CoreCom.exe 5028
C:\Program Files\OrangeHSS\connectivity\CoreCom\OraConfigRecover.exe 1580
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe 5172
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe 6076
C:\WINDOWS\system32\wbem\unsecapp.exe 4796
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe 4748
C:\Program Files\Internet Explorer\IEXPLORE.EXE 6668
C:\Program Files\Internet Explorer\IEXPLORE.EXE 6840
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe 10420
C:\Program Files\Internet Explorer\iexplore.exe 11452
C:\Program Files\Internet Explorer\iexplore.exe 10100
C:\Program Files\Internet Explorer\iexplore.exe 12428
C:\WINDOWS\system32\wbem\wmiprvse.exe 10808

################## | Elements infectieux |

D:\autorun.inf

################## | Registre |


################## | Mountpoints2 |

HKCU\..\..\Explorer\MountPoints2\D
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480

HKCU\..\..\Explorer\MountPoints2\{7e2f741e-f67d-11dc-a816-00161722a909}
Shell\AutoRun\command =J:\EmDesk.exe
Shell\EmDesk\command =J:\EmDesk.exe

HKCU\..\..\Explorer\MountPoints2\{c76bffe4-ff54-11dd-a918-0007cb0000ff}
Shell\AutoRun\command =J:\setupSNK.exe

################## | Cracks > Keygens > Serials |


################## | ! Fin du rapport # UsbFix V6.069 ! |

2 Janvier 2010 12:38:32

oups! j'ai oublié de dire que je n'ai pas de périphériques externes.
2 Janvier 2010 14:00:33

noune42 a dit :
> meilleurs veoux 2010


Bonjour noune42,

> Egalement:) .

# Connecte tous tes périphériques externes, sans les ouvrir
# Double-clique sur le raccourci d' UsbFix
# Choisis l' option 2 (Suppression)
# Ton bureau va disparaître et le pc redémarrer
# Laisse-le travailler
# Poste le rapport

A+
2 Janvier 2010 15:30:18

Voilà le rapport, mais je dois dire que dès l'instant ou je me suis connecté sur internet 2 autres fenêtres se sont ouvertes, merci pour ton aide précieuse.

############################## | UsbFix V6.069 |

User : Compaq_Propriétaire (Administrateurs) # NOM-EB85C523610
Update on 01/01/2010 by El Desaparecido , C_XX & Chimay8
Start at: 14:21:18 | 02/01/2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

AMD Athlon(tm) 64 Processor 3200+
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Enabled
AV : AntiVir Desktop 9.0.1.32 [ Enabled | Updated ]
FW : Norton Internet Worm Protection[ (!) Disabled ]2006

C:\ -> Disque fixe local # 181,13 Go (105,14 Go free) [PRESARIO] # NTFS
D:\ -> Disque fixe local # 5,17 Go (630,38 Mo free) [PRESARIO_RP] # FAT32
E:\ -> Disque CD-ROM
F:\ -> Disque amovible
G:\ -> Disque amovible
H:\ -> Disque amovible
I:\ -> Disque amovible
J:\ -> Disque amovible # 483,23 Mo (483,13 Mo free) [PHILIPS UFD] # FAT

############################## | Processus actifs |

C:\WINDOWS\System32\smss.exe 552
C:\WINDOWS\system32\csrss.exe 648
C:\WINDOWS\system32\winlogon.exe 676
C:\WINDOWS\system32\services.exe 720
C:\WINDOWS\system32\lsass.exe 732
C:\WINDOWS\system32\Ati2evxx.exe 900
C:\WINDOWS\system32\svchost.exe 916
C:\WINDOWS\system32\svchost.exe 1012
C:\Program Files\Windows Defender\MsMpEng.exe 1104
C:\WINDOWS\System32\svchost.exe 1148
C:\WINDOWS\system32\svchost.exe 1200
C:\WINDOWS\system32\svchost.exe 1284
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe 1480
C:\WINDOWS\system32\spoolsv.exe 1548
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe 1596
C:\Program Files\Avira\AntiVir Desktop\sched.exe 1612
C:\WINDOWS\system32\svchost.exe 1728
C:\WINDOWS\system32\Ati2evxx.exe 1876
C:\WINDOWS\Explorer.EXE 1972
C:\Program Files\Avira\AntiVir Desktop\avguard.exe 296
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe 308
C:\Program Files\Bonjour\mDNSResponder.exe 324
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe 424
C:\Program Files\Java\jre6\bin\jqs.exe 456
C:\Program Files\Network Associates\Common Framework\FrameworkService.exe 576
C:\Program Files\Network Associates\VirusScan\Mcshield.exe 1064
C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe 1168
C:\PROGRA~1\NETWOR~1\COMMON~1\naPrdMgr.exe 1272
C:\WINDOWS\system32\svchost.exe 1624
C:\WINDOWS\system32\wbem\wmiprvse.exe 1240
C:\WINDOWS\system32\wuauclt.exe 1372
C:\WINDOWS\system32\wbem\wmiprvse.exe 2296
C:\WINDOWS\system32\wbem\unsecapp.exe 2304
C:\WINDOWS\system32\wbem\wmiapsrv.exe 2488
C:\WINDOWS\System32\alg.exe 2544

################## | Elements infectieux |

Supprimé ! C:\Recycler\S-1-5-21-2021025383-3936533213-1397461519-1008
Supprimé ! C:\Recycler\S-1-5-21-2021025383-3936533213-1397461519-1009
Supprimé ! C:\Recycler\S-1-5-21-2021025383-3936533213-1397461519-1010
Supprimé ! C:\Recycler\S-1-5-21-2021025383-3936533213-1397461519-1011
Supprimé ! C:\Recycler\S-1-5-21-2021025383-3936533213-1397461519-1012
Supprimé ! C:\Recycler\S-1-5-21-3855972482-1069290530-602302439-1008
Supprimé ! C:\Recycler\S-1-5-21-3855972482-1069290530-602302439-1009
Supprimé ! C:\Recycler\S-1-5-21-3940376112-3602745393-652138550-1008
Supprimé ! D:\autorun.inf

################## | Registre |


################## | Mountpoints2 |

Supprimé ! HKCU\...\Explorer\MountPoints2\D\Shell\AutoRun\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{7e2f741e-f67d-11dc-a816-00161722a909}\Shell\AutoRun\Command
Supprimé ! HKCU\...\Explorer\MountPoints2\{c76bffe4-ff54-11dd-a918-0007cb0000ff}\Shell\AutoRun\Command

################## | Listing des fichiers présent |

[23/11/2004 15:21|--a------|0] C:\AUTOEXEC.BAT
[11/03/2008 20:28|-rahs----|218] C:\BOOT.BAK
[12/03/2008 07:33|-rahs----|298] C:\boot.ini
[04/08/2004 22:00|-rahs----|4952] C:\Bootfont.bin
[23/12/2009 21:41|--a------|1039] C:\cleannavi.txt
[04/08/2004 22:00|-r-hs----|263488] C:\cmldr
[31/05/2008 10:48|--a------|74] C:\CMLoader.log
[23/11/2004 15:21|--a------|0] C:\CONFIG.SYS
[31/01/2007 19:23|--ah-----|5381] C:\ffastun.ffa
[31/01/2007 19:23|--ah-----|753664] C:\ffastun.ffl
[31/01/2007 19:23|--ah-----|208896] C:\ffastun.ffo
[31/01/2007 19:23|--ah-----|1536000] C:\ffastun0.ffx
[01/02/2007 23:07|--a------|753664] C:\ffastunT.ffl
[01/02/2008 08:38|--a------|179] C:\handle.dat
[?|?|?] C:\hiberfil.sys
[23/11/2004 15:21|-rahs----|0] C:\IO.SYS
[04/05/2006 16:19|--ah-----|321] C:\IPH.PH
[26/10/2009 22:39|--a------|11549] C:\lvcoinst.log
[23/11/2004 15:21|-rahs----|0] C:\MSDOS.SYS
[04/08/2004 22:00|-rahs----|47564] C:\NTDETECT.COM
[09/08/2008 22:23|-rahs----|252240] C:\ntldr
[?|?|?] C:\pagefile.sys
[07/07/2009 14:03|--a------|6775] C:\RESETLOG.TXT
[25/09/2009 08:56|--a------|825] C:\updatedatfix.log
[02/01/2010 14:31|--a------|4863] C:\UsbFix.txt
[31/10/2009 13:48|--a------|1427] C:\VundoFix.txt
[27/07/2001 15:07|---hs----|0] D:\AUTOEXEC.BAT
[09/01/2002 18:52|---hs----|244] D:\BOOT.INI
[16/08/2001 18:26|---hs----|237728] D:\CMLDR
[28/07/2001 06:07|---hs----|0] D:\CONFIG.SYS
[25/05/2005 03:48|---hs----|102] D:\Desktop.ini
[10/09/2002 09:21|---hs----|7850] D:\Folder.htt
[17/06/2001 16:31|---hs----|0] D:\GRAPH
[25/01/2002 09:21|---hs----|0] D:\GRAPH16
[30/11/2004 04:01|---hs----|73728] D:\Info.exe
[28/07/2001 06:07|---hs----|0] D:\IO.SYS
[28/07/2001 06:07|---hs----|0] D:\MSDOS.SYS
[25/07/2001 22:00|---hs----|45124] D:\NTDETECT.COM
[24/02/2004 17:38|--a------|498] D:\BATCH.OLD
[25/07/2001 22:00|---hs----|222880] D:\NTLDR
[03/03/2003 05:46|---hs----|111377] D:\protect.ed
[01/01/2005 23:15|---hs----|36] D:\SAVEFILE.DIR
[10/03/2008 13:15|--ah-----|4096] D:\ffastun0.ffx
[03/03/2003 05:41|---hs----|88038] D:\Warning.bmp
[04/05/2006 19:01|---hs----|978] D:\MASTER.LOG
[17/08/2001 07:32|---hs----|0] D:\NTFS
[23/05/2001 20:19|---hs----|0] D:\SVGA
[18/08/2001 07:00|---hs----|10] D:\WIN51
[22/01/2001 06:00|---hs----|11] D:\WIN51.B2
[25/07/2001 07:00|---hs----|11] D:\WIN51.RC1
[25/07/2001 12:47|---hs----|11] D:\WIN51.RC2
[18/08/2001 07:00|---hs----|10] D:\WIN51IC
[20/03/2001 06:00|---hs----|11] D:\WIN51IC.B2
[25/07/2001 07:00|---hs----|11] D:\WIN51IC.RC1
[25/07/2001 07:00|---hs----|11] D:\WIN51IC.RC2
[17/08/2001 07:00|---hs----|10] D:\WIN51IP
[22/01/2001 06:00|---hs----|11] D:\WIN51IP.B2
[25/07/2001 12:47|---hs----|11] D:\WIN51IP.RC2
[17/08/2001 05:17|---hs----|184] D:\WINBOM.INI
[01/01/2005 23:37|---hs----|6] D:\BLOCK.RIN
[29/04/2004 08:37|---hs----|4096] D:\Thumbs.db
[01/01/2005 23:37|--ahs----|938] D:\USER
[10/03/2008 13:15|--ah-----|8192] D:\ffastun.ffl
[10/03/2008 13:15|--ah-----|4096] D:\ffastun.ffo
[10/03/2008 13:15|--ah-----|4109] D:\ffastun.ffa
[01/02/2006 02:46|--ahs----|1552] D:\BATCH.LOG
[04/05/2006 19:01|-r-hs----|26] D:\RCBoot.sys
[04/05/2006 19:58|--ahs----|22] D:\HPCD.sys
[15/11/2009 11:02|--a------|9255] J:\NOCES D'OR PAPI ET MAMIE ao–t 2009.ams

################## | Vaccination |

# C:\autorun.inf -> Dossier créé par UsbFix.
# D:\autorun.inf -> Dossier créé par UsbFix.
# J:\autorun.inf -> Dossier créé par UsbFix.

################## | Crack > Keygen > Serial |


################## | Upload |

Veuillez envoyer le fichier : C:\DOCUME~1\COMPAQ~1\Bureau\UsbFix_Upload_Me_NOM-EB85C523610.zip : http://chiquitine.changelog.fr/Sample/Upload.php
Merci pour votre contribution .
2 Janvier 2010 16:09:38

noune42 a dit :

> ################## | Upload |

Veuillez envoyer le fichier : C:\DOCUME~1\COMPAQ~1\Bureau\UsbFix_Upload_Me_NOM-EB85C523610.zip : http://chiquitine.changelog.fr/Sample/Upload.php
Merci pour votre contribution .


Re,

> ;) 

*Télécharge LOP S&D (merci Eric71) : Ici
-Double-clique dessus pour lancer l' installation, puis sur le raccourci présent sur le Bureau
-Sélectionne la langue souhaitée et choisis l' option 1 (Recherche)
-Patiente jusqu' à la fin de celle-ci
-Poste le rapport (situé aussi C:\lopR.txt)
2 Janvier 2010 17:00:41

Re, ci-joint le rapport:

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3200+ )
BIOS : Phoenix - Award BIOS v6.00PG
USER : Compaq_Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : AntiVir Desktop 9.0.1.32 (Activated)
Firewall : Norton Internet Worm Protection 2006 (Not Activated)
C:\ (Local Disk) - NTFS - Total:181 Go (Free:104 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:0 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 02/01/2010|16:49 )

--------------------\\ Listing des dossiers dans APPLIC~1

[09/08/2008|15:41] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[02/02/2009|13:45] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[02/02/2009|13:45] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real

[26/10/2005|23:34] C:\DOCUME~1\ADMINI~1.NOM\APPLIC~1\Identities
[09/08/2008|15:41] C:\DOCUME~1\ADMINI~1.NOM\APPLIC~1\Macromedia
[02/01/2005|06:10] C:\DOCUME~1\ADMINI~1.NOM\APPLIC~1\Microsoft
[02/01/2005|05:42] C:\DOCUME~1\ADMINI~1.NOM\APPLIC~1\Real

[25/12/2009|10:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[30/12/2009|15:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}
[13/11/2009|16:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[25/12/2009|10:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[25/12/2009|10:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[13/11/2009|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Autodesk
[23/12/2009|23:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[23/12/2009|09:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag
[02/01/2005|05:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[16/04/2008|10:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[05/02/2007|16:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Emjysoft
[24/12/2009|08:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option
[27/08/2009|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[27/10/2008|19:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HotbarSA
[15/09/2009|20:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hps
[02/01/2005|05:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[30/12/2009|15:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[23/09/2006|19:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[23/12/2009|21:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[13/11/2009|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[22/12/2009|22:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[08/11/2009|09:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/03/2008|18:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Network Associates
[15/11/2009|09:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
[10/05/2006|17:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[02/01/2005|05:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[20/11/2009|10:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skyline
[02/01/2005|05:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[11/08/2006|09:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[29/12/2009|17:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[14/03/2008|18:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[09/09/2009|21:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[09/08/2007|15:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[06/07/2006|22:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[24/03/2007|14:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[16/03/2008|17:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[28/04/2007|20:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[29/01/2008|07:50] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe
[03/04/2008|12:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdobeUM
[25/12/2009|11:04] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer
[31/05/2006|21:17] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ArcSoft
[13/11/2009|14:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Autodesk
[11/05/2006|18:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\CyberLink
[17/12/2008|12:52] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DeepBurner
[12/11/2006|15:37] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DivX
[05/02/2007|16:04] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Emjysoft
[01/03/2009|08:27] C:\DOCUME~1\COMPAQ~1\APPLIC~1\EoRezo
[10/06/2008|18:26] C:\DOCUME~1\COMPAQ~1\APPLIC~1\EPSON
[09/09/2007|12:02] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google
[03/05/2009|21:30] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help
[04/05/2006|17:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HP
[04/05/2006|15:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HPQ
[05/12/2009|10:49] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HpUpdate
[11/03/2008|20:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities
[11/05/2006|18:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech
[28/05/2006|10:37] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia
[23/12/2009|21:31] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Malwarebytes
[10/05/2006|17:41] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Media Player Classic
[24/12/2009|08:20] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Meet Inside Fork
[25/12/2009|10:55] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft
[02/04/2007|18:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla
[10/03/2009|21:44] C:\DOCUME~1\COMPAQ~1\APPLIC~1\OpenOffice.org
[10/08/2009|21:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\PandoraRecovery
[09/09/2007|11:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\PC Tools
[06/06/2007|08:15] C:\DOCUME~1\COMPAQ~1\APPLIC~1\PlayFirst
[11/03/2008|20:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Real
[17/02/2008|19:21] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Samsung
[11/05/2006|18:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic
[08/05/2006|16:07] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun
[02/04/2007|18:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Talkback
[02/06/2006|16:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Template
[06/06/2007|10:10] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Thunderbird
[24/03/2007|15:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\vlc
[02/09/2009|13:19] C:\DOCUME~1\COMPAQ~1\APPLIC~1\WinRAR


[26/10/2005|23:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[09/08/2008|15:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[02/01/2005|06:10] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[02/01/2005|05:42] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real

[02/01/2005|05:14] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[24/10/2009|14:23] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[29/01/2008|09:03] C:\DOCUME~1\PHILIPPE\APPLIC~1\Adobe
[11/09/2007|16:35] C:\DOCUME~1\PHILIPPE\APPLIC~1\Google
[08/05/2006|15:36] C:\DOCUME~1\PHILIPPE\APPLIC~1\HP
[06/06/2007|10:08] C:\DOCUME~1\PHILIPPE\APPLIC~1\HPQ
[17/05/2006|14:00] C:\DOCUME~1\PHILIPPE\APPLIC~1\Identities
[05/05/2006|07:43] C:\DOCUME~1\PHILIPPE\APPLIC~1\Macromedia
[27/10/2007|09:20] C:\DOCUME~1\PHILIPPE\APPLIC~1\Microsoft
[09/07/2007|18:18] C:\DOCUME~1\PHILIPPE\APPLIC~1\Mozilla
[29/10/2006|21:34] C:\DOCUME~1\PHILIPPE\APPLIC~1\Real
[13/07/2006|21:25] C:\DOCUME~1\PHILIPPE\APPLIC~1\Sun

[27/08/2009|20:53] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Adobe
[02/07/2009|13:48] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Google
[27/08/2009|20:53] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Identities
[09/08/2008|15:41] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Macromedia
[24/12/2009|08:20] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Meet Inside Fork
[27/08/2009|20:53] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Microsoft
[24/11/2009|15:30] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Mozilla
[27/08/2009|20:53] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Real
[27/08/2009|20:53] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Sun
[24/11/2009|15:30] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Talkback

[05/04/2007|14:26] C:\DOCUME~1\romane\APPLIC~1\Adobe
[05/04/2007|19:00] C:\DOCUME~1\romane\APPLIC~1\Google
[05/04/2007|14:29] C:\DOCUME~1\romane\APPLIC~1\Macromedia
[06/06/2007|10:09] C:\DOCUME~1\romane\APPLIC~1\Microsoft
[06/06/2007|10:09] C:\DOCUME~1\romane\APPLIC~1\Real
[29/04/2007|10:45] C:\DOCUME~1\romane\APPLIC~1\Sun

[06/06/2007|10:09] C:\DOCUME~1\SOLNE~1\APPLIC~1\Adobe
[05/04/2007|11:47] C:\DOCUME~1\SOLNE~1\APPLIC~1\Google
[06/06/2007|10:09] C:\DOCUME~1\SOLNE~1\APPLIC~1\Identities
[24/04/2007|19:55] C:\DOCUME~1\SOLNE~1\APPLIC~1\Macromedia
[06/06/2007|10:09] C:\DOCUME~1\SOLNE~1\APPLIC~1\Microsoft
[06/06/2007|10:09] C:\DOCUME~1\SOLNE~1\APPLIC~1\Real
[28/04/2007|20:01] C:\DOCUME~1\SOLNE~1\APPLIC~1\Sun
[09/04/2007|11:33] C:\DOCUME~1\SOLNE~1\APPLIC~1\Template

[25/08/2007|18:34] C:\DOCUME~1\sosso\APPLIC~1\Google
[26/10/2005|23:34] C:\DOCUME~1\sosso\APPLIC~1\Identities
[25/08/2007|18:35] C:\DOCUME~1\sosso\APPLIC~1\Macromedia
[14/07/2007|20:18] C:\DOCUME~1\sosso\APPLIC~1\Microsoft
[14/07/2007|19:19] C:\DOCUME~1\sosso\APPLIC~1\Mozilla
[25/08/2007|18:35] C:\DOCUME~1\sosso\APPLIC~1\Real
[14/07/2007|19:57] C:\DOCUME~1\sosso\APPLIC~1\Template

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[02/01/2010 16:03][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3855972482-1069290530-602302439-1008UA.job
[02/01/2010 14:03][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3855972482-1069290530-602302439-1008Core.job
[02/01/2010 15:16][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[02/01/2010 14:25][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Daily 4).job
[02/01/2010 14:25][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Daily 3).job
[02/01/2010 14:25][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Daily 2).job
[02/01/2010 15:17][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Daily 1).job
[27/12/2009 09:21][--a------] C:\WINDOWS\tasks\Spybot - Search & Destroy - Scheduled Task.job
[27/12/2009 09:20][--a------] C:\WINDOWS\tasks\Spybot - Search & Destroy Updater - Scheduled Task.job
[02/01/2010 16:00][--ah-----] C:\WINDOWS\tasks\A74C95C9918F0EC1.job
[02/01/2010 14:24][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[31/12/2009 14:57][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[02/01/2010 14:20][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 12:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

( A74C95C9918F0EC1.job )=( c:\docume~1\compaq~1\applic~1\meetin~1\bashshimreal.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[17/12/2006|20:16] C:\Program Files\3B-Editions
[13/11/2009|16:57] C:\Program Files\Adobe
[07/05/2006|15:22] C:\Program Files\Ahead
[06/06/2007|10:09] C:\Program Files\Animal Crossing Screensaver
[25/12/2009|10:40] C:\Program Files\Apple Software Update
[04/05/2006|20:15] C:\Program Files\ArcSoft
[02/09/2009|14:37] C:\Program Files\Ask Search Assistant
[27/08/2009|14:35] C:\Program Files\AskBarDis
[27/08/2009|20:49] C:\Program Files\Astonsoft
[02/01/2005|05:34] C:\Program Files\ATI Technologies
[13/11/2009|14:41] C:\Program Files\Autodesk
[23/12/2009|23:04] C:\Program Files\Avira
[09/08/2007|15:19] C:\Program Files\BeWAN ADSL V1.9.0.5
[25/12/2009|10:44] C:\Program Files\Bonjour
[23/12/2009|15:58] C:\Program Files\CCleaner
[08/03/2008|19:13] C:\Program Files\Common Files
[20/10/2005|20:06] C:\Program Files\ComPlus Applications
[27/10/2008|08:04] C:\Program Files\Conduit
[14/01/2007|19:51] C:\Program Files\DFX
[12/08/2007|13:22] C:\Program Files\directx
[29/08/2006|20:15] C:\Program Files\Disney Interactive
[18/03/2009|20:42] C:\Program Files\DivX
[27/12/2009|16:07] C:\Program Files\eMule
[01/03/2009|08:27] C:\Program Files\EoRezo
[10/06/2008|19:37] C:\Program Files\EPSON
[25/12/2009|10:38] C:\Program Files\Fichiers communs
[21/03/2007|18:17] C:\Program Files\Free
[06/06/2007|10:10] C:\Program Files\FreeAngel
[02/09/2009|14:37] C:\Program Files\Freeplayer
[06/06/2007|08:13] C:\Program Files\Gamenext
[21/12/2009|12:23] C:\Program Files\Google
[24/12/2009|08:20] C:\Program Files\Hewlett-Packard
[25/09/2009|08:56] C:\Program Files\HP
[06/06/2007|10:02] C:\Program Files\IncrediMail
[23/12/2006|19:45] C:\Program Files\Infogrames
[25/10/2009|07:34] C:\Program Files\InstallShield Installation Information
[09/12/2009|08:03] C:\Program Files\Internet Explorer
[25/12/2009|10:45] C:\Program Files\iPod
[03/08/2006|15:01] C:\Program Files\iriver
[25/12/2009|11:04] C:\Program Files\iTunes
[11/11/2009|19:45] C:\Program Files\Java
[06/06/2007|10:05] C:\Program Files\Jeune Styliste
[10/05/2006|17:56] C:\Program Files\K-Lite Codec Pack
[30/12/2009|15:10] C:\Program Files\Lavasoft
[09/08/2007|15:23] C:\Program Files\Learn2.com
[27/08/2009|20:36] C:\Program Files\livetvbar
[24/09/2006|19:37] C:\Program Files\Logitech
[31/12/2009|11:57] C:\Program Files\Lopxp
[23/12/2009|21:31] C:\Program Files\Malwarebytes' Anti-Malware
[15/11/2009|10:15] C:\Program Files\Media Show XP
[21/12/2009|18:55] C:\Program Files\Meet Inside Fork
[30/12/2009|14:43] C:\Program Files\Messenger
[22/12/2009|22:30] C:\Program Files\Messenger Plus! Live
[27/08/2009|20:52] C:\Program Files\Microsoft
[06/06/2007|11:21] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[28/05/2006|10:39] C:\Program Files\Microsoft Encarta
[26/10/2005|23:36] C:\Program Files\microsoft frontpage
[02/01/2005|05:47] C:\Program Files\Microsoft Office
[27/08/2009|20:49] C:\Program Files\Microsoft Silverlight
[13/11/2007|00:02] C:\Program Files\Microsoft SQL Server Compact Edition
[23/06/2009|13:22] C:\Program Files\Microsoft Sync Framework
[02/09/2009|14:38] C:\Program Files\Microsoft Works
[25/12/2006|15:05] C:\Program Files\Mio Technology
[09/08/2008|22:38] C:\Program Files\Movie Maker
[27/10/2007|08:45] C:\Program Files\Mozilla Firefox
[13/11/2009|14:11] C:\Program Files\MSBuild
[26/10/2005|23:36] C:\Program Files\MSN
[26/10/2005|23:36] C:\Program Files\MSN Gaming Zone
[22/12/2009|21:34] C:\Program Files\MSN Messenger
[12/08/2007|13:22] C:\Program Files\MSXML 4.0
[23/12/2009|21:41] C:\Program Files\Navilog1
[27/08/2009|09:25] C:\Program Files\NetMeeting
[04/07/2006|17:46] C:\Program Files\Network Associates
[26/10/2005|23:36] C:\Program Files\Online Services
[11/12/2009|09:51] C:\Program Files\OpenOffice.org 3
[24/10/2009|19:20] C:\Program Files\Orange
[24/10/2009|09:45] C:\Program Files\OrangeHSS
[27/08/2009|20:55] C:\Program Files\Outlook Express
[27/08/2009|20:54] C:\Program Files\Pandora Recovery
[08/11/2009|09:45] C:\Program Files\PatternMaker Software
[02/09/2009|14:38] C:\Program Files\PC-Doctor 5 for Windows
[05/09/2009|16:27] C:\Program Files\PhotoFiltre
[10/08/2008|11:57] C:\Program Files\PhotoFiltre Studio
[27/08/2009|20:48] C:\Program Files\Picasa2
[24/09/2009|16:32] C:\Program Files\Pixum
[25/12/2009|10:43] C:\Program Files\QuickTime
[13/03/2008|12:07] C:\Program Files\QuickZip4
[19/05/2008|12:55] C:\Program Files\Real
[13/11/2009|14:11] C:\Program Files\Reference Assemblies
[17/02/2008|18:44] C:\Program Files\Samsung
[10/10/2009|18:23] C:\Program Files\Securitoo
[10/06/2008|18:29] C:\Program Files\SEIKO EPSON Corp
[27/10/2006|17:16] C:\Program Files\SereneScreen
[02/01/2005|05:56] C:\Program Files\Services en ligne
[02/04/2007|18:06] C:\Program Files\Soft4Ever
[02/01/2005|05:44] C:\Program Files\Sonic
[11/08/2006|09:44] C:\Program Files\Sony Ericsson
[23/12/2009|15:38] C:\Program Files\Spybot - Search & Destroy
[12/12/2007|20:28] C:\Program Files\Spyware Doctor
[14/03/2008|18:17] C:\Program Files\Symantec
[31/12/2009|18:47] C:\Program Files\trend micro
[03/04/2008|07:35] C:\Program Files\TurnTool
[20/10/2005|20:06] C:\Program Files\Uninstall Information
[20/07/2008|14:42] C:\Program Files\VideoLAN
[09/08/2007|15:23] C:\Program Files\Viewpoint
[24/10/2009|14:03] C:\Program Files\Windows Defender
[22/12/2009|21:43] C:\Program Files\Windows Live
[30/11/2007|16:05] C:\Program Files\Windows Live Favorites
[27/08/2009|20:52] C:\Program Files\Windows Live SkyDrive
[02/09/2009|14:38] C:\Program Files\Windows Live Toolbar
[02/09/2009|14:38] C:\Program Files\Windows Media Connect 2
[02/09/2009|14:38] C:\Program Files\Windows Media Player
[07/12/2006|21:24] C:\Program Files\Windows Messaging
[09/08/2008|22:30] C:\Program Files\Windows NT
[20/10/2005|20:05] C:\Program Files\WindowsUpdate
[20/11/2009|16:02] C:\Program Files\WinRAR
[17/08/2007|23:15] C:\Program Files\WinZip
[26/10/2005|23:37] C:\Program Files\xerox
[02/09/2009|14:38] C:\Program Files\Xvid
[12/08/2007|13:22] C:\Program Files\Yahoo!
[29/04/2007|11:37] C:\Program Files\Zylom Games

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[13/11/2009|16:58] C:\Program Files\Fichiers communs\Adobe
[12/08/2007|13:22] C:\Program Files\Fichiers communs\AOL
[12/08/2007|13:22] C:\Program Files\Fichiers communs\aolback
[25/12/2009|10:45] C:\Program Files\Fichiers communs\Apple
[13/11/2009|14:41] C:\Program Files\Fichiers communs\Autodesk Shared
[04/07/2006|17:46] C:\Program Files\Fichiers communs\Cisco Systems
[04/05/2006|20:08] C:\Program Files\Fichiers communs\EPSON
[24/10/2009|09:03] C:\Program Files\Fichiers communs\France Telecom
[02/01/2005|05:39] C:\Program Files\Fichiers communs\HP
[02/01/2005|05:54] C:\Program Files\Fichiers communs\InstallShield
[02/01/2005|05:24] C:\Program Files\Fichiers communs\Java
[12/03/2008|16:32] C:\Program Files\Fichiers communs\logishrd
[23/09/2006|19:33] C:\Program Files\Fichiers communs\Logitech
[15/09/2009|20:50] C:\Program Files\Fichiers communs\Microsoft Shared
[26/10/2005|23:35] C:\Program Files\Fichiers communs\MSSoap
[21/03/2008|19:16] C:\Program Files\Fichiers communs\Network Associates
[26/10/2005|23:35] C:\Program Files\Fichiers communs\ODBC
[04/05/2006|20:11] C:\Program Files\Fichiers communs\Python
[02/01/2005|05:42] C:\Program Files\Fichiers communs\Real
[15/11/2008|23:31] C:\Program Files\Fichiers communs\Services
[02/01/2005|05:43] C:\Program Files\Fichiers communs\Sonic Shared
[26/10/2005|23:35] C:\Program Files\Fichiers communs\SpeechEngines
[02/01/2005|05:43] C:\Program Files\Fichiers communs\SureThing Shared
[14/03/2008|18:19] C:\Program Files\Fichiers communs\Symantec Shared
[09/08/2008|22:30] C:\Program Files\Fichiers communs\System
[02/01/2005|05:44] C:\Program Files\Fichiers communs\TiVo Shared
[23/06/2009|12:10] C:\Program Files\Fichiers communs\Windows Live
[12/11/2007|23:57] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[17/12/2008|10:59] C:\Program Files\Fichiers communs\Wise Installation Wizard
[02/01/2005|05:42] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 53 Processes )

iexplore.exe ~ [PID:1216]
iexplore.exe ~ [PID:2800]
IEXPLORE.EXE ~ [PID:2984]
IEXPLORE.EXE ~ [PID:11180]
iexplore.exe ~ [PID:11124]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\Cast Memo.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\ENC MEMO.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\Mpeg Find.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\NOUN LOUD.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\View Sign.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\View Sign.exe
C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option
C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\2 book.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\Acid Manager.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\audio mp3.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\cash browse.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\mode trust.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\once hold.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\Size heart.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\soft team.dat
C:\DOCUME~1\COMPAQ~1\APPLIC~1\meetin~1
C:\DOCUME~1\COMPAQ~1\APPLIC~1\meetin~1\bash shim real.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\meetin~1\eswlfpfm.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\meetin~1\Lockspoke.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\meetin~1\Memo Else Audio Proxy.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\meetin~1\stgnzbhb.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\meetin~1\ysdjjnrx.exe
C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\meetin~1
C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\meetin~1\kfrhpuxe.exe
C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\meetin~1\Lockspoke.exe
C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\meetin~1\Memo Else Audio Proxy.exe
C:\Program Files\meetin~1
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@advertstream[2].txt
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@advertising[2].txt
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@cotedazurpalace[2].txt
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@serve.cotedazurpalace[2].txt
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@partypoker[1].txt
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@2xmoinscher[1].txt
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@www.2xmoinscher[1].txt
C:\WINDOWS\Tasks\A74C95C9918F0EC1.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"freeproc"="C:\\DOCUME~1\\COMPAQ~1\\APPLIC~1\\MEETIN~1\\Lockspoke.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-02 16:52:00
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 32

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:37][D:12]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp
[F:193][D:0]-> C:\DOCUME~1\COMPAQ~1\Cookies
[F:1924][D:4]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 02/01/2010|16:55 - Option : [1]

--------------------\\ Fin du rapport a 16:55:03
2 Janvier 2010 17:24:21

-Double-clique sur le raccourci de LOP S&D et choisis l' option 3, cela supprime l' infection
-A la fin de celle-ci une recherche est relancée
-Le Bloc-notes s' ouvre, poste le rapport dans ta prochaine réponse
2 Janvier 2010 20:41:44

voilà le rapport, cordialement.

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3200+ )
BIOS : Phoenix - Award BIOS v6.00PG
USER : Compaq_Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : AntiVir Desktop 9.0.1.32 (Activated)
Firewall : Norton Internet Worm Protection 2006 (Not Activated)
C:\ (Local Disk) - NTFS - Total:181 Go (Free:104 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:0 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [3] ( 02/01/2010|20:33 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\Cast Memo.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\ENC MEMO.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\Mpeg Find.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\NOUN LOUD.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\View Sign.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag\View Sign.exe
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\2 book.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\Acid Manager.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\audio mp3.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\cash browse.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\mode trust.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\once hold.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\Size heart.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option\soft team.dat
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\meetin~1\bash shim real.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\meetin~1\eswlfpfm.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\meetin~1\Lockspoke.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\meetin~1\Memo Else Audio Proxy.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\meetin~1\stgnzbhb.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\meetin~1\ysdjjnrx.exe
Supprime! - C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\meetin~1\kfrhpuxe.exe
Supprime! - C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\meetin~1\Lockspoke.exe
Supprime! - C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\meetin~1\Memo Else Audio Proxy.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@advertstream[2].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@advertising[2].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@serve.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@partypoker[1].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@www.2xmoinscher[1].txt
Supprime! - C:\WINDOWS\Tasks\A74C95C9918F0EC1.job
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cast ping base frag
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford does hold option
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\meetin~1
Supprime! - C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\meetin~1
Supprime! - C:\Program Files\meetin~1

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

Supprime! - C:\Program Files\Viewpoint
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[09/08/2008|15:41] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[02/02/2009|13:45] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[02/02/2009|13:45] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real

[26/10/2005|23:34] C:\DOCUME~1\ADMINI~1.NOM\APPLIC~1\Identities
[09/08/2008|15:41] C:\DOCUME~1\ADMINI~1.NOM\APPLIC~1\Macromedia
[02/01/2005|06:10] C:\DOCUME~1\ADMINI~1.NOM\APPLIC~1\Microsoft
[02/01/2005|05:42] C:\DOCUME~1\ADMINI~1.NOM\APPLIC~1\Real

[25/12/2009|10:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[30/12/2009|15:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}
[13/11/2009|16:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[25/12/2009|10:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[25/12/2009|10:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[13/11/2009|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Autodesk
[23/12/2009|23:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[02/01/2005|05:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[16/04/2008|10:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[05/02/2007|16:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Emjysoft
[27/08/2009|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[27/10/2008|19:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HotbarSA
[15/09/2009|20:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hps
[02/01/2005|05:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[30/12/2009|15:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[23/09/2006|19:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[23/12/2009|21:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[13/11/2009|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[22/12/2009|22:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[08/11/2009|09:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/03/2008|18:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Network Associates
[15/11/2009|09:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
[10/05/2006|17:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[02/01/2005|05:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[20/11/2009|10:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skyline
[02/01/2005|05:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[11/08/2006|09:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[29/12/2009|17:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[14/03/2008|18:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[09/09/2009|21:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[06/07/2006|22:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[24/03/2007|14:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[16/03/2008|17:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[28/04/2007|20:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[29/01/2008|07:50] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe
[03/04/2008|12:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdobeUM
[25/12/2009|11:04] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer
[31/05/2006|21:17] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ArcSoft
[13/11/2009|14:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Autodesk
[11/05/2006|18:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\CyberLink
[17/12/2008|12:52] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DeepBurner
[12/11/2006|15:37] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DivX
[05/02/2007|16:04] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Emjysoft
[01/03/2009|08:27] C:\DOCUME~1\COMPAQ~1\APPLIC~1\EoRezo
[10/06/2008|18:26] C:\DOCUME~1\COMPAQ~1\APPLIC~1\EPSON
[09/09/2007|12:02] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google
[03/05/2009|21:30] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help
[04/05/2006|17:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HP
[04/05/2006|15:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HPQ
[05/12/2009|10:49] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HpUpdate
[11/03/2008|20:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities
[11/05/2006|18:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech
[28/05/2006|10:37] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia
[23/12/2009|21:31] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Malwarebytes
[10/05/2006|17:41] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Media Player Classic
[25/12/2009|10:55] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft
[02/04/2007|18:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla
[10/03/2009|21:44] C:\DOCUME~1\COMPAQ~1\APPLIC~1\OpenOffice.org
[10/08/2009|21:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\PandoraRecovery
[09/09/2007|11:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\PC Tools
[06/06/2007|08:15] C:\DOCUME~1\COMPAQ~1\APPLIC~1\PlayFirst
[11/03/2008|20:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Real
[17/02/2008|19:21] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Samsung
[11/05/2006|18:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic
[08/05/2006|16:07] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun
[02/04/2007|18:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Talkback
[02/06/2006|16:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Template
[06/06/2007|10:10] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Thunderbird
[24/03/2007|15:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\vlc
[02/09/2009|13:19] C:\DOCUME~1\COMPAQ~1\APPLIC~1\WinRAR


[26/10/2005|23:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[09/08/2008|15:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[02/01/2005|06:10] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[02/01/2005|05:42] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real

[02/01/2005|05:14] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[24/10/2009|14:23] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[29/01/2008|09:03] C:\DOCUME~1\PHILIPPE\APPLIC~1\Adobe
[11/09/2007|16:35] C:\DOCUME~1\PHILIPPE\APPLIC~1\Google
[08/05/2006|15:36] C:\DOCUME~1\PHILIPPE\APPLIC~1\HP
[06/06/2007|10:08] C:\DOCUME~1\PHILIPPE\APPLIC~1\HPQ
[17/05/2006|14:00] C:\DOCUME~1\PHILIPPE\APPLIC~1\Identities
[05/05/2006|07:43] C:\DOCUME~1\PHILIPPE\APPLIC~1\Macromedia
[27/10/2007|09:20] C:\DOCUME~1\PHILIPPE\APPLIC~1\Microsoft
[09/07/2007|18:18] C:\DOCUME~1\PHILIPPE\APPLIC~1\Mozilla
[29/10/2006|21:34] C:\DOCUME~1\PHILIPPE\APPLIC~1\Real
[13/07/2006|21:25] C:\DOCUME~1\PHILIPPE\APPLIC~1\Sun

[27/08/2009|20:53] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Adobe
[02/07/2009|13:48] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Google
[27/08/2009|20:53] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Identities
[09/08/2008|15:41] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Macromedia
[27/08/2009|20:53] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Microsoft
[24/11/2009|15:30] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Mozilla
[27/08/2009|20:53] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Real
[27/08/2009|20:53] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Sun
[24/11/2009|15:30] C:\DOCUME~1\PHILIP~1.NOM\APPLIC~1\Talkback

[05/04/2007|14:26] C:\DOCUME~1\romane\APPLIC~1\Adobe
[05/04/2007|19:00] C:\DOCUME~1\romane\APPLIC~1\Google
[05/04/2007|14:29] C:\DOCUME~1\romane\APPLIC~1\Macromedia
[06/06/2007|10:09] C:\DOCUME~1\romane\APPLIC~1\Microsoft
[06/06/2007|10:09] C:\DOCUME~1\romane\APPLIC~1\Real
[29/04/2007|10:45] C:\DOCUME~1\romane\APPLIC~1\Sun

[06/06/2007|10:09] C:\DOCUME~1\SOLNE~1\APPLIC~1\Adobe
[05/04/2007|11:47] C:\DOCUME~1\SOLNE~1\APPLIC~1\Google
[06/06/2007|10:09] C:\DOCUME~1\SOLNE~1\APPLIC~1\Identities
[24/04/2007|19:55] C:\DOCUME~1\SOLNE~1\APPLIC~1\Macromedia
[06/06/2007|10:09] C:\DOCUME~1\SOLNE~1\APPLIC~1\Microsoft
[06/06/2007|10:09] C:\DOCUME~1\SOLNE~1\APPLIC~1\Real
[28/04/2007|20:01] C:\DOCUME~1\SOLNE~1\APPLIC~1\Sun
[09/04/2007|11:33] C:\DOCUME~1\SOLNE~1\APPLIC~1\Template

[25/08/2007|18:34] C:\DOCUME~1\sosso\APPLIC~1\Google
[26/10/2005|23:34] C:\DOCUME~1\sosso\APPLIC~1\Identities
[25/08/2007|18:35] C:\DOCUME~1\sosso\APPLIC~1\Macromedia
[14/07/2007|20:18] C:\DOCUME~1\sosso\APPLIC~1\Microsoft
[14/07/2007|19:19] C:\DOCUME~1\sosso\APPLIC~1\Mozilla
[25/08/2007|18:35] C:\DOCUME~1\sosso\APPLIC~1\Real
[14/07/2007|19:57] C:\DOCUME~1\sosso\APPLIC~1\Template

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[02/01/2010 15:16][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[02/01/2010 14:25][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Daily 4).job
[02/01/2010 14:25][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Daily 3).job
[02/01/2010 14:25][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Daily 2).job
[02/01/2010 15:17][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Daily 1).job
[27/12/2009 09:21][--a------] C:\WINDOWS\tasks\Spybot - Search & Destroy - Scheduled Task.job
[27/12/2009 09:20][--a------] C:\WINDOWS\tasks\Spybot - Search & Destroy Updater - Scheduled Task.job
[02/01/2010 14:24][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[31/12/2009 14:57][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[02/01/2010 14:20][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 12:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[17/12/2006|20:16] C:\Program Files\3B-Editions
[13/11/2009|16:57] C:\Program Files\Adobe
[07/05/2006|15:22] C:\Program Files\Ahead
[06/06/2007|10:09] C:\Program Files\Animal Crossing Screensaver
[25/12/2009|10:40] C:\Program Files\Apple Software Update
[04/05/2006|20:15] C:\Program Files\ArcSoft
[02/09/2009|14:37] C:\Program Files\Ask Search Assistant
[27/08/2009|14:35] C:\Program Files\AskBarDis
[27/08/2009|20:49] C:\Program Files\Astonsoft
[02/01/2005|05:34] C:\Program Files\ATI Technologies
[13/11/2009|14:41] C:\Program Files\Autodesk
[23/12/2009|23:04] C:\Program Files\Avira
[09/08/2007|15:19] C:\Program Files\BeWAN ADSL V1.9.0.5
[25/12/2009|10:44] C:\Program Files\Bonjour
[23/12/2009|15:58] C:\Program Files\CCleaner
[08/03/2008|19:13] C:\Program Files\Common Files
[20/10/2005|20:06] C:\Program Files\ComPlus Applications
[27/10/2008|08:04] C:\Program Files\Conduit
[14/01/2007|19:51] C:\Program Files\DFX
[12/08/2007|13:22] C:\Program Files\directx
[29/08/2006|20:15] C:\Program Files\Disney Interactive
[18/03/2009|20:42] C:\Program Files\DivX
[27/12/2009|16:07] C:\Program Files\eMule
[01/03/2009|08:27] C:\Program Files\EoRezo
[10/06/2008|19:37] C:\Program Files\EPSON
[25/12/2009|10:38] C:\Program Files\Fichiers communs
[21/03/2007|18:17] C:\Program Files\Free
[06/06/2007|10:10] C:\Program Files\FreeAngel
[02/09/2009|14:37] C:\Program Files\Freeplayer
[06/06/2007|08:13] C:\Program Files\Gamenext
[21/12/2009|12:23] C:\Program Files\Google
[24/12/2009|08:20] C:\Program Files\Hewlett-Packard
[25/09/2009|08:56] C:\Program Files\HP
[06/06/2007|10:02] C:\Program Files\IncrediMail
[23/12/2006|19:45] C:\Program Files\Infogrames
[25/10/2009|07:34] C:\Program Files\InstallShield Installation Information
[09/12/2009|08:03] C:\Program Files\Internet Explorer
[25/12/2009|10:45] C:\Program Files\iPod
[03/08/2006|15:01] C:\Program Files\iriver
[25/12/2009|11:04] C:\Program Files\iTunes
[11/11/2009|19:45] C:\Program Files\Java
[06/06/2007|10:05] C:\Program Files\Jeune Styliste
[10/05/2006|17:56] C:\Program Files\K-Lite Codec Pack
[30/12/2009|15:10] C:\Program Files\Lavasoft
[09/08/2007|15:23] C:\Program Files\Learn2.com
[27/08/2009|20:36] C:\Program Files\livetvbar
[24/09/2006|19:37] C:\Program Files\Logitech
[31/12/2009|11:57] C:\Program Files\Lopxp
[23/12/2009|21:31] C:\Program Files\Malwarebytes' Anti-Malware
[15/11/2009|10:15] C:\Program Files\Media Show XP
[30/12/2009|14:43] C:\Program Files\Messenger
[22/12/2009|22:30] C:\Program Files\Messenger Plus! Live
[27/08/2009|20:52] C:\Program Files\Microsoft
[06/06/2007|11:21] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[28/05/2006|10:39] C:\Program Files\Microsoft Encarta
[26/10/2005|23:36] C:\Program Files\microsoft frontpage
[02/01/2005|05:47] C:\Program Files\Microsoft Office
[27/08/2009|20:49] C:\Program Files\Microsoft Silverlight
[13/11/2007|00:02] C:\Program Files\Microsoft SQL Server Compact Edition
[23/06/2009|13:22] C:\Program Files\Microsoft Sync Framework
[02/09/2009|14:38] C:\Program Files\Microsoft Works
[25/12/2006|15:05] C:\Program Files\Mio Technology
[09/08/2008|22:38] C:\Program Files\Movie Maker
[27/10/2007|08:45] C:\Program Files\Mozilla Firefox
[13/11/2009|14:11] C:\Program Files\MSBuild
[26/10/2005|23:36] C:\Program Files\MSN
[26/10/2005|23:36] C:\Program Files\MSN Gaming Zone
[22/12/2009|21:34] C:\Program Files\MSN Messenger
[12/08/2007|13:22] C:\Program Files\MSXML 4.0
[23/12/2009|21:41] C:\Program Files\Navilog1
[27/08/2009|09:25] C:\Program Files\NetMeeting
[04/07/2006|17:46] C:\Program Files\Network Associates
[26/10/2005|23:36] C:\Program Files\Online Services
[11/12/2009|09:51] C:\Program Files\OpenOffice.org 3
[24/10/2009|19:20] C:\Program Files\Orange
[24/10/2009|09:45] C:\Program Files\OrangeHSS
[27/08/2009|20:55] C:\Program Files\Outlook Express
[27/08/2009|20:54] C:\Program Files\Pandora Recovery
[08/11/2009|09:45] C:\Program Files\PatternMaker Software
[02/09/2009|14:38] C:\Program Files\PC-Doctor 5 for Windows
[05/09/2009|16:27] C:\Program Files\PhotoFiltre
[10/08/2008|11:57] C:\Program Files\PhotoFiltre Studio
[27/08/2009|20:48] C:\Program Files\Picasa2
[24/09/2009|16:32] C:\Program Files\Pixum
[25/12/2009|10:43] C:\Program Files\QuickTime
[13/03/2008|12:07] C:\Program Files\QuickZip4
[19/05/2008|12:55] C:\Program Files\Real
[13/11/2009|14:11] C:\Program Files\Reference Assemblies
[17/02/2008|18:44] C:\Program Files\Samsung
[10/10/2009|18:23] C:\Program Files\Securitoo
[10/06/2008|18:29] C:\Program Files\SEIKO EPSON Corp
[27/10/2006|17:16] C:\Program Files\SereneScreen
[02/01/2005|05:56] C:\Program Files\Services en ligne
[02/04/2007|18:06] C:\Program Files\Soft4Ever
[02/01/2005|05:44] C:\Program Files\Sonic
[11/08/2006|09:44] C:\Program Files\Sony Ericsson
[23/12/2009|15:38] C:\Program Files\Spybot - Search & Destroy
[12/12/2007|20:28] C:\Program Files\Spyware Doctor
[14/03/2008|18:17] C:\Program Files\Symantec
[31/12/2009|18:47] C:\Program Files\trend micro
[03/04/2008|07:35] C:\Program Files\TurnTool
[20/10/2005|20:06] C:\Program Files\Uninstall Information
[20/07/2008|14:42] C:\Program Files\VideoLAN
[24/10/2009|14:03] C:\Program Files\Windows Defender
[22/12/2009|21:43] C:\Program Files\Windows Live
[30/11/2007|16:05] C:\Program Files\Windows Live Favorites
[27/08/2009|20:52] C:\Program Files\Windows Live SkyDrive
[02/09/2009|14:38] C:\Program Files\Windows Live Toolbar
[02/09/2009|14:38] C:\Program Files\Windows Media Connect 2
[02/09/2009|14:38] C:\Program Files\Windows Media Player
[07/12/2006|21:24] C:\Program Files\Windows Messaging
[09/08/2008|22:30] C:\Program Files\Windows NT
[20/10/2005|20:05] C:\Program Files\WindowsUpdate
[20/11/2009|16:02] C:\Program Files\WinRAR
[17/08/2007|23:15] C:\Program Files\WinZip
[26/10/2005|23:37] C:\Program Files\xerox
[02/09/2009|14:38] C:\Program Files\Xvid
[12/08/2007|13:22] C:\Program Files\Yahoo!
[29/04/2007|11:37] C:\Program Files\Zylom Games

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[13/11/2009|16:58] C:\Program Files\Fichiers communs\Adobe
[12/08/2007|13:22] C:\Program Files\Fichiers communs\AOL
[12/08/2007|13:22] C:\Program Files\Fichiers communs\aolback
[25/12/2009|10:45] C:\Program Files\Fichiers communs\Apple
[13/11/2009|14:41] C:\Program Files\Fichiers communs\Autodesk Shared
[04/07/2006|17:46] C:\Program Files\Fichiers communs\Cisco Systems
[04/05/2006|20:08] C:\Program Files\Fichiers communs\EPSON
[24/10/2009|09:03] C:\Program Files\Fichiers communs\France Telecom
[02/01/2005|05:39] C:\Program Files\Fichiers communs\HP
[02/01/2005|05:54] C:\Program Files\Fichiers communs\InstallShield
[02/01/2005|05:24] C:\Program Files\Fichiers communs\Java
[12/03/2008|16:32] C:\Program Files\Fichiers communs\logishrd
[23/09/2006|19:33] C:\Program Files\Fichiers communs\Logitech
[15/09/2009|20:50] C:\Program Files\Fichiers communs\Microsoft Shared
[26/10/2005|23:35] C:\Program Files\Fichiers communs\MSSoap
[21/03/2008|19:16] C:\Program Files\Fichiers communs\Network Associates
[26/10/2005|23:35] C:\Program Files\Fichiers communs\ODBC
[04/05/2006|20:11] C:\Program Files\Fichiers communs\Python
[02/01/2005|05:42] C:\Program Files\Fichiers communs\Real
[15/11/2008|23:31] C:\Program Files\Fichiers communs\Services
[02/01/2005|05:43] C:\Program Files\Fichiers communs\Sonic Shared
[26/10/2005|23:35] C:\Program Files\Fichiers communs\SpeechEngines
[02/01/2005|05:43] C:\Program Files\Fichiers communs\SureThing Shared
[14/03/2008|18:19] C:\Program Files\Fichiers communs\Symantec Shared
[09/08/2008|22:30] C:\Program Files\Fichiers communs\System
[02/01/2005|05:44] C:\Program Files\Fichiers communs\TiVo Shared
[23/06/2009|12:10] C:\Program Files\Fichiers communs\Windows Live
[12/11/2007|23:57] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[17/12/2008|10:59] C:\Program Files\Fichiers communs\Wise Installation Wizard
[02/01/2005|05:42] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 42 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-02 20:36:07
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 32

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:29][D:12]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp
[F:196][D:0]-> C:\DOCUME~1\COMPAQ~1\Cookies
[F:3359][D:4]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 02/01/2010|16:55 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 02/01/2010|20:38 - Option : [3]

--------------------\\ Fin du rapport a 20:38:37
2 Janvier 2010 21:38:37

Dés que vous ouvrez une page Internet, vous vous retrouvez envahi(e) de fenêtres publicitaires nommées CiD, vous proposant de télécharger divers programmes, et vous ne savez plus quoi faire pour vous en débarrasser ? … Ces fenêtres révèlent en réalité la présence de l’adware Lop responsable de cette publicité intempestive dont vous êtes victime.
...
Cet adware s’installe lors de l’installation des logiciels suivants, en contrepartie de leur dite « gratuité » :

* Sponsors MSN plus !
* Bittorent
* BitDownload
* BitGrabber
* NetPumper
* BitRoll
* TorrentQ
* Torrent101
* ...
...
En revanche, seul MSN plus ! propose explicitement à l’internaute d’installer ou non le sponsor (responsable de cette publicité abusive). Et par la suite, permettre de désinstaller facilement le sponsor en question.
...
"POLITIQUE DE PROTECTION DE LA VIE PRIVÉE"

CiD vous fournit le produit logiciel (le « logiciel ») gratuitement ou à un prix réduit en échange de votre acceptation à recevoir des messages publicitaires et promotionnels livrés par CiD et des tiers à votre ordinateur basés en partie sur les
mots-clés des sites web que vous - ou tout autre utilisateur de l'ordinateur - visitez.
Le contenu complémentaire peut inclure des publicités, des promotions, des liens à des sites web tiers ou autres documentations livrés à votre ordinateur qui correspondent à ce qui vous intéresse, basés en partie sur des mots-clés trouvés sur les sites web que vous visitez. (...)"
...
Pour les autres programmes cités précédemment, c’est différent, car le fait de désinstaller le logiciel p2p ne supprimera pas pour autant le sponsor, car celui-ci est dissimulé dans un autre programme nommé "CiDhelp" (ou "CiD-quelquechose" dans certains cas).

Remarque : la plupart du temps, la publicité générée par l’adware lop propose elle-même de télécharger d’autres programmes gratuits, comme des jeux, des chaînes de TV et radios etc. … qui, une fois téléchargés, installeront à leur tour d’autres malwares comme : navipromo, le dialer instant access … eux aussi générateurs de pubs ! Résultat : une infection « en Cascade » se traduisant par une invasion de publicités en tout genre !
1ère Méthode de désinfection : suppression manuelle

* Démarrer en mode sans échec
* Aller dans le menu Démarrer
* Cliquer sur panneau de configuration
* Choisir le module ajout/suppression de programmes
* Pour Msn plus! : il suffit de désinstaller le sponsor :

* Pour les logiciels p2p indiqués un peu plus haut : il faut chercher et supprimer le sponsor lié à CiD :
o Supprimer les programmes suivants si présents :
+ Cid help
+ Circle Developement
+ Adverts


http://www.commentcamarche.net/faq/sujet-5996-comment-b...
3 Janvier 2010 08:39:12

Bonjour, enfin je peux surfer sur le net sans cette mutitude de fenêtres publicitaires et cela grace à vous. Je vous remercie infiniment pour votre aide précieuse et salue ici votre compétence, votre disponiblité et votre savoir faire sans lesquels je n'y searai pas parvenue seule. MILLE MERCIS à Frederix et bonne année 2010 à l'ensemble de l'équipe. Noune42
3 Janvier 2010 13:18:42

Bonjour noune42,

nous n' avons pas terminé...
Poste un nouveau rapport RSIT.

A+
4 Janvier 2010 16:45:38

Bonjour Frederix, désolée mais je pensais que nous avions terminé, voici donc le rapport:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Compaq_Propriétaire at 2010-01-04 16:41:33
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 106 GB (57%) free of 185 GB
Total RAM: 958 MB (8% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:42:23, on 04/01/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe
C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE
C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\HP\KBD\KBD.EXE
C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\issch.exe
C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\OrangeHSS\Launcher\Launcher.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
C:\Program Files\Network Associates\VirusScan\Mcshield.exe
C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\OrangeHSS\systray\systrayapp.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Logitech\QuickCam10\COCIManager.exe
c:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
c:\windows\system\hpsysdrv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\OrangeHSS\connectivity\connectivitymanager.exe
C:\Program Files\OrangeHSS\connectivity\CoreCom\CoreCom.exe
C:\Program Files\OrangeHSS\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temporary Internet Files\Content.IE5\C1FHY2QM\RSIT[1].exe
C:\Program Files\trend micro\Compaq_Propriétaire.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://orange.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: livetvbar Toolbar - {ad55c869-668e-457c-b270-0cfb2f61116f} - C:\Program Files\livetvbar\tbliv1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: livetvbar Toolbar - {ad55c869-668e-457c-b270-0cfb2f61116f} - C:\Program Files\livetvbar\tbliv1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [Network Associates Error Reporting Service] "C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe"
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\issch.exe" -start
O4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ORAHSSSessionManager] "C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: Démarrage d'Office.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O4 - Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O15 - Trusted Zone: http://*.mappy.com
O15 - Trusted Zone: http://*.orange.fr
O15 - Trusted Zone: http://rw.search.ke.voila.fr
O15 - Trusted Zone: http://orange.weborama.fr
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {9DF1C00D-8426-4337-972C-DC042D19A916} (FTMediaPlayer Class) - http://webtv.guidetv.orange.fr/resources/OCS_8971.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
O18 - Protocol: bw+0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {2D5B87EA-F107-443C-9059-0A1D5E834226} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
O23 - Service: Service Framework McAfee (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\Mcshield.exe
O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe

--
End of file - 25589 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Daily 1).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 2).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 3).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 4).job
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\Spybot - Search & Destroy - Scheduled Task.job
C:\WINDOWS\tasks\Spybot - Search & Destroy Updater - Scheduled Task.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2009-02-27 61816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2009-12-21 2436160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ad55c869-668e-457c-b270-0cfb2f61116f}]
livetvbar Toolbar - C:\Program Files\livetvbar\tbliv1.dll [2009-08-06 2215960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-19 764912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-11 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-11 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{ad55c869-668e-457c-b270-0cfb2f61116f} - livetvbar Toolbar - C:\Program Files\livetvbar\tbliv1.dll [2009-08-06 2215960]
Locked
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2009-12-21 2436160]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Recguard"=C:\WINDOWS\SMINST\RECGUARD.EXE [2005-07-22 237568]
"PCDrProfiler"= []
"HPBootOp"=C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe [2005-11-10 249856]
"McAfeeUpdaterUI"=C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe [2004-08-06 139320]
"ShStatEXE"=C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE [2004-09-22 94208]
"Network Associates Error Reporting Service"=C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe [2003-10-07 147514]
"LogitechCommunicationsManager"=C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe [2006-06-26 497200]
"LogitechQuickCamRibbon"=C:\Program Files\Logitech\QuickCam10\QuickCam10.exe [2006-06-26 614960]
"LVCOMSX"=C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe [2006-06-26 243248]
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2005-01-02 180269]
"KBD"=C:\HP\KBD\KBD.EXE [2005-02-02 61440]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
"ISUSPM Startup"=C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-07-27 221184]
"ISUSScheduler"=C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\issch.exe [2004-07-27 81920]
"Google Quick Search Box"=C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe [2009-09-01 122368]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]
""= []
"ORAHSSSessionManager"=C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe [2009-03-03 107248]
"Adobe ARM"=C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2006-11-03 866584]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-10-11 149280]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-11-10 417792]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LDM"=C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2008-03-12 36864]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"updateMgr"=C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9 []
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-06-23 39408]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Démarrage rapide de HP Photosmart Premier.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe

C:\Documents and Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Démarrage
Anti-Pub.lnk - C:\Program Files\Antipub\antipub.exe
Démarrage d'Office.lnk - C:\Program Files\Microsoft Office\Office\OSA.EXE
Microsoft Recherche accélérée.lnk - C:\Program Files\Microsoft Office\Office\FINDFAST.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-08-14 46080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=128
"NoDriveAutoRun"=128
"HonorAutoRunSetting"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\AOL 9.0\waol.exe"="C:\Program Files\AOL 9.0\waol.exe:*:D isabled:AOL France"
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\WINDOWS\system32\fxsclnt.exe"="C:\WINDOWS\system32\fxsclnt.exe:*:D isabled:Microsoft Fax Console"
"C:\Program Files\MyFreeTV\MyFreeTV.exe"="C:\Program Files\MyFreeTV\MyFreeTV.exe:*:Enabled:MyFreeTV"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe"="C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe:*:enabled:CSS"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

======List of files/folders created in the last 1 months======

2010-01-02 16:49:24 ----A---- C:\lopR.txt
2010-01-02 16:48:32 ----D---- C:\Lop SD
2010-01-02 14:31:07 ----RASHD---- C:\autorun.inf
2010-01-02 14:20:58 ----A---- C:\UsbFix.txt
2010-01-02 09:05:31 ----D---- C:\UsbFix
2009-12-31 18:46:28 ----D---- C:\Program Files\trend micro
2009-12-31 18:46:22 ----D---- C:\rsit
2009-12-30 15:11:19 ----HDC---- C:\Documents and Settings\All Users\Application Data\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}
2009-12-30 15:10:27 ----D---- C:\Program Files\Lavasoft
2009-12-30 15:10:27 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2009-12-30 08:16:29 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-12-29 16:38:56 ----A---- C:\WINDOWS\ntbtlog.txt
2009-12-27 23:25:16 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2009-12-25 10:46:22 ----A---- C:\WINDOWS\system32\GEARAspi.dll
2009-12-25 10:45:06 ----D---- C:\Program Files\iPod
2009-12-25 10:44:57 ----D---- C:\Program Files\iTunes
2009-12-25 10:44:57 ----D---- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-12-25 10:44:26 ----D---- C:\Program Files\Bonjour
2009-12-25 10:39:55 ----A---- C:\WINDOWS\system32\usbaaplrc.dll
2009-12-25 10:38:37 ----D---- C:\Program Files\Fichiers communs\Apple
2009-12-25 10:38:37 ----D---- C:\Documents and Settings\All Users\Application Data\Apple
2009-12-23 23:04:44 ----D---- C:\Program Files\Avira
2009-12-23 23:04:44 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2009-12-23 21:38:31 ----A---- C:\cleannavi.txt
2009-12-23 21:35:46 ----D---- C:\Program Files\Navilog1
2009-12-23 21:31:57 ----D---- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Malwarebytes
2009-12-23 21:31:22 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-12-23 21:31:20 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-12-23 15:58:53 ----D---- C:\Program Files\CCleaner
2009-12-23 15:53:48 ----D---- C:\Program Files\Lopxp
2009-12-23 10:19:56 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-12-23 10:19:56 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-12-22 22:31:07 ----D---- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
2009-12-21 08:18:32 ----D---- C:\Program Files\Messenger Plus! Live
2009-12-09 22:20:10 ----A---- C:\WINDOWS\system32\PerfStringBackup.TMP
2009-12-09 08:03:49 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2009-12-09 08:03:41 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2009-12-09 08:03:03 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2009-12-09 08:02:55 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2009-12-09 08:02:45 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$

======List of files/folders modified in the last 1 months======

2010-01-04 16:41:34 ----D---- C:\WINDOWS\Temp
2010-01-04 16:41:34 ----D---- C:\WINDOWS\Prefetch
2010-01-04 15:17:38 ----D---- C:\WINDOWS\Tasks
2010-01-04 13:18:33 ----D---- C:\WINDOWS\system32\dllcache
2010-01-04 13:15:41 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-04 13:14:14 ----AD---- C:\WINDOWS
2010-01-04 13:13:03 ----AH---- C:\WINDOWS\system32\ffastlog.txt
2010-01-03 21:04:51 ----HD---- C:\Python22
2010-01-03 10:47:23 ----D---- C:\Program Files\PhotoFiltre
2010-01-03 08:15:53 ----D---- C:\WINDOWS\network diagnostic
2010-01-02 20:34:20 ----D---- C:\Program Files
2010-01-02 14:30:51 ----SHD---- C:\RECYCLER
2010-01-02 13:01:59 ----D---- C:\WINDOWS\system32
2009-12-30 15:16:28 ----D---- C:\WINDOWS\system32\drivers
2009-12-30 15:16:27 ----HD---- C:\WINDOWS\inf
2009-12-30 15:16:15 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-12-30 15:11:19 ----SHD---- C:\WINDOWS\Installer
2009-12-30 15:11:18 ----D---- C:\Config.Msi
2009-12-30 14:43:51 ----D---- C:\Program Files\Messenger
2009-12-30 10:24:02 ----D---- C:\WINDOWS\system32\CatRoot
2009-12-29 14:23:03 ----D---- C:\WINDOWS\Debug
2009-12-28 00:14:49 ----A---- C:\WINDOWS\npornap.INI
2009-12-27 23:29:34 ----D---- C:\Documents and Settings
2009-12-27 23:28:12 ----D---- C:\WINDOWS\AppPatch
2009-12-27 23:24:06 ----HD---- C:\WINDOWS\$hf_mig$
2009-12-27 16:07:23 ----D---- C:\Program Files\eMule
2009-12-25 11:04:12 ----D---- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Apple Computer
2009-12-25 10:55:38 ----D---- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft
2009-12-25 10:44:57 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
2009-12-25 10:43:06 ----D---- C:\Program Files\QuickTime
2009-12-25 10:40:25 ----D---- C:\Program Files\Apple Software Update
2009-12-25 10:38:46 ----D---- C:\WINDOWS\WinSxS
2009-12-25 10:38:37 ----D---- C:\Program Files\Fichiers communs
2009-12-24 12:53:37 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2009-12-24 08:20:38 ----D---- C:\Program Files\Hewlett-Packard
2009-12-23 16:17:48 ----D---- C:\WINDOWS\Minidump
2009-12-23 15:30:14 ----A---- C:\WINDOWS\WININIT.INI
2009-12-23 15:29:50 ----D---- C:\WINDOWS\Downloaded Program Files
2009-12-22 21:43:53 ----D---- C:\Program Files\Windows Live
2009-12-22 21:43:29 ----D---- C:\WINDOWS\system32\DirectX
2009-12-22 21:34:40 ----D---- C:\Program Files\MSN Messenger
2009-12-21 12:23:12 ----D---- C:\Program Files\Google
2009-12-21 08:20:06 ----D---- C:\WINDOWS\system32\config
2009-12-21 08:19:38 ----D---- C:\WINDOWS\system32\wbem
2009-12-21 08:19:38 ----D---- C:\WINDOWS\Registration
2009-12-11 09:51:22 ----D---- C:\Program Files\OpenOffice.org 3
2009-12-09 08:03:32 ----D---- C:\Program Files\Internet Explorer
2009-12-05 10:49:59 ----D---- C:\Documents and Settings\Compaq_Propriétaire\Application Data\HpUpdate

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;Pilote de processeur AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 43008]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 NaiAvTdi1;NaiAvTdi1; C:\WINDOWS\system32\drivers\mvstdi5x.sys [2004-09-22 58048]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-11-25 56816]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-08-29 3644928]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-08-14 1313792]
R3 EntDrv51;EntDrv51; \??\C:\WINDOWS\system32\drivers\EntDrv51.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 LVcKap;Logitech AEC Driver; C:\WINDOWS\system32\DRIVERS\LVcKap.sys [2006-06-26 1587632]
R3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys [2006-06-26 1952816]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\drivers\LVPr2Mon.sys [2006-06-26 23472]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys [2006-06-22 38960]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 NaiAvFilter1;NaiAvFilter1; C:\WINDOWS\system32\drivers\naiavf5x.sys [2004-09-22 108256]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
R3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2006-06-22 12080]
R3 PID_08A0;Logitech QuickCam IM(PID_08A0); C:\WINDOWS\system32\DRIVERS\LV302AV.SYS [2006-06-22 720176]
R3 Ps2;PS2; C:\WINDOWS\system32\DRIVERS\PS2.sys [2005-12-12 19072]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2005-09-30 78720]
R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Bridge;Pont MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 BridgeMP;Miniport de pont MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 fbxusb;Carte réseau virtuelle FreeBox USB; C:\WINDOWS\system32\DRIVERS\fbxusb32.sys [2004-10-20 21344]
S3 ltmodem5;LT Modem Driver; C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys [2004-08-04 607452]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ss_bus.sys [2005-08-30 58320]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys [2005-08-30 8304]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ss_mdm.sys [2005-08-30 94000]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-08-28 40448]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-08-14 376832]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [2009-03-03 65536]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-11 153376]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2009-12-30 1181328]
R2 LVPrcSrv;Logitech Process Monitor; c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe [2006-06-26 99888]
R2 McAfeeFramework;Service Framework McAfee; C:\Program Files\Network Associates\Common Framework\FrameworkService.exe [2004-08-06 102463]
R2 McShield;Network Associates McShield; C:\Program Files\Network Associates\VirusScan\Mcshield.exe [2004-09-22 221191]
R2 McTaskManager;Network Associates Task Manager; C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe [2004-09-22 28672]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-11-12 545568]
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe [2006-06-26 91696]
S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-23 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------
4 Janvier 2010 19:20:12

Bonjour noune42,

désinstalle livetvbar Toolbar en faisant ceci : démarrer>Panneau de configuration>Ajouter ou supprimer des programmes>Supprimer puis démarrer>Poste de travail>Disque local C:>Program Files>Supprimer

Lance HijackThis et ferme toutes les fenêtres de programme.

Vérifie qu' il fera des sauvegardes : Dans Config, coche Make backups before fixing items (protéger les objets avant de fixer) puis clique sur le bouton Back (retour). Ensuite, clique sur le bouton Do a system scan only (scanner seulement) et coche les cases situées devant les lignes ci-dessous :

O2 - BHO: livetvbar Toolbar - {ad55c869-668e-457c-b270-0cfb2f61116f} - C:\Program Files\livetvbar\tbliv1.dll
O3 - Toolbar: livetvbar Toolbar - {ad55c869-668e-457c-b270-0cfb2f61116f} - C:\Program Files\livetvbar\tbliv1.dll

Puis clique sur Fix checked (fixer objet).

Fais un scan antivirus en ligne avec BitDefender.
Tuto : http://forum.pcastuces.com/bitdefender_online_scanner__...
Poste le rapport.

A+
5 Janvier 2010 15:54:43

Bonjour Frederix, je viens de faire les opérations que tu m'as demandé. J'ai eu un souci au cours de la première étape à savoir que je n'ai pas trouvé la ligne O3 - Toolbar: livetvbar Toolbar - {ad55c869-668e-457c-b270-0cfb2f61116f} - C:\Program Files\livetvbar\tbliv1.dll
en revanche je te demande de bien vouloir trouver ci-joint le rapport bitdefender: Cordialement.

BitDefender Online Scanner



Rapport d'analyse gnr : Tue, Jan 05, 2010 - 15:33:48





Voie d'analyse: C:\;D:\;E:\;F:\;G:\;H:\;I:\;







Statistiques

Temps
01:15:28

Fichiers
173611

Directoires
16700

Secteurs de boot
0

Archives
3173

Paquets programmes
11898




Rsultats

Virus identifis
5

Fichiers infects
19

Fichiers suspects
0

Avertissements
0

Dsinfects
0

Fichiers effacs
19




Info sur les moteurs

Dfinition virus
4824868

Version des moteurs
AVCORE v2.1 Windows/i386 11.0.0.33 (Nov 24 2009)

Analyse des plugins
17

Archive des plugins
44

Unpack des plugins
8

E-mail plugins
6

Systme plugins
4




Paramtres d'analyse

Premire action
Désinfecté

Seconde Action
Supprimés

Heuristique
Oui

Acceptez les avertissements
Oui

Extensions analyses
exe;com;dll;ocx;scr;bin;dat;386;vxd;sys;wdm;cla;class;ovl;ole;hlp;doc;dot;xls;ppt;wbk;wiz;pot;ppa;xla;xlt;vbs;vbe;mdb;rtf;htm;hta;html;xml;xtp;php;asp;js;shs;chm;lnk;pif;prc;url;smm;pfd;msi;ini;csc;cmd;bas;

Excludez les extensions


Analyse d'emails
Oui

Analyse des Archives
Oui

Analyser paquets programmes
Oui

Analyse des fichiers
Oui

Analyse de boot
Oui




Fichier analys
Statut

C:\Lop SD\Backup-Lop\DOCUME~1\COMPAQ~1\APPLIC~1\MEETIN~1\stgnzbhb.exe
Infecté par: Trojan.Swizzor.5

C:\Lop SD\Backup-Lop\DOCUME~1\COMPAQ~1\APPLIC~1\MEETIN~1\stgnzbhb.exe
Echec de la désinfection

C:\Lop SD\Backup-Lop\DOCUME~1\COMPAQ~1\APPLIC~1\MEETIN~1\stgnzbhb.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP679\A0125250.exe
Infecté par: Trojan.Swizzor.5

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP679\A0125250.exe
Echec de la désinfection

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP679\A0125250.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP680\A0125259.exe
Infecté par: Trojan.Swizzor.5

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP680\A0125259.exe
Echec de la désinfection

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP680\A0125259.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP680\A0126115.exe
Infecté par: Trojan.Swizzor.5

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP680\A0126115.exe
Echec de la désinfection

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP680\A0126115.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP680\A0127113.exe
Infecté par: Trojan.Swizzor.5

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP680\A0127113.exe
Echec de la désinfection

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP680\A0127113.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP754\A0141312.exe
Infecté par: Trojan.Swizzor.5

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP754\A0141312.exe
Echec de la désinfection

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP754\A0141312.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP755\A0141332.exe
Infecté par: Trojan.Swizzor.5

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP755\A0141332.exe
Echec de la désinfection

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP755\A0141332.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP758\A0141695.exe
Infecté par: Trojan.Swizzor.5

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP758\A0141695.exe
Echec de la désinfection

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP758\A0141695.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP758\A0141699.exe
Infecté par: Trojan.Swizzor.4121

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP758\A0141699.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP758\A0141706.exe
Infecté par: Trojan.Swizzor.4114

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP758\A0141706.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP758\A0141708.exe
Infecté par: Trojan.Swizzor.5

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP758\A0141708.exe
Echec de la désinfection

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP758\A0141708.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP778\A0146958.exe
Infecté par: Trojan.Swizzor.1704

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP778\A0146958.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP778\A0146960.exe
Infecté par: Trojan.Swizzor.1704

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP778\A0146960.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP778\A0146961.exe
Infecté par: Trojan.Swizzor.5

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP778\A0146961.exe
Echec de la désinfection

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP778\A0146961.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP778\A0146963.exe
Infecté par: Trojan.Generic.IS.108272

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP778\A0146963.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP782\A0148190.exe
Infecté par: Trojan.Swizzor.1704

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP782\A0148190.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP782\A0148191.exe
Infecté par: Trojan.Swizzor.1704

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP782\A0148191.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP782\A0148195.exe
Infecté par: Trojan.Generic.IS.108272

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP782\A0148195.exe
Supprimé

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP782\A0148270.exe
Infecté par: Trojan.Swizzor.5

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP782\A0148270.exe
Echec de la désinfection

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP782\A0148270.exe
Supprimé













5 Janvier 2010 20:28:55

Bonsoir noune42,

si tu penses ne+ avoir de souci :

* Je te conseille de défragmenter ton PC : http://www.6ma.fr/tuto/defragmenter+disque+sous+windows...
* Il est fortement recommandé d' avoir tous ses logiciels de sécurité à jour afin d' éviter diverses infections.
* Tu peux supprimer tous les logiciels que nous avons utilisés (RSIT, UsbFix, Lop S&D...) traitant des infections spécifiques et mis à jour régulièrement, il est inutile de les garder.
* Tu peux par contre garder Malwarebytes' Anti-Malware et CCleaner.

=========================================================================

Maintenant que ton PC n' est plus infecté, désactive la Restauration du système pour créer un point de restauration sain : http://forum.pcastuces.com/desactiver_la_restauration_s...

=========================================================================

Pour améliorer la sécurité de ton PC, prends quelques instants pour lire :
http://forum.pcastuces.com/prevention_et_protection___c...

=========================================================================

Dénonce ton infection pour faire avancer les choses, en créant un message sur Malware-Complaints :

- Règles du forum : http://www.malwarecomplaints.info/viewtopic.php?t=5
- Enregistre-toi à l' aide du bouton du haut Register
- Si tu as plus de 13 ans, choisis I Agree to these terms and am over or exactly 13 years of age

Tu as alors sous forme de liste, un sujet par type d' infection.

Si le malware que tu as eu n' apparaît pas dans la liste ou si tu ne sais pas par quoi tu étais infecté(e), crée un message dans le sujet Autres infections conformément aux règles (âge, ville, département...).

Indique aussi le nom du Forum qui t' a aidé, Idn Sécurité.

=========================================================================

Prudence sur Internet et parle d' Idn autour de toi!

A+
5 Janvier 2010 22:14:16

Bonsoir Fréderix, d'après ton message j'en conclue que nous en avons terminé. Je vais suivre tes indications et crois moi je vais dire comment, par qui et quel site m'a aidé à me débarrasser de toutes ces infections. MERCI, MERCI et encore MERCI. Je te souhaite une bonne continuation et si j'ai encore des soucis je sais à qui m'adresser. A+
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS