Se connecter avec
S'enregistrer | Connectez-vous
Votre question

Ordinateur lent + divers problème

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
Partagez
16 Novembre 2009 18:56:10

Bonjour !
Ces derniers temps mon ordinateur rame de plus en plus et deux problèmes sont particulièrement génant.
Internet explorer cesse de fonctionner dés son ouverture, et Mozilla plante dés que l'on me parle sur facebook.
C'est pourquoi je joint un scan hijackthis on ne sait jamais !

Merci d'avance !!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:52:48, on 16/11/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16915)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\a-squared Anti-Malware\a2service.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LXSUPMON.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Copernic Desktop Search - Home\DesktopSearchService.exe
C:\Program Files\GigaTribe\gigatribe.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.fr/ig/dell?hl=fr&client=dell-row&channel=fr&...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.facebook.com/home.php
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.fr/ig/dell?hl=fr&client=dell-row&channel=fr&...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: Barre d'outils Copernic Desktop Search - Home - {4A1C6093-14F9-44D7-860E-5D265CFCA9D9} - C:\Program Files\Copernic Desktop Search - Home\Toolbar\ToolbarContainer101000311.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [LXSUPMON] C:\WINDOWS\system32\LXSUPMON.EXE RUN
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Copernic Desktop Search - Home] "C:\Program Files\Copernic Desktop Search - Home\DesktopSearchService.exe" /tray
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: GigaTribe.lnk = C:\Program Files\GigaTribe\gigatribe.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.05\AMVConverter\grab.html
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.05\MediaManager\grab.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/F...
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - http://messenger.zone.msn.com/binary/msgrchkr.cab56986....
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} -
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} - http://launch.gamespyarcade.com/software/launch/alaunch...
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213....
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: ncvbads (7aasht6rf) - Unknown owner - C:\Program Files\Fichiers communs\tysarekb\zamsdyg.exe (file missing)
O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Emsi Software GmbH - C:\Program Files\a-squared Anti-Malware\a2service.exe
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Droppix Service - Droppix - C:\Program Files\Fichiers communs\Droppix\DxService.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe

--
End of file - 12194 bytes

Autres pages sur : ordinateur lent divers probleme

18 Novembre 2009 10:45:25

Up :bounce: 
a b 8 Sécurité
18 Novembre 2009 13:37:41

Bonjour,

  • Télécharge Ad-Remover (de Cyrildu17 / C_XX) sur ton Bureau.

    /!\ Déconnecte-toi et ferme toutes applications en cours /!\

  • Double-clique sur AD-R situé sur ton Bureau pour le lancer.
    (Sous Vista, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)
  • Choisis la langue F pour français.
  • Au menu principal, choisis l'option L.

    /!\ Laisse travailler l'outil /!\

  • Poste le rapport qui apparaît à la fin (C:\Ad-Report-CLEAN.log).

    (CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

    Note : "Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Kaspersky, etc.) comme étant un RiskTool. Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
    Contenus similaires
    18 Novembre 2009 14:37:45

    Merci de ta réponse ! ;)  Voici le rapport :

    .
    ======= RAPPORT D'AD-REMOVER 1.1.4.6_C | UNIQUEMENT XP/VISTA/7 =======
    .
    Mit à jour par C_XX le 16.11.2009 à 22:21
    Contact: AdRemover.contact@gmail.com
    Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
    .
    Lancé à: 14:08:22, 18/11/2009 | Mode Normal | Option: CLEAN
    Exécuté de: C:\Program Files\Ad-Remover\
    Système d'exploitation: Microsoft® Windows XP™ Service Pack 2 v5.1.2600
    Nom du PC: GASSIE | Utilisateur actuel: Nicolas
    .
    ============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
    .

    HKLM\Software\Classes\TypeLib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
    HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
    HKLM\software\microsoft\shared tools\msconfig\startupreg\BitDefender Antiphishing Helper
    .
    C:\DOCUME~1\Nicolas\APPLIC~1\EoRezo
    C:\DOCUME~1\Nicolas\APPLIC~1\ItsLabel
    C:\Program Files\EoRezo
    C:\WINDOWS\System32\gzmrot-uninst.exe
    C:\WINDOWS\System32\pabobvkvk.dat
    C:\WINDOWS\System32\pabobvkvk_nav.dat
    C:\WINDOWS\System32\pabobvkvk_navps.dat

    (!) -- Fichiers temporaires supprimés.

    .
    ============== Scan additionnel ==============
    .
    .
    * Mozilla FireFox Version 3.0.15 [fr] *
    .
    Nom du profil: c8dgphb1.default (Nicolas)
    .
    (Nicolas, prefs.js) Browser.download.dir, C:\Documents and Settings\Nicolas\Mes documents
    (Nicolas, prefs.js) Browser.download.lastDir, C:\Documents and Settings\Nicolas\Bureau\sonido pdf
    .
    .
    .
    * Internet Explorer Version 7.0.5730.13 *
    .
    [HKEY_CURRENT_USER\..\Internet Explorer\Main]
    .
    Start Page: hxxp://fr.msn.com/
    Search Page: hxxp://www.google.com
    Search Bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
    Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
    Default_search_url: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
    .
    Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
    Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Start Page: hxxp://fr.msn.com/
    Search bar: hxxp://search.msn.com/spbasic.htm
    HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\main\Start Page
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
    .
    Tabs: res://ieframe.dll/tabswelcome.htm
    .
    ============== Suspect (Cracks, Serials, ...) ==============
    .
    C:\Documents and Settings\Nicolas\Application Data\Mozilla\Firefox\Profiles\c8dgphb1.default\extensions\battlefieldheroespatcher@ea.com\platform\WINNT_x86-msvc\plugins\BFHUpdater.exe
    C:\Documents and Settings\Nicolas\Favoris\-- Coolcracks cracks, keygens, serials, appz, crack, serial, keygen.url
    C:\Documents and Settings\Nicolas\Favoris\(rech) Patch francais - Call Of Duty 4 Modern Warfare sur JeuxVideo.com.url
    C:\Documents and Settings\Nicolas\Favoris\adobe audition 2.0 crack, serial, keygen.url
    C:\Documents and Settings\Nicolas\Favoris\Crack les meilleurs sites class‚s par Weborama..url
    C:\Documents and Settings\Nicolas\Favoris\CRACK.MS - Download Adobe Audition v2.0 CRACK or SERIAL for FREE.url
    C:\Documents and Settings\Nicolas\Favoris\Crackman World [Cracks]-[Gravure]-[Divx]-[Hack].url
    C:\Documents and Settings\Nicolas\Favoris\http--www.crackserialkeygen.com-crack-Wings-Platinum-serial-k...
    C:\Documents and Settings\Nicolas\Favoris\KEYGEN.MS - Generates cracks serials keygens for the software to unlock it for free.url
    C:\Documents and Settings\Nicolas\Favoris\patch traduc jeux.url
    C:\Documents and Settings\Nicolas\Favoris\UNDERSEARCH - Underground Search Machine - Cracks, Serials, Keygens, NoCd pathches online.url
    C:\Documents and Settings\Nicolas\Local Settings\Application Data\Microsoft\Messenger\superioa64@hotmail.fr\Sharing Folders\guillaume.medou@hotmail.fr\Adobe.Audition.v3.WinAll.Cracked-NoPE.rar
    .
    ===================================
    .
    747 Octet(s) - C:\Ad-Report-CLEAN[1].log
    3954 Octet(s) - C:\Ad-Report-CLEAN[2].log
    .
    256 Fichier(s) - C:\DOCUME~1\Nicolas\LOCALS~1\Temp
    0 Fichier(s) - C:\WINDOWS\Temp
    .
    20 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
    108 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
    .
    Fin à: 14:27:15 | 18/11/2009 - CLEAN[2]
    .
    ============== E.O.F ==============
    .
    a b 8 Sécurité
    18 Novembre 2009 20:48:04

  • Désinstalle Ad-Remover.

  • Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
  • Double-clique sur RSIT.exe afin de lancer le programme.
    (Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)
  • Clique sur Continue à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

    Note : les rapports sont sauvegardés dans le dossier C:\rsit.
    19 Novembre 2009 00:14:34

    Voici le contenu de log.txt

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Nicolas at 2009-11-19 00:11:18
    Microsoft Windows XP Professionnel Service Pack 2
    System drive C: has 3 GB (1%) free of 174 GB
    Total RAM: 958 MB (45% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 00:11:37, on 19/11/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16915)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
    C:\WINDOWS\system32\LEXBCES.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Avira\AntiVir Desktop\sched.exe
    C:\Program Files\a-squared Anti-Malware\a2service.exe
    C:\Program Files\a-squared Free\a2service.exe
    C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\WINDOWS\eHome\ehRecvr.exe
    C:\WINDOWS\eHome\ehSched.exe
    C:\Program Files\CDBurnerXP\NMSAccessU.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\PnkBstrA.exe
    C:\WINDOWS\system32\PnkBstrB.exe
    C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Copernic Desktop Search - Home\DesktopSearchService.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\Program Files\Windows Media Player\wmplayer.exe
    C:\WINDOWS\system32\dllhost.exe
    C:\WINDOWS\explorer.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Documents and Settings\Nicolas\Bureau\RSIT.exe
    C:\Program Files\Trend Micro\HijackThis\Nicolas.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.fr/ig/dell?hl=fr&client=dell-row&channel=fr&...
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
    O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
    O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
    O3 - Toolbar: Barre d'outils Copernic Desktop Search - Home - {4A1C6093-14F9-44D7-860E-5D265CFCA9D9} - C:\Program Files\Copernic Desktop Search - Home\Toolbar\ToolbarContainer101000311.dll
    O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O4 - HKLM\..\Run: [LXSUPMON] C:\WINDOWS\system32\LXSUPMON.EXE RUN
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [Copernic Desktop Search - Home] "C:\Program Files\Copernic Desktop Search - Home\DesktopSearchService.exe" /tray
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-21-918231761-2051662927-3364531510-1007\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Henri et Veronique')
    O4 - HKUS\S-1-5-21-918231761-2051662927-3364531510-1007\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background (User 'Henri et Veronique')
    O4 - HKUS\S-1-5-21-918231761-2051662927-3364531510-1007\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime (User 'Henri et Veronique')
    O4 - HKUS\S-1-5-21-918231761-2051662927-3364531510-1007\..\Run: [LightScribe Control Panel] C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden (User 'Henri et Veronique')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Startup: GigaTribe.lnk = C:\Program Files\GigaTribe\gigatribe.exe
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.05\AMVConverter\grab.html
    O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.05\MediaManager\grab.html
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll/206 (file missing)
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
    O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/F...
    O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - http://messenger.zone.msn.com/binary/msgrchkr.cab56986....
    O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} -
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
    O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} - http://launch.gamespyarcade.com/software/launch/alaunch...
    O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1...
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
    O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213....
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
    O23 - Service: ncvbads (7aasht6rf) - Unknown owner - C:\Program Files\Fichiers communs\tysarekb\zamsdyg.exe (file missing)
    O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Emsi Software GmbH - C:\Program Files\a-squared Anti-Malware\a2service.exe
    O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
    O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
    O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Droppix Service - Droppix - C:\Program Files\Fichiers communs\Droppix\DxService.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
    O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
    O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe

    --
    End of file - 12409 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    C:\WINDOWS\tasks\Maintenance en 1 clic.job
    C:\WINDOWS\tasks\User_Feed_Synchronization-{FC342377-AE10-4984-B5C2-B13D3FF8B7E5}.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-12-18 59032]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
    RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-09-19 329312]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
    BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll [2007-12-05 464184]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
    DriveLetterAccess - C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2005-09-08 110652]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
    Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    SSVHelper Class - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [2007-03-14 501400]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
    Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {0BF43445-2F28-4351-9252-17FE6E806AA0}
    {BA52B914-B692-46c4-B683-905236F6F655}
    {D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll [2008-06-19 352256]
    {4A1C6093-14F9-44D7-860E-5D265CFCA9D9} - Barre d'outils Copernic Desktop Search - Home - C:\Program Files\Copernic Desktop Search - Home\Toolbar\ToolbarContainer101000311.dll [2009-02-26 2306448]
    {21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "LXSUPMON"=C:\WINDOWS\system32\LXSUPMON.EXE [2002-03-08 900096]
    "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-10-04 8491008]
    "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-06-29 286720]
    "a-squared"=C:\Program Files\a-squared Anti-Malware\a2guard.exe [2009-01-04 2782352]
    "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
    "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-09-19 198160]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
    "Copernic Desktop Search - Home"=C:\Program Files\Copernic Desktop Search - Home\DesktopSearchService.exe [2009-03-19 1602048]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!AVG Anti-Spyware]
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe [2007-08-09 6731312]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC]
    C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVP]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDAgent]
    C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
    C:\WINDOWS\system32\ctfmon.exe [2004-08-10 15360]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSupport]
    C:\Program Files\Dell Support\DSAgnt.exe [2006-08-28 395776]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2007-08-08 1836544]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
    C:\Program Files\Internet Download Manager\IDMan.exe /onboot []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
    c:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-07-27 221184]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
    C:\Program Files\iTunes\iTunesHelper.exe [2007-09-26 267064]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
    C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
    C:\Program Files\MSN Messenger\msnmsgr.exe [2007-01-19 5674352]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
    C:\WINDOWS\system32\NvCpl.dll [2007-10-04 8491008]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
    C:\WINDOWS\system32\NvMcTray.dll [2007-10-04 81920]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
    nwiz.exe /install []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PinnacleDriverCheck]
    C:\WINDOWS\system32\PSDrvCheck.exe [2003-11-10 406016]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    C:\Program Files\QuickTime\qttask.exe [2007-06-29 286720]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
    C:\Program Files\Valve\Steam\\Steam.exe -silent []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Veoh]
    C:\Program Files\Veoh Networks\Veoh\VeohClient.exe [2008-08-13 3660848]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\{C0-0B-BC-CF-ZN}]
    C:\Documents and Settings\Nicolas\Local Settings\Temp\TIP2D002.exe P2D002 []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk]
    C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\READER~1.EXE [2005-09-23 29696]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^NkvMon.exe.lnk]
    C:\PROGRA~1\Nikon\NkView6\NkvMon.exe [2002-12-04 237568]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Nicolas^Menu Démarrer^Programmes^Démarrage^Adobe Gamma.lnk]
    C:\PROGRA~1\FICHIE~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2005-03-16 113664]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Nicolas^Menu Démarrer^Programmes^Démarrage^LemonScreen.lnk]
    C:\Documents and Settings\Nicolas\Application Data\Microsoft\Installer\{C75C9EFC-260B-4565-A801-904CEE81CBC8}\_bb32ea6.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Nicolas^Menu Démarrer^Programmes^Démarrage^TA_Start.lnk]
    C:\DOCUME~1\Nicolas\LOCALS~1\Temp\TIP2D002.exe P2D002 []

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

    C:\Documents and Settings\Nicolas\Menu Démarrer\Programmes\Démarrage
    GigaTribe.lnk - C:\Program Files\GigaTribe\gigatribe.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"=C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll [2007-08-09 79408]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Driver]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Driver]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Guard]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
    "InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoClose"=0
    "NoDriveTypeAutoRun"=145
    "NoRun"=0
    "NoFind"=0
    "NoLogOff"=0
    "NoSetFolders"=0
    "DisallowRun"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoClose"=
    "HonorAutoRunSetting"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
    "C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
    "C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "C:\Program Files\Fichiers communs\McAfee\MNA\McNASvc.exe"="C:\Program Files\Fichiers communs\McAfee\MNA\McNASvc.exe:*:Enabled:McAfee Network Agent"
    "C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe"="C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
    "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
    "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
    "C:\WINDOWS\system32\ZoneLabs\vsmon.exe"="C:\WINDOWS\system32\ZoneLabs\vsmon.exe:*:D isabled:TrueVector Service"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
    "G:\environnement ZaRmOuD\Mes jeux\Call of Duty 4 - Modern Warfare\iw3mp.exe"="G:\environnement ZaRmOuD\Mes jeux\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
    "C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe"="C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe:*:Enabled:MessengerDiscovery Live the Windows Live Messenger addon"
    "C:\WINDOWS\system32\LEXPPS.EXE"="C:\WINDOWS\system32\LEXPPS.EXE:*:Enabled:LEXPPS.EXE"
    "G:\environnement ZaRmOuD\Mes jeux\blobby\volley.exe"="G:\environnement ZaRmOuD\Mes jeux\blobby\volley.exe:*:Enabled:volley"
    "C:\Program Files\Codemasters\Worms 4 Mayhem\Worms 4 Mayhem.exe"="C:\Program Files\Codemasters\Worms 4 Mayhem\Worms 4 Mayhem.exe:*:Enabled:Worms 4 Mayhem"
    "C:\Program Files\Participatory Culture Foundation\Miro\xulrunner\python\Miro_Downloader.exe"="C:\Program Files\Participatory Culture Foundation\Miro\xulrunner\python\Miro_Downloader.exe:*:Enabled:Miro_Downloader"
    "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
    "C:\Program Files\EA GAMES\Battlefield 2\BF2.exe"="C:\Program Files\EA GAMES\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2"
    "C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:p nkBstrA"
    "C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:p nkBstrB"
    "C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe"="C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine"
    "C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe"="C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Messenger"
    "C:\Program Files\Fichiers communs\tysarekb\zamsdyg.exe"="C:\Program Files\Fichiers communs\tysarekb\zamsdyg.exe:*:Enabled:gpastrpkf"
    "C:\Program Files\GigaTribe\gigatribe.exe"="C:\Program Files\GigaTribe\gigatribe.exe:*:Enabled:GigaTribe"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{257da044-08f9-11de-a263-00188b8bd269}]
    shell\AutoRun\command - H:\hwpcassistant.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{26d11a95-e9c2-11dc-a014-00188b8bd269}]
    shell\AutoRun\command - G:\uqb0julr.bat
    shell\explore\command - G:\uqb0julr.bat
    shell\open\command - G:\uqb0julr.bat

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{39344b1d-2a5b-11de-a2a5-00188b8bd269}]
    shell\AutoRun\command - G:\hwpcassistant.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3c42c259-42d4-11de-a2cf-00188b8bd269}]
    shell\AutoRun\command - G:\hwpcassistant.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3d15db4b-1a35-11de-a287-00188b8bd269}]
    shell\AutoRun\command - G:\hwpcassistant.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5ee29fd6-533a-11de-a2e8-00188b8bd269}]
    shell\AutoRun\command - G:\hwpcassistant.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6ee72b80-4fb3-11dc-9e69-00188b8bd269}]
    shell\AutoRun\command - F:\LaunchU3.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a5c1d3bd-1074-11de-a274-00188b8bd269}]
    shell\AutoRun\command - H:\hwpcassistant.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c25b45ce-44b2-11de-a2d1-00188b8bd269}]
    shell\AutoRun\command - G:\hwpcassistant.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c44b3546-0832-11de-a260-00188b8bd269}]
    shell\AutoRun\command - H:\hwpcassistant.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c4a8f7b6-f8d8-11db-9d61-00188b8bd269}]
    shell\AutoRun\command - H:\stw1ojde.bat
    shell\explore\command - H:\stw1ojde.bat
    shell\open\command - H:\stw1ojde.bat

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d7740b3e-b43c-11de-a384-00188b8bd269}]
    shell\AutoRun\command - H:\hwpcassistant.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dce616ba-4dc5-11de-a2e0-00188b8bd269}]
    shell\AutoRun\command - G:\hwpcassistant.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dffac6ff-0be3-11dd-a067-00188b8bd269}]
    shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe MS32DLL.dll.vbs

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ffafcb8e-feed-11dc-a049-00188b8bd269}]
    shell\AutoRun\command - H:\uqb0julr.bat
    shell\explore\command - H:\uqb0julr.bat
    shell\open\command - H:\uqb0julr.bat


    ======File associations======

    .reg - open - "regedit.exe" "%1"

    ======List of files/folders created in the last 1 months======

    2009-11-19 00:11:18 ----D---- C:\rsit
    2009-11-18 14:03:51 ----D---- C:\Program Files\Ad-Remover
    2009-11-17 12:25:09 ----D---- C:\WINDOWS\prefTransLM20
    2009-11-17 12:25:09 ----D---- C:\WINDOWS\PrefsLM01
    2009-11-17 12:24:53 ----D---- C:\Program Files\LM Version-2.5-F
    2009-11-12 20:28:16 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
    2009-11-04 23:06:47 ----A---- C:\WINDOWS\imsins.BAK
    2009-10-28 19:23:41 ----D---- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
    2009-10-27 16:54:47 ----D---- C:\Program Files\Messenger Plus! Live
    2009-10-25 13:39:45 ----D---- C:\Program Files\GigaTribe
    2009-10-22 22:04:36 ----RSHD---- C:\Program Files\Fichiers communs\tysarekb

    ======List of files/folders modified in the last 1 months======

    2009-11-19 00:11:24 ----D---- C:\WINDOWS\Prefetch
    2009-11-18 22:03:18 ----D---- C:\WINDOWS\Temp
    2009-11-18 22:00:00 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-11-18 21:53:04 ----D---- C:\WINDOWS\system32
    2009-11-18 17:06:03 ----D---- C:\Program Files\Mozilla Firefox
    2009-11-18 14:17:00 ----D---- C:\Program Files
    2009-11-18 14:08:43 ----D---- C:\WINDOWS\Registration
    2009-11-17 12:25:50 ----D---- C:\WINDOWS
    2009-11-17 10:51:23 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-11-12 20:28:34 ----D---- C:\WINDOWS\Debug
    2009-11-12 20:28:24 ----HD---- C:\WINDOWS\inf
    2009-11-12 20:28:19 ----SHD---- C:\WINDOWS\system32\dllcache
    2009-11-11 18:45:53 ----HD---- C:\WINDOWS\$hf_mig$
    2009-11-09 21:55:27 ----D---- C:\Documents and Settings\Nicolas\Application Data\OpenOffice.org2
    2009-11-05 18:36:21 ----A---- C:\WINDOWS\system32\MRT.exe
    2009-11-03 21:03:39 ----D---- C:\WINDOWS\system32\FxsTmp
    2009-10-31 18:12:55 ----D---- C:\Program Files\Cheat Engine
    2009-10-31 18:12:54 ----D---- C:\Program Files\MP3JOINER
    2009-10-31 18:12:54 ----D---- C:\Program Files\DVD Audio Extractor
    2009-10-31 18:08:53 ----D---- C:\Program Files\a-squared Free
    2009-10-30 10:09:30 ----D---- C:\WINDOWS\Help
    2009-10-25 16:34:24 ----D---- C:\Program Files\eMule
    2009-10-25 11:28:46 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-10-22 22:04:36 ----D---- C:\Program Files\Fichiers communs
    2009-10-21 05:07:57 ----A---- C:\WINDOWS\system32\mshtml.dll

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 AmdK8;Pilote de processeur AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43520]
    R1 AVG Anti-Spyware Driver;AVG Anti-Spyware Driver; \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys []
    R1 AvgArCln;Avg Anti-Rootkit Clean Driver; C:\WINDOWS\System32\DRIVERS\AvgArCln.sys [2007-01-18 3968]
    R1 AvgAsCln;AVG Anti-Spyware Clean Driver; C:\WINDOWS\System32\DRIVERS\AvgAsCln.sys [2006-09-05 3968]
    R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
    R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
    R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2005-08-25 5628]
    R1 DLARTL_N;DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [2005-08-25 22684]
    R1 GearAspiWDM;GearAspiWDM; C:\WINDOWS\system32\drivers\GearAspiWDM.sys [2006-09-19 15664]
    R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848]
    R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-07-13 28520]
    R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-08-18 55656]
    R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2005-09-08 25628]
    R2 DLADResN;DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2005-09-08 2496]
    R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2005-09-08 86524]
    R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2005-09-08 14684]
    R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2005-09-08 6364]
    R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2005-09-08 87036]
    R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2005-09-08 94332]
    R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2005-08-12 40544]
    R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-08-05 54752]
    R2 Sentinel;Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [2007-04-27 90688]
    R3 ASAPIW2K;ASAPIW2K; C:\WINDOWS\System32\Drivers\ASAPIW2K.sys [2003-11-28 11264]
    R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys [2006-08-14 44544]
    R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-08-12 137728]
    R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
    R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-10-04 6854464]
    R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2005-11-02 10368]
    R3 SNTNLUSB;SafeNet USB SuperPro/UltraPro/HardwareKey; C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS [2007-04-27 35328]
    R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2006-08-15 1171464]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2005-10-26 27264]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-10 57600]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-04 17024]
    R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
    R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
    S3 Ad-Watch Connect Filter;Ad-Watch Connect Kernel Filter; \??\C:\WINDOWS\system32\drivers\NSDriver.sys []
    S3 Ad-Watch Real-Time Scanner;AW Real-Time Scanner; \??\C:\WINDOWS\system32\drivers\AWRTPD.sys []
    S3 Ad-Watch Registry Filter;Ad-Watch Registry Kernel Filter; \??\C:\WINDOWS\system32\drivers\AWRTRD.sys []
    S3 adx67lvp;adx67lvp; C:\WINDOWS\system32\drivers\adx67lvp.sys []
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
    S3 DSproct;DSproct; \??\C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys []
    S3 E100B;Pilote de carte Intel (R) PRO; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2001-08-23 117760]
    S3 HWIONT;HWIONT; \??\C:\Documents and Settings\Nicolas\Bureau\MoreTV 3.53\HWIONT.sys []
    S3 MHNDRV;Pilote MHN; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
    S3 MobileAdapter;Huawei Mobile Adapter USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\hmumdm.sys [2007-09-06 101120]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
    S3 Profos;Profos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\profos.sys []
    S3 QCMerced;Logitech QuickCam Messenger; C:\WINDOWS\system32\DRIVERS\LVCM.sys [2003-06-27 472332]
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
    S3 Trufos;Trufos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\trufos.sys []
    S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2007-09-06 30336]
    S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-03 59264]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
    S3 Usblink;Usblink Driver; C:\WINDOWS\System32\Drivers\ulink.sys [2003-03-08 37708]
    S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
    S3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-10 20480]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
    S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
    S4 agp440;Filtre de bus AGP Intel; C:\WINDOWS\system32\DRIVERS\agp440.sys [2004-08-04 42368]
    S4 agpCPQ;Filtre de bus AGP Compaq; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2004-08-04 44928]
    S4 alim1541;Filtre de bus AGP ALI; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2004-08-04 42752]
    S4 amdagp;Pilote de filtre du bus AMD AGP; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2004-08-04 43008]
    S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2001-08-17 13952]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\DRIVERS\intelide.sys [2004-08-04 5504]
    S4 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-10 40320]
    S4 sisagp;Filtre de bus AGP SIS; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2004-08-04 41088]
    S4 viaagp;Filtre de bus AGP VIA; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2004-08-04 42240]
    S4 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-10 12032]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 a2AntiMalware;a-squared Anti-Malware Service; C:\Program Files\a-squared Anti-Malware\a2service.exe [2009-01-04 419448]
    R2 a2free;a-squared Free Service; C:\Program Files\a-squared Free\a2service.exe [2009-10-31 1858144]
    R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-06-07 611664]
    R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-07-13 108289]
    R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-08-18 185089]
    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2007-09-06 110592]
    R2 AVG Anti-Spyware Guard;AVG Anti-Spyware Guard; C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe [2007-08-09 312880]
    R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
    R2 ehRecvr;Media Center Receiver Service; C:\WINDOWS\eHome\ehRecvr.exe [2006-10-09 237568]
    R2 ehSched;Service de planification Media Center; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 103424]
    R2 LexBceS;LexBce Server; C:\WINDOWS\system32\LEXBCES.EXE [2002-03-08 300544]
    R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
    R2 NMSAccessU;NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-10-20 71096]
    R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-10-04 155716]
    R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-06-14 75064]
    R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-10-09 189672]
    R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
    S2 7aasht6rf;ncvbads; C:\Program Files\Fichiers communs\tysarekb\zamsdyg.exe []
    S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2004-08-10 268800]
    S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-09-30 72704]
    S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
    S3 Droppix Service;Droppix Service; C:\Program Files\Fichiers communs\Droppix\DxService.exe [2009-03-12 221184]
    S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-10-26 654848]
    S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
    S3 fsssvc;Service Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
    S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
    S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
    S3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2007-09-26 503608]
    S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2004-08-10 14336]
    S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-10 14336]
    S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

    -----------------EOF-----------------


    19 Novembre 2009 00:16:45


    Et voici celui de info .txt

    info.txt logfile of random's system information tool 1.06 2009-11-19 00:11:45

    ======Uninstall list======

    -->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {075473F5-846A-448B-BCB3-104AA1760205}
    -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
    -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
    -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {B12665F4-4E93-4AB4-B7FC-37053B524629}
    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    7-Zip 4.58 beta-->"C:\Program Files\7-Zip\Uninstall.exe"
    Ad-Aware-->MsiExec.exe /I{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
    Adobe Anchor Service CS3-->MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
    Adobe Asset Services CS3-->MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
    Adobe Audition 2.0-->msiexec /I {01CEC7E5-70FD-4D06-8FAD-BF21DF0CC6DC}
    Adobe Bridge 1.0-->MsiExec.exe /I{AE3D38A6-13B1-40B3-9423-D1FA9982FB6A}
    Adobe Bridge CS3-->MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394}
    Adobe Bridge Start Meeting-->MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
    Adobe Camera Raw 4.0-->MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}
    Adobe CMaps-->MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}
    Adobe Color - Photoshop Specific-->MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E}
    Adobe Color Common Settings-->MsiExec.exe /I{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}
    Adobe Color EU Recommended Settings-->MsiExec.exe /I{73B5D990-04EA-4751-B10F-5534770B91F2}
    Adobe Color JA Extra Settings-->MsiExec.exe /I{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}
    Adobe Color NA Extra Settings-->MsiExec.exe /I{FF29A7E2-FF40-4D07-B7E4-2093DE59E10A}
    Adobe Common File Installer-->MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5102}
    Adobe Default Language CS3-->MsiExec.exe /I{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}
    Adobe Device Central CS3-->MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
    Adobe ExtendScript Toolkit 2-->MsiExec.exe /I{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}
    Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Fonts All-->MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B}
    Adobe Help Center 2.0-->MsiExec.exe /I{8FFC924C-ED06-44CB-8867-3CA778ECE903}
    Adobe Help Viewer CS3-->MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
    Adobe Linguistics CS3-->MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
    Adobe PDF Library Files-->MsiExec.exe /I{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}
    Adobe Photoshop CS3-->C:\Program Files\Fichiers communs\Adobe\Installers\32e9033392a51340b32fdc6ad893ab7\Setup.exe
    Adobe Photoshop CS3-->MsiExec.exe /I{BF794769-8875-4E01-B7BE-E00104604F4A}
    Adobe Reader 7.0.9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70900000002}
    Adobe Setup-->MsiExec.exe /I{926DEB4E-2B0A-4C5C-AE4A-BF6C06949702}
    Adobe Shockwave Player 11.5-->"C:\WINDOWS\system32\Adobe\Shockwave 11\uninstaller.exe"
    Adobe Stock Photos CS3-->MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
    Adobe Type Support-->MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}
    Adobe Update Manager CS3-->MsiExec.exe /I{E69AE897-9E0B-485C-8552-7841F48D42D8}
    Adobe Version Cue CS3 Client-->MsiExec.exe /I{D0DFF92A-492E-4C40-B862-A74A173C25C5}
    Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
    Adobe XMP Panels CS3-->MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
    Ad-Remover By C_XX-->"C:\Program Files\Ad-Remover\Uninstall ADR.exe"
    AirMAPS-->C:\Program Files\EA GAMES\Battlefield 2\Uninstal_airmapsv6.exe
    Apple Mobile Device Support-->MsiExec.exe /I{3EBD3749-304E-4A4C-9575-C00E5F015217}
    Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
    Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
    ArcSoft Panorama Maker 3.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1CABB679-3958-44AA-BFFF-4E68A2684255}\Setup.exe" -l0x40c -uninst
    ASIO4ALL-->C:\Program Files\ASIO4ALL v2\uninstall.exe
    a-squared Anti-Malware 3.5-->"C:\Program Files\a-squared Anti-Malware\unins000.exe"
    a-squared Free 3.0-->"C:\Program Files\a-squared Free\unins000.exe"
    Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
    Atomix.Atomix MP3 v2.3-->C:\PROGRA~1\ATOMIX~1\UNWISE.EXE C:\PROGRA~1\ATOMIX~1\INSTALL.LOG
    AVG Anti-Rootkit Free-->C:\Program Files\GRISOFT\AVG Anti-Rootkit Free\Uninstall.exe
    AVG Anti-Spyware 7.5-->C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe
    Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
    Battlefield 2 Server-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F3CA370F-0B4B-4239-BF5A-2CC751EB5D3C}\setup.exe" -l0x9 -removeonly
    Battlefield 2(TM)-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\setup.exe" -l0x40c -removeonly
    Broadcom Management Programs-->MsiExec.exe /I{FB64BF25-3593-4E4E-AA85-84AEF1D1475F}
    Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch-->C:\Program Files\InstallShield Installation Information\{3BD633E0-4BF8-4499-9149-88F0767D449C}\setup.exe -runfromtemp -l0x0409
    Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Multiplayer Patch-->C:\Program Files\InstallShield Installation Information\{8503C901-85D7-4262-88D2-8D8B2A7B08B8}\setup.exe -runfromtemp -l0x0409
    CamStudio-->C:\Program Files\CamStudio\uninstall.exe
    CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
    CDBurnerXP-->"C:\Program Files\CDBurnerXP\unins000.exe"
    Cheat Engine 5.4-->"C:\Program Files\Cheat Engine\unins000.exe"
    Collab-->C:\Program Files\Image-Line\Collab\uninstall.exe
    Combat Arms EU-->"C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe" -mode:uninstall -dll:ngm.nexoneu.com/cbangm/NGM/Bin/NGMDll.dll -game:50340359 -locale:EU
    Copernic Desktop Search - Home-->C:\Program Files\Copernic Desktop Search - Home\uninst.exe
    Correctif n° 2 pour Windows XP Édition Media Center 2005-->C:\WINDOWS\$NtUninstallKB900325$\spuninst\spuninst.exe
    Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
    Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB888795)-->"C:\WINDOWS\$NtUninstallKB888795$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB891593)-->"C:\WINDOWS\$NtUninstallKB891593$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB899337)-->"C:\WINDOWS\$NtUninstallKB899337$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB899510)-->"C:\WINDOWS\$NtUninstallKB899510$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB902841)-->"C:\WINDOWS\$NtUninstallKB902841$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB914440)-->"C:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
    Correctif Windows XP - KB885836-->C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
    Correctif Windows XP - KB886185-->C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
    Correctif Windows XP - KB888302-->C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
    Correctif Windows XP - KB890859-->"C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
    Correctif Windows XP - KB895961-->"C:\WINDOWS\$NtUninstallKB895961$\spuninst\spuninst.exe"
    Dell CinePlayer-->MsiExec.exe /I{43CAC9A1-1993-4F65-9096-7C9AFC2BBF54}
    Dell Support 3.2.1-->MsiExec.exe /X{CEE2252C-4035-4B27-8EC6-0B085DD3A413}
    Department Store Battles Mod 2.8-->C:\Program Files\EA GAMES\Battlefield 2\mods\DepoBattles\Uninstal.exe
    DivX 4.12 Codec-->"C:\Program Files\DivXCodec\uninstall.exe"
    DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
    DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    Droppix Recorder 2.x-->"C:\Program Files\Droppix\Droppix Recorder 2.x\unins000.exe"
    DVD Audio Extractor 4.4.1-->"C:\Program Files\DVD Audio Extractor\unins000.exe"
    eMule-->"C:\Program Files\eMule\Uninstall.exe"
    EPSON Copy Utility 3-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{67EDD823-135A-4D59-87BD-950616D6E857}\SETUP.EXE" -l0x40c -UnInstall
    EPSON PERFECTION V500 PHOTO Manuel-->C:\Program Files\EPSON\TPMANUAL\PerfV500\FRA\USE_G\DOCUNINS.EXE
    EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r
    FL Studio 8-->C:\Program Files\Image-Line\FL Studio 8\uninstall.exe
    Fraps-->"C:\Fraps\uninstall.exe"
    FX-INTERFACE PROFESSIONAL-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CD869122-24E1-11D4-A99B-204C4F4F5020}\setup.exe" AnyText
    Galerie de photos Windows Live-->MsiExec.exe /X{B131E59D-202C-43C6-84C9-68F0C37541F1}
    GigaTribe 3.17-->"C:\Program Files\GigaTribe\unins000.exe"
    GIMP 2.4.7-->"C:\Program Files\GIMP-2.0\setup\unins000.exe"
    Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall
    Google Earth-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}\setup.exe" -l0x40c -removeonly
    Graboid Video 1.3-->C:\Program Files\Graboid\uninst.exe
    High Definition Audio Driver Package - KB835221-->C:\WINDOWS\$NtUninstallKB835221WXP$\spuninst\spuninst.exe
    HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
    Hijackthis Version Française-->"C:\Program Files\Hijackthis Version Française\unins000.exe"
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
    Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
    Hotfix for Windows Media Player 10 (KB903157)-->"C:\WINDOWS\$NtUninstallKB903157$\spuninst\spuninst.exe"
    Hotfix for Windows XP (KB915865)-->"C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe"
    Hotfix for Windows XP (KB926239)-->"C:\WINDOWS\$NtUninstallKB926239$\spuninst\spuninst.exe"
    HOTZIC CD Burner V1.1-->C:\WINDOWS\st6unst.exe -n "C:\Program Files\HotzicBurner\ST6UNST.LOG"
    hp deskjet 920c series (Supprimer uniquement)-->C:\Program Files\hp deskjet 920c series\hpfiui.exe -c -vdivid=HPF -vpnum=95 -vinstport= -vproduct=920c -huninstall
    IL Download Manager-->C:\Program Files\Image-Line\Downloader\uninstall.exe
    Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
    Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
    IrfanView (remove only)-->C:\Program Files\IrfanView\iv_uninstall.exe
    iTunes-->MsiExec.exe /I{B045B608-4A47-4C77-9EAD-06C394503306}
    Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
    Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
    Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Lexmark Supplies Monitor-->C:\WINDOWS\system32\LXSMUNIN.EXE
    Lexmark Z23-Z33-->C:\WINDOWS\system32\spool\drivers\w32x86\3\lxaiUN5C.EXE -dLexmark Z23-Z33
    LimeWire 4.14.10-->"C:\Program Files\LimeWire\uninstall.exe"
    LM 2.5-->C:\Program Files\LM Version-2.5-F\Désintallation de la Lanterne Magique.exe
    Logitech Print Service-->C:\PROGRA~1\Logitech\PRINTS~1\UNWISE.EXE C:\PROGRA~1\Logitech\PRINTS~1\INSTALL.LOG
    Logitech QuickCam-->MsiExec.exe /I{A488D63E-B3DD-4423-892F-2F2EC8909518}
    MCU-->MsiExec.exe /I{D2988E9B-C73F-422C-AD4B-A66EBE257120}
    Megavideo Video Downloader 3.14-->"C:\Program Files\DownloadToolz\Megavideo Video Downloader\unins000.exe"
    Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
    Microsoft .NET Framework 1.0 Hotfix (KB887998)-->"C:\WINDOWS\$NtUninstallKB887998$\spuninst\spuninst.exe"
    Microsoft .NET Framework 1.0 Hotfix (KB930494)-->"C:\WINDOWS\$NtUninstallKB930494$\spuninst\spuninst.exe"
    Microsoft .NET Framework 1.0 Hotfix (KB953295)-->"C:\WINDOWS\$NtUninstallKB953295$\spuninst\spuninst.exe"
    Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
    Microsoft .NET Framework 1.1 Security Update (KB953297)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp"
    Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
    Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
    Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
    Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
    Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
    Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
    Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
    Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
    Microsoft Search Enhancement Pack-->MsiExec.exe /X{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
    Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
    Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
    Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
    Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
    Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
    Microsoft Visual C++ 2005 Express - FRA-->C:\Program Files\Microsoft Visual Studio 8\Microsoft Visual C++ 2005 Express Edition - FRA\setup.exe
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
    Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
    Microsoft Works-->MsiExec.exe /I{6B1CB38D-E2E4-4A30-933D-EFDEBA76AD9C}
    Miro-->C:\Program Files\Participatory Culture Foundation\Miro\uninstall.exe
    Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9L$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)-->"C:\WINDOWS\$NtUninstallKB925398_WMP64$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB969897)-->"C:\WINDOWS\ie7updates\KB969897-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB972260)-->"C:\WINDOWS\ie7updates\KB972260-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB974455)-->"C:\WINDOWS\ie7updates\KB974455-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB893756)-->"C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896428)-->"C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB899587)-->"C:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB900725)-->"C:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB901017)-->"C:\WINDOWS\$NtUninstallKB901017$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB902400)-->"C:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB905414)-->"C:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB905749)-->"C:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911927)-->"C:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB913580)-->"C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB914389)-->"C:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917953)-->"C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB918118)-->"C:\WINDOWS\$NtUninstallKB918118$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920213)-->"C:\WINDOWS\$NtUninstallKB920213$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB921503)-->"C:\WINDOWS\$NtUninstallKB921503$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB922819)-->"C:\WINDOWS\$NtUninstallKB922819$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923689)-->"C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923694)-->"C:\WINDOWS\$NtUninstallKB923694$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923980)-->"C:\WINDOWS\$NtUninstallKB923980$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924270)-->"C:\WINDOWS\$NtUninstallKB924270$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924667)-->"C:\WINDOWS\$NtUninstallKB924667$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB925454)-->"C:\WINDOWS\$NtUninstallKB925454$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB925902)-->"C:\WINDOWS\$NtUninstallKB925902$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB926255)-->"C:\WINDOWS\$NtUninstallKB926255$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB926436)-->"C:\WINDOWS\$NtUninstallKB926436$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB927779)-->"C:\WINDOWS\$NtUninstallKB927779$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB927802)-->"C:\WINDOWS\$NtUninstallKB927802$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB928090)-->"C:\WINDOWS\$NtUninstallKB928090$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB928255)-->"C:\WINDOWS\$NtUninstallKB928255$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB928843)-->"C:\WINDOWS\$NtUninstallKB928843$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB929123)-->"C:\WINDOWS\$NtUninstallKB929123$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB929969)-->"C:\WINDOWS\$NtUninstallKB929969$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB930178)-->"C:\WINDOWS\$NtUninstallKB930178$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB931261)-->"C:\WINDOWS\$NtUninstallKB931261$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB931768)-->"C:\WINDOWS\$NtUninstallKB931768$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB931784)-->"C:\WINDOWS\$NtUninstallKB931784$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB932168)-->"C:\WINDOWS\$NtUninstallKB932168$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB933566)-->"C:\WINDOWS\$NtUninstallKB933566$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB933729)-->"C:\WINDOWS\$NtUninstallKB933729$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB935839)-->"C:\WINDOWS\$NtUninstallKB935839$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB935840)-->"C:\WINDOWS\$NtUninstallKB935840$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB936021)-->"C:\WINDOWS\$NtUninstallKB936021$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB937143)-->"C:\WINDOWS\$NtUninstallKB937143$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB937894)-->"C:\WINDOWS\$NtUninstallKB937894$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938127)-->"C:\WINDOWS\$NtUninstallKB938127$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938829)-->"C:\WINDOWS\$NtUninstallKB938829$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB939653)-->"C:\WINDOWS\$NtUninstallKB939653$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941202)-->"C:\WINDOWS\$NtUninstallKB941202$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941568)-->"C:\WINDOWS\$NtUninstallKB941568$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941644)-->"C:\WINDOWS\$NtUninstallKB941644$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941693)-->"C:\WINDOWS\$NtUninstallKB941693$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB943055)-->"C:\WINDOWS\$NtUninstallKB943055$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB943460)-->"C:\WINDOWS\$NtUninstallKB943460$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB943485)-->"C:\WINDOWS\$NtUninstallKB943485$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB944653)-->"C:\WINDOWS\$NtUninstallKB944653$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB945553)-->"C:\WINDOWS\$NtUninstallKB945553$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB946026)-->"C:\WINDOWS\$NtUninstallKB946026$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB948590)-->"C:\WINDOWS\$NtUninstallKB948590$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB948881)-->"C:\WINDOWS\$NtUninstallKB948881$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950749)-->"C:\WINDOWS\$NtUninstallKB950749$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958470)-->"C:\WINDOWS\$NtUninstallKB958470$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB971032)-->"C:\WINDOWS\$NtUninstallKB971032$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
    Mise à jour pour Lecteur Windows Media 10 (KB913800)-->"C:\WINDOWS\$NtUninstallKB913800$\spuninst\spuninst.exe"
    Mise à jour pour Lecteur Windows Media 10 (KB926251)-->"C:\WINDOWS\$NtUninstallKB926251$\spuninst\spuninst.exe"
    Mise à jour pour Windows Internet Explorer 7 (KB976749)-->"C:\WINDOWS\ie7updates\KB976749-IE7\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB894391)-->"C:\WINDOWS\$NtUninstallKB894391$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB900485)-->"C:\WINDOWS\$NtUninstallKB900485$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB904942)-->"C:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB910437)-->"C:\WINDOWS\$NtUninstallKB910437$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB911280)-->"C:\WINDOWS\$NtUninstallKB911280$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB916595)-->"C:\WINDOWS\$NtUninstallKB916595$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB920872)-->"C:\WINDOWS\$NtUninstallKB920872$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB922582)-->"C:\WINDOWS\$NtUninstallKB922582$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB925720)-->"C:\WINDOWS\$NtUninstallKB925720$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB927891)-->"C:\WINDOWS\$NtUninstallKB927891$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB929338)-->"C:\WINDOWS\$NtUninstallKB929338$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB930916)-->"C:\WINDOWS\$NtUninstallKB930916$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB931836)-->"C:\WINDOWS\$NtUninstallKB931836$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB932823-v3)-->"C:\WINDOWS\$NtUninstallKB932823-v3$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB933360)-->"C:\WINDOWS\$NtUninstallKB933360$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB938828)-->"C:\WINDOWS\$NtUninstallKB938828$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB942763)-->"C:\WINDOWS\$NtUninstallKB942763$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB961503)-->"C:\WINDOWS\$NtUninstallKB961503$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
    Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
    Monster Trucks Nitro Demo-->C:\Program Files\Monster Trucks Nitro Demo\uninst.exe
    Mozilla ActiveX Control v1.7.12-->C:\Program Files\Mozilla ActiveX Control v1.7.12\uninst.exe
    Mozilla Firefox (3.0.15)-->c:\program files\Mozilla Firefox\uninstall\helper.exe
    Mozilla Thunderbird (2.0.0.17)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
    MP3 Joiner version 1.2-->"C:\Program Files\MP3JOINER\unins000.exe"
    Mp3 Merger V1.0-->"C:\Program Files\Mp3 Merger\unins000.exe"
    MSN Couleur-->MsiExec.exe /I{A238B282-3DDB-4A70-833F-FAD7086366A2}
    MSNFix 1.700-->"C:\Program Files\MSNFix\unins000.exe"
    MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
    MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
    MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    MSXML 6 Service Pack 2 (KB954459)-->MsiExec.exe /I{1A528690-6A2D-4BC5-B143-8C4AE8D19D96}
    MTV3.4 PC Assistant V1.9.13-->"C:\Program Files\MTV3.4 PC Assistant\unins000.exe"
    Need for Speed™ Carbon-->C:\Program Files\Electronic Arts\Need for Speed Carbon\EAUninstall.exe
    Nikon View 6-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AAB84E83-C8DF-4752-9DFC-2E2A48EE5E9F}\setup.exe" UNINSTALL
    NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
    oggcodecs-->MsiExec.exe /I{D65F0073-A820-4085-B997-A061171595A7}
    OpenOffice.org 2.1-->MsiExec.exe /I{E5430A11-6799-41E0-A9D5-F68BDC67AAD8}
    Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
    PC Inspector File Recovery-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0DD140D3-9563-481E-AA75-BA457CBDAEF2}\Setup.exe" -l0x40c
    PDF Settings-->MsiExec.exe /I{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}
    PhotoFiltre-->"C:\Documents and Settings\Pollux\Mes documents\PhotoFiltre\Uninst.exe"
    PicturesToExe 5.0-->C:\Program Files\WnSoft PicturesToExe\5.0\uninst.exe
    PoiZone-->C:\Program Files\Image-Line\PoiZone\uninstall.exe
    Programme de gestion Camera de Logitech®-->"C:\Program Files\Fichiers communs\Logitech\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT
    PunkBuster Services-->C:\WINDOWS\system32\pbsvc.exe -u
    QuickTime-->MsiExec.exe /I{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}
    RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|12.0
    Roxio DLA-->MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
    Roxio MyDVD LE-->MsiExec.exe /I{21657574-BD54-48A2-9450-EB03B2C7FC29}
    Roxio RecordNow Audio-->MsiExec.exe /I{AB708C9B-97C8-4AC9-899B-DBF226AC9382}
    Roxio RecordNow Copy-->MsiExec.exe /I{B12665F4-4E93-4AB4-B7FC-37053B524629}
    Roxio RecordNow Data-->MsiExec.exe /I{075473F5-846A-448B-BCB3-104AA1760205}
    SA30xx Device Manager-->C:\Program Files\InstallShield Installation Information\{289CDCBA-1E82-460A-9DCA-E9FB6BAC1A42}\setup.exe -runfromtemp -l0x040c -removeonly
    SA30xx Media Converter-->C:\Program Files\InstallShield Installation Information\{1E06D48E-5448-4BCC-9F87-9FB4EBD59898}\setup.exe -runfromtemp -l0x040c -removeonly
    Sandbox-->C:\Program Files\EA GAMES\Battlefield 2\mods\uninstallsandbox.exe
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
    Sentinel System Driver Installer 7.4.0-->MsiExec.exe /I{62B74257-2E1B-48FB-843C-0FBA43FE1327}
    SLD Codec Pack-->C:\Program Files\SLD Codec Pack\uninstall.exe
    Sonic Activation Module-->MsiExec.exe /I{5B6BE547-21E2-49CA-B2E2-6A5F470593B1}
    Sonic Encoders-->MsiExec.exe /I{9941F0AA-B903-4AF4-A055-83A9815CC011}
    Sony Ericsson Themes Creator 3.19-->C:\Program Files\Sony Ericsson\Themes Creator\Uninstall.exe
    Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
    TeamSpeak 2 RC2-->"C:\Program Files\Teamspeak2_RC2\unins000.exe"
    The Sir. Mod V1-->C:\Program Files\EA GAMES\Battlefield 2\mods\SirMod\Uninstal.exe
    TmNationsForever-->"C:\Program Files\TmNationsForever\unins000.exe"
    Toxic Biohazard-->C:\Program Files\Image-Line\Toxic Biohazard\uninstall.exe
    TrackMania Nations ESWC 1.7.9-->"C:\Program Files\TrackMania Nations ESWC\unins000.exe"
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
    VeohTV BETA-->C:\Program Files\InstallShield Installation Information\{0405E51E-9582-4207-8F38-AC44201D3808}\setup.exe -runfromtemp -l0x0409
    VideoLAN VLC media player 0.8.6d-->C:\Program Files\VideoLAN\VLC\uninstall.exe
    Visionneuse Journal Windows Microsoft-->MsiExec.exe /X{43DCF766-6838-4F9A-8C91-D92DA586DFA8}
    Vuze-->C:\Program Files\Vuze\uninstall.exe
    Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
    Windows Internet Explorer 7-->"C:\WINDOWS\ie7\spuninst\spuninst.exe"
    Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
    Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
    Windows Live Contrôle parental-->MsiExec.exe /X{D5D81435-B8DE-4CAF-867F-7998F2B92CFC}
    Windows Live Mail-->MsiExec.exe /I{5DD76286-9BE7-4894-A990-E905E91AC818}
    Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1}
    Windows Live OneCare safety scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT
    Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
    Windows Live Writer-->MsiExec.exe /X{4634B21A-CC07-4396-890C-2B8168661FEA}
    Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
    Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
    Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
    Windows XP Hotfix - KB890927-->C:\WINDOWS\$NtUninstallKB890927$\spuninst\spuninst.exe
    Windows XP Media Center Edition 2005 KB908246-->"C:\WINDOWS\$NtUninstallKB908246$\spuninst\spuninst.exe"
    Windows XP Media Center Edition 2005 KB925766-->"C:\WINDOWS\$NtUninstallKB925766$\spuninst\spuninst.exe"
    Windows XP Media Center Edition 2005 KB973768-->"C:\WINDOWS\$NtUninstallKB973768$\spuninst\spuninst.exe"
    Wings Platinum 3-->MsiExec.exe /I{7B17F400-C8AF-423F-B341-3CD75BCB0DBC}
    Xfire (remove only)-->"C:\Program Files\Xfire\uninst.exe"
    XnView 1.91.4-->"C:\Program Files\XnView\unins000.exe"

    =====HijackThis Backups=====

    O2 - BHO: ads_optimizer - {9C8A568E-4201-478a-8536-526CF371D2E2} - C:\WINDOWS\system32\nsq5C.dll [2007-11-04]
    O2 - BHO: rightonadz browser optimizer - {971C3384-F75E-4562-95B3-CBE7417529BC} - C:\WINDOWS\system32\gzmrotate.dll [2007-11-04]
    O4 - HKUS\S-1-5-21-918231761-2051662927-3364531510-1006\..\Run: [yznabsti] c:\windows\system32\yznabsti.exe yznabsti (User 'Pollux') [2007-11-04]
    O15 - Trusted Zone: http://redirect.mirarsearch.com (HKLM) [2007-11-04]
    O15 - Trusted Zone: http://click.mirarsearch.com (HKLM) [2007-11-04]
    O4 - HKUS\S-1-5-21-918231761-2051662927-3364531510-1006\..\Run: [zjcoptpuhy] c:\windows\system32\zjcoptpuhy.exe zjcoptpuhy (User 'Pollux') [2007-11-04]
    O4 - HKUS\S-1-5-21-918231761-2051662927-3364531510-1006\..\Run: [fviyjrb] c:\windows\system32\fviyjrb.exe fviyjrb (User 'Pollux') [2007-11-04]
    O4 - HKLM\..\Run: [hid_start] C:\WINDOWS\System32\Rundll32.exe "C:\WINDOWS\system32\gzmrotate.dll" DllVerify [2007-11-04]
    O15 - Trusted Zone: http://click.getmirar.com (HKLM) [2007-11-04]
    O15 - Trusted Zone: http://awbeta.net-nucleus.com (HKLM) [2007-11-04]

    ======Hosts File======

    127.0.0.1 www.007guard.com
    127.0.0.1 007guard.com
    127.0.0.1 008i.com
    127.0.0.1 www.008k.com
    127.0.0.1 008k.com
    127.0.0.1 www.00hq.com
    127.0.0.1 00hq.com
    127.0.0.1 010402.com
    127.0.0.1 www.032439.com
    127.0.0.1 032439.com

    ======Security center information======

    AV: AntiVir Desktop

    ======System event log======

    Computer Name: GASSIE
    Event Code: 7035
    Message: Un contrôle Démarrer a correctement été envoyé au service Service COM de gravage de CD IMAPI.

    Record Number: 22282
    Source Name: Service Control Manager
    Time Written: 20090924183505.000000+120
    Event Type: Informations
    User: AUTORITE NT\SYSTEM

    Computer Name: GASSIE
    Event Code: 7036
    Message: Le service Windows CardSpace est entré dans l'état : arrêté.

    Record Number: 22281
    Source Name: Service Control Manager
    Time Written: 20090924121037.000000+120
    Event Type: Informations
    User:

    Computer Name: GASSIE
    Event Code: 7035
    Message: Un contrôle Arrêter a correctement été envoyé au service Windows CardSpace.

    Record Number: 22280
    Source Name: Service Control Manager
    Time Written: 20090924121037.000000+120
    Event Type: Informations
    User: AUTORITE NT\SYSTEM

    Computer Name: GASSIE
    Event Code: 7036
    Message: Le service Windows CardSpace est entré dans l'état : en cours d'exécution.

    Record Number: 22279
    Source Name: Service Control Manager
    Time Written: 20090924111036.000000+120
    Event Type: Informations
    User:

    Computer Name: GASSIE
    Event Code: 7035
    Message: Un contrôle Démarrer a correctement été envoyé au service Windows CardSpace.

    Record Number: 22278
    Source Name: Service Control Manager
    Time Written: 20090924111036.000000+120
    Event Type: Informations
    User: GASSIE\Pollux

    =====Application event log=====

    Computer Name: GASSIE
    Event Code: 101
    Message: msnmsgr (3320) Le moteur de base de données est arrêté.

    Record Number: 6113
    Source Name: ESENT
    Time Written: 20090823214035.000000+120
    Event Type: Informations
    User:

    Computer Name: GASSIE
    Event Code: 103
    Message: msnmsgr (3320) \\.\C:\Documents and Settings\Pollux\Local Settings\Application Data\Microsoft\Messenger\minou_peaceful@hotmail.fr\SharingMetadata\Working\database_6AE0_C37_E00C_BCF\dfsr.db: Le moteur de base de données a arrêté une instance (0).

    Record Number: 6112
    Source Name: ESENT
    Time Written: 20090823214035.000000+120
    Event Type: Informations
    User:

    Computer Name: GASSIE
    Event Code: 102
    Message: msnmsgr (3320) \\.\C:\Documents and Settings\Pollux\Local Settings\Application Data\Microsoft\Messenger\minou_peaceful@hotmail.fr\SharingMetadata\Working\database_6AE0_C37_E00C_BCF\dfsr.db: Le moteur de base de données a démarré une nouvelle instance (0).

    Record Number: 6111
    Source Name: ESENT
    Time Written: 20090823214034.000000+120
    Event Type: Informations
    User:

    Computer Name: GASSIE
    Event Code: 100
    Message: msnmsgr (3320) Le moteur de base de données 5.01.2600.2780 est démarré.

    Record Number: 6110
    Source Name: ESENT
    Time Written: 20090823214034.000000+120
    Event Type: Informations
    User:

    Computer Name: GASSIE
    Event Code: 101
    Message: msnmsgr (3320) Le moteur de base de données est arrêté.

    Record Number: 6109
    Source Name: ESENT
    Time Written: 20090823213233.000000+120
    Event Type: Informations
    User:

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Fichiers communs\Roxio Shared\DLLShared\;C:\Program Files\Fichiers communs\Adobe\AGL;C:\Program Files\QuickTime\QTSystem\
    "windir"=%SystemRoot%
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_LEVEL"=15
    "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 95 Stepping 2, AuthenticAMD
    "PROCESSOR_REVISION"=5f02
    "NUMBER_OF_PROCESSORS"=1
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "SonicCentral"=C:\Program Files\Fichiers communs\Sonic Shared\Sonic Central\
    "VS80COMNTOOLS"=C:\Program Files\Microsoft Visual Studio 8\Common7\Tools\
    "sourcesdk"=C:\VALVe
    "CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_01\lib\ext\QTJava.zip
    "QTJAVA"=C:\Program Files\Java\jre1.6.0_01\lib\ext\QTJava.zip

    -----------------EOF-----------------
    a b 8 Sécurité
    19 Novembre 2009 01:23:58

  • Télécharge UsbFix (de Chiquitine29 & C_XX) sur ton Bureau.
  • Branche tes sources de données externes à ton PC (clé USB, disque dur externe, carte SD, etc...) sans les ouvrir.
  • Double-clique sur UsbFix pour l'exécuter.
  • Choisis l'option 1 (Recherche).
  • Laisse travailler l'outil.
  • Poste le rapport UsbFix.txt.

    Note : le rapport UsbFix.txt est sauvegardé à la racine du disque (C:\UsbFix.txt).

    "Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Kaspersky, etc.) comme étant un RiskTool. Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
    19 Novembre 2009 11:45:18


    ############################## | UsbFix V6.055 |

    User : Nicolas (Administrateurs) # GASSIE
    Update on 18/11/2009 by Chiquitine29, C_XX & Chimay8
    Start at: 10:59:04 | 19/11/2009
    Website : http://pagesperso-orange.fr/NosTools/index.html
    Contact : FindyKill.Contact@gmail.com

    AMD Athlon(tm) 64 Processor 3800+
    Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 2
    Internet Explorer 7.0.5730.13
    Windows Firewall Status : Disabled
    AV : AntiVir Desktop 9.0.1.32 [ Enabled | Updated ]

    C:\ -> Disque fixe local # 169,95 Go (2,51 Go free) # NTFS
    D:\ -> Disque fixe local # 58,19 Go (50,62 Go free) [Sauvegarder] # NTFS
    E:\ -> Disque CD-ROM # 1,91 Go (0 Mo free) [BF2 DVD] # UDF
    F:\ -> Disque CD-ROM
    H:\ -> Disque fixe local # 465,65 Go (34,79 Go free) [My Book] # FAT32
    I:\ -> Disque amovible # 1,86 Go (1,19 Go free) [USB DISK] # FAT

    ############################## | Processus actifs |

    C:\WINDOWS\System32\smss.exe 552
    C:\WINDOWS\system32\csrss.exe 632
    C:\WINDOWS\system32\winlogon.exe 656
    C:\WINDOWS\system32\services.exe 700
    C:\WINDOWS\system32\lsass.exe 712
    C:\WINDOWS\system32\svchost.exe 916
    C:\WINDOWS\system32\svchost.exe 984
    C:\WINDOWS\System32\svchost.exe 1080
    C:\WINDOWS\system32\svchost.exe 1168
    C:\WINDOWS\system32\svchost.exe 1324
    C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe 1404
    C:\WINDOWS\system32\LEXBCES.EXE 1056
    C:\WINDOWS\system32\LEXPPS.EXE 1144
    C:\WINDOWS\system32\spoolsv.exe 1140
    C:\Program Files\Avira\AntiVir Desktop\sched.exe 1224
    C:\WINDOWS\system32\svchost.exe 1436
    C:\WINDOWS\Explorer.EXE 1648
    C:\Program Files\a-squared Anti-Malware\a2service.exe 1796
    C:\WINDOWS\system32\LXSUPMON.EXE 1812
    C:\Program Files\a-squared Free\a2service.exe 1832
    C:\Program Files\QuickTime\qttask.exe 1864
    C:\Program Files\Avira\AntiVir Desktop\avgnt.exe 1944
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe 1952
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe 1960
    C:\Program Files\Avira\AntiVir Desktop\avguard.exe 2044
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe 208
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe 224
    C:\Program Files\Copernic Desktop Search - Home\DesktopSearchService.exe 252
    C:\Program Files\Bonjour\mDNSResponder.exe 392
    C:\WINDOWS\eHome\ehRecvr.exe 456
    C:\WINDOWS\eHome\ehSched.exe 612
    C:\Program Files\CDBurnerXP\NMSAccessU.exe 940
    C:\Program Files\GigaTribe\gigatribe.exe 1432
    C:\WINDOWS\system32\nvsvc32.exe 1492
    C:\WINDOWS\system32\PnkBstrA.exe 1580
    C:\WINDOWS\system32\PnkBstrB.exe 1616
    C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 1352
    C:\WINDOWS\system32\svchost.exe 2164
    C:\WINDOWS\system32\svchost.exe 2176
    C:\WINDOWS\ehome\mcrdsvc.exe 2288
    C:\WINDOWS\system32\dllhost.exe 3772
    C:\WINDOWS\System32\alg.exe 3896
    C:\WINDOWS\system32\wscntfy.exe 348
    C:\WINDOWS\system32\wuauclt.exe 2192
    C:\Program Files\Windows Media Player\wmplayer.exe 2612
    C:\Program Files\Mozilla Firefox\firefox.exe 3404
    C:\WINDOWS\system32\wbem\wmiprvse.exe 3180

    ################## | Fichiers # Dossiers infectieux |

    C:\autorun.PNF
    E:\autorun.inf
    I:\Recycled\ctfmon.exe

    ################## | Registre # Clés infectieuses |

    [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoClose"
    [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoClose"

    ################## | Registre # Mountpoints2 |

    HKCU\..\..\Explorer\MountPoints2\{257da044-08f9-11de-a263-00188b8bd269}
    Shell\AutoRun\command =H:\hwpcassistant.exe

    HKCU\..\..\Explorer\MountPoints2\{26d11a95-e9c2-11dc-a014-00188b8bd269}
    Shell\AutoRun\command =G:\uqb0julr.bat
    Shell\explore\Command =G:\uqb0julr.bat
    Shell\open\Command =G:\uqb0julr.bat

    HKCU\..\..\Explorer\MountPoints2\{39344b1d-2a5b-11de-a2a5-00188b8bd269}
    Shell\AutoRun\command =G:\hwpcassistant.exe

    HKCU\..\..\Explorer\MountPoints2\{3c42c259-42d4-11de-a2cf-00188b8bd269}
    Shell\AutoRun\command =G:\hwpcassistant.exe

    HKCU\..\..\Explorer\MountPoints2\{3d15db4b-1a35-11de-a287-00188b8bd269}
    Shell\AutoRun\command =G:\hwpcassistant.exe

    HKCU\..\..\Explorer\MountPoints2\{5ee29fd6-533a-11de-a2e8-00188b8bd269}
    Shell\AutoRun\command =G:\hwpcassistant.exe

    HKCU\..\..\Explorer\MountPoints2\{6ee72b80-4fb3-11dc-9e69-00188b8bd269}
    Shell\AutoRun\command =F:\LaunchU3.exe

    HKCU\..\..\Explorer\MountPoints2\{a5c1d3bd-1074-11de-a274-00188b8bd269}
    Shell\AutoRun\command =H:\hwpcassistant.exe

    HKCU\..\..\Explorer\MountPoints2\{c25b45ce-44b2-11de-a2d1-00188b8bd269}
    Shell\AutoRun\command =G:\hwpcassistant.exe

    HKCU\..\..\Explorer\MountPoints2\{c44b3546-0832-11de-a260-00188b8bd269}
    Shell\AutoRun\command =H:\hwpcassistant.exe

    HKCU\..\..\Explorer\MountPoints2\{c4a8f7b6-f8d8-11db-9d61-00188b8bd269}
    Shell\AutoRun\command =H:\stw1ojde.bat
    Shell\explore\Command =H:\stw1ojde.bat
    Shell\open\Command =H:\stw1ojde.bat

    HKCU\..\..\Explorer\MountPoints2\{d7740b3e-b43c-11de-a384-00188b8bd269}
    Shell\AutoRun\command =H:\hwpcassistant.exe

    HKCU\..\..\Explorer\MountPoints2\{dce616ba-4dc5-11de-a2e0-00188b8bd269}
    Shell\AutoRun\command =G:\hwpcassistant.exe

    HKCU\..\..\Explorer\MountPoints2\{dffac6ff-0be3-11dd-a067-00188b8bd269}
    Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe MS32DLL.dll.vbs

    HKCU\..\..\Explorer\MountPoints2\{ffafcb8e-feed-11dc-a049-00188b8bd269}
    Shell\AutoRun\command =H:\uqb0julr.bat
    Shell\explore\Command =H:\uqb0julr.bat
    Shell\open\Command =H:\uqb0julr.bat

    ################## | Cracks / Keygens / Serials |

    "C:\Program Files\AVSMedia\VideoTools\VideoConverter\avs_video_converter_5.6_keygen.exe"
    22/06/2007 13:54 |Size 153410 |Crc32 572a8643 |Md5 cd07e237b4584dd06c64060c52948b79

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Autoplay.exe"
    29/04/2002 06:09 |Size 313344 |Crc32 ae1d34c5 |Md5 912dd7bc9a23471da010171f4238bc4d

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Adobe Acrobat Reader\AcRd5ENU.exe"
    29/04/2002 06:09 |Size 8981440 |Crc32 acdb198f |Md5 2962255a8318df62ddab73611ac22bf1

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\setup.exe"
    29/04/2002 06:09 |Size 22528 |Crc32 c5229452 |Md5 ce5d367a86af05ac137ec79512b49b28

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\Adobe\Setup.exe"
    29/04/2002 06:09 |Size 60928 |Crc32 b7754d2a |Md5 691fd06eb0a771313a1c7516c5f122fa

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\Adobe\_ISDel.exe"
    29/04/2002 06:09 |Size 8192 |Crc32 d8a115d1 |Md5 f1a89f71c7008b9824a58866b6e2c6bf

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\Adobe\Auto\Autoplay.exe"
    29/04/2002 06:09 |Size 309248 |Crc32 84da8449 |Md5 6ba7981bb61eacc67308b226410f076c

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\SVG Viewer\SVGSetup-en_US.exe"
    29/04/2002 06:09 |Size 2352273 |Crc32 d8343884 |Md5 b926767c70df46a07a2b42f822592e8f

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Photoshop\Setup.exe"
    29/04/2002 06:09 |Size 73728 |Crc32 c17e6cfe |Md5 71e6dd8a9de4a9baf89fca951768059a

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Photoshop\_ISDel.exe"
    29/04/2002 06:09 |Size 27648 |Crc32 72a82089 |Md5 51161bf79f25ff278912005078ad93d5

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Alien Skin\EC4000Demo.EXE"
    29/04/2002 06:09 |Size 1011852 |Crc32 d2fb1856 |Md5 4376b5a9c6a70455d16891c30974011a

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Extensis\IntellihancePro\IntellihancePro403.exe"
    29/04/2002 06:09 |Size 6557649 |Crc32 75f23291 |Md5 03439aa65a937c6189656fbdc54b0f5b

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Extensis\Mask Pro\Setup.exe"
    29/04/2002 06:09 |Size 56320 |Crc32 7069cd86 |Md5 1aeb989e361af85f5099de3da25457f4

    "C:\RECYCLER\S-1-5-21-918231761-2051662927-3364531510-1005\Volume_Serial_Number_Changer.exe"
    22/09/2008 16:38 |Size 24576 |Crc32 7f65b22c |Md5 642f163af2d2600185e9894df5fa5fea

    "C:\RECYCLER\S-1-5-21-918231761-2051662927-3364531510-1005\WinMPGVideoConvertv651_Crack.exe"
    22/09/2008 16:38 |Size 11776 |Crc32 57eb071b |Md5 607a675468508406045b2524b2988927

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Logiciel t‚l‚charger\stegamos\crack.exe"
    15/06/2004 08:01 |Size 36864 |Crc32 a107f22c |Md5 9f8866b9421f8ec817d9d130b0d2ae58

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Mes jeux\Call of Duty 4 - Modern Warfare\#readme#\rzr-cod4-keygen.exe"
    06/11/2007 22:47 |Size 98304 |Crc32 e7c94522 |Md5 8d87f601d5f583cdf02105c82bb7f675

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Adobe Acrobat Reader\AcRd5ENU.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Autoplay.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\Adobe\Auto\Autoplay.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\Adobe\Setup.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\Adobe\_ISDel.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\setup.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\SVG Viewer\SVGSetup-en_US.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Photoshop\Setup.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Photoshop\_ISDel.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Alien Skin\EC4000Demo.EXE

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda PageMaker 7 Demos\Install PhotoTiler Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Artistic Screening Tools\NEW Cutline Demo\Install Cutline Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Artistic Screening Tools\NEW EtchTone Demo\Install EtchTone Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Artistic Screening Tools\Series 3 Screens Demo\Install Series 3 Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Graphic Design Resources\Series 2 3-D Luxe SAMPLER\Install Series 2 Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Graphic Design Resources\Shadow Filter Demo\Install Shadow Demo (CD).exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Photo Tools & Lens Effects\NEW LensDoc Demo\Install LensDoc Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Photo Tools & Lens Effects\NEW Perspective Demo\Install Perspective Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Photo Tools & Lens Effects\VariFocus Demo\Install VariFocus Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Scientific Tools\Measure Filter Demo\Install Measure Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Corel\KPT effects_Trial.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Extensis\IntellihancePro\IntellihancePro403.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Extensis\Mask Pro\Setup.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\nik multimedia\nik Color Efex Pro! Complete\DuplexE.8bf

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Seiko Epson\PRINT Image Matching.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\devcon.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\Language\English\Buttons\EXE.bmp

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\Language\French\Buttons\EXE.bmp

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\Language\German\Buttons\EXE.bmp

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\Language\Italian\Buttons\EXE.bmp

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\Language\Russian\Buttons\EXE.bmp

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\Language\Spanish\Buttons\EXE.bmp

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\StarFuck.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Mes jeux\dum 3\crack\Doom_3_by_FFF.zip"
    Contain : Trainer.exe 69120 DFLT-X 4% 66140 02-08-2004 11:36:02 f4d1f975

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Mes jeux\dum 3\crack\Doom_3_by_Money.zip"
    Contain : Doom.3.PLUS.14.TRAINER\mo-d3fix.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Mes jeux\dum 3\crack\Doom_3_by_PiZZADOX.zip"
    Contain : Doom.3.PLUS.9.TRAINER\pztrain.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Mes jeux\dum 3\crack\Doom_3_No-CD_Crack.zip"
    Contain : Doom 3 No CD Crack(2).exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Mes jeux\dum 3\crack\Doom_3_NO_CD_by_Unknown.zip"
    Contain : Doom 3 No CD Crack(2).exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Mes jeux\dum 3\crack\Doom_3_v1.0.zip"
    Contain : Doom3.exe 5427200 DFLT-N 62% 2089212 01-08-2004 05:22:40 ae52b677

    "C:\Documents and Settings\Nicolas\Local Settings\Application Data\Microsoft\Messenger\superioa64@hotmail.fr\Sharing Folders\guillaume.medou@hotmail.fr\Adobe.Audition.v3.WinAll.Cracked-NoPE.rar"
    -> contain : Adobe.Audition.v3.WinAll.Cracked-NoPE\CRACK\Audition.exe

    "C:\Documents and Settings\Nicolas\Local Settings\Application Data\Microsoft\Messenger\superioa64@hotmail.fr\Sharing Folders\guillaume.medou@hotmail.fr\Adobe.Audition.v3.WinAll.Cracked-NoPE.rar"
    -> contain : Adobe.Audition.v3.WinAll.Cracked-NoPE\setup\Audition3_EFGJSI_Trial.exe

    "C:\Program Files\eMule\Incoming\AVS Video Converter 3.1 + Serial.rar"
    -> contain : AVSVideoConverter3.exe

    "C:\Program Files\eMule\Incoming\AVS Video Converter v3.63.248 + Serial.rar"
    -> contain : AVSVideoConverter3.exe

    "C:\Program Files\eMule\Incoming\PES 2009 [PC] PRO EVOLUTION SOCCER 2009 DVD COMPLETO [ESP ING FR ITA] viene con crack y serial. descomprimir e instalar. funciona perfecto.rar"
    -> contain : pes2009\autorun.exe

    "C:\Program Files\eMule\Incoming\PES 2009 [PC] PRO EVOLUTION SOCCER 2009 DVD COMPLETO [ESP ING FR ITA] viene con crack y serial. descomprimir e instalar. funciona perfecto.rar"
    -> contain : pes2009\Crack\pes2009.exe

    "C:\Program Files\eMule\Incoming\PES 2009 [PC] PRO EVOLUTION SOCCER 2009 DVD COMPLETO [ESP ING FR ITA] viene con crack y serial. descomprimir e instalar. funciona perfecto.rar"
    -> contain : pes2009\DirectX9c\DXSETUP.exe

    "C:\Program Files\eMule\Incoming\PES 2009 [PC] PRO EVOLUTION SOCCER 2009 DVD COMPLETO [ESP ING FR ITA] viene con crack y serial. descomprimir e instalar. funciona perfecto.rar"
    -> contain : pes2009\program files\KONAMI\Pro Evolution Soccer 2009\pes2009.exe

    "C:\Program Files\eMule\Incoming\PES 2009 [PC] PRO EVOLUTION SOCCER 2009 DVD COMPLETO [ESP ING FR ITA] viene con crack y serial. descomprimir e instalar. funciona perfecto.rar"
    -> contain : pes2009\program files\KONAMI\Pro Evolution Soccer 2009\settings.exe

    "C:\Program Files\eMule\Incoming\PES 2009 [PC] PRO EVOLUTION SOCCER 2009 DVD COMPLETO [ESP ING FR ITA] viene con crack y serial. descomprimir e instalar. funciona perfecto.rar"
    -> contain : pes2009\setup.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\wings platinum Serial CDs.rar"
    -> contain : eToroSetup-036.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\TmSunrise Crack OK.rar"
    -> contain : TmSunrise Crack\TmSunrise.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\TmSunrise Crack OK.rar"
    -> contain : TmSunrise Crack\TmSunriseLauncher.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\wings platinum Keygen.rar"
    -> contain : SetupCasino-031.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\Zone alarm Pro 6.066.7.000_Fr+Keygen.rar"
    -> contain : Zone alarm Pro 6.066.7.000_Fr+Keygen\keygen.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\Zone alarm Pro 6.066.7.000_Fr+Keygen.rar"
    -> contain : Zone alarm Pro 6.066.7.000_Fr+Keygen\zapSetup_60_667_000.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\Spyware Doctor 2.1.0.254-Cracked.RAR"
    -> contain : sdtrial_210254.exe


    ################## | ! Fin du rapport # UsbFix V6.055 ! |

    a b 8 Sécurité
    19 Novembre 2009 16:17:22

  • Branche tes sources de données externes à ton PC (clé USB, disque dur externe, carte SD, etc...) sans les ouvrir.
  • Double-clique sur UsbFix présent sur ton Bureau pour le lancer.
  • Choisis l'option 2 (Suppression).
  • Ton Bureau disparaîtra et le PC redémarrera.
  • Au redémarrage, UsbFix scannera ton PC, laisse travailler l'outil.
  • Ensuite, poste le rapport UsbFix.txt qui apparaîtra avec le Bureau.

    Note : le rapport UsbFix.txt est sauvegardé à la racine du disque (C:\UsbFix.txt).
    20 Novembre 2009 10:36:05


    ############################## | UsbFix V6.055 |

    User : Nicolas (Administrateurs) # GASSIE
    Update on 18/11/2009 by Chiquitine29, C_XX & Chimay8
    Start at: 10:17:39 | 20/11/2009
    Website : http://pagesperso-orange.fr/NosTools/index.html
    Contact : FindyKill.Contact@gmail.com

    AMD Athlon(tm) 64 Processor 3800+
    Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 2
    Internet Explorer 7.0.5730.13
    Windows Firewall Status : Enabled
    AV : AntiVir Desktop 9.0.1.32 [ Enabled | Updated ]

    C:\ -> Disque fixe local # 169,95 Go (1,99 Go free) # NTFS
    D:\ -> Disque fixe local # 58,19 Go (50,62 Go free) [Sauvegarder] # NTFS
    E:\ -> Disque CD-ROM # 0 Mo (0 Mo free) [Audio CD] # CDFS
    F:\ -> Disque CD-ROM
    G:\ -> Disque amovible # 1,92 Go (557,2 Mo free) [CLEJP] # FAT32
    H:\ -> Disque fixe local # 465,65 Go (34,79 Go free) [My Book] # FAT32
    I:\ -> Disque amovible # 1,86 Go (1,19 Go free) [USB DISK] # FAT

    ############################## | Processus actifs |

    C:\WINDOWS\System32\smss.exe 552
    C:\WINDOWS\system32\csrss.exe 624
    C:\WINDOWS\system32\winlogon.exe 648
    C:\WINDOWS\system32\services.exe 692
    C:\WINDOWS\system32\lsass.exe 704
    C:\WINDOWS\system32\svchost.exe 904
    C:\WINDOWS\system32\logonui.exe 980
    C:\WINDOWS\system32\svchost.exe 1020
    C:\WINDOWS\System32\svchost.exe 1116
    C:\WINDOWS\system32\svchost.exe 1208
    C:\WINDOWS\system32\svchost.exe 1340
    C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe 1452
    C:\WINDOWS\system32\LEXBCES.EXE 1140
    C:\WINDOWS\system32\spoolsv.exe 1188
    C:\WINDOWS\system32\LEXPPS.EXE 1204
    C:\Program Files\Avira\AntiVir Desktop\sched.exe 1328
    C:\WINDOWS\system32\svchost.exe 1432
    C:\Program Files\a-squared Anti-Malware\a2service.exe 1500
    C:\Program Files\a-squared Free\a2service.exe 1516
    C:\Program Files\Avira\AntiVir Desktop\avguard.exe 1612
    C:\WINDOWS\system32\userinit.exe 1680
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe 1772
    C:\WINDOWS\Explorer.EXE 1760
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe 1804
    C:\Program Files\Bonjour\mDNSResponder.exe 1840
    C:\WINDOWS\eHome\ehRecvr.exe 1892
    C:\WINDOWS\eHome\ehSched.exe 1940
    C:\Program Files\CDBurnerXP\NMSAccessU.exe 2032
    C:\WINDOWS\system32\nvsvc32.exe 204
    C:\WINDOWS\eHome\ehRec.exe 200
    C:\WINDOWS\system32\PnkBstrA.exe 428
    C:\WINDOWS\system32\PnkBstrB.exe 448
    C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 496
    C:\WINDOWS\system32\svchost.exe 820
    C:\WINDOWS\system32\svchost.exe 1336
    C:\WINDOWS\ehome\mcrdsvc.exe 2104
    C:\WINDOWS\system32\wuauclt.exe 2304
    C:\WINDOWS\system32\wbem\wmiprvse.exe 2548
    C:\WINDOWS\system32\dllhost.exe 2796

    ################## | Fichiers # Dossiers infectieux |

    Supprimé ! C:\autorun.PNF
    Supprimé ! I:\Recycled\ctfmon.exe

    ################## | Registre # Clés infectieuses |

    Supprimé ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoClose"
    Supprimé ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoClose"
    Supprimé ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoFind"
    Supprimé ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoRun"

    ################## | Registre # Mountpoints2 |

    Supprimé ! HKCU\...\Explorer\MountPoints2\{257da044-08f9-11de-a263-00188b8bd269}\Shell\AutoRun\Command
    Supprimé ! HKCU\...\Explorer\MountPoints2\{26d11a95-e9c2-11dc-a014-00188b8bd269}\Shell\AutoRun\Command
    Supprimé ! HKCU\...\Explorer\MountPoints2\{39344b1d-2a5b-11de-a2a5-00188b8bd269}\Shell\AutoRun\Command
    Supprimé ! HKCU\...\Explorer\MountPoints2\{3c42c259-42d4-11de-a2cf-00188b8bd269}\Shell\AutoRun\Command
    Supprimé ! HKCU\...\Explorer\MountPoints2\{3d15db4b-1a35-11de-a287-00188b8bd269}\Shell\AutoRun\Command
    Supprimé ! HKCU\...\Explorer\MountPoints2\{5ee29fd6-533a-11de-a2e8-00188b8bd269}\Shell\AutoRun\Command
    Supprimé ! HKCU\...\Explorer\MountPoints2\{6ee72b80-4fb3-11dc-9e69-00188b8bd269}\Shell\AutoRun\Command
    Supprimé ! HKCU\...\Explorer\MountPoints2\{a5c1d3bd-1074-11de-a274-00188b8bd269}\Shell\AutoRun\Command
    Supprimé ! HKCU\...\Explorer\MountPoints2\{c25b45ce-44b2-11de-a2d1-00188b8bd269}\Shell\AutoRun\Command
    Supprimé ! HKCU\...\Explorer\MountPoints2\{c44b3546-0832-11de-a260-00188b8bd269}\Shell\AutoRun\Command
    Supprimé ! HKCU\...\Explorer\MountPoints2\{c4a8f7b6-f8d8-11db-9d61-00188b8bd269}\Shell\AutoRun\Command
    Supprimé ! HKCU\...\Explorer\MountPoints2\{d7740b3e-b43c-11de-a384-00188b8bd269}\Shell\AutoRun\Command
    Supprimé ! HKCU\...\Explorer\MountPoints2\{dce616ba-4dc5-11de-a2e0-00188b8bd269}\Shell\AutoRun\Command
    Supprimé ! HKCU\...\Explorer\MountPoints2\{dffac6ff-0be3-11dd-a067-00188b8bd269}\Shell\AutoRun\Command
    Supprimé ! HKCU\...\Explorer\MountPoints2\{ffafcb8e-feed-11dc-a049-00188b8bd269}\Shell\AutoRun\Command

    ################## | Listing des fichiers présent |

    [19/02/2007 22:23|--a------|0] C:\.epi
    [18/11/2009 14:04|--a------|747] C:\Ad-Report-CLEAN[1].log
    [18/11/2009 14:27|--a------|4287] C:\Ad-Report-CLEAN[2].log
    [22/10/2007 03:31|---------|1348242] C:\Apr2005_d3dx9_25_x64.cab
    [01/09/2005 07:17|--a------|0] C:\AUTOEXEC.BAT
    [17/11/2007 20:56|---------|12425991] C:\AVG7QT.DAT
    [25/08/2008 18:58|--ahs----|210] C:\boot.ini
    [10/08/2004 13:00|-rahs----|4952] C:\Bootfont.bin
    [01/09/2005 07:17|--a------|0] C:\CONFIG.SYS
    [22/01/2007 23:35|-rah-----|5654] C:\dell.sdr
    [25/04/2007 21:10|--a------|704] C:\drwtsn32.log
    [21/08/2007 17:30|--a------|570] C:\execut.reg
    [?|?|?] C:\hiberfil.sys
    [31/01/2007 21:15|--a------|4128] C:\INFCACHE.1
    [01/09/2005 07:17|--ah-----|0] C:\IO.SYS
    [31/01/2007 21:18|--a------|90] C:\LogiSetup.log
    [01/09/2005 07:17|--ah-----|0] C:\MSDOS.SYS
    [13/03/2008 18:48|--a------|252] C:\mspass.cfg
    [10/08/2004 13:00|-rahs----|47564] C:\NTDETECT.COM
    [10/08/2004 13:00|-rahs----|251712] C:\ntldr
    [?|?|?] C:\pagefile.sys
    [19/02/2007 22:23|--a------|13030] C:\PDOXUSRS.NET
    [10/11/2007 11:35|--a------|315] C:\rapport_clean.txt
    [10/11/2007 11:31|--a------|100] C:\resultat_clean.txt
    [20/11/2009 10:30|--a------|6095] C:\UsbFix.txt
    [24/03/2007 16:14|--ahs----|4096] C:\VSNAP.IDX
    [01/01/1995 01:00|-r-------|44] E:\Track01.cda
    [01/01/1995 01:02|-r-------|44] E:\Track02.cda
    [01/01/1995 01:06|-r-------|44] E:\Track03.cda
    [01/01/1995 01:10|-r-------|44] E:\Track04.cda
    [01/01/1995 01:12|-r-------|44] E:\Track05.cda
    [01/01/1995 01:15|-r-------|44] E:\Track06.cda
    [01/01/1995 01:19|-r-------|44] E:\Track07.cda
    [01/01/1995 01:21|-r-------|44] E:\Track08.cda
    [01/01/1995 01:23|-r-------|44] E:\Track09.cda
    [01/01/1995 01:26|-r-------|44] E:\Track10.cda
    [01/01/1995 01:30|-r-------|44] E:\Track11.cda
    [01/01/1995 01:33|-r-------|44] E:\Track12.cda
    [21/03/2008 18:14|-r-hs----|101092] G:\stw1ojde.bat
    [07/11/2008 10:10|--ah-----|4096] G:\._.Trashes
    [14/10/2009 19:55|--a------|6253514] G:\mongol 313.jpg
    [14/10/2009 19:55|--a------|6427625] G:\mongol 314.jpg
    [29/10/2008 13:09|--a------|730576896] H:\Suspect Zero.avi
    [06/08/2008 03:58|--a------|728774626] H:\jssnlgnd.avi
    [29/08/2009 16:19|--a------|39727152] H:\Traktor_321_Mac_UB.zip
    [29/10/2008 13:07|--a------|734513152] H:\Rush.Hour.3.FRENCH.DVDRiP.XviD-iD-CasualFirm.avi
    [29/10/2008 13:19|--a------|718991360] H:\Un Homme … Part.avi
    [29/10/2008 13:26|--a------|730617334] H:\Blow.avi
    [29/10/2008 13:39|--a------|733573120] H:\Hero.Wanted.avi
    [29/10/2008 13:12|--a------|736724596] H:\The.Contractor.STV.FRENCH.DVDRiP.XviD-TICKETS-PoWeR.avi
    [07/06/2009 17:16|---hs----|360] H:\desktop.ini
    [29/10/2008 13:42|--a------|727386112] H:\Jumper.avi
    [27/10/2008 15:47|--a------|2018112] H:\BATTLEFIELD.2.V1.0.ENG.HEKKIS.NOCD.ZIP
    [29/10/2008 13:13|--a------|731179008] H:\The.Happening.FRENCH.PROPER.R5.XViD-FUKINGKAMIZOL.LiCoKInE.TeaM.[emule-island.com].avi
    [08/06/2008 14:44|--a------|4143986] H:\DSC_2150.JPG
    [24/12/2007 13:09|--a------|6307850] H:\paysage 001.jpg
    [24/12/2007 13:09|--a------|5786824] H:\paysage 002.jpg
    [24/12/2007 13:09|--a------|5162565] H:\paysage 003.jpg
    [24/12/2007 13:09|--a------|4435850] H:\paysage 004.jpg
    [24/12/2007 13:09|--a------|5780246] H:\paysage 005.jpg
    [10/03/2007 13:24|--a------|2696262] H:\anniversaire nicolas 002.jpg
    [20/03/2007 13:14|--a------|4133959] H:\Feux Debat Case (1).jpg
    [20/03/2007 13:14|--a------|4663608] H:\Feux Debat Case (2).jpg
    [20/03/2007 13:14|--a------|3007833] H:\Feux Debat Case (3).jpg
    [20/03/2007 13:14|--a------|4330880] H:\Feux Debat Case (4).jpg
    [20/03/2007 13:14|--a------|3315524] H:\Feux Debat Case (5).jpg
    [20/03/2007 13:14|--a------|2676202] H:\Feux Debat Case (6).jpg
    [20/03/2007 13:14|--a------|3628273] H:\Feux Debat Case (7).jpg
    [20/03/2007 13:14|--a------|4549122] H:\Feux Debat Case (8).jpg
    [20/03/2007 13:14|--a------|3849878] H:\Feux Debat Case (9).jpg
    [20/03/2007 13:14|--a------|3711686] H:\Feux Debat Case (10).jpg
    [20/03/2007 13:14|--a------|4071855] H:\Feux Debat Case (11).jpg
    [20/03/2007 13:14|--a------|4569201] H:\Feux Debat Case (12).jpg
    [20/03/2007 13:14|--a------|4392689] H:\Feux Debat Case.jpg
    [29/10/2008 13:22|--a------|632086528] H:\anthony cavana comique fr divx.avi
    [05/10/2006 17:36|--a------|3808692] H:\06 053.jpg
    [05/10/2006 17:36|--a------|4079719] H:\06 051.jpg
    [05/10/2006 17:36|--a------|4077454] H:\06 052.jpg
    [29/10/2008 13:25|--a------|733583668] H:\Bee.Movie.[2007.French].TS.DivX-LTT.avi
    [04/11/2006 16:31|--a------|727506] H:\chien suzon 145.jpg
    [10/10/2006 21:46|--a------|3565828] H:\chien suzon 088.jpg
    [10/10/2006 21:46|--a------|3755905] H:\chien suzon 084.jpg
    [10/10/2006 21:46|--a------|3877690] H:\chien suzon 074.jpg
    [29/10/2008 13:10|--a------|736493568] H:\The.Art.Of.War.Two.Betrayal.FRENCH.DVDRip.THEWARRIOR777.By.Vercingetorix.[emule-island.com].avi
    [01/06/2009 15:46|--a------|3781952] H:\SL372412.JPG
    [03/11/2008 14:15|--a------|2373047] H:\img183.jpg
    [01/06/2009 15:46|--a------|315083] H:\SL372415.JPG
    [25/10/2008 17:49|--a------|730972160] H:\A la crois‚e des mondes - la boussole d'or [dvdrip] FRENCH 2007.avi
    [01/06/2009 15:56|--a------|3450969] H:\SL372423.JPG
    [16/11/2008 05:15|--a------|734083072] H:\Gad_Elmaleh_Papa_est_en_haut_Spectacle_2008_REPACK_1CD.avi
    [06/11/2008 04:35|--a------|731539698] H:\La Loi et l'Ordre - Robert De Niro,Al Pacino - Fr 2008 Qualite Super.avi
    [30/10/2008 19:34|--a------|732126988] H:\La.Vie.Est.Belle.FRENCH.DVDRIP.AVI
    [16/11/2008 01:22|--a------|732829696] H:\Space.Chimps.FRENCH.DVDRIP.XVID-ULTRASON.Upload.(Steph53).Mininova.org..avi
    [31/12/2008 06:56|--a------|733745152] H:\Nicolas.Canteloup.2eme.couche.French.Dvdrip.Xvid-RLD.[emule-island.com].avi
    [02/01/2009 03:26|--a------|738670592] H:\quatres mariages et un enterrement.avi
    [26/12/2008 21:05|--a------|732661760] H:\Film. Les Trois FrŠres (Le Film des Inconnus) - FRENCH DVDRIP XViD.avi
    [29/10/2008 13:14|--a------|732753920] H:\The.Hitcher.FRENCH.DVDRiP.XviD-GeT-AceBot.avi
    [29/10/2008 13:16|--a------|727533568] H:\The.Invisible.2007.FRENCH.TS.XviD-CiNEFOX-CasualFirm.avi
    [29/10/2008 13:29|--a------|731176960] H:\Chasseurs.de.Primes(Ice Cube).avi
    [08/09/2009 22:35|--a------|3265965] H:\ragga pumpin.mp3
    [29/10/2008 13:46|--a------|733544448] H:\Les.Deux.Mondes.avi
    [29/10/2008 13:21|--a------|730558464] H:\1408.PROPER.FRENCH.DVDRiP.XviD-iD-UnitY.avi
    [29/10/2008 13:23|--a------|730959872] H:\Babylon.A.D.FRENCH.CAM.REPACK.1CD.XViD-STS.[emule-island.com].avi
    [29/10/2008 13:31|--a------|733974528] H:\CONTRE-ENQUETE.FRENCH.DVDRIP.avi
    [29/10/2008 13:32|--a------|735866880] H:\Coq.De.Combat.FRENCH.DVDRIP.XVID-ITOMA.caline012.LiCoKInE.TeaM.[emule-island.com].avi
    [29/10/2008 13:34|--a------|734300160] H:\Dance With Me.DVDRip.FR de France.avi
    [29/10/2008 13:35|--a------|733358080] H:\Doomsday.FRENCH.DVDRIP.XVID-DOOMSDAY.Upload.(Steph53).Mininova.org..avi
    [29/10/2008 13:36|--a------|659920896] H:\full metal jacket divx fr.avi
    [29/10/2008 11:40|--a------|732403712] H:\Iron.Man.FRENCH.TC.XViD-iRON.avi
    [29/10/2008 13:43|--a------|732315648] H:\Knocked.Up.UNRATED.FRENCH.DVDRip.REPACK.1CD.XViD-STS-LuCiFeR.avi
    [29/10/2008 13:44|--a------|734210048] H:\Kung.Fu.Panda.FRENCH.SCR.XViD-ABI-Share.By.OrAnGeS.avi
    [29/10/2008 13:47|--a------|734865408] H:\Little_Black_Book.avi
    [29/10/2008 13:03|--a------|732125854] H:\max la menace.avi
    [29/10/2008 13:04|--a------|731701248] H:\Prey_2007_dvdrip_fr.avi
    [05/07/2009 11:22|--ahs----|149504] H:\Thumbs.db
    [29/10/2008 13:06|--a------|730626048] H:\PROFESSION PROFILER.avi
    [06/08/2008 21:19|--a------|731798720] H:\50mrParadixman.avi
    [06/08/2008 21:15|--a------|730288128] H:\douceParadixman.avi
    [07/08/2008 07:07|--a------|731703296] H:\fqsdfqffdsgsd.avi
    [06/08/2008 21:01|--a------|735129600] H:\HyperTensionFr.avi
    [07/08/2008 07:02|--a------|711680000] H:\Lecinquiemeelement.avi
    [17/04/2009 15:00|--a------|107201604] H:\repas de classe.exe
    [26/09/2009 12:42|--a------|60703976] H:\Alex & Giro @ Malejan Rave (31-07-09) [www.sonidopdf.com].mp3
    [29/08/2009 17:34|--a------|4663725] H:\mplay_multimedia_player_1_11136.hqx
    [29/08/2009 17:43|--a------|18971475] H:\Songbird_1.2.0-1146_macosx-i686.dmg
    [30/08/2009 20:29|--ah-----|4096] H:\._.Trashes
    [26/09/2009 12:42|--a------|61720709] H:\ALEX y GIRO @ RADIOSHOW (17-09-09) Capitulo-120 [www.sonidopdf.com].mp3
    [13/08/2009 22:04|--a------|4946549] H:\Wisin Y Yandel feat Aventura - Noche De Sexo.mp3
    [30/04/2009 21:48|--a------|63363451] H:\Urta & Navarro @ MR Dance Club (09-04-09) [www.sonidopdf.com].mp3
    [23/10/2009 06:50|---hs----|3123] H:\AlbumArtSmall.jpg
    [08/05/2009 16:38|---hs----|1499] H:\AlbumArt_{8F04AC3D-05A6-48A3-8C68-7753502524C6}_Small.jpg
    [23/10/2009 06:50|---hs----|11840] H:\Folder.jpg
    [08/05/2009 16:38|---hs----|4995] H:\AlbumArt_{8F04AC3D-05A6-48A3-8C68-7753502524C6}_Large.jpg
    [29/10/2008 13:10|--a------|736493568] H:\The.Art.Of.War.Two.Betrayal.FRENCH.DVDRip.THEWARRIOR777.By.Vercingetorix.[emule-island.com] - Copie.avi
    [01/06/2009 15:32|--a------|1798448] H:\Marne de Nay.JPG
    [01/06/2009 15:29|--a------|1296562] H:\Roche Montaud.JPG
    [01/06/2009 16:06|--a------|3408728] H:\SL372425.JPG
    [07/06/2009 17:16|---hs----|2410] H:\AlbumArt_{1BD7FA5F-4B6D-4D33-B16D-01B0AF72510A}_Small.jpg
    [07/06/2009 17:16|---hs----|9469] H:\AlbumArt_{1BD7FA5F-4B6D-4D33-B16D-01B0AF72510A}_Large.jpg
    [03/11/2009 14:44|--a------|38830] I:\bdon.bmp
    [12/05/2008 11:23|-r-hs----|117833] I:\uqb0julr.bat
    [03/11/2009 14:33|--a------|69242] I:\Haeder.jpg
    [03/11/2009 14:45|--a------|10934] I:\logo.bmp
    [03/11/2009 14:32|--a------|66870] I:\logo.bmp.192116
    [03/11/2009 14:35|--a------|21942] I:\Haeder.jpg.192038
    [03/11/2009 14:31|--a------|262220] I:\logo.bmp.00127
    [03/11/2009 14:33|--a------|29284] I:\bdon.jpg
    [03/11/2009 14:34|--a------|18188] I:\logo.psd
    [20/10/2009 10:17|--a------|309500] I:\manif 011.jpg
    [08/11/2009 20:29|--a------|1172] I:\BOOTEX.LOG
    [20/10/2009 10:17|--a------|360285] I:\manif 017.jpg
    [03/11/2009 14:32|--a------|82998] I:\bdon.bmp.144192
    [03/11/2009 14:34|--a------|66870] I:\logo.psd.192116
    [20/10/2009 10:18|--a------|406679] I:\manif 024.jpg
    [20/10/2009 10:18|--a------|448523] I:\manif 025.jpg
    [20/10/2009 10:18|--a------|241426] I:\manif 039.jpg
    [20/10/2009 10:18|--a------|191767] I:\manif 040.jpg
    [20/10/2009 10:18|--a------|261657] I:\manif 043.jpg
    [20/10/2009 10:18|--a------|217121] I:\manif 048.jpg
    [20/10/2009 10:18|--a------|364777] I:\manif 052.jpg
    [20/10/2009 10:19|--a------|333002] I:\manif 062.jpg
    [20/10/2009 10:20|--a------|206307] I:\manif 081.jpg
    [20/10/2009 10:20|--a------|380371] I:\manif 084.jpg
    [20/10/2009 10:20|--a------|376892] I:\manif 088.jpg
    [20/10/2009 10:20|--a------|333355] I:\manif 092.jpg
    [20/10/2009 10:21|--a------|299953] I:\manif 107.jpg
    [20/10/2009 10:21|--a------|286739] I:\manif 108.jpg
    [20/10/2009 10:23|--a------|419077] I:\manif 145.jpg
    [20/10/2009 10:23|--a------|215860] I:\manif 154.jpg
    [20/10/2009 10:23|--a------|290216] I:\manif 160.jpg
    [20/10/2009 10:24|--a------|200438] I:\manif 172.jpg
    [20/10/2009 10:24|--a------|182722] I:\manif 173.jpg
    [20/10/2009 10:24|--a------|259510] I:\manif 176.jpg
    [20/10/2009 10:24|--a------|275262] I:\manif 177.jpg
    [20/10/2009 10:24|--a------|304800] I:\manif 189.jpg
    [20/10/2009 10:25|--a------|316181] I:\manif 190.jpg
    [20/10/2009 10:26|--a------|334369] I:\manif 235.jpg
    [20/10/2009 10:27|--a------|410703] I:\manif 239.jpg
    [20/10/2009 10:27|--a------|371795] I:\manif 242.jpg
    [20/10/2009 10:27|--a------|330112] I:\manif 243.jpg
    [20/10/2009 10:27|--a------|213849] I:\manif 247.jpg
    [20/10/2009 10:27|--a------|243553] I:\manif 254.jpg
    [20/10/2009 10:28|--a------|352785] I:\manif 277.jpg
    [20/10/2009 10:29|--a------|380982] I:\manif 289.jpg
    [20/10/2009 10:30|--a------|247494] I:\manif 306.jpg
    [20/10/2009 10:31|--a------|452246] I:\manif 328.jpg
    [20/10/2009 10:32|--a------|231319] I:\manif 362.jpg
    [20/10/2009 10:33|--a------|186524] I:\manif 373.jpg
    [20/10/2009 10:33|--a------|204494] I:\manif 374.jpg
    [03/11/2009 15:21|--a------|711587844] I:\welcomebis.mpg
    [03/11/2009 14:32|--a------|262220] I:\bdon.bmp.00131
    [03/11/2009 14:34|--a------|262220] I:\logo.psd.00127
    [03/11/2009 14:35|--a------|82998] I:\bdon.jpg.144192
    [03/11/2009 14:35|--a------|262220] I:\bdon.jpg.00131
    [03/11/2009 14:35|--a------|786508] I:\Haeder.jpg.00679
    [21/03/2008 17:14|-r-hs----|101092] I:\stw1ojde.bat

    ################## | Vaccination |

    # C:\autorun.inf -> Dossier créé par UsbFix.
    # D:\autorun.inf -> Dossier créé par UsbFix.
    # G:\autorun.inf -> Dossier créé par UsbFix.
    # H:\autorun.inf -> Dossier créé par UsbFix.
    # I:\autorun.inf -> Dossier créé par UsbFix.

    ################## | Suspect | http://www.virustotal.com |


    ################## | Cracks / Keygens / Serials |

    "C:\Program Files\AVSMedia\VideoTools\VideoConverter\avs_video_converter_5.6_keygen.exe"
    22/06/2007 13:54 |Size 153410 |Crc32 572a8643 |Md5 cd07e237b4584dd06c64060c52948b79

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Autoplay.exe"
    29/04/2002 06:09 |Size 313344 |Crc32 ae1d34c5 |Md5 912dd7bc9a23471da010171f4238bc4d

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Adobe Acrobat Reader\AcRd5ENU.exe"
    29/04/2002 06:09 |Size 8981440 |Crc32 acdb198f |Md5 2962255a8318df62ddab73611ac22bf1

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\setup.exe"
    29/04/2002 06:09 |Size 22528 |Crc32 c5229452 |Md5 ce5d367a86af05ac137ec79512b49b28

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\Adobe\Setup.exe"
    29/04/2002 06:09 |Size 60928 |Crc32 b7754d2a |Md5 691fd06eb0a771313a1c7516c5f122fa

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\Adobe\_ISDel.exe"
    29/04/2002 06:09 |Size 8192 |Crc32 d8a115d1 |Md5 f1a89f71c7008b9824a58866b6e2c6bf

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\Adobe\Auto\Autoplay.exe"
    29/04/2002 06:09 |Size 309248 |Crc32 84da8449 |Md5 6ba7981bb61eacc67308b226410f076c

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\SVG Viewer\SVGSetup-en_US.exe"
    29/04/2002 06:09 |Size 2352273 |Crc32 d8343884 |Md5 b926767c70df46a07a2b42f822592e8f

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Photoshop\Setup.exe"
    29/04/2002 06:09 |Size 73728 |Crc32 c17e6cfe |Md5 71e6dd8a9de4a9baf89fca951768059a

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Photoshop\_ISDel.exe"
    29/04/2002 06:09 |Size 27648 |Crc32 72a82089 |Md5 51161bf79f25ff278912005078ad93d5

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Alien Skin\EC4000Demo.EXE"
    29/04/2002 06:09 |Size 1011852 |Crc32 d2fb1856 |Md5 4376b5a9c6a70455d16891c30974011a

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Extensis\IntellihancePro\IntellihancePro403.exe"
    29/04/2002 06:09 |Size 6557649 |Crc32 75f23291 |Md5 03439aa65a937c6189656fbdc54b0f5b

    "C:\Program Files\eMule\Incoming\ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Extensis\Mask Pro\Setup.exe"
    29/04/2002 06:09 |Size 56320 |Crc32 7069cd86 |Md5 1aeb989e361af85f5099de3da25457f4

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Logiciel t‚l‚charger\stegamos\crack.exe"
    15/06/2004 08:01 |Size 36864 |Crc32 a107f22c |Md5 9f8866b9421f8ec817d9d130b0d2ae58

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Mes jeux\Call of Duty 4 - Modern Warfare\#readme#\rzr-cod4-keygen.exe"
    06/11/2007 22:47 |Size 98304 |Crc32 e7c94522 |Md5 8d87f601d5f583cdf02105c82bb7f675

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Adobe Acrobat Reader\AcRd5ENU.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Autoplay.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\Adobe\Auto\Autoplay.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\Adobe\Setup.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\Adobe\_ISDel.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\PostScript Drivers\setup.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Goodies\SVG Viewer\SVGSetup-en_US.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Photoshop\Setup.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Photoshop\_ISDel.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Alien Skin\EC4000Demo.EXE

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda PageMaker 7 Demos\Install PhotoTiler Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Artistic Screening Tools\NEW Cutline Demo\Install Cutline Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Artistic Screening Tools\NEW EtchTone Demo\Install EtchTone Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Artistic Screening Tools\Series 3 Screens Demo\Install Series 3 Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Graphic Design Resources\Series 2 3-D Luxe SAMPLER\Install Series 2 Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Graphic Design Resources\Shadow Filter Demo\Install Shadow Demo (CD).exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Photo Tools & Lens Effects\NEW LensDoc Demo\Install LensDoc Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Photo Tools & Lens Effects\NEW Perspective Demo\Install Perspective Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Photo Tools & Lens Effects\VariFocus Demo\Install VariFocus Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Andromeda\Andromeda Photoshop 7 Demos\Scientific Tools\Measure Filter Demo\Install Measure Demo.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Corel\KPT effects_Trial.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Extensis\IntellihancePro\IntellihancePro403.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Extensis\Mask Pro\Setup.exe

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\nik multimedia\nik Color Efex Pro! Complete\DuplexE.8bf

    "C:\Program Files\eMule\Incoming\(Avs) Adobe Photoshop 7.0 Full (Serial).zip"
    Contain : ADOBE PHOTOSHOP 7.0 FULL [RETAIL] +serial\Third Party Products\Seiko Epson\PRINT Image Matching.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\devcon.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\Language\English\Buttons\EXE.bmp

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\Language\French\Buttons\EXE.bmp

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\Language\German\Buttons\EXE.bmp

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\Language\Italian\Buttons\EXE.bmp

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\Language\Russian\Buttons\EXE.bmp

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\Language\Spanish\Buttons\EXE.bmp

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\crack no cd tm sunrise (trackmania sunrise) marche!!! avec cassage protection star force..zip"
    Contain : nocd tm sunrise\StarFuck.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Mes jeux\dum 3\crack\Doom_3_by_FFF.zip"
    Contain : Trainer.exe 69120 DFLT-X 4% 66140 02-08-2004 11:36:02 f4d1f975

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Mes jeux\dum 3\crack\Doom_3_by_Money.zip"
    Contain : Doom.3.PLUS.14.TRAINER\mo-d3fix.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Mes jeux\dum 3\crack\Doom_3_by_PiZZADOX.zip"
    Contain : Doom.3.PLUS.9.TRAINER\pztrain.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Mes jeux\dum 3\crack\Doom_3_No-CD_Crack.zip"
    Contain : Doom 3 No CD Crack(2).exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Mes jeux\dum 3\crack\Doom_3_NO_CD_by_Unknown.zip"
    Contain : Doom 3 No CD Crack(2).exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Mes jeux\dum 3\crack\Doom_3_v1.0.zip"
    Contain : Doom3.exe 5427200 DFLT-N 62% 2089212 01-08-2004 05:22:40 ae52b677

    "C:\Documents and Settings\Nicolas\Local Settings\Application Data\Microsoft\Messenger\superioa64@hotmail.fr\Sharing Folders\guillaume.medou@hotmail.fr\Adobe.Audition.v3.WinAll.Cracked-NoPE.rar"
    -> contain : Adobe.Audition.v3.WinAll.Cracked-NoPE\CRACK\Audition.exe

    "C:\Documents and Settings\Nicolas\Local Settings\Application Data\Microsoft\Messenger\superioa64@hotmail.fr\Sharing Folders\guillaume.medou@hotmail.fr\Adobe.Audition.v3.WinAll.Cracked-NoPE.rar"
    -> contain : Adobe.Audition.v3.WinAll.Cracked-NoPE\setup\Audition3_EFGJSI_Trial.exe

    "C:\Program Files\eMule\Incoming\AVS Video Converter 3.1 + Serial.rar"
    -> contain : AVSVideoConverter3.exe

    "C:\Program Files\eMule\Incoming\AVS Video Converter v3.63.248 + Serial.rar"
    -> contain : AVSVideoConverter3.exe

    "C:\Program Files\eMule\Incoming\PES 2009 [PC] PRO EVOLUTION SOCCER 2009 DVD COMPLETO [ESP ING FR ITA] viene con crack y serial. descomprimir e instalar. funciona perfecto.rar"
    -> contain : pes2009\autorun.exe

    "C:\Program Files\eMule\Incoming\PES 2009 [PC] PRO EVOLUTION SOCCER 2009 DVD COMPLETO [ESP ING FR ITA] viene con crack y serial. descomprimir e instalar. funciona perfecto.rar"
    -> contain : pes2009\Crack\pes2009.exe

    "C:\Program Files\eMule\Incoming\PES 2009 [PC] PRO EVOLUTION SOCCER 2009 DVD COMPLETO [ESP ING FR ITA] viene con crack y serial. descomprimir e instalar. funciona perfecto.rar"
    -> contain : pes2009\DirectX9c\DXSETUP.exe

    "C:\Program Files\eMule\Incoming\PES 2009 [PC] PRO EVOLUTION SOCCER 2009 DVD COMPLETO [ESP ING FR ITA] viene con crack y serial. descomprimir e instalar. funciona perfecto.rar"
    -> contain : pes2009\program files\KONAMI\Pro Evolution Soccer 2009\pes2009.exe

    "C:\Program Files\eMule\Incoming\PES 2009 [PC] PRO EVOLUTION SOCCER 2009 DVD COMPLETO [ESP ING FR ITA] viene con crack y serial. descomprimir e instalar. funciona perfecto.rar"
    -> contain : pes2009\program files\KONAMI\Pro Evolution Soccer 2009\settings.exe

    "C:\Program Files\eMule\Incoming\PES 2009 [PC] PRO EVOLUTION SOCCER 2009 DVD COMPLETO [ESP ING FR ITA] viene con crack y serial. descomprimir e instalar. funciona perfecto.rar"
    -> contain : pes2009\setup.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\wings platinum Serial CDs.rar"
    -> contain : eToroSetup-036.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\TmSunrise Crack OK.rar"
    -> contain : TmSunrise Crack\TmSunrise.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\TmSunrise Crack OK.rar"
    -> contain : TmSunrise Crack\TmSunriseLauncher.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\wings platinum Keygen.rar"
    -> contain : SetupCasino-031.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\Zone alarm Pro 6.066.7.000_Fr+Keygen.rar"
    -> contain : Zone alarm Pro 6.066.7.000_Fr+Keygen\keygen.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\Zone alarm Pro 6.066.7.000_Fr+Keygen.rar"
    -> contain : Zone alarm Pro 6.066.7.000_Fr+Keygen\zapSetup_60_667_000.exe

    "H:\wd_windows_tools\Documentation\GRE\POL\environnement ZaRmOuD\Hack\Spyware Doctor 2.1.0.254-Cracked.RAR"
    -> contain : sdtrial_210254.exe


    ################## | Upload |

    Veuillez envoyer le fichier : C:\DOCUME~1\Nicolas\Bureau\UsbFix_Upload_Me_GASSIE.zip : http://forum-aide-contre-virus.be/usbfix/choix_fichier....
    Merci pour votre contribution .

    ################## | ! Fin du rapport # UsbFix V6.055 ! |

    a b 8 Sécurité
    20 Novembre 2009 14:42:14

    Citation :
    AVG Anti-Rootkit Free-->C:\Program Files\GRISOFT\AVG Anti-Rootkit Free\Uninstall.exe
    AVG Anti-Spyware 7.5-->C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe

    --> Ces deux programmes ne sont plus mis à jour, ils sont obsolètes. Tu peux les désinstaller.

  • Relance UsbFix et choisis l'option 5 pour le désinstaller.

  • Refais un scan RSIT et poste le rapport log.
    20 Novembre 2009 16:03:08

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Nicolas at 2009-11-20 16:01:20
    Microsoft Windows XP Professionnel Service Pack 2
    System drive C: has 6 GB (4%) free of 174 GB
    Total RAM: 958 MB (52% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 16:01:45, on 20/11/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16915)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
    C:\WINDOWS\system32\LEXBCES.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\LEXPPS.EXE
    C:\Program Files\Avira\AntiVir Desktop\sched.exe
    C:\Program Files\a-squared Anti-Malware\a2service.exe
    C:\Program Files\a-squared Free\a2service.exe
    C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\WINDOWS\eHome\ehRecvr.exe
    C:\WINDOWS\eHome\ehSched.exe
    C:\Program Files\CDBurnerXP\NMSAccessU.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\PnkBstrA.exe
    C:\WINDOWS\system32\PnkBstrB.exe
    C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\dllhost.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\WINDOWS\explorer.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Program Files\Windows Media Player\wmplayer.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Documents and Settings\Nicolas\Bureau\RSIT.exe
    C:\Program Files\Trend Micro\HijackThis\Nicolas.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.fr/ig/dell?hl=fr&client=dell-row&channel=fr&...
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
    O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
    O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
    O3 - Toolbar: Barre d'outils Copernic Desktop Search - Home - {4A1C6093-14F9-44D7-860E-5D265CFCA9D9} - C:\Program Files\Copernic Desktop Search - Home\Toolbar\ToolbarContainer101000311.dll
    O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O4 - HKLM\..\Run: [LXSUPMON] C:\WINDOWS\system32\LXSUPMON.EXE RUN
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [Copernic Desktop Search - Home] "C:\Program Files\Copernic Desktop Search - Home\DesktopSearchService.exe" /tray
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Startup: GigaTribe.lnk = C:\Program Files\GigaTribe\gigatribe.exe
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.05\AMVConverter\grab.html
    O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.05\MediaManager\grab.html
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll/206 (file missing)
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
    O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/F...
    O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - http://messenger.zone.msn.com/binary/msgrchkr.cab56986....
    O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} -
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
    O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} - http://launch.gamespyarcade.com/software/launch/alaunch...
    O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1...
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
    O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213....
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
    O23 - Service: ncvbads (7aasht6rf) - Unknown owner - C:\Program Files\Fichiers communs\tysarekb\zamsdyg.exe (file missing)
    O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Emsi Software GmbH - C:\Program Files\a-squared Anti-Malware\a2service.exe
    O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
    O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
    O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Droppix Service - Droppix - C:\Program Files\Fichiers communs\Droppix\DxService.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
    O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
    O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe

    --
    End of file - 11456 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    C:\WINDOWS\tasks\Maintenance en 1 clic.job
    C:\WINDOWS\tasks\User_Feed_Synchronization-{FC342377-AE10-4984-B5C2-B13D3FF8B7E5}.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-12-18 59032]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
    RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-09-19 329312]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
    BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll [2007-12-05 464184]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
    DriveLetterAccess - C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2005-09-08 110652]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
    Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    SSVHelper Class - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [2007-03-14 501400]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
    Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {0BF43445-2F28-4351-9252-17FE6E806AA0}
    {BA52B914-B692-46c4-B683-905236F6F655}
    {D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll [2008-06-19 352256]
    {4A1C6093-14F9-44D7-860E-5D265CFCA9D9} - Barre d'outils Copernic Desktop Search - Home - C:\Program Files\Copernic Desktop Search - Home\Toolbar\ToolbarContainer101000311.dll [2009-02-26 2306448]
    {21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "LXSUPMON"=C:\WINDOWS\system32\LXSUPMON.EXE [2002-03-08 900096]
    "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-10-04 8491008]
    "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-06-29 286720]
    "a-squared"=C:\Program Files\a-squared Anti-Malware\a2guard.exe [2009-01-04 2782352]
    "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
    "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-09-19 198160]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    ""= []

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
    "Copernic Desktop Search - Home"=C:\Program Files\Copernic Desktop Search - Home\DesktopSearchService.exe [2009-03-19 1602048]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!AVG Anti-Spyware]
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe /minimized []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC]
    C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVP]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDAgent]
    C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
    C:\WINDOWS\system32\ctfmon.exe [2004-08-10 15360]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSupport]
    C:\Program Files\Dell Support\DSAgnt.exe [2006-08-28 395776]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2007-08-08 1836544]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
    C:\Program Files\Internet Download Manager\IDMan.exe /onboot []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
    c:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-07-27 221184]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
    C:\Program Files\iTunes\iTunesHelper.exe [2007-09-26 267064]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
    C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
    C:\Program Files\MSN Messenger\msnmsgr.exe [2007-01-19 5674352]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
    C:\WINDOWS\system32\NvCpl.dll [2007-10-04 8491008]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
    C:\WINDOWS\system32\NvMcTray.dll [2007-10-04 81920]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
    nwiz.exe /install []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PinnacleDriverCheck]
    C:\WINDOWS\system32\PSDrvCheck.exe [2003-11-10 406016]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    C:\Program Files\QuickTime\qttask.exe [2007-06-29 286720]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
    C:\Program Files\Valve\Steam\\Steam.exe -silent []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Veoh]
    C:\Program Files\Veoh Networks\Veoh\VeohClient.exe [2008-08-13 3660848]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\{C0-0B-BC-CF-ZN}]
    C:\Documents and Settings\Nicolas\Local Settings\Temp\TIP2D002.exe P2D002 []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk]
    C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\READER~1.EXE [2005-09-23 29696]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^NkvMon.exe.lnk]
    C:\PROGRA~1\Nikon\NkView6\NkvMon.exe [2002-12-04 237568]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Nicolas^Menu Démarrer^Programmes^Démarrage^Adobe Gamma.lnk]
    C:\PROGRA~1\FICHIE~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2005-03-16 113664]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Nicolas^Menu Démarrer^Programmes^Démarrage^LemonScreen.lnk]
    C:\Documents and Settings\Nicolas\Application Data\Microsoft\Installer\{C75C9EFC-260B-4565-A801-904CEE81CBC8}\_bb32ea6.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Nicolas^Menu Démarrer^Programmes^Démarrage^TA_Start.lnk]
    C:\DOCUME~1\Nicolas\LOCALS~1\Temp\TIP2D002.exe P2D002 []

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

    C:\Documents and Settings\Nicolas\Menu Démarrer\Programmes\Démarrage
    GigaTribe.lnk - C:\Program Files\GigaTribe\gigatribe.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Driver]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Driver]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Guard]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
    "InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=145
    "NoLogOff"=0
    "NoSetFolders"=0
    "NoDriveAutoRun"=145
    "HonorAutoRunSetting"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=
    "NoDriveAutoRun"=
    "NoDriveTypeAutoRun"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
    "C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
    "C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "C:\Program Files\Fichiers communs\McAfee\MNA\McNASvc.exe"="C:\Program Files\Fichiers communs\McAfee\MNA\McNASvc.exe:*:Enabled:McAfee Network Agent"
    "C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe"="C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
    "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
    "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
    "C:\WINDOWS\system32\ZoneLabs\vsmon.exe"="C:\WINDOWS\system32\ZoneLabs\vsmon.exe:*:D isabled:TrueVector Service"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
    "G:\environnement ZaRmOuD\Mes jeux\Call of Duty 4 - Modern Warfare\iw3mp.exe"="G:\environnement ZaRmOuD\Mes jeux\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
    "C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe"="C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe:*:Enabled:MessengerDiscovery Live the Windows Live Messenger addon"
    "C:\WINDOWS\system32\LEXPPS.EXE"="C:\WINDOWS\system32\LEXPPS.EXE:*:Enabled:LEXPPS.EXE"
    "G:\environnement ZaRmOuD\Mes jeux\blobby\volley.exe"="G:\environnement ZaRmOuD\Mes jeux\blobby\volley.exe:*:Enabled:volley"
    "C:\Program Files\Codemasters\Worms 4 Mayhem\Worms 4 Mayhem.exe"="C:\Program Files\Codemasters\Worms 4 Mayhem\Worms 4 Mayhem.exe:*:Enabled:Worms 4 Mayhem"
    "C:\Program Files\Participatory Culture Foundation\Miro\xulrunner\python\Miro_Downloader.exe"="C:\Program Files\Participatory Culture Foundation\Miro\xulrunner\python\Miro_Downloader.exe:*:Enabled:Miro_Downloader"
    "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
    "C:\Program Files\EA GAMES\Battlefield 2\BF2.exe"="C:\Program Files\EA GAMES\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2"
    "C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:p nkBstrA"
    "C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:p nkBstrB"
    "C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe"="C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine"
    "C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe"="C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Messenger"
    "C:\Program Files\Fichiers communs\tysarekb\zamsdyg.exe"="C:\Program Files\Fichiers communs\tysarekb\zamsdyg.exe:*:Enabled:gpastrpkf"
    "C:\Program Files\GigaTribe\gigatribe.exe"="C:\Program Files\GigaTribe\gigatribe.exe:*:Enabled:GigaTribe"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

    ======File associations======

    .reg - open - "regedit.exe" "%1"

    ======List of files/folders created in the last 1 months======

    2009-11-20 10:30:26 ----RASHD---- C:\autorun.inf
    2009-11-19 10:58:21 ----D---- C:\UsbFix
    2009-11-19 00:11:18 ----D---- C:\rsit
    2009-11-18 14:03:51 ----D---- C:\Program Files\Ad-Remover
    2009-11-17 12:25:09 ----D---- C:\WINDOWS\prefTransLM20
    2009-11-17 12:25:09 ----D---- C:\WINDOWS\PrefsLM01
    2009-11-17 12:24:53 ----D---- C:\Program Files\LM Version-2.5-F
    2009-11-12 20:28:16 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
    2009-11-04 23:06:47 ----A---- C:\WINDOWS\imsins.BAK
    2009-10-28 19:23:41 ----D---- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
    2009-10-27 16:54:47 ----D---- C:\Program Files\Messenger Plus! Live
    2009-10-25 13:39:45 ----D---- C:\Program Files\GigaTribe
    2009-10-22 22:04:36 ----RSHD---- C:\Program Files\Fichiers communs\tysarekb

    ======List of files/folders modified in the last 1 months======

    2009-11-20 16:00:41 ----D---- C:\WINDOWS\system32\drivers
    2009-11-20 16:00:23 ----D---- C:\Program Files\Grisoft
    2009-11-20 15:59:19 ----D---- C:\WINDOWS\Prefetch
    2009-11-20 15:42:54 ----D---- C:\WINDOWS
    2009-11-20 14:30:00 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-11-20 10:34:02 ----D---- C:\Program Files\Mozilla Firefox
    2009-11-20 10:32:32 ----D---- C:\WINDOWS\Temp
    2009-11-20 10:30:02 ----SHD---- C:\RECYCLER
    2009-11-20 10:17:46 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-11-20 10:17:40 ----D---- C:\WINDOWS\Registration
    2009-11-19 16:59:13 ----D---- C:\WINDOWS\system32
    2009-11-18 14:17:00 ----D---- C:\Program Files
    2009-11-12 20:28:34 ----D---- C:\WINDOWS\Debug
    2009-11-12 20:28:24 ----HD---- C:\WINDOWS\inf
    2009-11-12 20:28:19 ----SHD---- C:\WINDOWS\system32\dllcache
    2009-11-11 18:45:53 ----HD---- C:\WINDOWS\$hf_mig$
    2009-11-09 21:55:27 ----D---- C:\Documents and Settings\Nicolas\Application Data\OpenOffice.org2
    2009-11-05 18:36:21 ----A---- C:\WINDOWS\system32\MRT.exe
    2009-11-03 21:03:39 ----D---- C:\WINDOWS\system32\FxsTmp
    2009-10-31 18:12:55 ----D---- C:\Program Files\Cheat Engine
    2009-10-31 18:12:54 ----D---- C:\Program Files\MP3JOINER
    2009-10-31 18:12:54 ----D---- C:\Program Files\DVD Audio Extractor
    2009-10-31 18:08:53 ----D---- C:\Program Files\a-squared Free
    2009-10-30 10:09:30 ----D---- C:\WINDOWS\Help
    2009-10-25 16:34:24 ----D---- C:\Program Files\eMule
    2009-10-25 11:28:46 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-10-22 22:04:36 ----D---- C:\Program Files\Fichiers communs
    2009-10-21 05:07:57 ----A---- C:\WINDOWS\system32\mshtml.dll

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 AmdK8;Pilote de processeur AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43520]
    R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
    R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
    R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2005-08-25 5628]
    R1 DLARTL_N;DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [2005-08-25 22684]
    R1 GearAspiWDM;GearAspiWDM; C:\WINDOWS\system32\drivers\GearAspiWDM.sys [2006-09-19 15664]
    R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848]
    R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-07-13 28520]
    R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-08-18 55656]
    R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2005-09-08 25628]
    R2 DLADResN;DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2005-09-08 2496]
    R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2005-09-08 86524]
    R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2005-09-08 14684]
    R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2005-09-08 6364]
    R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2005-09-08 87036]
    R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2005-09-08 94332]
    R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2005-08-12 40544]
    R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-08-05 54752]
    R2 Sentinel;Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [2007-04-27 90688]
    R3 ASAPIW2K;ASAPIW2K; C:\WINDOWS\System32\Drivers\ASAPIW2K.sys [2003-11-28 11264]
    R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys [2006-08-14 44544]
    R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-08-12 137728]
    R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
    R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-10-04 6854464]
    R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2005-11-02 10368]
    R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2006-08-15 1171464]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2005-10-26 27264]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-10 57600]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-04 17024]
    R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
    R4 AVG Anti-Rootkit;AVG Anti-Rootkit; C:\WINDOWS\System32\DRIVERS\avgarkt.sys []
    R4 AVG Anti-Spyware Driver;AVG Anti-Spyware Driver; \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys []
    R4 AvgArCln;Avg Anti-Rootkit Clean Driver; C:\WINDOWS\System32\DRIVERS\AvgArCln.sys []
    R4 AvgAsCln;AVG Anti-Spyware Clean Driver; C:\WINDOWS\System32\DRIVERS\AvgAsCln.sys []
    S3 Ad-Watch Connect Filter;Ad-Watch Connect Kernel Filter; \??\C:\WINDOWS\system32\drivers\NSDriver.sys []
    S3 Ad-Watch Real-Time Scanner;AW Real-Time Scanner; \??\C:\WINDOWS\system32\drivers\AWRTPD.sys []
    S3 Ad-Watch Registry Filter;Ad-Watch Registry Kernel Filter; \??\C:\WINDOWS\system32\drivers\AWRTRD.sys []
    S3 aytxk7qr;aytxk7qr; C:\WINDOWS\system32\drivers\aytxk7qr.sys []
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
    S3 DSproct;DSproct; \??\C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys []
    S3 E100B;Pilote de carte Intel (R) PRO; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2001-08-23 117760]
    S3 HWIONT;HWIONT; \??\C:\Documents and Settings\Nicolas\Bureau\MoreTV 3.53\HWIONT.sys []
    S3 MHNDRV;Pilote MHN; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
    S3 MobileAdapter;Huawei Mobile Adapter USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\hmumdm.sys [2007-09-06 101120]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
    S3 Profos;Profos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\profos.sys []
    S3 QCMerced;Logitech QuickCam Messenger; C:\WINDOWS\system32\DRIVERS\LVCM.sys [2003-06-27 472332]
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
    S3 SNTNLUSB;SafeNet USB SuperPro/UltraPro/HardwareKey; C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS [2007-04-27 35328]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
    S3 Trufos;Trufos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\trufos.sys []
    S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2007-09-06 30336]
    S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-03 59264]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
    S3 Usblink;Usblink Driver; C:\WINDOWS\System32\Drivers\ulink.sys [2003-03-08 37708]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
    S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
    S3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-10 20480]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
    S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
    S4 agp440;Filtre de bus AGP Intel; C:\WINDOWS\system32\DRIVERS\agp440.sys [2004-08-04 42368]
    S4 agpCPQ;Filtre de bus AGP Compaq; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2004-08-04 44928]
    S4 alim1541;Filtre de bus AGP ALI; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2004-08-04 42752]
    S4 amdagp;Pilote de filtre du bus AMD AGP; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2004-08-04 43008]
    S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2001-08-17 13952]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\DRIVERS\intelide.sys [2004-08-04 5504]
    S4 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-10 40320]
    S4 sisagp;Filtre de bus AGP SIS; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2004-08-04 41088]
    S4 viaagp;Filtre de bus AGP VIA; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2004-08-04 42240]
    S4 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-10 12032]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 a2AntiMalware;a-squared Anti-Malware Service; C:\Program Files\a-squared Anti-Malware\a2service.exe [2009-01-04 419448]
    R2 a2free;a-squared Free Service; C:\Program Files\a-squared Free\a2service.exe [2009-10-31 1858144]
    R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-06-07 611664]
    R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-07-13 108289]
    R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-08-18 185089]
    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2007-09-06 110592]
    R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
    R2 ehRecvr;Media Center Receiver Service; C:\WINDOWS\eHome\ehRecvr.exe [2006-10-09 237568]
    R2 ehSched;Service de planification Media Center; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 103424]
    R2 LexBceS;LexBce Server; C:\WINDOWS\system32\LEXBCES.EXE [2002-03-08 300544]
    R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
    R2 NMSAccessU;NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-10-20 71096]
    R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-10-04 155716]
    R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-06-14 75064]
    R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-10-09 189672]
    R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
    S2 7aasht6rf;ncvbads; C:\Program Files\Fichiers communs\tysarekb\zamsdyg.exe []
    S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2004-08-10 268800]
    S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-09-30 72704]
    S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
    S3 Droppix Service;Droppix Service; C:\Program Files\Fichiers communs\Droppix\DxService.exe [2009-03-12 221184]
    S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-10-26 654848]
    S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
    S3 fsssvc;Service Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
    S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
    S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
    S3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2007-09-26 503608]
    S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2004-08-10 14336]
    S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-10 14336]
    S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

    -----------------EOF-----------------
    a b 8 Sécurité
    20 Novembre 2009 16:20:33

    1/

  • Lance ce fichier : C:\Program Files\Trend Micro\HijackThis\Nicolas.exe
  • Choisis Do a system scan only.
  • Coche les cases qui sont devant les lignes suivantes :

    R3 - URLSearchHook: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

    O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)

    O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)

    O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)

    O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} -

    O23 - Service: ncvbads (7aasht6rf) - Unknown owner - C:\Program Files\Fichiers communs\tysarekb\zamsdyg.exe (file missing)

  • Clique en bas sur Fix checked. Mets oui si HijackThis te demande quelque chose.
  • Ferme HijackThis.


    2/

  • Télécharge OTM (OldTimer) sur ton Bureau.
  • Double-clique sur OTM.exe afin de le lancer.
  • Copie (Ctrl+C) le texte suivant ci-dessous :

    :processes
    explorer.exe

    :services
    7aasht6rf

    :reg
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\{C0-0B-BC-CF-ZN}]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Nicolas^Menu Démarrer^Programmes^Démarrage^LemonScreen.lnk]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Nicolas^Menu Démarrer^Programmes^Démarrage^TA_Start.lnk]
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "C:\Program Files\Fichiers communs\tysarekb\zamsdyg.exe"=-

    :files
    C:\Program Files\Fichiers communs\tysarekb

    :commands
    [purity]
    [emptytemp]
    [reboot]

  • Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
  • Clique maintenant sur le bouton MoveIt! puis ferme OTM.

    ---> Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.

  • Poste le rapport situé dans ce dossier : C:\_OTM\MovedFiles\
    ---> Le nom du rapport correspond au moment de sa création : date_heure.log
    20 Novembre 2009 16:59:32

    All processes killed
    ========== PROCESSES ==========
    No active process named explorer.exe was found!
    ========== SERVICES/DRIVERS ==========
    Service 7aasht6rf stopped successfully!
    Service 7aasht6rf deleted successfully!
    ========== REGISTRY ==========
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\{C0-0B-BC-CF-ZN}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C0-0B-BC-CF-ZN}\ not found.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Nicolas^Menu Démarrer^Programmes^Démarrage^LemonScreen.lnk\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Nicolas^Menu Démarrer^Programmes^Démarrage^TA_Start.lnk\ deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\\C:\Program Files\Fichiers communs\tysarekb\zamsdyg.exe deleted successfully.
    ========== FILES ==========
    C:\Program Files\Fichiers communs\tysarekb folder moved successfully.
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: Administrateur
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 32902 bytes
    ->FireFox cache emptied: 4242261 bytes

    User: All Users
    ->Temp folder emptied: 6465571 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 32902 bytes

    User: essai

    User: Henri et Veronique
    ->Temp folder emptied: 78296425 bytes
    ->Temporary Internet Files folder emptied: 251229937 bytes
    ->Java cache emptied: 2879390 bytes
    ->FireFox cache emptied: 40924621 bytes

    User: LocalService
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 32969 bytes

    User: NetworkService
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 1572388 bytes

    User: Nicolas
    ->Temp folder emptied: 11463622 bytes
    ->Temporary Internet Files folder emptied: 6640676 bytes
    ->Java cache emptied: 0 bytes
    ->FireFox cache emptied: 90839714 bytes

    User: Pollux
    ->Temp folder emptied: 1559355134 bytes
    ->Temporary Internet Files folder emptied: 372525959 bytes
    ->Java cache emptied: 8490254 bytes
    ->FireFox cache emptied: 77855844 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 5394944 bytes
    Windows Temp folder emptied: 0 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 25328688 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 34313 bytes
    RecycleBin emptied: 3011639 bytes

    Total Files Cleaned = -1667,33 mb


    OTM by OldTimer - Version 3.1.2.0 log created on 11202009_164547

    Files moved on Reboot...

    Registry entries deleted on Reboot...
    a b 8 Sécurité
    20 Novembre 2009 19:21:05

  • Désinstalle Java SE Runtime Environment 6 Update 1.

  • Mets à jour Java.

  • Mets à jour Adobe Reader.

  • Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
  • Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
  • Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
  • Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
  • Sélectionne Exécuter un examen rapide.
  • Clique sur Rechercher. L'analyse démarre.
  • A la fin de l'analyse, un message s'affiche :
    Citation :
    L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

  • Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
  • Ferme tes navigateurs.
  • Si des malwares ont été détectés, clique sur Afficher les résultats.
  • Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
  • MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
    21 Novembre 2009 14:15:23

    Malwarebytes' Anti-Malware 1.41
    Version de la base de données: 3206
    Windows 5.1.2600 Service Pack 2

    21/11/2009 14:05:37
    mbam-log-2009-11-21 (14-05-37).txt

    Type de recherche: Examen rapide
    Eléments examinés: 136431
    Temps écoulé: 9 minute(s), 25 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 3
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 1
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 0

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    HKEY_CLASSES_ROOT\Interface\{81b7f2df-3427-4704-b441-f74a4de94ce1} (Adware.AdRotator) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{daed9266-8c28-4c1c-8b58-5c66eff1d302} (Search.Hijacker) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9c8a568e-4201-478a-8536-526cf371d2e2} (Trojan.BHO) -> Quarantined and deleted successfully.

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    HKEY_CLASSES_ROOT\regfile\shell\open\command\(default) (Broken.OpenCommand) -> Bad: ("regedit.exe" "%1") Good: (regedit.exe "%1") -> Quarantined and deleted successfully.

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    (Aucun élément nuisible détecté)
    a b 8 Sécurité
    21 Novembre 2009 19:59:21

  • Relance MBAM, va dans Quarantaine et supprime tout.

  • Refais un scan RSIT et poste le rapport log.
    21 Novembre 2009 23:44:48

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Nicolas at 2009-11-21 23:42:44
    Microsoft Windows XP Professionnel Service Pack 2
    System drive C: has 8 GB (5%) free of 174 GB
    Total RAM: 958 MB (43% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 23:43:00, on 21/11/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16915)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
    C:\WINDOWS\system32\LEXBCES.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\LEXPPS.EXE
    C:\Program Files\Avira\AntiVir Desktop\sched.exe
    C:\Program Files\a-squared Anti-Malware\a2service.exe
    C:\Program Files\a-squared Free\a2service.exe
    C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\WINDOWS\eHome\ehRecvr.exe
    C:\WINDOWS\eHome\ehSched.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\CDBurnerXP\NMSAccessU.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\PnkBstrA.exe
    C:\WINDOWS\system32\PnkBstrB.exe
    C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\dllhost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\wbem\wmiapsrv.exe
    C:\WINDOWS\system32\LXSUPMON.EXE
    C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Copernic Desktop Search - Home\DesktopSearchService.exe
    C:\Program Files\GigaTribe\gigatribe.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\Program Files\Windows Media Player\wmplayer.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Documents and Settings\Nicolas\Bureau\raccourci\RSIT.exe
    C:\Program Files\Trend Micro\HijackThis\Nicolas.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.fr/ig/dell?hl=fr&client=dell-row&channel=fr&...
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll
    O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
    O3 - Toolbar: Barre d'outils Copernic Desktop Search - Home - {4A1C6093-14F9-44D7-860E-5D265CFCA9D9} - C:\Program Files\Copernic Desktop Search - Home\Toolbar\ToolbarContainer101000311.dll
    O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O4 - HKLM\..\Run: [LXSUPMON] C:\WINDOWS\system32\LXSUPMON.EXE RUN
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [Copernic Desktop Search - Home] "C:\Program Files\Copernic Desktop Search - Home\DesktopSearchService.exe" /tray
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Startup: GigaTribe.lnk = C:\Program Files\GigaTribe\gigatribe.exe
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.05\AMVConverter\grab.html
    O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.05\MediaManager\grab.html
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll/206 (file missing)
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
    O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/F...
    O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - http://messenger.zone.msn.com/binary/msgrchkr.cab56986....
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
    O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} - http://launch.gamespyarcade.com/software/launch/alaunch...
    O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1...
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
    O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213....
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
    O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Emsi Software GmbH - C:\Program Files\a-squared Anti-Malware\a2service.exe
    O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
    O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
    O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Droppix Service - Droppix - C:\Program Files\Fichiers communs\Droppix\DxService.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
    O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
    O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe

    --
    End of file - 11732 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    C:\WINDOWS\tasks\Maintenance en 1 clic.job
    C:\WINDOWS\tasks\User_Feed_Synchronization-{FC342377-AE10-4984-B5C2-B13D3FF8B7E5}.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2009-02-27 61816]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
    RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-09-19 329312]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
    BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll [2007-12-05 464184]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
    DriveLetterAccess - C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2005-09-08 110652]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
    Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-11-21 41760]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
    Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-11-21 73728]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll [2008-06-19 352256]
    {4A1C6093-14F9-44D7-860E-5D265CFCA9D9} - Barre d'outils Copernic Desktop Search - Home - C:\Program Files\Copernic Desktop Search - Home\Toolbar\ToolbarContainer101000311.dll [2009-02-26 2306448]
    {21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "LXSUPMON"=C:\WINDOWS\system32\LXSUPMON.EXE [2002-03-08 900096]
    "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-10-04 8491008]
    "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-06-29 286720]
    "a-squared"=C:\Program Files\a-squared Anti-Malware\a2guard.exe [2009-01-04 2782352]
    "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
    "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-09-19 198160]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-11-21 149280]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
    "Adobe ARM"=C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]
    "Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
    "Copernic Desktop Search - Home"=C:\Program Files\Copernic Desktop Search - Home\DesktopSearchService.exe [2009-03-19 1602048]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!AVG Anti-Spyware]
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe /minimized []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC]
    C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVP]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDAgent]
    C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
    C:\WINDOWS\system32\ctfmon.exe [2004-08-10 15360]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSupport]
    C:\Program Files\Dell Support\DSAgnt.exe [2006-08-28 395776]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2007-08-08 1836544]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
    C:\Program Files\Internet Download Manager\IDMan.exe /onboot []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
    c:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-07-27 221184]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
    C:\Program Files\iTunes\iTunesHelper.exe [2007-09-26 267064]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
    C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
    C:\Program Files\MSN Messenger\msnmsgr.exe [2007-01-19 5674352]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
    C:\WINDOWS\system32\NvCpl.dll [2007-10-04 8491008]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
    C:\WINDOWS\system32\NvMcTray.dll [2007-10-04 81920]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
    nwiz.exe /install []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PinnacleDriverCheck]
    C:\WINDOWS\system32\PSDrvCheck.exe [2003-11-10 406016]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    C:\Program Files\QuickTime\qttask.exe [2007-06-29 286720]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
    C:\Program Files\Valve\Steam\\Steam.exe -silent []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Veoh]
    C:\Program Files\Veoh Networks\Veoh\VeohClient.exe [2008-08-13 3660848]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk]
    C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\READER~1.EXE []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^NkvMon.exe.lnk]
    C:\PROGRA~1\Nikon\NkView6\NkvMon.exe [2002-12-04 237568]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Nicolas^Menu Démarrer^Programmes^Démarrage^Adobe Gamma.lnk]
    C:\PROGRA~1\FICHIE~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2005-03-16 113664]

    C:\Documents and Settings\Nicolas\Menu Démarrer\Programmes\Démarrage
    GigaTribe.lnk - C:\Program Files\GigaTribe\gigatribe.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Driver]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Driver]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Guard]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
    "InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=145
    "NoLogOff"=0
    "NoSetFolders"=0
    "NoDriveAutoRun"=145
    "HonorAutoRunSetting"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=
    "NoDriveAutoRun"=
    "NoDriveTypeAutoRun"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
    "C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
    "C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "C:\Program Files\Fichiers communs\McAfee\MNA\McNASvc.exe"="C:\Program Files\Fichiers communs\McAfee\MNA\McNASvc.exe:*:Enabled:McAfee Network Agent"
    "C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe"="C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
    "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
    "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
    "C:\WINDOWS\system32\ZoneLabs\vsmon.exe"="C:\WINDOWS\system32\ZoneLabs\vsmon.exe:*:D isabled:TrueVector Service"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
    "G:\environnement ZaRmOuD\Mes jeux\Call of Duty 4 - Modern Warfare\iw3mp.exe"="G:\environnement ZaRmOuD\Mes jeux\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
    "C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe"="C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe:*:Enabled:MessengerDiscovery Live the Windows Live Messenger addon"
    "C:\WINDOWS\system32\LEXPPS.EXE"="C:\WINDOWS\system32\LEXPPS.EXE:*:Enabled:LEXPPS.EXE"
    "G:\environnement ZaRmOuD\Mes jeux\blobby\volley.exe"="G:\environnement ZaRmOuD\Mes jeux\blobby\volley.exe:*:Enabled:volley"
    "C:\Program Files\Codemasters\Worms 4 Mayhem\Worms 4 Mayhem.exe"="C:\Program Files\Codemasters\Worms 4 Mayhem\Worms 4 Mayhem.exe:*:Enabled:Worms 4 Mayhem"
    "C:\Program Files\Participatory Culture Foundation\Miro\xulrunner\python\Miro_Downloader.exe"="C:\Program Files\Participatory Culture Foundation\Miro\xulrunner\python\Miro_Downloader.exe:*:Enabled:Miro_Downloader"
    "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
    "C:\Program Files\EA GAMES\Battlefield 2\BF2.exe"="C:\Program Files\EA GAMES\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2"
    "C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:p nkBstrA"
    "C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:p nkBstrB"
    "C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe"="C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine"
    "C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe"="C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Messenger"
    "C:\Program Files\GigaTribe\gigatribe.exe"="C:\Program Files\GigaTribe\gigatribe.exe:*:Enabled:GigaTribe"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

    ======List of files/folders created in the last 1 months======

    2009-11-21 12:29:41 ----D---- C:\Documents and Settings\Nicolas\Application Data\Malwarebytes
    2009-11-21 12:29:29 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-11-21 12:29:29 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
    2009-11-21 11:46:05 ----A---- C:\WINDOWS\system32\javaws.exe
    2009-11-21 11:46:05 ----A---- C:\WINDOWS\system32\deploytk.dll
    2009-11-21 11:46:04 ----A---- C:\WINDOWS\system32\javaw.exe
    2009-11-21 11:46:04 ----A---- C:\WINDOWS\system32\java.exe
    2009-11-20 16:45:47 ----D---- C:\_OTM
    2009-11-20 10:30:26 ----RASHD---- C:\autorun.inf
    2009-11-19 10:58:21 ----D---- C:\UsbFix
    2009-11-19 00:11:18 ----D---- C:\rsit
    2009-11-18 14:03:51 ----D---- C:\Program Files\Ad-Remover
    2009-11-17 12:25:09 ----D---- C:\WINDOWS\prefTransLM20
    2009-11-17 12:25:09 ----D---- C:\WINDOWS\PrefsLM01
    2009-11-17 12:24:53 ----D---- C:\Program Files\LM Version-2.5-F
    2009-11-12 20:28:16 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
    2009-11-04 23:06:47 ----A---- C:\WINDOWS\imsins.BAK
    2009-10-28 19:23:41 ----D---- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
    2009-10-27 16:54:47 ----D---- C:\Program Files\Messenger Plus! Live
    2009-10-25 13:39:45 ----D---- C:\Program Files\GigaTribe

    ======List of files/folders modified in the last 1 months======

    2009-11-21 23:42:18 ----D---- C:\WINDOWS\Prefetch
    2009-11-21 21:32:04 ----D---- C:\WINDOWS\Temp
    2009-11-21 20:10:00 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-11-21 16:57:59 ----D---- C:\WINDOWS\system32
    2009-11-21 16:57:50 ----D---- C:\Program Files\Mozilla Firefox
    2009-11-21 15:50:42 ----SHD---- C:\RECYCLER
    2009-11-21 14:44:30 ----D---- C:\WINDOWS
    2009-11-21 14:08:32 ----D---- C:\Program Files
    2009-11-21 14:08:23 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-11-21 14:08:18 ----D---- C:\WINDOWS\Registration
    2009-11-21 12:29:33 ----D---- C:\WINDOWS\system32\drivers
    2009-11-21 12:02:19 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-11-21 12:01:04 ----SHD---- C:\WINDOWS\Installer
    2009-11-21 12:00:57 ----SHD---- C:\Config.Msi
    2009-11-21 12:00:22 ----D---- C:\Program Files\Fichiers communs\Adobe
    2009-11-21 11:59:46 ----D---- C:\Program Files\Adobe
    2009-11-21 11:45:34 ----D---- C:\Program Files\Java
    2009-11-20 16:45:55 ----D---- C:\Program Files\Fichiers communs
    2009-11-20 16:00:23 ----D---- C:\Program Files\Grisoft
    2009-11-12 20:28:34 ----D---- C:\WINDOWS\Debug
    2009-11-12 20:28:24 ----HD---- C:\WINDOWS\inf
    2009-11-12 20:28:19 ----SHD---- C:\WINDOWS\system32\dllcache
    2009-11-11 18:45:53 ----HD---- C:\WINDOWS\$hf_mig$
    2009-11-09 21:55:27 ----D---- C:\Documents and Settings\Nicolas\Application Data\OpenOffice.org2
    2009-11-05 18:36:21 ----A---- C:\WINDOWS\system32\MRT.exe
    2009-11-03 21:03:39 ----D---- C:\WINDOWS\system32\FxsTmp
    2009-10-31 18:12:55 ----D---- C:\Program Files\Cheat Engine
    2009-10-31 18:12:54 ----D---- C:\Program Files\MP3JOINER
    2009-10-31 18:12:54 ----D---- C:\Program Files\DVD Audio Extractor
    2009-10-31 18:08:53 ----D---- C:\Program Files\a-squared Free
    2009-10-30 10:09:30 ----D---- C:\WINDOWS\Help
    2009-10-25 16:34:24 ----D---- C:\Program Files\eMule
    2009-10-25 11:28:46 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 AmdK8;Pilote de processeur AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43520]
    R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
    R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
    R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2005-08-25 5628]
    R1 DLARTL_N;DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [2005-08-25 22684]
    R1 GearAspiWDM;GearAspiWDM; C:\WINDOWS\system32\drivers\GearAspiWDM.sys [2006-09-19 15664]
    R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848]
    R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-07-13 28520]
    R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-08-18 55656]
    R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2005-09-08 25628]
    R2 DLADResN;DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2005-09-08 2496]
    R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2005-09-08 86524]
    R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2005-09-08 14684]
    R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2005-09-08 6364]
    R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2005-09-08 87036]
    R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2005-09-08 94332]
    R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2005-08-12 40544]
    R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-08-05 54752]
    R2 Sentinel;Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [2007-04-27 90688]
    R3 ASAPIW2K;ASAPIW2K; C:\WINDOWS\System32\Drivers\ASAPIW2K.sys [2003-11-28 11264]
    R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys [2006-08-14 44544]
    R3 DSproct;DSproct; \??\C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys []
    R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-08-12 137728]
    R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
    R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-10-04 6854464]
    R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2005-11-02 10368]
    R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2006-08-15 1171464]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2005-10-26 27264]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-10 57600]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-04 17024]
    R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
    R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
    S3 Ad-Watch Connect Filter;Ad-Watch Connect Kernel Filter; \??\C:\WINDOWS\system32\drivers\NSDriver.sys []
    S3 Ad-Watch Real-Time Scanner;AW Real-Time Scanner; \??\C:\WINDOWS\system32\drivers\AWRTPD.sys []
    S3 Ad-Watch Registry Filter;Ad-Watch Registry Kernel Filter; \??\C:\WINDOWS\system32\drivers\AWRTRD.sys []
    S3 azg6vvbh;azg6vvbh; C:\WINDOWS\system32\drivers\azg6vvbh.sys []
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
    S3 E100B;Pilote de carte Intel (R) PRO; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2001-08-23 117760]
    S3 HWIONT;HWIONT; \??\C:\Documents and Settings\Nicolas\Bureau\MoreTV 3.53\HWIONT.sys []
    S3 MHNDRV;Pilote MHN; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
    S3 MobileAdapter;Huawei Mobile Adapter USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\hmumdm.sys [2007-09-06 101120]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
    S3 Profos;Profos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\profos.sys []
    S3 QCMerced;Logitech QuickCam Messenger; C:\WINDOWS\system32\DRIVERS\LVCM.sys [2003-06-27 472332]
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
    S3 SNTNLUSB;SafeNet USB SuperPro/UltraPro/HardwareKey; C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS [2007-04-27 35328]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
    S3 Trufos;Trufos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\trufos.sys []
    S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2007-09-06 30336]
    S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-03 59264]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
    S3 Usblink;Usblink Driver; C:\WINDOWS\System32\Drivers\ulink.sys [2003-03-08 37708]
    S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
    S3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-10 20480]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
    S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
    S4 agp440;Filtre de bus AGP Intel; C:\WINDOWS\system32\DRIVERS\agp440.sys [2004-08-04 42368]
    S4 agpCPQ;Filtre de bus AGP Compaq; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2004-08-04 44928]
    S4 alim1541;Filtre de bus AGP ALI; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2004-08-04 42752]
    S4 amdagp;Pilote de filtre du bus AMD AGP; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2004-08-04 43008]
    S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2001-08-17 13952]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\DRIVERS\intelide.sys [2004-08-04 5504]
    S4 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-10 40320]
    S4 sisagp;Filtre de bus AGP SIS; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2004-08-04 41088]
    S4 viaagp;Filtre de bus AGP VIA; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2004-08-04 42240]
    S4 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-10 12032]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 a2AntiMalware;a-squared Anti-Malware Service; C:\Program Files\a-squared Anti-Malware\a2service.exe [2009-01-04 419448]
    R2 a2free;a-squared Free Service; C:\Program Files\a-squared Free\a2service.exe [2009-10-31 1858144]
    R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-06-07 611664]
    R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-07-13 108289]
    R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-08-18 185089]
    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2007-09-06 110592]
    R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
    R2 ehRecvr;Media Center Receiver Service; C:\WINDOWS\eHome\ehRecvr.exe [2006-10-09 237568]
    R2 ehSched;Service de planification Media Center; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 103424]
    R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-11-21 153376]
    R2 LexBceS;LexBce Server; C:\WINDOWS\system32\LEXBCES.EXE [2002-03-08 300544]
    R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
    R2 NMSAccessU;NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-10-20 71096]
    R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-10-04 155716]
    R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-06-14 75064]
    R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-10-09 189672]
    R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
    S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2004-08-10 268800]
    S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-09-30 72704]
    S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
    S3 Droppix Service;Droppix Service; C:\Program Files\Fichiers communs\Droppix\DxService.exe [2009-03-12 221184]
    S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-10-26 654848]
    S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
    S3 fsssvc;Service Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
    S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
    S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
    S3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2007-09-26 503608]
    S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2004-08-10 14336]
    S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-10 14336]
    S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

    -----------------EOF-----------------
    a b 8 Sécurité
    22 Novembre 2009 00:38:07

    Plus de souci ?
    22 Novembre 2009 13:41:04

    Le problème avec internet explorer est toujours présent mais celui avec mozilla est bien moins fréquent ! En tout cas j'ai l'impression que mon PC rame moins, merci beaucoup de ton aide et pour le temps passé sur mon problème !! =)
    25 Novembre 2009 20:25:56

    Pour internet explorer j'ai d'abord pensé que ça avait réglé le probléme mais il persiste ! J'ai la derniére version de firefox oui.
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS